diff options
| author | Vladimír Čunát <v@cunat.cz> | 2020-11-12 19:16:04 +0100 |
|---|---|---|
| committer | Vladimír Čunát <v@cunat.cz> | 2020-11-17 20:04:56 +0100 |
| commit | cd5c7c0ee6ccfa1c1b3b9b0831604bc180cee4b7 (patch) | |
| tree | dcc9050e77254e9a9b3fb0f92316e8b66a135650 /pkgs/servers/dns/knot-resolver | |
| parent | e61ef63e4e4644a451a4ed66f2f2ac7b48f2c26a (diff) | |
| download | nixpkgs-cd5c7c0ee6ccfa1c1b3b9b0831604bc180cee4b7.tar nixpkgs-cd5c7c0ee6ccfa1c1b3b9b0831604bc180cee4b7.tar.gz nixpkgs-cd5c7c0ee6ccfa1c1b3b9b0831604bc180cee4b7.tar.bz2 nixpkgs-cd5c7c0ee6ccfa1c1b3b9b0831604bc180cee4b7.tar.lz nixpkgs-cd5c7c0ee6ccfa1c1b3b9b0831604bc180cee4b7.tar.xz nixpkgs-cd5c7c0ee6ccfa1c1b3b9b0831604bc180cee4b7.tar.zst nixpkgs-cd5c7c0ee6ccfa1c1b3b9b0831604bc180cee4b7.zip | |
knot-resolver: drop capabilities after startup
By default. I forgot to add this a long time ago. The difference in runtime closure is really tiny (232 KiB by du).
Diffstat (limited to 'pkgs/servers/dns/knot-resolver')
| -rw-r--r-- | pkgs/servers/dns/knot-resolver/default.nix | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/pkgs/servers/dns/knot-resolver/default.nix b/pkgs/servers/dns/knot-resolver/default.nix index f7a07acf04b..cdbdbdc56eb 100644 --- a/pkgs/servers/dns/knot-resolver/default.nix +++ b/pkgs/servers/dns/knot-resolver/default.nix @@ -3,7 +3,7 @@ , runCommand, pkgconfig, meson, ninja, makeWrapper # build+runtime deps. , knot-dns, luajitPackages, libuv, gnutls, lmdb, systemd, dns-root-data -, nghttp2 +, nghttp2, libcap_ng # optionals, in principle # test-only deps. , cmocka, which, cacert , extraFeatures ? false /* catch-all if defaults aren't enough */ @@ -55,7 +55,7 @@ unwrapped = stdenv.mkDerivation rec { # http://knot-resolver.readthedocs.io/en/latest/build.html#requirements buildInputs = [ knot-dns lua.lua libuv gnutls lmdb ] ++ optional stdenv.isLinux systemd # passing sockets, sd_notify - ++ [ nghttp2 ] + ++ [ nghttp2 libcap_ng ] ## optional dependencies; TODO: libedit, dnstap ; |