Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

vpn-slice: init at 0.14 #87256

Merged
merged 2 commits into from Aug 24, 2020
Merged

vpn-slice: init at 0.14 #87256

merged 2 commits into from Aug 24, 2020

Conversation

jdbaldry
Copy link
Contributor

@jdbaldry jdbaldry commented May 8, 2020

As a NixOS beginner, I would appreciate any guidance on the following:

In order to work, vpn-slice edits the systems /etc/hosts file which is read-only by default on NixOS. As the changes are temporary (only needed during operation of the split tunnel), I was happy to add write permissions to the host file using environment.etc.hosts.mode = "0644"; as I feel like it wasn't against the spirit of declarative system configuration.

Would you recommend a different approach?

Motivation for this change

Python tool for convenient configuration of a split tunnel VPN

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS linux)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Ensured that relevant documentation is up to date
  • Fits CONTRIBUTING.md.

@Lassulus
Copy link
Member

hey, sorry for the delay. I guess editing /etc/hosts from a package. I can't think of a better way right now.

@Lassulus
Copy link
Member

can you split the commit into 2 commits? they should look like this:

maintainers: add jdbaldry
vpn-slice: init at 0.14

@jdbaldry
maintainers: add jdbaldry
d2e6750 
Signed-off-by: Jack Baldry <jack.baldry@grafana.com>
@jdbaldry
vpn-slice: init at 0.14
62b812f 
Python tool for convenient configuration of a split tunnel VPN

Signed-off-by: Jack Baldry <jack.baldry@grafana.com>
@jdbaldry
Copy link
Contributor Author

No problem about the delay, nixpkgs is clearly a very active project!

I've split the commit into two as requested. Would you be able to expand on how I might edit the /etc/hosts from the package. I must admit I'm pretty inexperienced with Nixpkgs and NixOS and haven't done anything beyond building basic packages and related overlays.

@Lassulus
Copy link
Member

Oh there is no special way to modify it, what you have done is a perfectly fine way with setting the mode accordingly. Another way would be maybe to wrap the program to copy the /etc/hosts before running and restoring it after running. But that should not happen generally in the package since nix packages can also be used outside of NixOS

@jdbaldry
Copy link
Contributor Author

Cool! Thanks for the clarification :)

@Lassulus Lassulus merged commit e23ed2f into NixOS:master Aug 24, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
8.has: package (new) 10.rebuild-darwin: 1-10 10.rebuild-darwin: 1 10.rebuild-linux: 1-10 10.rebuild-linux: 1 11.by: package-maintainer 12. first-time contribution
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@jdbaldry @Lassulus @Janik-Haag