diff options
| author | Daiderd Jordan <daiderd@gmail.com> | 2019-05-04 14:46:24 +0200 |
|---|---|---|
| committer | Daiderd Jordan <daiderd@gmail.com> | 2019-05-04 14:46:24 +0200 |
| commit | 66495818a3797616d14f2c54845bf5265cf4a5e7 (patch) | |
| tree | af67193182a7c2c764917af2721b9d78d03d9e90 | |
| parent | dc923dbac263ffad20e7baa138561726891d87c8 (diff) | |
sandbox: add missing option descriptions
| -rw-r--r-- | modules/security/sandbox/default.nix | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/modules/security/sandbox/default.nix b/modules/security/sandbox/default.nix index bd8050f..6f47720 100644 --- a/modules/security/sandbox/default.nix +++ b/modules/security/sandbox/default.nix @@ -11,6 +11,7 @@ let options = { profile = mkOption { type = types.lines; + internal = true; apply = text: pkgs.runCommandNoCC "sandbox.sb" {} '' for f in $(< ${config.closure}/store-paths); do storePaths+="(subpath \"$f\")" @@ -44,6 +45,7 @@ let allowSystemPaths = mkOption { type = types.bool; default = false; + description = "Whether to allow read access to FHS paths like /etc and /var."; }; allowLocalNetworking = mkOption { |