[Nix-dev] Re: [Nix-commits] SVN commit: nix - r23483 - in nix/branches/sqlite: scripts src/libstore src/libutil
Eelco Dolstra
e.dolstra at tudelft.nl
Fri Aug 27 16:11:36 CEST 2010
Hi,
On 08/27/2010 03:57 PM, Lluís Batlle i Rossell wrote:
> On Fri, Aug 27, 2010 at 01:18:13PM +0000, Eelco Dolstra wrote:
>> Author: eelco
>> Date: Fri Aug 27 13:18:13 2010
>> New Revision: 23483
>> URL: https://svn.nixos.org/websvn/nix/?rev=23483&sc=1
>>
>> Log:
>> * Experimental feature: allow a derivation to tell the build hook that
>> it requires a certain feature on the build machine, e.g.
>>
>> requiredSystemFeatures = [ "kvm" ];
>>
>> We need this in Hydra to make sure that builds that require KVM
>> support are forwarded to machines that have KVM support. Probably
>> this should also be enforced for local builds.
>
> Could that be the path to request, for example, 'root' access in a build?
Maybe, but that would have obvious security implications :-)
> I think of the case where a nix derivation has to create an image (squashfs,
> ubifs, ...) with devices, and only 'root' can run 'mknod'.
Note that mksquashfs allows device nodes to be specified on the command line or
in a file, so you don't need to be root.
--
Eelco Dolstra | http://www.st.ewi.tudelft.nl/~dolstra/
More information about the nix-dev
mailing list