ior - I/O Riot NG is an experiment with BPF.

diff options

author	Paul Buetow <paul@buetow.org>	2026-06-11 08:40:06 +0300
committer	Paul Buetow <paul@buetow.org>	2026-06-11 08:40:40 +0300
commit	1604107b8ee96dcc4fa7009c23397a2afc94164e (patch)
tree	27bd68f009379fc839e2af23e6dece297947470e /docs/tutorial/assets/12-parquet-recording.gif
parent	9dac4b33948f441ec645a8ec491878085483aeb6 (diff)

build: harden Magefile.go to use sudo -n for discrete commands onlydevelop

Implement the sudo hardening plan so mage itself never runs as root. Changes: - Remove implicit sudo wrapping for go test (buildGoTestCmd, progress ticker, drainTestEvents helpers removed). - Add compileIntegrationTestBinary() + runIntegrationTestBinary() helpers. The integration test binary is compiled unprivileged, then executed under sudo -n -E from the integrationtests/ directory so relative paths (../ior, ../ioworkload) resolve correctly. - Harden sudoOutput() to prefix with sudo -n. - Harden sudoRunWithEnv() to prefix with sudo -n env ... - Update docs/sudo-hardening-plan.md and docs/sudo-rules-for-ior.txt to document the working approach (sudo -n -E with SETENV flag).

Diffstat (limited to 'docs/tutorial/assets/12-parquet-recording.gif')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: