diff options
Diffstat (limited to 'nixos/modules/security/systemd-confinement.nix')
-rw-r--r-- | nixos/modules/security/systemd-confinement.nix | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/nixos/modules/security/systemd-confinement.nix b/nixos/modules/security/systemd-confinement.nix index b058eed42c4..f5ed3d281a5 100644 --- a/nixos/modules/security/systemd-confinement.nix +++ b/nixos/modules/security/systemd-confinement.nix @@ -10,10 +10,10 @@ in { options.confinement.enable = lib.mkOption { type = types.bool; default = false; - description = '' + description = lib.mdDoc '' If set, all the required runtime store paths for this service are - bind-mounted into a <literal>tmpfs</literal>-based - <citerefentry><refentrytitle>chroot</refentrytitle><manvolnum>2</manvolnum></citerefentry>. + bind-mounted into a `tmpfs`-based + {manpage}`chroot(2)`. ''; }; @@ -61,13 +61,13 @@ in { default = toplevelConfig.environment.binsh; defaultText = lib.literalExpression "config.environment.binsh"; example = lib.literalExpression ''"''${pkgs.dash}/bin/dash"''; - description = '' - The program to make available as <filename>/bin/sh</filename> inside - the chroot. If this is set to <literal>null</literal>, no - <filename>/bin/sh</filename> is provided at all. + description = lib.mdDoc '' + The program to make available as {file}`/bin/sh` inside + the chroot. If this is set to `null`, no + {file}`/bin/sh` is provided at all. This is useful for some applications, which for example use the - <citerefentry><refentrytitle>system</refentrytitle><manvolnum>3</manvolnum></citerefentry> library function to execute commands. + {manpage}`system(3)` library function to execute commands. ''; }; |