diff options
author | Eelco Dolstra <e.dolstra@tudelft.nl> | 2005-10-17 15:33:24 +0000 |
---|---|---|
committer | Eelco Dolstra <e.dolstra@tudelft.nl> | 2005-10-17 15:33:24 +0000 |
commit | 32282abceaebbe574fa83c074aa8dbff19f937bb (patch) | |
tree | 103144b0cf817ff3bec12f1a1ab897dfe7faf344 /src/libstore/globals.hh | |
parent | 15ff877438a57936d620622cee8fb98cea607d08 (diff) |
* Beginning of secure multi-user Nix stores. If Nix is started as
root (or setuid root), then builds will be performed under one of
the users listed in the `build-users' configuration variables. This
is to make it impossible to influence build results externally,
allowing locally built derivations to be shared safely between
users (see ASE-2005 paper).
To do: only one builder should be active per build user.
Diffstat (limited to 'src/libstore/globals.hh')
-rw-r--r-- | src/libstore/globals.hh | 9 |
1 files changed, 0 insertions, 9 deletions
diff --git a/src/libstore/globals.hh b/src/libstore/globals.hh index 8ba0a0300..cb199fd36 100644 --- a/src/libstore/globals.hh +++ b/src/libstore/globals.hh @@ -53,15 +53,6 @@ extern unsigned int maxBuildJobs; database. */ extern bool readOnlyMode; -/* Whether to allow builds by root. Corresponds to the - `build-allow-root' configuration option. */ -extern bool buildAllowRoot; - -/* The list of users under which root-initiated builds can be - performed. Correspons to the `build-users' configuration - option. */ -extern list<string> buildUsers; - Strings querySetting(const string & name, const Strings & def); |