lix-project/lix

Author SHA1 Message Date

Eelco Dolstra 6991e558dd Move macOS sandbox files to sr/libstore/build 2023-01-04 04:50:45 -08:00

Author	SHA1	Message	Date
Eelco Dolstra	6991e558dd	Move macOS sandbox files to sr/libstore/build	2023-01-04 04:50:45 -08:00
Eelco Dolstra	609a7dc059	Include macOS sandbox files in the Nix binary This basically reverts `6e5165b773`. It fixes errors like sandbox-exec: <internal init prelude>:292:47: unable to open sandbox-minimal.sb: not found when trying to run a development Nix installed in a user's home directory. Also, we're trying to minimize the number of installed files to make it possible to deploy Nix as a single statically-linked binary.	2023-01-04 04:36:07 -08:00
Eelco Dolstra	85e93d7b87	Always use the Darwin sandbox Even with "build-use-sandbox = false", we now use sandboxing with a permissive profile that allows everything except the creation of setuid/setgid binaries.	2017-06-06 18:44:49 +02:00

Eelco Dolstra

609a7dc059

Include macOS sandbox files in the Nix binary

This basically reverts 6e5165b773.
It fixes errors like

  sandbox-exec: <internal init prelude>:292:47: unable to open sandbox-minimal.sb: not found

when trying to run a development Nix installed in a user's home
directory.

Also, we're trying to minimize the number of installed files
to make it possible to deploy Nix as a single statically-linked
binary.

2023-01-04 04:36:07 -08:00

Eelco Dolstra

85e93d7b87

Always use the Darwin sandbox

Even with "build-use-sandbox = false", we now use sandboxing with a
permissive profile that allows everything except the creation of
setuid/setgid binaries.

2017-06-06 18:44:49 +02:00

3 commits