pyrox.dev / nixpkgs
lol
fork atom

Merge pull request #12160 from obadz/syscall_limiter

syscall_limiter: init at b02c03

Eelco Dolstra 49f46d58 4f025e02

+45
unified split
+43
pkgs/os-specific/linux/syscall_limiter/default.nix
··· 1 + { stdenv 2 + , fetchFromGitHub 3 + , libseccomp 4 + , perl 5 + , which 6 + }: 7 + 8 + stdenv.mkDerivation rec { 9 + name = "syscall_limiter-${version}"; 10 + version = "${date}-${stdenv.lib.strings.substring 0 7 rev}"; 11 + date = "20160105"; 12 + rev = "b02c0316a2aaff496f712f1467e20337006655cc"; 13 + 14 + src = fetchFromGitHub { 15 + owner = "vi"; 16 + repo = "syscall_limiter"; 17 + inherit rev; 18 + sha256 = "14q5k5c8hk7gnxhgwaamwbibasb3pwj6jnqsxa1bdp16n6jdajxd"; 19 + }; 20 + 21 + configurePhase = ""; 22 + 23 + buildPhase = '' 24 + make CC="gcc -I${libseccomp}/include -L${libseccomp}/lib" 25 + ''; 26 + 27 + installPhase = '' 28 + mkdir -p $out/bin 29 + cp -v limit_syscalls $out/bin 30 + cp -v monitor.sh $out/bin/limit_syscalls_monitor.sh 31 + substituteInPlace $out/bin/limit_syscalls_monitor.sh \ 32 + --replace perl ${perl}/bin/perl \ 33 + --replace which ${which}/bin/which 34 + ''; 35 + 36 + meta = with stdenv.lib; { 37 + description = "Start Linux programs with only selected syscalls enabled"; 38 + homepage = https://github.com/vi/syscall_limiter; 39 + license = licenses.mit; 40 + maintainers = with maintainers; [ obadz ]; 41 + platforms = platforms.linux; 42 + }; 43 + }
+2
pkgs/top-level/all-packages.nix
··· 897 897 pynotify = pythonPackages.notify; 898 898 }; 899 899 900 + syscall_limiter = callPackage ../os-specific/linux/syscall_limiter {}; 901 + 900 902 syslogng = callPackage ../tools/system/syslog-ng { }; 901 903 902 904 syslogng_incubator = callPackage ../tools/system/syslog-ng-incubator { };