about summary refs log tree commit diff
path: root/src
AgeCommit message (Collapse)AuthorFilesLines
2018-11-13 Restore parent mount namespace before executing a child processEelco Dolstra8-4/+48
This ensures that they can't write to /nix/store. Fixes #2535.
2018-11-09 nix-prefetch-url: Stop progress bar before printing resultsEelco Dolstra1-0/+2
2018-11-09 Merge branch 'feature/prefetch-progress' of https://github.com/dtzWill/nixEelco Dolstra1-0/+7
2018-11-07 Enable sandboxing by defaultEelco Dolstra1-1/+7
Closes #179.
2018-11-01 Disable the S3 content-encoding patchEelco Dolstra1-1/+4
Since we're not using multi-part uploads at the moment, we can drop this patch.
2018-10-31 Fix typo in commentsJan Path1-1/+1
2018-10-31 Merge pull request #2501 from mayflower/xdg_config_dirsEelco Dolstra3-1/+17
config: use all of XDG_CONFIG_DIRS
2018-10-31 config: use all of XDG_CONFIG_DIRSLinus Heckemann3-1/+17
Previously, config would only be read from XDG_CONFIG_HOME. This change allows reading config from additional directories, which enables e.g. per-project binary caches or chroot stores with the help of direnv.
2018-10-30 Remove redundant messageEelco Dolstra1-2/+0
2018-10-30 S3BinaryCacheStore: Allow disabling multipart uploadsEelco Dolstra1-31/+57
The use of TransferManager has several issues, including that it doesn't allow setting a Content-Encoding without a patch, and it doesn't handle exceptions in worker threads (causing termination on memory allocation failure). Fixes #2493.
2018-10-30 Fix broken uploadProgressCallback closureEelco Dolstra1-4/+4
Since the callback is global we can't refer to 'path' in it. This could cause a segfault or printing of arbitrary data.
2018-10-29 Merge pull request #2494 from FPtje/fix-copy-from-oldEelco Dolstra1-3/+7
copyStorePath: Fix hash errors when copying from older store
2018-10-29 copyStorePath: Fix hash errors when copying from older storeFalco Peijnenburg1-3/+7
This commit partially reverts 48662d151bdf4a38670897beacea9d1bd750376a. When copying from an older store (in my case a store running Nix 1.11.7), nix would throw errors about there being no hash. This is fixed by recalculating the hash.
2018-10-29 nix doctor: return nonzero exitcode if a check failsDaiderd Jordan1-6/+20
This makes it easier to use this when testing the installer or when running the checks with other automated tooling.
2018-10-27 Restore old (dis)allowedRequisites behaviour for self-referencesEelco Dolstra1-29/+34
stdenv relies on this. So ignore self-references (but only in legacy non-structured attributes mode).
2018-10-27 Merge branch 'simplify-lexer' of https://github.com/layus/nixEelco Dolstra1-18/+15
2018-10-27 Fix signedness warningEelco Dolstra1-1/+1
2018-10-27 Merge branch 'nix-doctor' of https://github.com/LnL7/nixEelco Dolstra7-0/+139
2018-10-27 Merge pull request #2488 from dtzWill/fix/struct-class-minorEelco Dolstra1-1/+1
remote-store.hh: ConnectionHandle is struct, minor fix warning
2018-10-27 simplify handling of extra '}'Guillaume Maudoux1-18/+15
2018-10-26 nix-prefetch-url: progressbarWill Dietz1-0/+7
2018-10-26 remote-store.hh: ConnectionHandle is struct, minor fix warningWill Dietz1-1/+1
2018-10-26 src/nix/local.mk: fix typos in names of symlinksWill Dietz1-1/+1
2018-10-26 Merge all nix-* binaries into nixEelco Dolstra22-154/+104
These are all symlinks to 'nix' now, reducing the installed size by about ~1.7 MiB.
2018-10-23 Merge pull request #2483 from mayflower/tail-configEelco Dolstra1-3/+3
Promote verbose-build and log-lines
2018-10-23 Promote log-lines to a fully-qualified optionLinus Heckemann1-3/+3
This allows commands like nix build --log-lines 30 nixpkgs.hello in order to obtain more information in case of a failure.
2018-10-23 Merge pull request #2479 from nlewo/graphmlEelco Dolstra4-72/+96
Add --graphml option to the nix-store --query command
2018-10-23 Per-output reference and closure size checksEelco Dolstra1-51/+168
In structured-attributes derivations, you can now specify per-output checks such as: outputChecks."out" = { # The closure of 'out' must not be larger than 256 MiB. maxClosureSize = 256 * 1024 * 1024; # It must not refer to C compiler or to the 'dev' output. disallowedRequisites = [ stdenv.cc "dev" ]; }; outputChecks."dev" = { # The 'dev' output must not be larger than 128 KiB. maxSize = 128 * 1024; }; Also fixed a bug in allowedRequisites that caused it to ignore self-references.
2018-10-20 Remove the `--xml` query command optionAntoine Eiche3-90/+1
The `--graphml` option can be used instead.
2018-10-20 Add --graphml option to the nix-store --query commandAntoine Eiche3-1/+114
This prints the references graph of the store paths in the graphML format [1]. The graphML format is supported by several graph tools such as the Python Networkx library or the Apache Thinkerpop project. [1] http://graphml.graphdrawing.org
2018-10-16 Fix assertion failure in Store::queryPathInfo()Eelco Dolstra1-0/+2
$ nix-store -qR /nix/store/fnord nix-store: src/libstore/store-api.cc:80: std::__cxx11::string nix::storePathToHash(const Path&): Assertion `base.size() >= storePathHashLen' failed. Aborted
2018-10-16 RemoteStore: Close connection if an exception occursEelco Dolstra3-63/+121
Fixes #2075.
2018-10-16 Get rid of UDSRemoteStore::ConnectionEelco Dolstra1-5/+1
Since its superclass RemoteStore::Connection contains 'to' and 'from' fields that refer to the file descriptor maintained in the subclass, it was possible for the flush() call in Connection::~Connection() to write to a closed file descriptor (or worse, a file descriptor now referencing another file). So make sure that the file descriptor survives 'to' and 'from'.
2018-10-08 Merge pull request #2452 from ElvishJerricco/verify-sigs-overflowEelco Dolstra1-1/+1
Fix overflow when verifying signatures of content addressable paths
2018-10-04 Remove unnecessary typecastEelco Dolstra1-1/+1
2018-09-28 Check requiredSystemFeatures for local buildsEelco Dolstra5-15/+49
For example, this prevents a "kvm" build on machines that don't have KVM. Fixes #2012.
2018-09-28 Move structured attrs handling into a separate classEelco Dolstra5-116/+145
This is primarily because Derivation::{can,will}BuildLocally() depends on attributes like preferLocalBuild and requiredSystemFeatures, but it can't handle them properly because it doesn't have access to the structured attributes.
2018-09-28 Remove obsolete check on system featuresEelco Dolstra1-1/+0
2018-09-28 Support special attributes in structured attributes derivationsEelco Dolstra1-94/+175
E.g. __noChroot and allowedReferences now work correctly. We also now check that the attribute type is correct. For instance, instead of allowedReferences = "out"; you have to write allowedReferences = [ "out" ]; Fixes #2453.
2018-09-27 S3BinaryCacheStore: Don't create bucketsEelco Dolstra1-28/+0
This meant that making a typo in an s3:// URI would cause a bucket to be created. Also it didn't handle eventual consistency very well. Now it's up to the user to create the bucket.
2018-09-27 Merge pull request #2455 from grahamc/add-interactive-pathEelco Dolstra1-2/+6
nix-shell: add bashInteractive to the start of the PATH, set SHELL
2018-09-27 nix-shell: add bashInteractive to the start of the PATH, set SHELLGraham Christensen1-2/+6
Tools which re-exec `$SHELL` or `$0` or `basename $SHELL` or even just `bash` will otherwise get the non-interactive bash, providing a broken shell for the same reasons described in https://github.com/NixOS/nixpkgs/issues/27493. Extends c94f3d5575d7af5403274d1e9e2f3c9d72989751
2018-09-27 Don't talk about a "current folder build output"Eelco Dolstra1-4/+4
Presumably this refers to ./default.nix but the support for that in 'nix' is tenuous. Also folders are a Mac thing.
2018-09-26 nix doctor: reimplement profile warning without gcroot checkDaiderd Jordan1-20/+19
Calculating roots seems significantly slower on darwin compared to linux. Checking for /profile/ links could show some false positives but should still catch most issues.
2018-09-26 Ensure download thread livenessEelco Dolstra1-19/+26
* Don't wait forever for the client to remove data from the buffer. This does mean that the buffer can grow without bounds (e.g. when downloading is faster than writing to disk), but meh. * Don't hold the state lock while calling the sink. The sink could take any amount of time to process the data (in particular when it's actually a coroutine), so we don't want to block the download thread.
2018-09-26 UntabifyEelco Dolstra1-1/+1
2018-09-26 sinkToSource(): Start the coroutine lazilyEelco Dolstra1-11/+15
In particular this causes copyStorePath() from HttpBinaryCacheStore to only start a download if needed. E.g. if the destination LocalStore goes to sleep waiting for the path lock and another process creates the path, then LocalStore::addToStore() will never read from the source so we don't have to do the download.
2018-09-26 Make NAR header check more robustEelco Dolstra3-4/+5
Changes std::bad_alloc into bad archive: input doesn't look like a Nix archive
2018-09-25 Fix overflow when verifying signatures of content addressable pathsWill Fancher1-1/+1
2018-09-25 nix-daemon: allow setting builders to "" by any user (untrusted)Will Dietz1-1/+2
(cherry picked from commit a94a2eb1cb1c81e90a7529be5fecac27899a3442)