nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-22 23:13:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
183be440fd
nixpkgs/nixos
History
Maximilian Bosch 183be440fd
nixos/captive-browser: drop setcap wrapper for captive-browser 
Since Linux 5.7 it's possible to set `SO_BINDTODEVICE` via `setsockopt(2)`
as unprivileged user if this operation doesn't imply escaping a VRF
interface[1].

Dropping the wrapper is actually desirable because `captive-browser`
itself doesn't drop capabilities and as a result, the capabilities are
passed on to `chromium` itself[2].

For older kernels, this is still necessary, hence the wrapper will only
be added nowadays if the kernel is older than 5.7.

[1] c427bfec18
[2] 08450562e5/bind_device_linux.go (L11-L14)
    and because our setcap wrapper makes all capabilities
    inheritable.
2023-08-10 14:06:38 +02:00
..
doc/manual Merge pull request #246029 from ehmry/eris-go 2023-08-08 06:18:03 +02:00
lib nixos/test-driver: format 2023-07-30 21:24:49 +08:00
maintainers nixos/amazon-image: embiggen 2023-06-07 08:42:47 +03:00
modules nixos/captive-browser: drop setcap wrapper for captive-browser 2023-08-10 14:06:38 +02:00
tests Merge pull request #247520 from Atemu/fix/kernel-passthru.tests 2023-08-08 21:29:19 +02:00
COPYING
default.nix
README
release-combined.nix
release-small.nix Merge pull request #209870 from amjoseph-nixpkgs/pr/stdenv/external-gcc-bootstrap 2023-04-03 08:19:03 -07:00
release.nix nixos/release: add deepin closure 2023-05-08 18:25:41 +08:00

README 

*** NixOS ***

NixOS is a Linux distribution based on the purely functional package
management system Nix.  More information can be found at
https://nixos.org/nixos and in the manual in doc/manual.