New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
opensnitch: init at 1.3.6 #117893
opensnitch: init at 1.3.6 #117893
Conversation
7e4b224
to
c8ca1fd
Compare
Result of 1 package failed to build:1 package built successfully:
1 suggestion:
Note that build failures may predate this PR, and could be nondeterministic or hardware dependent. Result of 1 package failed to build:1 package built successfully:
1 suggestion:
Note that build failures may predate this PR, and could be nondeterministic or hardware dependent. |
src = fetchFromGitHub { | ||
owner = "evilsocket"; | ||
repo = "opensnitch"; | ||
rev = "tags/v${version}"; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
rev = "tags/v${version}"; | |
rev = "v${version}"; |
|
||
with python3Packages; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
with python3Packages; |
|
||
nativeBuildInputs = [ wrapQtAppsHook ]; | ||
|
||
propagatedBuildInputs = [ |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
propagatedBuildInputs = [ | |
propagatedBuildInputs = with python3Packages; [ |
c8ca1fd
to
81515c6
Compare
}) | ||
]; | ||
|
||
sourceRoot = "source/daemon"; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
patchFlags
can be dropped with this change.
sourceRoot = "source/daemon"; | |
modRoot = "daemon"; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
nice, thanks!
Just the daemon and ui programs. It would of course be nice to also have it available as a NixOS service, but I'd like to leave that as future work.
81515c6
to
f46c4f5
Compare
what is the recommended way to run this package? :) |
Right now what I do is 'manually' run Of course we can/should add more infrastructure to make this more convenient, but it's a start ;) (there might be some interesting work in #76897 that we could take into account, but I haven't looked into whether that is actually convenient yet) |
@raboof Thank you for the response! I managed to setup it manually and wrote a small how-to :D https://blog.project-insanity.org/2021/04/01/setup-opensnitch-on-nixos/ |
Has anyone figured out a way to make rules based not on the executables' location in |
Motivation for this change
Things done
sandbox
innix.conf
on non-NixOS linux)nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
./result/bin/
)nix path-info -S
before and after)