movefasta/nixpkgs
0
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-07-13 21:50:33 +03:00
Code Activity

Merge pull request #41375 from phryneas/mosh-with-libutempter

Browse source 
nixos/programs.mosh: refactor
This commit is contained in:
xeji 2018-06-08 21:56:15 +02:00 committed by GitHub
commit 951d3cc4b9
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
5 changed files with 70 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

18
nixos/modules/programs/mosh.nix
View file

@ -16,10 +16,28 @@ in
default = false; default = false;
type = lib.types.bool; type = lib.types.bool;
}; };
withUtempter = mkOption {
description = ''
Whether to enable libutempter for mosh.
This is required so that mosh can write to /var/run/utmp (which can be queried with `who` to display currently connected user sessions).
Note, this will add a guid wrapper for the group utmp!
'';
default = true;
type = lib.types.bool;
};
}; };
config = mkIf cfg.enable { config = mkIf cfg.enable {
environment.systemPackages = with pkgs; [ mosh ]; environment.systemPackages = with pkgs; [ mosh ];
networking.firewall.allowedUDPPortRanges = [ { from = 60000; to = 61000; } ]; networking.firewall.allowedUDPPortRanges = [ { from = 60000; to = 61000; } ];
security.wrappers = mkIf cfg.withUtempter {
utempter = {
source = "${pkgs.libutempter}/lib/utempter/utempter";
owner = "nobody";
group = "utmp";
setuid = false;
setgid = true;
};
};
}; };
} }

8
pkgs/development/libraries/libutempter/default.nix
View file

@ -13,11 +13,13 @@ stdenv.mkDerivation rec {
buildInputs = [ glib ]; buildInputs = [ glib ];
patches = [ ./exec_path.patch ];
prePatch = '' prePatch = ''
substituteInPlace Makefile --replace 2711 0711 substituteInPlace Makefile --replace 2711 0711
''; '';
installFlags = [ makeFlags = [
"libdir=\${out}/lib" "libdir=\${out}/lib"
"libexecdir=\${out}/lib" "libexecdir=\${out}/lib"
"includedir=\${out}/include" "includedir=\${out}/include"
@ -26,6 +28,10 @@ stdenv.mkDerivation rec {
meta = { meta = {
description = "Interface for terminal emulators such as screen and xterm to record user sessions to utmp and wtmp files"; description = "Interface for terminal emulators such as screen and xterm to record user sessions to utmp and wtmp files";
longDescription = ''
The bundled utempter binary must be able to run as a user belonging to group utmp.
On NixOS systems, this can be achieved by creating a setguid wrapper.
'';
license = licenses.lgpl21Plus; license = licenses.lgpl21Plus;
platforms = platforms.linux; platforms = platforms.linux;
maintainers = [ maintainers.msteen ]; maintainers = [ maintainers.msteen ];

25
pkgs/development/libraries/libutempter/exec_path.patch Normal file
View file

@ -0,0 +1,25 @@
diff -ur libutempter-1.1.6/iface.c libutempter-1.1.6.patched/iface.c
--- libutempter-1.1.6/iface.c 2010-11-04 18:14:53.000000000 +0100
+++ libutempter-1.1.6.patched/iface.c 2018-06-06 15:09:11.417755549 +0200
@@ -60,9 +60,9 @@
_exit(EXIT_FAILURE);
}
- execv(path, argv);
+ execvp(path, argv);
#ifdef UTEMPTER_DEBUG
- fprintf(stderr, "libutempter: execv: %s\n", strerror(errno));
+ fprintf(stderr, "libutempter: execvp: %s\n", strerror(errno));
#endif
while (EACCES == errno)
@@ -79,7 +79,7 @@
if (setgid(sgid))
break;
- (void) execv(path, argv);
+ (void) execvp(path, argv);
break;
}
Only in libutempter-1.1.6.patched: result

11
pkgs/tools/networking/mosh/default.nix
View file

@ -1,5 +1,6 @@
{ stdenv, fetchurl, zlib, protobuf, ncurses, pkgconfig, IOTty { lib, stdenv, fetchurl, zlib, protobuf, ncurses, pkgconfig, IOTty
, makeWrapper, perl, openssl, autoreconfHook, openssh, bash-completion }: , makeWrapper, perl, openssl, autoreconfHook, openssh, bash-completion
, libutempter ? null, withUtempter ? stdenv.isLinux }:
stdenv.mkDerivation rec { stdenv.mkDerivation rec {
name = "mosh-1.3.2"; name = "mosh-1.3.2";
@ -10,15 +11,15 @@ stdenv.mkDerivation rec {
}; };
nativeBuildInputs = [ autoreconfHook pkgconfig ]; nativeBuildInputs = [ autoreconfHook pkgconfig ];
buildInputs = [ protobuf ncurses zlib IOTty makeWrapper perl openssl bash-completion ]; buildInputs = [ protobuf ncurses zlib IOTty makeWrapper perl openssl bash-completion ] ++ lib.optional withUtempter libutempter;
patches = [ ./ssh_path.patch ]; patches = [ ./ssh_path.patch ./utempter_path.patch ];
postPatch = '' postPatch = ''
substituteInPlace scripts/mosh.pl \ substituteInPlace scripts/mosh.pl \
--subst-var-by ssh "${openssh}/bin/ssh" --subst-var-by ssh "${openssh}/bin/ssh"
''; '';
configureFlags = [ "--enable-completion" ]; configureFlags = [ "--enable-completion" ] ++ lib.optional withUtempter "--with-utempter";
postInstall = '' postInstall = ''
wrapProgram $out/bin/mosh --prefix PERL5LIB : $PERL5LIB wrapProgram $out/bin/mosh --prefix PERL5LIB : $PERL5LIB

14
pkgs/tools/networking/mosh/utempter_path.patch Normal file
View file

@ -0,0 +1,14 @@
diff -ur mosh-1.3.2/src/frontend/mosh-server.cc mosh-1.3.2.patched/src/frontend/mosh-server.cc
--- mosh-1.3.2/src/frontend/mosh-server.cc 2017-07-22 23:14:53.000000000 +0200
+++ mosh-1.3.2.patched/src/frontend/mosh-server.cc 2018-06-06 10:45:50.725352804 +0200
@@ -351,6 +351,10 @@
}
}
+#ifdef HAVE_UTEMPTER
+ utempter_set_helper( "utempter" );
+#endif
+
try {
return run_server( desired_ip, desired_port, command_path, command_argv, colors, verbose, with_motd );
} catch ( const Network::NetworkException &e ) {