Split auto UID allocation from cgroups

Cgroups are now only used for derivations that require the uid-range range feature. This allows auto UID allocation even on systems that don't have cgroups (like macOS). Also, make things work on modern systems that use cgroups v2 (where there is a single hierarchy and no "systemd" controller).
2025-11-18 00:12:43 +01:00 · 2022-11-08 16:03:42 +01:00 · 2022-11-08 16:03:42 +01:00 · 2fde7e0108
commit 2fde7e0108
parent 40911d7dec
9 changed files with 122 additions and 96 deletions
--- a/src/libstore/lock.hh
+++ b/src/libstore/lock.hh
@ -11,18 +11,16 @@ struct UserLock
    virtual ~UserLock() { }

    /* Get the first and last UID. */
-    virtual std::pair<uid_t, uid_t> getUIDRange() = 0;
+    std::pair<uid_t, uid_t> getUIDRange()
+    {
+        auto first = getUID();
+        return {first, first + getUIDCount() - 1};
+    }

    /* Get the first UID. */
-    uid_t getUID()
-    {
-        return getUIDRange().first;
-    }
+    virtual uid_t getUID() = 0;

-    uid_t getUIDCount()
-    {
-        return getUIDRange().second - getUIDRange().first + 1;
-    }
+    virtual uid_t getUIDCount() = 0;

    virtual gid_t getGID() = 0;

@ -31,12 +29,14 @@ struct UserLock
    /* Kill any processes currently executing as this user. */
    virtual void kill() = 0;

+    #if __linux__
    virtual std::optional<Path> getCgroup() { return {}; };
+    #endif
 };

-/* Acquire a user lock. Note that this may return nullptr if no user
-   is available. */
-std::unique_ptr<UserLock> acquireUserLock();
+/* Acquire a user lock for a UID range of size `nrIds`. Note that this
+   may return nullptr if no user is available. */
+std::unique_ptr<UserLock> acquireUserLock(uid_t nrIds);

 bool useBuildUsers();