pyrox.dev / nixpkgs
lol
fork atom

Merge pull request #309052 from kira-bruneau/intel-gpu-tools

nixos/intel-gpu-tools: init basic security wrapper

Pascal Wittmann b641bba3 f6864a81

options
unified split
Changed files
+28
nixos
doc
manual
release-notes
rl-2405.section.md
modules
hardware
video
intel-gpu-tools.nix
module-list.nix
+2
nixos/doc/manual/release-notes/rl-2405.section.md 
···

       
155

       
155

       
 

       



     

       
156

       
156

       
 

       
- [Monado](https://monado.freedesktop.org/), an open source XR runtime. Available as [services.monado](#opt-services.monado.enable).


     

       
157

       
157

       
 

       



     

       

       
158

       
+

       
- [intel-gpu-tools](https://drm.pages.freedesktop.org/igt-gpu-tools), tools for development and testing of the Intel DRM driver. Available as [hardware.intel-gpu-tools](#opt-hardware.intel-gpu-tools.enable)


     

       

       
159

       
+

       



     

       
158

       
160

       
 

       
- [Pretix](https://pretix.eu/about/en/), an open source ticketing software for events. Available as [services.pretix](#opt-services.pretix.enable).


     

       
159

       
161

       
 

       



     

       
160

       
162

       
 

       
- [microsocks](https://github.com/rofl0r/microsocks), a tiny, portable SOCKS5 server with very moderate resource usage. Available as [services.microsocks](#opt-services.microsocks.enable).
+25
nixos/modules/hardware/video/intel-gpu-tools.nix 
···

       

       
1

       
+

       
{ config, lib, pkgs, ... }:


     

       

       
2

       
+

       



     

       

       
3

       
+

       
let


     

       

       
4

       
+

       
  cfg = config.hardware.intel-gpu-tools;


     

       

       
5

       
+

       
in


     

       

       
6

       
+

       
{


     

       

       
7

       
+

       
  options = {


     

       

       
8

       
+

       
    hardware.intel-gpu-tools = {


     

       

       
9

       
+

       
      enable = lib.mkEnableOption "a setcap wrapper for intel-gpu-tools";


     

       

       
10

       
+

       
    };


     

       

       
11

       
+

       
  };


     

       

       
12

       
+

       



     

       

       
13

       
+

       
  config = lib.mkIf cfg.enable {


     

       

       
14

       
+

       
    security.wrappers.intel_gpu_top = {


     

       

       
15

       
+

       
      owner = "root";


     

       

       
16

       
+

       
      group = "root";


     

       

       
17

       
+

       
      source = "${pkgs.intel-gpu-tools}/bin/intel_gpu_top";


     

       

       
18

       
+

       
      capabilities = "cap_perfmon+ep";


     

       

       
19

       
+

       
    };


     

       

       
20

       
+

       
  };


     

       

       
21

       
+

       



     

       

       
22

       
+

       
  meta = {


     

       

       
23

       
+

       
    maintainers = with lib.maintainers; [ kira-bruneau ];


     

       

       
24

       
+

       
  };


     

       

       
25

       
+

       
}
+1
nixos/modules/module-list.nix 
···

       
107

       
107

       
 

       
  ./hardware/video/bumblebee.nix


     

       
108

       
108

       
 

       
  ./hardware/video/capture/mwprocapture.nix


     

       
109

       
109

       
 

       
  ./hardware/video/displaylink.nix


     

       

       
110

       
+

       
  ./hardware/video/intel-gpu-tools.nix


     

       
110

       
111

       
 

       
  ./hardware/video/nvidia.nix


     

       
111

       
112

       
 

       
  ./hardware/video/switcheroo-control.nix


     

       
112

       
113

       
 

       
  ./hardware/video/uvcvideo/default.nix