diff options
| author | Austin Seipp <aseipp@pobox.com> | 2014-03-17 18:29:28 -0500 |
|---|---|---|
| committer | Ricardo M. Correia <rcorreia@wizy.org> | 2014-04-06 21:51:35 +0200 |
| commit | ef903555fda39785832f11c2b0b8fb8f3f96dbfc (patch) | |
| tree | d5046cdad99290b5361a7a6d14fcbb680c05ecb5 /pkgs/os-specific/linux/gradm | |
| parent | 784062214ce43ea9d2f6a1ea068e952d517476fe (diff) | |
| download | nixlib-ef903555fda39785832f11c2b0b8fb8f3f96dbfc.tar nixlib-ef903555fda39785832f11c2b0b8fb8f3f96dbfc.tar.gz nixlib-ef903555fda39785832f11c2b0b8fb8f3f96dbfc.tar.bz2 nixlib-ef903555fda39785832f11c2b0b8fb8f3f96dbfc.tar.lz nixlib-ef903555fda39785832f11c2b0b8fb8f3f96dbfc.tar.xz nixlib-ef903555fda39785832f11c2b0b8fb8f3f96dbfc.tar.zst nixlib-ef903555fda39785832f11c2b0b8fb8f3f96dbfc.zip | |
gradm: learn of all accesses for /nix/store
This is necessary for gradm's learning mode to work, as otherwise the /nix/store directory is marked hidden, which causes the kernel to reject the linker loading ld-linux.so Signed-off-by: Austin Seipp <aseipp@pobox.com>
Diffstat (limited to 'pkgs/os-specific/linux/gradm')
| -rw-r--r-- | pkgs/os-specific/linux/gradm/default.nix | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/pkgs/os-specific/linux/gradm/default.nix b/pkgs/os-specific/linux/gradm/default.nix index 7f6f373b098d..62a3cfa631e7 100644 --- a/pkgs/os-specific/linux/gradm/default.nix +++ b/pkgs/os-specific/linux/gradm/default.nix @@ -24,6 +24,8 @@ stdenv.mkDerivation rec { KERNEL=="grsec", MODE="0622" LABEL="permissions_end" EOF + + echo "inherit-learn /nix/store" >> $out/etc/grsec/learn_config ''; makeFlags = |