aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorEelco Dolstra <edolstra@gmail.com>2022-07-18 14:09:54 +0200
committerGitHub <noreply@github.com>2022-07-18 14:09:54 +0200
commit2584c151bd1921035abd51cc31e29b3bf15d53cb (patch)
treef87a8dd06a536e7070d7f78b5ef2b5c82e76831f
parent59764eb842d0da4f6fcf4ce4b85bf02ac1ae26fc (diff)
parentb88fb50e218cd3099cbceace48f7cfdf50a8f11f (diff)
Merge pull request #6812 from lovesegfault/rosetta-paths
fix(libstore): allow Nix to access all Rosetta 2 paths on MacOS
Diffstat
-rw-r--r--src/libstore/sandbox-defaults.sb6
1 files changed, 4 insertions, 2 deletions
diff --git a/src/libstore/sandbox-defaults.sb b/src/libstore/sandbox-defaults.sb
index 56b35c3fe..d9d710559 100644
--- a/src/libstore/sandbox-defaults.sb
+++ b/src/libstore/sandbox-defaults.sb
@@ -98,7 +98,9 @@
(allow file*
(literal "/private/var/select/sh"))
-; Allow Rosetta 2 to run x86_64 binaries on aarch64-darwin.
+; Allow Rosetta 2 to run x86_64 binaries on aarch64-darwin (and vice versa).
(allow file-read*
(subpath "/Library/Apple/usr/libexec/oah")
- (subpath "/System/Library/Apple/usr/libexec/oah"))
+ (subpath "/System/Library/Apple/usr/libexec/oah")
+ (subpath "/System/Library/LaunchDaemons/com.apple.oahd.plist")
+ (subpath "/Library/Apple/System/Library/LaunchDaemons/com.apple.oahd.plist"))
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 20:01:05 +0000