Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2006-12-07 | * Move setuidCleanup() to libutil. | Eelco Dolstra | 1 | -2/+3 | |
2006-12-07 | * If not running as root, let the setuid helper kill the build user's | Eelco Dolstra | 1 | -4/+33 | |
processes before and after the build. | |||||
2006-12-07 | * Change the ownership of store paths to the Nix account before | Eelco Dolstra | 1 | -33/+47 | |
deleting them using the setuid helper. | |||||
2006-12-07 | * If Nix is not running as root, call the setuid helper to start the | Eelco Dolstra | 1 | -5/+4 | |
builder under the desired build user. | |||||
2006-12-06 | * Change the ownership of the current directory to the build user. | Eelco Dolstra | 1 | -3/+16 | |
2006-12-06 | * Verify that the desired target user is in the build users group (as | Eelco Dolstra | 1 | -10/+43 | |
specified in the setuid config file). | |||||
2006-12-06 | * Check that the caller is allowed to call the setuid helper. The | Eelco Dolstra | 1 | -12/+49 | |
allowed uid is specified in a configuration file in /etc/nix-setuid.conf. | |||||
2006-12-06 | * Get rid of `build-users'. We'll just take all the members of | Eelco Dolstra | 1 | -3/+7 | |
`build-users-group'. This makes configuration easier: you can just add users in /etc/group. | |||||
2006-12-06 | * nix-setuid-helper: allow running programs under a different uid. | Eelco Dolstra | 1 | -0/+116 | |
2006-12-06 | * Start of the setuid helper (the program that performs the operations | Eelco Dolstra | 2 | -0/+11 | |
that have to be done as root: running builders under different uids, changing ownership of build results, and deleting paths in the store with the wrong ownership). |