public
/
nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

knot-resolver: drop capabilities after startup 

By default.  I forgot to add this a long time ago.
The difference in runtime closure is really tiny (232 KiB by du).
This commit is contained in:
Vladimír Čunát 2020-11-12 19:16:04 +01:00
parent e61ef63e4e
commit cd5c7c0ee6
No known key found for this signature in database
GPG Key ID: E747DF1F9575A3AA
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
pkgs/servers/dns/knot-resolver/default.nix
View File

@ -3,7 +3,7 @@
, runCommand, pkgconfig, meson, ninja, makeWrapper , runCommand, pkgconfig, meson, ninja, makeWrapper
# build+runtime deps. # build+runtime deps.
, knot-dns, luajitPackages, libuv, gnutls, lmdb, systemd, dns-root-data , knot-dns, luajitPackages, libuv, gnutls, lmdb, systemd, dns-root-data
, nghttp2 , nghttp2, libcap_ng # optionals, in principle
# test-only deps. # test-only deps.
, cmocka, which, cacert , cmocka, which, cacert
, extraFeatures ? false /* catch-all if defaults aren't enough */ , extraFeatures ? false /* catch-all if defaults aren't enough */
@ -55,7 +55,7 @@ unwrapped = stdenv.mkDerivation rec {
# http://knot-resolver.readthedocs.io/en/latest/build.html#requirements # http://knot-resolver.readthedocs.io/en/latest/build.html#requirements
buildInputs = [ knot-dns lua.lua libuv gnutls lmdb ] buildInputs = [ knot-dns lua.lua libuv gnutls lmdb ]
++ optional stdenv.isLinux systemd # passing sockets, sd_notify ++ optional stdenv.isLinux systemd # passing sockets, sd_notify
++ [ nghttp2 ] ++ [ nghttp2 libcap_ng ]
## optional dependencies; TODO: libedit, dnstap ## optional dependencies; TODO: libedit, dnstap
; ;