Skip to content

nixos/iotop: add module #51749

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 7, 2019
Merged

nixos/iotop: add module #51749

merged 1 commit into from
Feb 7, 2019

Conversation

Ma27
Copy link
Member

@Ma27 Ma27 commented Dec 8, 2018
edited
Loading

Motivation for this change

The iotop program can't be started by an unprivileged user because of
missing root privileges. The issue can be fixed by creating a
setcap wrapper for iotop which contains cap_net_admin.

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nox --run "nox-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Assured whether relevant documentation is up to date
  • Fits CONTRIBUTING.md.

@Ma27 Ma27 requested a review from infinisil as a code owner December 8, 2018 20:51
@GrahamcOfBorg GrahamcOfBorg added 6.topic: nixos Issues or PRs affecting NixOS modules, or package usability issues specific to NixOS 8.has: module (update) This PR changes an existing module in `nixos/` 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 1-10 This PR causes between 1 and 10 packages to rebuild on Linux. labels Dec 8, 2018
@fpletz fpletz added 8.has: module (new) This PR adds a module in `nixos/` and removed 8.has: module (update) This PR changes an existing module in `nixos/` labels Dec 11, 2018
@Ma27
nixos/iotop: add module
7490e96 
The `iotop` program can't be started by an unprivileged user because of
missing root privileges. The issue can be fixed by creating a
setcap wrapper for `iotop` which contains `cap_net_admin`.
@GrahamcOfBorg GrahamcOfBorg added the 8.has: module (update) This PR changes an existing module in `nixos/` label Dec 17, 2018
@Ma27
Copy link
Member Author

Ma27 commented Feb 7, 2019

as this is a fairly trivial module, I'd do the merge tomorrow unless there are any folks against it.

@Ma27 Ma27 merged commit 1ac5612 into NixOS:master Feb 7, 2019
@Ma27 Ma27 deleted the add-iotop-module branch February 7, 2019 15:12
infinisil
infinisil reviewed Feb 7, 2019
View reviewed changes
nixos/modules/programs/iotop.nix
programs.iotop.enable = mkEnableOption "iotop + setcap wrapper";
};
config = mkIf cfg.enable {
environment.systemPackages = [ pkgs.iotop ];
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/run/wrappers/bin is on $PATH already, so I don't think this is needed (or even does anything, as the iotop in $PATH will override this one)

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh, guess I was a couple minutes late :)

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

good catch! Fixed in 6a0d2ff

Ma27 added a commit to Ma27/nixpkgs that referenced this pull request Feb 7, 2019
@Ma27
nixos/iotop: don't install the package globally
6a0d2ff 
The binary will be in `/run/wrappers/bin` and adding `pkgs.iotop` won't
have any effect.

See also NixOS#51749 (comment)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@infinisil infinisil infinisil left review comments

Assignees
No one assigned
Labels
6.topic: nixos Issues or PRs affecting NixOS modules, or package usability issues specific to NixOS 8.has: module (new) This PR adds a module in `nixos/` 8.has: module (update) This PR changes an existing module in `nixos/` 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 1-10 This PR causes between 1 and 10 packages to rebuild on Linux.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@Ma27 @infinisil @fpletz @GrahamcOfBorg