From 32282abceaebbe574fa83c074aa8dbff19f937bb Mon Sep 17 00:00:00 2001 From: Eelco Dolstra Date: Mon, 17 Oct 2005 15:33:24 +0000 Subject: * Beginning of secure multi-user Nix stores. If Nix is started as root (or setuid root), then builds will be performed under one of the users listed in the `build-users' configuration variables. This is to make it impossible to influence build results externally, allowing locally built derivations to be shared safely between users (see ASE-2005 paper). To do: only one builder should be active per build user. --- src/libstore/globals.hh | 9 --------- 1 file changed, 9 deletions(-) (limited to 'src/libstore/globals.hh') diff --git a/src/libstore/globals.hh b/src/libstore/globals.hh index 8ba0a0300..cb199fd36 100644 --- a/src/libstore/globals.hh +++ b/src/libstore/globals.hh @@ -53,15 +53,6 @@ extern unsigned int maxBuildJobs; database. */ extern bool readOnlyMode; -/* Whether to allow builds by root. Corresponds to the - `build-allow-root' configuration option. */ -extern bool buildAllowRoot; - -/* The list of users under which root-initiated builds can be - performed. Correspons to the `build-users' configuration - option. */ -extern list buildUsers; - Strings querySetting(const string & name, const Strings & def); -- cgit v1.2.3