BoomMicrophone/nixpkgs-suyu
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge pull request #96034 from saschagrunert/apparmor

Browse source 
apparmor: add apparmor_parser config file
This commit is contained in:
Joachim F 2020-08-28 08:08:25 +00:00 committed by GitHub
commit 18c52dadfe
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
nixos/modules/security/apparmor.nix
View file

@ -23,11 +23,17 @@ in
default = []; default = [];
description = "List of packages to be added to apparmor's include path"; description = "List of packages to be added to apparmor's include path";
}; };
parserConfig = mkOption {
type = types.str;
default = "";
description = "AppArmor parser configuration file content";
};
}; };
}; };
config = mkIf cfg.enable { config = mkIf cfg.enable {
environment.systemPackages = [ pkgs.apparmor-utils ]; environment.systemPackages = [ pkgs.apparmor-utils ];
environment.etc."apparmor/parser.conf".text = cfg.parserConfig;
boot.kernelParams = [ "apparmor=1" "security=apparmor" ]; boot.kernelParams = [ "apparmor=1" "security=apparmor" ];