ilyakooo0/nixpkgs
1
0
Fork 0
mirror of https://github.com/ilyakooo0/nixpkgs.git synced 2024-10-06 04:27:27 +03:00
Code Issues Projects Releases Wiki Activity

Merge pull request #325459 from numinit/nebula-module-tweaks

Browse Source 
nixos/nebula: support non-path host keys
This commit is contained in:
Franz Pletz 2024-07-09 16:59:35 +02:00 committed by GitHub
commit f1d54d49b9
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
nixos/modules/services/networking/nebula.nix
View File

@ -51,8 +51,8 @@ in
};
key = mkOption {
type = types.path;
description = "Path to the host key.";
type = types.oneOf [types.nonEmptyStr types.path];
description = "Path or reference to the host key.";
example = "/etc/nebula/host.key";
};
@ -241,7 +241,7 @@ in
ProtectKernelModules = true;
ProtectKernelTunables = true;
ProtectProc = "invisible";
ProtectSystem = "strict";
ProtectSystem = true;
RestrictNamespaces = true;
RestrictSUIDSGID = true;
User = networkId;
@ -269,4 +269,6 @@ in
${nameToId netName} = {};
}) enabledNetworks);
};
meta.maintainers = [ numinit ];
}