commit 4b11122749d7b0ce41a0a39e19d33eb6406e45dc · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs

lol

nixos/containers: add catatonit / init_path

https://github.com/containers/common/blob/master/docs/containers.conf.5.md

- Also drop unneeded true from ociSeccompBpfHook

zowoq 4 years ago 4b111227 be38dc44

options

unified split

Changed files

+2 -1

nixos

modules

virtualisation

containers.nix

+2 -1

nixos/modules/virtualisation/containers.nix

···

       118
       118
        
             [network]

     

       119
       119
        
             cni_plugin_dirs = ["${pkgs.cni-plugins}/bin/"]

     

       120
       120
        
       

     

       121
       121
       -
             ${lib.optionalString (cfg.ociSeccompBpfHook.enable == true) ''

     

       122
       121
        
             [engine]

     

       122
       122
       +
             init_path = "${pkgs.catatonit}/bin/catatonit"

     

       123
       123
       +
             ${lib.optionalString (cfg.ociSeccompBpfHook.enable) ''

     

       123
       124
        
             hooks_dir = [

     

       124
       125
        
               "${config.boot.kernelPackages.oci-seccomp-bpf-hook}",

     

       125
       126
        
             ]