mirror of
https://github.com/NixOS/nix.git
synced 2025-11-15 23:12:44 +01:00
cc24766fa6
For example, instead of doing
#include "nix/store-config.hh"
#include "nix/derived-path.hh"
Now do
#include "nix/store/config.hh"
#include "nix/store/derived-path.hh"
This was originally planned in the issue, and also recent requested by
Eelco.
Most of the change is purely mechanical. There is just one small
additional issue. See how, in the example above, we took this
opportunity to also turn `<comp>-config.hh` into `<comp>/config.hh`.
Well, there was already a `nix/util/config.{cc,hh}`. Even though there
is not a public configuration header for libutil (which also would be
called `nix/util/config.{cc,hh}`) that's still confusing, To avoid any
such confusion, we renamed that to `nix/util/configuration.{cc,hh}`.
Finally, note that the libflake headers already did this, so we didn't
need to do anything to them. We wouldn't want to mistakenly get
`nix/flake/flake/flake.hh`!
Progress on #7876
401 lines
11 KiB
C++
401 lines
11 KiB
C++
#include "nix/store/legacy-ssh-store.hh"
|
|
#include "nix/store/common-ssh-store-config.hh"
|
|
#include "nix/util/archive.hh"
|
|
#include "nix/util/pool.hh"
|
|
#include "nix/store/remote-store.hh"
|
|
#include "nix/store/serve-protocol.hh"
|
|
#include "nix/store/serve-protocol-connection.hh"
|
|
#include "nix/store/serve-protocol-impl.hh"
|
|
#include "nix/store/build-result.hh"
|
|
#include "nix/store/store-api.hh"
|
|
#include "nix/store/path-with-outputs.hh"
|
|
#include "nix/store/ssh.hh"
|
|
#include "nix/store/derivations.hh"
|
|
#include "nix/util/callback.hh"
|
|
|
|
namespace nix {
|
|
|
|
LegacySSHStoreConfig::LegacySSHStoreConfig(
|
|
std::string_view scheme,
|
|
std::string_view authority,
|
|
const Params & params)
|
|
: StoreConfig(params)
|
|
, CommonSSHStoreConfig(scheme, authority, params)
|
|
{
|
|
}
|
|
|
|
std::string LegacySSHStoreConfig::doc()
|
|
{
|
|
return
|
|
#include "legacy-ssh-store.md"
|
|
;
|
|
}
|
|
|
|
|
|
struct LegacySSHStore::Connection : public ServeProto::BasicClientConnection
|
|
{
|
|
std::unique_ptr<SSHMaster::Connection> sshConn;
|
|
bool good = true;
|
|
};
|
|
|
|
LegacySSHStore::LegacySSHStore(
|
|
std::string_view scheme,
|
|
std::string_view host,
|
|
const Params & params)
|
|
: StoreConfig(params)
|
|
, CommonSSHStoreConfig(scheme, host, params)
|
|
, LegacySSHStoreConfig(scheme, host, params)
|
|
, Store(params)
|
|
, connections(make_ref<Pool<Connection>>(
|
|
std::max(1, (int) maxConnections),
|
|
[this]() { return openConnection(); },
|
|
[](const ref<Connection> & r) { return r->good; }
|
|
))
|
|
, master(createSSHMaster(
|
|
// Use SSH master only if using more than 1 connection.
|
|
connections->capacity() > 1,
|
|
logFD))
|
|
{
|
|
}
|
|
|
|
|
|
ref<LegacySSHStore::Connection> LegacySSHStore::openConnection()
|
|
{
|
|
auto conn = make_ref<Connection>();
|
|
Strings command = remoteProgram.get();
|
|
command.push_back("--serve");
|
|
command.push_back("--write");
|
|
if (remoteStore.get() != "") {
|
|
command.push_back("--store");
|
|
command.push_back(remoteStore.get());
|
|
}
|
|
conn->sshConn = master.startCommand(std::move(command), std::list{extraSshArgs});
|
|
if (connPipeSize) {
|
|
conn->sshConn->trySetBufferSize(*connPipeSize);
|
|
}
|
|
conn->to = FdSink(conn->sshConn->in.get());
|
|
conn->from = FdSource(conn->sshConn->out.get());
|
|
|
|
StringSink saved;
|
|
TeeSource tee(conn->from, saved);
|
|
try {
|
|
conn->remoteVersion = ServeProto::BasicClientConnection::handshake(
|
|
conn->to, tee, SERVE_PROTOCOL_VERSION, host);
|
|
} catch (SerialisationError & e) {
|
|
// in.close(): Don't let the remote block on us not writing.
|
|
conn->sshConn->in.close();
|
|
{
|
|
NullSink nullSink;
|
|
tee.drainInto(nullSink);
|
|
}
|
|
throw Error("'nix-store --serve' protocol mismatch from '%s', got '%s'",
|
|
host, chomp(saved.s));
|
|
} catch (EndOfFile & e) {
|
|
throw Error("cannot connect to '%1%'", host);
|
|
}
|
|
|
|
return conn;
|
|
};
|
|
|
|
|
|
std::string LegacySSHStore::getUri()
|
|
{
|
|
return *uriSchemes().begin() + "://" + host;
|
|
}
|
|
|
|
std::map<StorePath, UnkeyedValidPathInfo> LegacySSHStore::queryPathInfosUncached(
|
|
const StorePathSet & paths)
|
|
{
|
|
auto conn(connections->get());
|
|
|
|
/* No longer support missing NAR hash */
|
|
assert(GET_PROTOCOL_MINOR(conn->remoteVersion) >= 4);
|
|
|
|
debug("querying remote host '%s' for info on '%s'", host, concatStringsSep(", ", printStorePathSet(paths)));
|
|
|
|
auto infos = conn->queryPathInfos(*this, paths);
|
|
|
|
for (const auto & [_, info] : infos) {
|
|
if (info.narHash == Hash::dummy)
|
|
throw Error("NAR hash is now mandatory");
|
|
}
|
|
|
|
return infos;
|
|
}
|
|
|
|
void LegacySSHStore::queryPathInfoUncached(const StorePath & path,
|
|
Callback<std::shared_ptr<const ValidPathInfo>> callback) noexcept
|
|
{
|
|
try {
|
|
auto infos = queryPathInfosUncached({path});
|
|
|
|
switch (infos.size()) {
|
|
case 0:
|
|
return callback(nullptr);
|
|
case 1: {
|
|
auto & [path2, info] = *infos.begin();
|
|
|
|
assert(path == path2);
|
|
return callback(std::make_shared<ValidPathInfo>(
|
|
std::move(path),
|
|
std::move(info)
|
|
));
|
|
}
|
|
default:
|
|
throw Error("More path infos returned than queried");
|
|
}
|
|
} catch (...) { callback.rethrow(); }
|
|
}
|
|
|
|
|
|
void LegacySSHStore::addToStore(const ValidPathInfo & info, Source & source,
|
|
RepairFlag repair, CheckSigsFlag checkSigs)
|
|
{
|
|
debug("adding path '%s' to remote host '%s'", printStorePath(info.path), host);
|
|
|
|
auto conn(connections->get());
|
|
|
|
if (GET_PROTOCOL_MINOR(conn->remoteVersion) >= 5) {
|
|
|
|
conn->to
|
|
<< ServeProto::Command::AddToStoreNar
|
|
<< printStorePath(info.path)
|
|
<< (info.deriver ? printStorePath(*info.deriver) : "")
|
|
<< info.narHash.to_string(HashFormat::Base16, false);
|
|
ServeProto::write(*this, *conn, info.references);
|
|
conn->to
|
|
<< info.registrationTime
|
|
<< info.narSize
|
|
<< info.ultimate
|
|
<< info.sigs
|
|
<< renderContentAddress(info.ca);
|
|
try {
|
|
copyNAR(source, conn->to);
|
|
} catch (...) {
|
|
conn->good = false;
|
|
throw;
|
|
}
|
|
conn->to.flush();
|
|
|
|
if (readInt(conn->from) != 1)
|
|
throw Error("failed to add path '%s' to remote host '%s'", printStorePath(info.path), host);
|
|
|
|
} else {
|
|
|
|
conn->importPaths(*this, [&](Sink & sink) {
|
|
try {
|
|
copyNAR(source, sink);
|
|
} catch (...) {
|
|
conn->good = false;
|
|
throw;
|
|
}
|
|
sink
|
|
<< exportMagic
|
|
<< printStorePath(info.path);
|
|
ServeProto::write(*this, *conn, info.references);
|
|
sink
|
|
<< (info.deriver ? printStorePath(*info.deriver) : "")
|
|
<< 0
|
|
<< 0;
|
|
});
|
|
|
|
}
|
|
}
|
|
|
|
|
|
void LegacySSHStore::narFromPath(const StorePath & path, Sink & sink)
|
|
{
|
|
narFromPath(path, [&](auto & source) {
|
|
copyNAR(source, sink);
|
|
});
|
|
}
|
|
|
|
|
|
void LegacySSHStore::narFromPath(const StorePath & path, std::function<void(Source &)> fun)
|
|
{
|
|
auto conn(connections->get());
|
|
conn->narFromPath(*this, path, fun);
|
|
}
|
|
|
|
|
|
static ServeProto::BuildOptions buildSettings()
|
|
{
|
|
return {
|
|
.maxSilentTime = settings.maxSilentTime,
|
|
.buildTimeout = settings.buildTimeout,
|
|
.maxLogSize = settings.maxLogSize,
|
|
.nrRepeats = 0, // buildRepeat hasn't worked for ages anyway
|
|
.enforceDeterminism = 0,
|
|
.keepFailed = settings.keepFailed,
|
|
};
|
|
}
|
|
|
|
|
|
BuildResult LegacySSHStore::buildDerivation(const StorePath & drvPath, const BasicDerivation & drv,
|
|
BuildMode buildMode)
|
|
{
|
|
auto conn(connections->get());
|
|
|
|
conn->putBuildDerivationRequest(*this, drvPath, drv, buildSettings());
|
|
|
|
return conn->getBuildDerivationResponse(*this);
|
|
}
|
|
|
|
std::function<BuildResult()> LegacySSHStore::buildDerivationAsync(
|
|
const StorePath & drvPath, const BasicDerivation & drv,
|
|
const ServeProto::BuildOptions & options)
|
|
{
|
|
// Until we have C++23 std::move_only_function
|
|
auto conn = std::make_shared<Pool<Connection>::Handle>(connections->get());
|
|
(*conn)->putBuildDerivationRequest(*this, drvPath, drv, options);
|
|
|
|
return [this,conn]() -> BuildResult {
|
|
return (*conn)->getBuildDerivationResponse(*this);
|
|
};
|
|
}
|
|
|
|
|
|
void LegacySSHStore::buildPaths(const std::vector<DerivedPath> & drvPaths, BuildMode buildMode, std::shared_ptr<Store> evalStore)
|
|
{
|
|
if (evalStore && evalStore.get() != this)
|
|
throw Error("building on an SSH store is incompatible with '--eval-store'");
|
|
|
|
auto conn(connections->get());
|
|
|
|
conn->to << ServeProto::Command::BuildPaths;
|
|
Strings ss;
|
|
for (auto & p : drvPaths) {
|
|
auto sOrDrvPath = StorePathWithOutputs::tryFromDerivedPath(p);
|
|
std::visit(overloaded {
|
|
[&](const StorePathWithOutputs & s) {
|
|
ss.push_back(s.to_string(*this));
|
|
},
|
|
[&](const StorePath & drvPath) {
|
|
throw Error("wanted to fetch '%s' but the legacy ssh protocol doesn't support merely substituting drv files via the build paths command. It would build them instead. Try using ssh-ng://", printStorePath(drvPath));
|
|
},
|
|
[&](std::monostate) {
|
|
throw Error("wanted build derivation that is itself a build product, but the legacy ssh protocol doesn't support that. Try using ssh-ng://");
|
|
},
|
|
}, sOrDrvPath);
|
|
}
|
|
conn->to << ss;
|
|
|
|
ServeProto::write(*this, *conn, buildSettings());
|
|
|
|
conn->to.flush();
|
|
|
|
BuildResult result;
|
|
result.status = (BuildResult::Status) readInt(conn->from);
|
|
|
|
if (!result.success()) {
|
|
conn->from >> result.errorMsg;
|
|
throw Error(result.status, result.errorMsg);
|
|
}
|
|
}
|
|
|
|
|
|
void LegacySSHStore::computeFSClosure(const StorePathSet & paths,
|
|
StorePathSet & out, bool flipDirection,
|
|
bool includeOutputs, bool includeDerivers)
|
|
{
|
|
if (flipDirection || includeDerivers) {
|
|
Store::computeFSClosure(paths, out, flipDirection, includeOutputs, includeDerivers);
|
|
return;
|
|
}
|
|
|
|
auto conn(connections->get());
|
|
|
|
conn->to
|
|
<< ServeProto::Command::QueryClosure
|
|
<< includeOutputs;
|
|
ServeProto::write(*this, *conn, paths);
|
|
conn->to.flush();
|
|
|
|
for (auto & i : ServeProto::Serialise<StorePathSet>::read(*this, *conn))
|
|
out.insert(i);
|
|
}
|
|
|
|
|
|
StorePathSet LegacySSHStore::queryValidPaths(const StorePathSet & paths,
|
|
SubstituteFlag maybeSubstitute)
|
|
{
|
|
auto conn(connections->get());
|
|
return conn->queryValidPaths(*this,
|
|
false, paths, maybeSubstitute);
|
|
}
|
|
|
|
|
|
StorePathSet LegacySSHStore::queryValidPaths(const StorePathSet & paths,
|
|
bool lock, SubstituteFlag maybeSubstitute)
|
|
{
|
|
auto conn(connections->get());
|
|
return conn->queryValidPaths(*this,
|
|
lock, paths, maybeSubstitute);
|
|
}
|
|
|
|
|
|
void LegacySSHStore::addMultipleToStoreLegacy(Store & srcStore, const StorePathSet & paths)
|
|
{
|
|
auto conn(connections->get());
|
|
conn->to << ServeProto::Command::ImportPaths;
|
|
try {
|
|
srcStore.exportPaths(paths, conn->to);
|
|
} catch (...) {
|
|
conn->good = false;
|
|
throw;
|
|
}
|
|
conn->to.flush();
|
|
|
|
if (readInt(conn->from) != 1)
|
|
throw Error("remote machine failed to import closure");
|
|
}
|
|
|
|
|
|
void LegacySSHStore::connect()
|
|
{
|
|
auto conn(connections->get());
|
|
}
|
|
|
|
|
|
unsigned int LegacySSHStore::getProtocol()
|
|
{
|
|
auto conn(connections->get());
|
|
return conn->remoteVersion;
|
|
}
|
|
|
|
|
|
pid_t LegacySSHStore::getConnectionPid()
|
|
{
|
|
auto conn(connections->get());
|
|
#ifndef _WIN32
|
|
return conn->sshConn->sshPid;
|
|
#else
|
|
// TODO: Implement
|
|
return 0;
|
|
#endif
|
|
}
|
|
|
|
|
|
LegacySSHStore::ConnectionStats LegacySSHStore::getConnectionStats()
|
|
{
|
|
auto conn(connections->get());
|
|
return {
|
|
.bytesReceived = conn->from.read,
|
|
.bytesSent = conn->to.written,
|
|
};
|
|
}
|
|
|
|
|
|
/**
|
|
* The legacy ssh protocol doesn't support checking for trusted-user.
|
|
* Try using ssh-ng:// instead if you want to know.
|
|
*/
|
|
std::optional<TrustedFlag> isTrustedClient()
|
|
{
|
|
return std::nullopt;
|
|
}
|
|
|
|
|
|
static RegisterStoreImplementation<LegacySSHStore, LegacySSHStoreConfig> regLegacySSHStore;
|
|
|
|
}
|