diff options
author | Ludovic Courtès <ludo@gnu.org> | 2014-07-23 00:44:27 +0200 |
---|---|---|
committer | Ludovic Courtès <ludo@gnu.org> | 2014-07-23 02:02:07 +0200 |
commit | 2c071ce96e7e4049be3ae2eb958077566d3b4ea0 (patch) | |
tree | 0f4e3f8c84d42839064d9b8c4441642f3e9b2b9a /doc/guix.texi | |
parent | a85b83d2270673fdb00d03bbec7e3378c6adcac2 (diff) | |
download | patches-2c071ce96e7e4049be3ae2eb958077566d3b4ea0.tar patches-2c071ce96e7e4049be3ae2eb958077566d3b4ea0.tar.gz |
system: Recognize more file system flags.
* guix/build/linux-initrd.scm (MS_NOSUID, MS_NODEV, MS_NOEXEC): New
variables.
(mount-flags->bit-mask): New procedure.
(mount-file-system)[flags->bit-mask]: Remove.
Use 'mount-flags->bit-mask' instead.
In /etc/mtab, use the empty string when OPTIONS is false.
* gnu/services/base.scm (file-system-service): Add #:flags parameter and
honor it.
* gnu/system.scm (other-file-system-services): Pass FLAGS to
'file-system-service'.
Diffstat (limited to 'doc/guix.texi')
-rw-r--r-- | doc/guix.texi | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/doc/guix.texi b/doc/guix.texi index f475a172fe..42e62d4648 100644 --- a/doc/guix.texi +++ b/doc/guix.texi @@ -3039,7 +3039,9 @@ partitions without having to hard-code their actual device name. @item @code{flags} (default: @code{'()}) This is a list of symbols denoting mount flags. Recognized flags -include @code{read-only} and @code{bind-mount}. +include @code{read-only}, @code{bind-mount}, @code{no-dev} (disallow +access to special files), @code{no-suid} (ignore setuid and setgid +bits), and @code{no-exec} (disallow program execution.) @item @code{options} (default: @code{#f}) This is either @code{#f}, or a string denoting mount options. |