aboutsummaryrefslogtreecommitdiff
path: root/infra/libkookie/nixpkgs/pkgs/os-specific/linux/firejail/mount-nix-dir-on-overlay.patch
diff options
context:
space:
mode:
Diffstat (limited to 'infra/libkookie/nixpkgs/pkgs/os-specific/linux/firejail/mount-nix-dir-on-overlay.patch')
-rw-r--r--infra/libkookie/nixpkgs/pkgs/os-specific/linux/firejail/mount-nix-dir-on-overlay.patch27
1 files changed, 27 insertions, 0 deletions
diff --git a/infra/libkookie/nixpkgs/pkgs/os-specific/linux/firejail/mount-nix-dir-on-overlay.patch b/infra/libkookie/nixpkgs/pkgs/os-specific/linux/firejail/mount-nix-dir-on-overlay.patch
new file mode 100644
index 000000000000..685314f90758
--- /dev/null
+++ b/infra/libkookie/nixpkgs/pkgs/os-specific/linux/firejail/mount-nix-dir-on-overlay.patch
@@ -0,0 +1,27 @@
+--- a/src/firejail/fs.c
++++ b/src/firejail/fs.c
+@@ -1143,6 +1143,16 @@
+ errExit("mounting /dev");
+ fs_logger("whitelist /dev");
+
++ // mount-bind /nix
++ if (arg_debug)
++ printf("Mounting /nix\n");
++ char *nix;
++ if (asprintf(&nix, "%s/nix", oroot) == -1)
++ errExit("asprintf");
++ if (mount("/nix", nix, NULL, MS_BIND|MS_REC, NULL) < 0)
++ errExit("mounting /nix");
++ fs_logger("whitelist /nix");
++
+ // mount-bind run directory
+ if (arg_debug)
+ printf("Mounting /run\n");
+@@ -1201,6 +1211,7 @@
+ free(odiff);
+ free(owork);
+ free(dev);
++ free(nix);
+ free(run);
+ free(tmp);
+ }
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-18 16:55:15 +0000