about summary refs log tree commit diff
path: root/src/nix-setuid-helper
AgeCommit message (Collapse)AuthorFilesLines
2007-02-06 * Fix 64-bit compiler warnings.Eelco Dolstra1-2/+2
2007-01-24 * Nasty: Glibc clears the TMPDIR environment variable in setuidEelco Dolstra1-1/+8
programs, so if a builder uses TMPDIR, then it will fail when executed through nix-setuid-helper. In fact Glibc clears a whole bunch of variables (see sysdeps/generic/unsecvars.h in the Glibc sources), but only TMPDIR should matter in practice. As a workaround, we reinitialise TMPDIR from NIX_BUILD_TOP.
2006-12-07 * Rename all those main.cc files.Eelco Dolstra2-1/+1
2006-12-07 * Check for lchown.Eelco Dolstra1-0/+7
2006-12-07 * Move setuidCleanup() to libutil.Eelco Dolstra1-2/+3
2006-12-07 * If not running as root, let the setuid helper kill the build user'sEelco Dolstra1-4/+33
processes before and after the build.
2006-12-07 * Change the ownership of store paths to the Nix account beforeEelco Dolstra1-33/+47
deleting them using the setuid helper.
2006-12-07 * If Nix is not running as root, call the setuid helper to start theEelco Dolstra1-5/+4
builder under the desired build user.
2006-12-06 * Change the ownership of the current directory to the build user.Eelco Dolstra1-3/+16
2006-12-06 * Verify that the desired target user is in the build users group (asEelco Dolstra1-10/+43
specified in the setuid config file).
2006-12-06 * Check that the caller is allowed to call the setuid helper. TheEelco Dolstra1-12/+49
allowed uid is specified in a configuration file in /etc/nix-setuid.conf.
2006-12-06 * Get rid of `build-users'. We'll just take all the members ofEelco Dolstra1-3/+7
`build-users-group'. This makes configuration easier: you can just add users in /etc/group.
2006-12-06 * nix-setuid-helper: allow running programs under a different uid.Eelco Dolstra1-0/+116
2006-12-06 * Start of the setuid helper (the program that performs the operationsEelco Dolstra2-0/+11
that have to be done as root: running builders under different uids, changing ownership of build results, and deleting paths in the store with the wrong ownership).