b12f/nixpkgs
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

Merge pull request #223548 from enc0urage/fix-graphene-hardened

Browse source 
nixos/malloc: set vm.max_map_count when using graphene-hardened
This commit is contained in:
Robert Scott 2023-03-29 22:32:24 +01:00 committed by GitHub
parent bede0015fd a76bd96e4b
commit 9a6aabc474
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
nixos/modules/config/malloc.nix
View file

@ -97,6 +97,7 @@ in
};
config = mkIf (cfg.provider != "libc") {
boot.kernel.sysctl."vm.max_map_count" = mkIf (cfg.provider == "graphene-hardened") (mkDefault 1048576);
environment.etc."ld-nix.so.preload".text = ''
${providerLibPath}
'';