pyrox.dev / nixpkgs
lol
fork atom

Merge pull request #223548 from enc0urage/fix-graphene-hardened

nixos/malloc: set vm.max_map_count when using graphene-hardened

authored by

Robert Scott and committed by
GitHub 9a6aabc4 bede0015

+1
unified split
+1
nixos/modules/config/malloc.nix
··· 97 }; 98 99 config = mkIf (cfg.provider != "libc") { 100 environment.etc."ld-nix.so.preload".text = '' 101 ${providerLibPath} 102 '';
··· 97 }; 98 99 config = mkIf (cfg.provider != "libc") { 100 + boot.kernel.sysctl."vm.max_map_count" = mkIf (cfg.provider == "graphene-hardened") (mkDefault 1048576); 101 environment.etc."ld-nix.so.preload".text = '' 102 ${providerLibPath} 103 '';