nixos/nix
1
1
Fork 0
mirror of https://github.com/NixOS/nix.git synced 2025-11-09 03:56:01 +01:00
Code Activity

Merge pull request #13799 from obsidiansystems/typed-sandbox-paths

Browse source 
Make `sandbox-settings` better typed, get `globals.hh` out of other headers
This commit is contained in:
John Ericson 2025-08-20 16:50:34 -04:00 committed by GitHub
commit ca86d34077
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
52 changed files with 215 additions and 59 deletions
Download patch file Download diff file Expand all files Collapse all files

1
src/libcmd/common-eval-args.cc
View file

@ -15,6 +15,7 @@
#include "nix/fetchers/fetch-to-store.hh"
#include "nix/cmd/compatibility-settings.hh"
#include "nix/expr/eval-settings.hh"
#include "nix/store/globals.hh"
namespace nix {

1
src/libexpr/eval-cache.cc
View file

@ -4,6 +4,7 @@
#include "nix/expr/eval.hh"
#include "nix/expr/eval-inline.hh"
#include "nix/store/store-api.hh"
#include "nix/store/globals.hh"
// Need specialization involving `SymbolStr` just in this one module.
#include "nix/util/strings-inline.hh"

1
src/libexpr/eval.cc
View file

@ -6,6 +6,7 @@
#include "nix/util/exit.hh"
#include "nix/util/types.hh"
#include "nix/util/util.hh"
#include "nix/util/environment-variables.hh"
#include "nix/store/store-api.hh"
#include "nix/store/derivations.hh"
#include "nix/store/downstream-placeholder.hh"

1
src/libexpr/primops.cc
View file

@ -5,6 +5,7 @@
#include "nix/expr/eval-settings.hh"
#include "nix/expr/gc-small-vector.hh"
#include "nix/expr/json-to-value.hh"
#include "nix/store/globals.hh"
#include "nix/store/names.hh"
#include "nix/store/path-references.hh"
#include "nix/store/store-api.hh"

1
src/libexpr/primops/context.cc
View file

@ -2,6 +2,7 @@
#include "nix/expr/eval-inline.hh"
#include "nix/store/derivations.hh"
#include "nix/store/store-api.hh"
#include "nix/store/globals.hh"
namespace nix {

1
src/libexpr/primops/fetchClosure.cc
View file

@ -3,6 +3,7 @@
#include "nix/store/realisation.hh"
#include "nix/store/make-content-addressed.hh"
#include "nix/util/url.hh"
#include "nix/util/environment-variables.hh"
namespace nix {

1
src/libfetchers-tests/git.cc
View file

@ -1,4 +1,5 @@
#include "nix/store/store-open.hh"
#include "nix/store/globals.hh"
#include "nix/fetchers/fetch-settings.hh"
#include "nix/fetchers/fetchers.hh"
#include "nix/fetchers/git-utils.hh"

1
src/libfetchers/cache.cc
View file

@ -4,6 +4,7 @@
#include "nix/store/sqlite.hh"
#include "nix/util/sync.hh"
#include "nix/store/store-api.hh"
#include "nix/store/globals.hh"
#include <nlohmann/json.hpp>

1
src/libstore-test-support/include/nix/store/tests/libstore.hh
View file

@ -6,6 +6,7 @@
#include "nix/store/store-api.hh"
#include "nix/store/store-open.hh"
#include "nix/store/globals.hh"
namespace nix {

1
src/libstore/build/derivation-building-goal.cc
View file

@ -12,6 +12,7 @@
#include "nix/store/common-protocol.hh"
#include "nix/store/common-protocol-impl.hh"
#include "nix/store/local-store.hh" // TODO remove, along with remaining downcasts
#include "nix/store/globals.hh"
#include <fstream>
#include <sys/types.h>

2
src/libstore/build/derivation-goal.cc
View file

@ -11,7 +11,7 @@
#include "nix/util/compression.hh"
#include "nix/store/common-protocol.hh"
#include "nix/store/common-protocol-impl.hh" // Don't remove is actually needed
#include "nix/store/local-store.hh" // TODO remove, along with remaining downcasts
#include "nix/store/globals.hh"
#include <fstream>
#include <sys/types.h>

1
src/libstore/build/drv-output-substitution-goal.cc
View file

@ -4,6 +4,7 @@
#include "nix/store/build/substitution-goal.hh"
#include "nix/util/callback.hh"
#include "nix/store/store-open.hh"
#include "nix/store/globals.hh"
namespace nix {

1
src/libstore/build/goal.cc
View file

@ -1,5 +1,6 @@
#include "nix/store/build/goal.hh"
#include "nix/store/build/worker.hh"
#include "nix/store/globals.hh"
namespace nix {

2
src/libstore/build/substitution-goal.cc
View file

@ -4,6 +4,8 @@
#include "nix/store/nar-info.hh"
#include "nix/util/finally.hh"
#include "nix/util/signals.hh"
#include "nix/store/globals.hh"
#include <coroutine>
namespace nix {

1
src/libstore/build/worker.cc
View file

@ -10,6 +10,7 @@
# include "nix/store/build/hook-instance.hh"
#endif
#include "nix/util/signals.hh"
#include "nix/store/globals.hh"
namespace nix {

1
src/libstore/builtins/fetchurl.cc
View file

@ -1,6 +1,7 @@
#include "nix/store/builtins.hh"
#include "nix/store/filetransfer.hh"
#include "nix/store/store-api.hh"
#include "nix/store/globals.hh"
#include "nix/util/archive.hh"
#include "nix/util/compression.hh"

1
src/libstore/daemon.cc
View file

@ -16,6 +16,7 @@
#include "nix/util/args.hh"
#include "nix/util/git.hh"
#include "nix/util/logging.hh"
#include "nix/store/globals.hh"
#ifndef _WIN32 // TODO need graceful async exit support on Windows?
# include "nix/util/monitor-fd.hh"

1
src/libstore/derivation-options.cc
View file

@ -5,6 +5,7 @@
#include "nix/store/store-api.hh"
#include "nix/util/types.hh"
#include "nix/util/util.hh"
#include "nix/store/globals.hh"
#include <optional>
#include <string>

59
src/libstore/globals.cc
View file

@ -86,13 +86,22 @@ Settings::Settings()
}
#if (defined(__linux__) || defined(__FreeBSD__)) && defined(SANDBOX_SHELL)
sandboxPaths = tokenizeString<StringSet>("/bin/sh=" SANDBOX_SHELL);
sandboxPaths = {{"/bin/sh", {.source = SANDBOX_SHELL}}};
#endif
/* chroot-like behavior from Apple's sandbox */
#ifdef __APPLE__
sandboxPaths = tokenizeString<StringSet>(
"/System/Library/Frameworks /System/Library/PrivateFrameworks /bin/sh /bin/bash /private/tmp /private/var/tmp /usr/lib");
for (PathView p : {
"/System/Library/Frameworks",
"/System/Library/PrivateFrameworks",
"/bin/sh",
"/bin/bash",
"/private/tmp",
"/private/var/tmp",
"/usr/lib",
}) {
sandboxPaths.get().insert_or_assign(std::string{p}, ChrootPath{.source = std::string{p}});
}
allowedImpureHostPrefixes = tokenizeString<StringSet>("/System/Library /usr/lib /dev /bin/sh");
#endif
}
@ -317,6 +326,42 @@ void BaseSetting<SandboxMode>::convertToArg(Args & args, const std::string & cat
});
}
NLOHMANN_DEFINE_TYPE_NON_INTRUSIVE(ChrootPath, source, optional)
template<>
PathsInChroot BaseSetting<PathsInChroot>::parse(const std::string & str) const
{
PathsInChroot pathsInChroot;
for (auto i : tokenizeString<StringSet>(str)) {
if (i.empty())
continue;
bool optional = false;
if (i[i.size() - 1] == '?') {
optional = true;
i.pop_back();
}
size_t p = i.find('=');
if (p == std::string::npos)
pathsInChroot[i] = {.source = i, .optional = optional};
else
pathsInChroot[i.substr(0, p)] = {.source = i.substr(p + 1), .optional = optional};
}
return pathsInChroot;
}
template<>
std::string BaseSetting<PathsInChroot>::to_string() const
{
std::vector<std::string> accum;
for (auto & [name, cp] : value) {
std::string s = name == cp.source ? name : name + "=" + cp.source;
if (cp.optional)
s += "?";
accum.push_back(std::move(s));
}
return concatStringsSep(" ", accum);
}
unsigned int MaxBuildJobsSetting::parse(const std::string & str) const
{
if (str == "auto")
@ -329,6 +374,14 @@ unsigned int MaxBuildJobsSetting::parse(const std::string & str) const
}
}
template<>
void BaseSetting<PathsInChroot>::appendOrSet(PathsInChroot newValue, bool append)
{
if (!append)
value.clear();
value.insert(std::make_move_iterator(newValue.begin()), std::make_move_iterator(newValue.end()));
}
static void preloadNSS()
{
/* builtin:fetchurl can trigger a DNS lookup, which with glibc can trigger a dynamic library load of

14
src/libstore/unix/include/nix/store/build/derivation-builder.hh → src/libstore/include/nix/store/build/derivation-builder.hh
View file

@ -8,10 +8,20 @@
#include "nix/store/parsed-derivations.hh"
#include "nix/util/processes.hh"
#include "nix/store/restricted-store.hh"
#include "nix/store/user-lock.hh"
namespace nix {
/**
* Stuff we need to pass to initChild().
*/
struct ChrootPath
{
Path source;
bool optional = false;
};
typedef std::map<Path, ChrootPath> PathsInChroot; // maps target path to source path
/**
* Parameters by (mostly) `const` reference for `DerivationBuilder`.
*/
@ -178,7 +188,9 @@ struct DerivationBuilder : RestrictionContext
virtual void killSandbox(bool getStats) = 0;
};
#ifndef _WIN32 // TODO enable `DerivationBuilder` on Windows
std::unique_ptr<DerivationBuilder> makeDerivationBuilder(
LocalStore & store, std::unique_ptr<DerivationBuilderCallbacks> miscMethods, DerivationBuilderParams params);
#endif
} // namespace nix

17
src/libstore/include/nix/store/globals.hh
View file

@ -11,6 +11,7 @@
#include "nix/util/environment-variables.hh"
#include "nix/util/experimental-features.hh"
#include "nix/util/users.hh"
#include "nix/store/build/derivation-builder.hh"
#include "nix/store/config.hh"
@ -23,6 +24,20 @@ SandboxMode BaseSetting<SandboxMode>::parse(const std::string & str) const;
template<>
std::string BaseSetting<SandboxMode>::to_string() const;
template<>
PathsInChroot BaseSetting<PathsInChroot>::parse(const std::string & str) const;
template<>
std::string BaseSetting<PathsInChroot>::to_string() const;
template<>
struct BaseSetting<PathsInChroot>::trait
{
static constexpr bool appendable = true;
};
template<>
void BaseSetting<PathsInChroot>::appendOrSet(PathsInChroot newValue, bool append);
struct MaxBuildJobsSetting : public BaseSetting<unsigned int>
{
MaxBuildJobsSetting(
@ -697,7 +712,7 @@ public:
)",
{"build-use-chroot", "build-use-sandbox"}};
Setting<PathSet> sandboxPaths{
Setting<PathsInChroot> sandboxPaths{
this,
{},
"sandbox-paths",

20
src/libstore/include/nix/store/local-fs-store.hh
View file

@ -22,15 +22,31 @@ struct LocalFSStoreConfig : virtual StoreConfig
OptionalPathSetting rootDir{this, std::nullopt, "root", "Directory prefixed to all other paths."};
private:
/**
* An indirection so that we don't need to refer to global settings
* in headers.
*/
static Path getDefaultStateDir();
/**
* An indirection so that we don't need to refer to global settings
* in headers.
*/
static Path getDefaultLogDir();
public:
PathSetting stateDir{
this,
rootDir.get() ? *rootDir.get() + "/nix/var/nix" : settings.nixStateDir,
rootDir.get() ? *rootDir.get() + "/nix/var/nix" : getDefaultStateDir(),
"state",
"Directory where Nix stores state."};
PathSetting logDir{
this,
rootDir.get() ? *rootDir.get() + "/nix/var/log/nix" : settings.nixLogDir,
rootDir.get() ? *rootDir.get() + "/nix/var/log/nix" : getDefaultLogDir(),
"log",
"directory where Nix stores log files."};

12
src/libstore/include/nix/store/local-store.hh
View file

@ -74,9 +74,19 @@ struct LocalStoreConfig : std::enable_shared_from_this<LocalStoreConfig>,
LocalStoreConfig(std::string_view scheme, std::string_view authority, const Params & params);
private:
/**
* An indirection so that we don't need to refer to global settings
* in headers.
*/
bool getDefaultRequireSigs();
public:
Setting<bool> requireSigs{
this,
settings.requireSigs,
getDefaultRequireSigs(),
"require-sigs",
"Whether store paths copied into this store should have a trusted signature."};

1
src/libstore/include/nix/store/meson.build
View file

@ -12,6 +12,7 @@ config_pub_h = configure_file(
headers = [ config_pub_h ] + files(
'binary-cache-store.hh',
'build-result.hh',
'build/derivation-builder.hh',
'build/derivation-building-goal.hh',
'build/derivation-building-misc.hh',
'build/derivation-goal.hh',

7
src/libstore/include/nix/store/restricted-store.hh
View file

@ -1,10 +1,13 @@
#pragma once
///@file
#include "nix/store/local-store.hh"
#include "nix/store/store-api.hh"
namespace nix {
class LocalStore;
struct LocalStoreConfig;
/**
* A restricted store has a pointer to one of these, which manages the
* restrictions that are in place.
@ -55,6 +58,6 @@ struct RestrictionContext
/**
* Create a shared pointer to a restricted store.
*/
ref<Store> makeRestrictedStore(ref<LocalStore::Config> config, ref<LocalStore> next, RestrictionContext & context);
ref<Store> makeRestrictedStore(ref<LocalStoreConfig> config, ref<LocalStore> next, RestrictionContext & context);
} // namespace nix

13
src/libstore/include/nix/store/store-api.hh
View file

@ -8,7 +8,6 @@
#include "nix/util/serialise.hh"
#include "nix/util/lru-cache.hh"
#include "nix/util/sync.hh"
#include "nix/store/globals.hh"
#include "nix/util/configuration.hh"
#include "nix/store/path-info.hh"
#include "nix/util/repair-flag.hh"
@ -89,9 +88,19 @@ struct StoreConfigBase : Config
{
using Config::Config;
private:
/**
* An indirection so that we don't need to refer to global settings
* in headers.
*/
static Path getDefaultNixStoreDir();
public:
const PathSetting storeDir_{
this,
settings.nixStore,
getDefaultNixStoreDir(),
"store",
R"(
Logical location of the Nix store, usually

1
src/libstore/include/nix/store/store-dir-config.hh
View file

@ -3,7 +3,6 @@
#include "nix/store/path.hh"
#include "nix/util/hash.hh"
#include "nix/store/content-address.hh"
#include "nix/store/globals.hh"
#include "nix/util/configuration.hh"
#include <map>

9
src/libstore/include/nix/store/store-open.hh
View file

@ -30,9 +30,12 @@ ref<Store> openStore(StoreReference && storeURI);
* Opens the store at `uri`, where `uri` is in the format expected by
* `StoreReference::parse`
*/
ref<Store> openStore(
const std::string & uri = settings.storeUri.get(),
const StoreReference::Params & extraParams = StoreReference::Params());
ref<Store> openStore(const std::string & uri, const StoreReference::Params & extraParams = StoreReference::Params());
/**
* Short-hand which opens the default store, according to global settings
*/
ref<Store> openStore();
/**
* @return the default substituter stores, defined by the

1
src/libstore/legacy-ssh-store.cc
View file

@ -13,6 +13,7 @@
#include "nix/store/derivations.hh"
#include "nix/util/callback.hh"
#include "nix/store/store-registration.hh"
#include "nix/store/globals.hh"
namespace nix {

10
src/libstore/local-fs-store.cc
View file

@ -8,6 +8,16 @@
namespace nix {
Path LocalFSStoreConfig::getDefaultStateDir()
{
return settings.nixStateDir;
}
Path LocalFSStoreConfig::getDefaultLogDir()
{
return settings.nixLogDir;
}
LocalFSStoreConfig::LocalFSStoreConfig(PathView rootDir, const Params & params)
: StoreConfig(params)
// Default `?root` from `rootDir` if non set

5
src/libstore/local-store.cc
View file

@ -86,6 +86,11 @@ ref<Store> LocalStore::Config::openStore() const
return make_ref<LocalStore>(ref{shared_from_this()});
}
bool LocalStoreConfig::getDefaultRequireSigs()
{
return settings.requireSigs;
}
struct LocalStore::State::Stmts
{
/* Some precompiled SQLite statements. */

1
src/libstore/profiles.cc
View file

@ -1,5 +1,6 @@
#include "nix/store/profiles.hh"
#include "nix/util/signals.hh"
#include "nix/store/globals.hh"
#include "nix/store/store-api.hh"
#include "nix/store/local-fs-store.hh"
#include "nix/util/users.hh"

1
src/libstore/restricted-store.cc
View file

@ -2,6 +2,7 @@
#include "nix/store/build-result.hh"
#include "nix/util/callback.hh"
#include "nix/store/realisation.hh"
#include "nix/store/local-store.hh"
namespace nix {

5
src/libstore/store-api.cc
View file

@ -27,6 +27,11 @@ using json = nlohmann::json;
namespace nix {
Path StoreConfigBase::getDefaultNixStoreDir()
{
return settings.nixStore;
}
StoreConfig::StoreConfig(const Params & params)
: StoreConfigBase(params)
, StoreDirConfig{storeDir_}

6
src/libstore/store-registration.cc
View file

@ -2,9 +2,15 @@
#include "nix/store/store-open.hh"
#include "nix/store/local-store.hh"
#include "nix/store/uds-remote-store.hh"
#include "nix/store/globals.hh"
namespace nix {
ref<Store> openStore()
{
return openStore(settings.storeUri.get());
}
ref<Store> openStore(const std::string & uri, const Store::Config::Params & extraParams)
{
return openStore(StoreReference::parse(uri, extraParams));

1
src/libstore/uds-remote-store.cc
View file

@ -2,6 +2,7 @@
#include "nix/util/unix-domain-socket.hh"
#include "nix/store/worker-protocol.hh"
#include "nix/store/store-registration.hh"
#include "nix/store/globals.hh"
#include <sys/types.h>
#include <sys/stat.h>

2
src/libstore/unix/build/chroot-derivation-builder.cc
View file

@ -135,7 +135,7 @@ struct ChrootDerivationBuilder : virtual DerivationBuilderImpl
for (auto & i : inputPaths) {
auto p = store.printStorePath(i);
pathsInChroot.insert_or_assign(p, store.toRealPath(p));
pathsInChroot.insert_or_assign(p, ChrootPath{.source = store.toRealPath(p)});
}
/* If we're repairing, checking or rebuilding part of a

2
src/libstore/unix/build/darwin-derivation-builder.cc
View file

@ -69,7 +69,7 @@ struct DarwinDerivationBuilder : DerivationBuilderImpl
/* Add all our input paths to the chroot */
for (auto & i : inputPaths) {
auto p = store.printStorePath(i);
pathsInChroot.insert_or_assign(p, p);
pathsInChroot.insert_or_assign(p, ChrootPath{.source = p});
}
/* Violations will go to the syslog if you set this. Unfortunately the destination does not appear to be

47
src/libstore/unix/build/derivation-builder.cc
View file

@ -15,6 +15,8 @@
#include "nix/store/posix-fs-canonicalise.hh"
#include "nix/util/posix-source-accessor.hh"
#include "nix/store/restricted-store.hh"
#include "nix/store/user-lock.hh"
#include "nix/store/globals.hh"
#include <queue>
@ -106,23 +108,6 @@ protected:
*/
const DerivationType derivationType;
/**
* Stuff we need to pass to initChild().
*/
struct ChrootPath
{
Path source;
bool optional;
ChrootPath(Path source = "", bool optional = false)
: source(source)
, optional(optional)
{
}
};
typedef std::map<Path, ChrootPath> PathsInChroot; // maps target path to source path
typedef StringMap Environment;
Environment env;
@ -870,30 +855,16 @@ void DerivationBuilderImpl::startBuilder()
processSandboxSetupMessages();
}
DerivationBuilderImpl::PathsInChroot DerivationBuilderImpl::getPathsInSandbox()
PathsInChroot DerivationBuilderImpl::getPathsInSandbox()
{
PathsInChroot pathsInChroot;
/* Allow a user-configurable set of directories from the
host file system. */
for (auto i : settings.sandboxPaths.get()) {
if (i.empty())
continue;
bool optional = false;
if (i[i.size() - 1] == '?') {
optional = true;
i.pop_back();
}
size_t p = i.find('=');
if (p == std::string::npos)
pathsInChroot[i] = {i, optional};
else
pathsInChroot[i.substr(0, p)] = {i.substr(p + 1), optional};
}
PathsInChroot pathsInChroot = settings.sandboxPaths.get();
if (hasPrefix(store.storeDir, tmpDirInSandbox())) {
throw Error("`sandbox-build-dir` must not contain the storeDir");
}
pathsInChroot[tmpDirInSandbox()] = tmpDir;
pathsInChroot[tmpDirInSandbox()] = {.source = tmpDir};
/* Add the closure of store paths to the chroot. */
StorePathSet closure;
@ -908,7 +879,7 @@ DerivationBuilderImpl::PathsInChroot DerivationBuilderImpl::getPathsInSandbox()
}
for (auto & i : closure) {
auto p = store.printStorePath(i);
pathsInChroot.insert_or_assign(p, p);
pathsInChroot.insert_or_assign(p, ChrootPath{.source = p});
}
PathSet allowedPaths = settings.allowedImpureHostPrefixes;
@ -964,9 +935,9 @@ DerivationBuilderImpl::PathsInChroot DerivationBuilderImpl::getPathsInSandbox()
} else {
auto p = line.find('=');
if (p == std::string::npos)
pathsInChroot[line] = line;
pathsInChroot[line] = {.source = line};
else
pathsInChroot[line.substr(0, p)] = line.substr(p + 1);
pathsInChroot[line.substr(0, p)] = {.source = line.substr(p + 1)};
}
}
}

1
src/libstore/unix/include/nix/store/meson.build
View file

@ -2,7 +2,6 @@ include_dirs += include_directories('../..')
headers += files(
'build/child.hh',
'build/derivation-builder.hh',
'build/hook-instance.hh',
'user-lock.hh',
)

1
src/nix/build-remote/build-remote.cc
View file

@ -22,6 +22,7 @@
#include "nix/store/local-store.hh"
#include "nix/cmd/legacy.hh"
#include "nix/util/experimental-features.hh"
#include "nix/store/globals.hh"
using namespace nix;
using std::cin;

1
src/nix/bundle.cc
View file

@ -5,6 +5,7 @@
#include "nix/store/store-api.hh"
#include "nix/store/local-fs-store.hh"
#include "nix/expr/eval-inline.hh"
#include "nix/store/globals.hh"
namespace nix::fs {
using namespace std::filesystem;

1
src/nix/config-check.cc
View file

@ -9,6 +9,7 @@
#include "nix/store/local-fs-store.hh"
#include "nix/store/worker-protocol.hh"
#include "nix/util/executable-path.hh"
#include "nix/store/globals.hh"
namespace nix::fs {
using namespace std::filesystem;

1
src/nix/develop.cc
View file

@ -5,6 +5,7 @@
#include "nix/main/common-args.hh"
#include "nix/main/shared.hh"
#include "nix/store/store-api.hh"
#include "nix/store/globals.hh"
#include "nix/store/outputs-spec.hh"
#include "nix/store/derivations.hh"

1
src/nix/env.cc
View file

@ -6,6 +6,7 @@
#include "run.hh"
#include "nix/util/strings.hh"
#include "nix/util/executable-path.hh"
#include "nix/util/environment-variables.hh"
using namespace nix;

5
src/nix/flake.cc
View file

@ -1,4 +1,3 @@
#include "flake-command.hh"
#include "nix/main/common-args.hh"
#include "nix/main/shared.hh"
#include "nix/expr/eval.hh"
@ -17,6 +16,7 @@
#include "nix/util/users.hh"
#include "nix/fetchers/fetch-to-store.hh"
#include "nix/store/local-fs-store.hh"
#include "nix/store/globals.hh"
#include <filesystem>
#include <nlohmann/json.hpp>
@ -24,6 +24,9 @@
#include "nix/util/strings-inline.hh"
// FIXME is this supposed to be private or not?
#include "flake-command.hh"
namespace nix::fs {
using namespace std::filesystem;
}

2
src/nix/formatter.cc
View file

@ -5,6 +5,8 @@
#include "nix/store/local-fs-store.hh"
#include "nix/cmd/installable-derived-path.hh"
#include "nix/util/environment-variables.hh"
#include "nix/store/globals.hh"
#include "run.hh"
using namespace nix;

1
src/nix/log.cc
View file

@ -1,6 +1,7 @@
#include "nix/cmd/command.hh"
#include "nix/main/common-args.hh"
#include "nix/main/shared.hh"
#include "nix/store/globals.hh"
#include "nix/store/store-open.hh"
#include "nix/store/log-store.hh"

2
src/nix/nix-store/nix-store.cc
View file

@ -12,7 +12,9 @@
#include "graphml.hh"
#include "nix/cmd/legacy.hh"
#include "nix/util/posix-source-accessor.hh"
#include "nix/store/globals.hh"
#include "nix/store/path-with-outputs.hh"
#include "man-pages.hh"
#ifndef _WIN32 // TODO implement on Windows or provide allowed-to-noop interface

1
src/nix/prefetch.cc
View file

@ -12,6 +12,7 @@
#include "nix/util/posix-source-accessor.hh"
#include "nix/cmd/misc-store-flags.hh"
#include "nix/util/terminal.hh"
#include "nix/util/environment-variables.hh"
#include "man-pages.hh"

2
src/nix/run.cc
View file

@ -11,6 +11,8 @@
#include "nix/util/source-accessor.hh"
#include "nix/expr/eval.hh"
#include "nix/util/util.hh"
#include "nix/store/globals.hh"
#include <filesystem>
#ifdef __linux__

1
src/nix/upgrade-nix.cc
View file

@ -8,6 +8,7 @@
#include "nix/expr/attr-path.hh"
#include "nix/store/names.hh"
#include "nix/util/executable-path.hh"
#include "nix/store/globals.hh"
#include "self-exe.hh"
using namespace nix;