Add `Store::isTrustedClient()`

This function returns true or false depending on whether the Nix client is trusted or not. Mostly relevant when speaking to a remote store with a daemon. We include this information in `nix ping store` and `nix doctor` Co-Authored-By: John Ericson <John.Ericson@Obsidian.Systems>
author: matthewcroughan <matt@croughan.sh> 2022-12-26 20:21:08 +0000
committer: John Ericson <John.Ericson@Obsidian.Systems> 2023-04-06 19:59:57 -0400
commit: 9207f945822764a041a485009759f0a895468e94 (patch)
tree: 8eb60530be71b451d588d493dde52efe86ea30ff /src/libstore/daemon.cc
parent: 91856396317995aa38dc7244357596b8de27f937 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/src/libstore/daemon.cc b/src/libstore/daemon.cc
index 656ad4587..63898f8dc 100644
--- a/src/libstore/daemon.cc
+++ b/src/libstore/daemon.cc
@@ -1032,6 +1032,15 @@ void processConnection(
     if (GET_PROTOCOL_MINOR(clientVersion) >= 33)
         to << nixVersion;
 
+    if (GET_PROTOCOL_MINOR(clientVersion) >= 35) {
+        // We and the underlying store both need to trust the client for
+        // it to be trusted.
+        auto temp = trusted
+            ? store->isTrustedClient()
+            : std::optional { NotTrusted };
+        worker_proto::write(*store, to, temp);
+    }
+
     /* Send startup error messages to the client. */
     tunnelLogger->startWork();
author	matthewcroughan <matt@croughan.sh>	2022-12-26 20:21:08 +0000
committer	John Ericson <John.Ericson@Obsidian.Systems>	2023-04-06 19:59:57 -0400
commit	9207f945822764a041a485009759f0a895468e94 (patch)
tree	8eb60530be71b451d588d493dde52efe86ea30ff /src/libstore/daemon.cc
parent	91856396317995aa38dc7244357596b8de27f937 (diff)