diff options
| author | aszlig <aszlig@redmoonstudios.org> | 2014-12-18 13:39:38 +0100 |
|---|---|---|
| committer | aszlig <aszlig@redmoonstudios.org> | 2014-12-18 14:06:13 +0100 |
| commit | ef691d5c304187bb99526c2e3478540e5d355f66 (patch) | |
| tree | 800fe45557c8e5190185657efb3585b94c08445f /nixos | |
| parent | 2af435b5cd74140bf8ee6c476793ee6ed7c1cba4 (diff) | |
| download | nixlib-ef691d5c304187bb99526c2e3478540e5d355f66.tar nixlib-ef691d5c304187bb99526c2e3478540e5d355f66.tar.gz nixlib-ef691d5c304187bb99526c2e3478540e5d355f66.tar.bz2 nixlib-ef691d5c304187bb99526c2e3478540e5d355f66.tar.lz nixlib-ef691d5c304187bb99526c2e3478540e5d355f66.tar.xz nixlib-ef691d5c304187bb99526c2e3478540e5d355f66.tar.zst nixlib-ef691d5c304187bb99526c2e3478540e5d355f66.zip | |
nixos/tests/virtualbox: Don't use vboxusers group.
At least when we're running in hardening mode, because it's needed there only for USB support. Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Diffstat (limited to 'nixos')
| -rw-r--r-- | nixos/tests/virtualbox.nix | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/nixos/tests/virtualbox.nix b/nixos/tests/virtualbox.nix index e4c3de146e93..71e627134da2 100644 --- a/nixos/tests/virtualbox.nix +++ b/nixos/tests/virtualbox.nix @@ -297,14 +297,16 @@ import ./make-test.nix ({ pkgs, ... }: with pkgs.lib; let in { name = "virtualbox"; - machine = { pkgs, ... }: { + machine = { pkgs, lib, config, ... }: { imports = let mkVMConf = name: val: val.machine // { key = "${name}-config"; }; vmConfigs = mapAttrsToList mkVMConf vboxVMs; in [ ./common/user-account.nix ./common/x11.nix ] ++ vmConfigs; virtualisation.memorySize = 768; services.virtualboxHost.enable = true; - users.extraUsers.alice.extraGroups = [ "vboxusers" ]; + users.extraUsers.alice.extraGroups = let + inherit (config.services.virtualboxHost) enableHardening; + in lib.mkIf enableHardening (lib.singleton "vboxusers"); }; testScript = '' |