mirror of
https://github.com/NixOS/nix.git
synced 2025-12-08 01:51:01 +01:00
94712c11db
Make instances for them that share code with `nix path-info`, but do a slightly different format without store paths containing store dirs (matching the other latest JSON formats). Progress on #13570. If we depend on the store dir, our JSON serializers/deserializers take extra arguements, and that interfaces with the likes of various frameworks for associating these with types (e.g. nlohmann in C++, Serde in Rust, and Aeson in Haskell). For now, `nix path-info` still uses the previous format, with store dirs. We may yet decide to "rip of the band-aid", and just switch it over, but that is left as a future PR.
254 lines
7.4 KiB
C++
254 lines
7.4 KiB
C++
#include <nlohmann/json.hpp>
|
|
|
|
#include "nix/store/path-info.hh"
|
|
#include "nix/store/store-api.hh"
|
|
#include "nix/util/json-utils.hh"
|
|
#include "nix/util/comparator.hh"
|
|
#include "nix/util/strings.hh"
|
|
|
|
namespace nix {
|
|
|
|
GENERATE_CMP_EXT(
|
|
,
|
|
std::weak_ordering,
|
|
UnkeyedValidPathInfo,
|
|
me->deriver,
|
|
me->narHash,
|
|
me->references,
|
|
me->registrationTime,
|
|
me->narSize,
|
|
// me->id,
|
|
me->ultimate,
|
|
me->sigs,
|
|
me->ca);
|
|
|
|
std::string ValidPathInfo::fingerprint(const StoreDirConfig & store) const
|
|
{
|
|
if (narSize == 0)
|
|
throw Error(
|
|
"cannot calculate fingerprint of path '%s' because its size is not known", store.printStorePath(path));
|
|
return "1;" + store.printStorePath(path) + ";" + narHash.to_string(HashFormat::Nix32, true) + ";"
|
|
+ std::to_string(narSize) + ";" + concatStringsSep(",", store.printStorePathSet(references));
|
|
}
|
|
|
|
void ValidPathInfo::sign(const Store & store, const Signer & signer)
|
|
{
|
|
sigs.insert(signer.signDetached(fingerprint(store)));
|
|
}
|
|
|
|
void ValidPathInfo::sign(const Store & store, const std::vector<std::unique_ptr<Signer>> & signers)
|
|
{
|
|
auto fingerprint = this->fingerprint(store);
|
|
for (auto & signer : signers) {
|
|
sigs.insert(signer->signDetached(fingerprint));
|
|
}
|
|
}
|
|
|
|
std::optional<ContentAddressWithReferences> ValidPathInfo::contentAddressWithReferences() const
|
|
{
|
|
if (!ca)
|
|
return std::nullopt;
|
|
|
|
switch (ca->method.raw) {
|
|
case ContentAddressMethod::Raw::Text: {
|
|
assert(references.count(path) == 0);
|
|
return TextInfo{
|
|
.hash = ca->hash,
|
|
.references = references,
|
|
};
|
|
}
|
|
|
|
case ContentAddressMethod::Raw::Flat:
|
|
case ContentAddressMethod::Raw::NixArchive:
|
|
case ContentAddressMethod::Raw::Git:
|
|
default: {
|
|
auto refs = references;
|
|
bool hasSelfReference = false;
|
|
if (refs.count(path)) {
|
|
hasSelfReference = true;
|
|
refs.erase(path);
|
|
}
|
|
return FixedOutputInfo{
|
|
.method = ca->method.getFileIngestionMethod(),
|
|
.hash = ca->hash,
|
|
.references =
|
|
{
|
|
.others = std::move(refs),
|
|
.self = hasSelfReference,
|
|
},
|
|
};
|
|
}
|
|
}
|
|
}
|
|
|
|
bool ValidPathInfo::isContentAddressed(const StoreDirConfig & store) const
|
|
{
|
|
auto fullCaOpt = contentAddressWithReferences();
|
|
|
|
if (!fullCaOpt)
|
|
return false;
|
|
|
|
auto caPath = store.makeFixedOutputPathFromCA(path.name(), *fullCaOpt);
|
|
|
|
bool res = caPath == path;
|
|
|
|
if (!res)
|
|
printError("warning: path '%s' claims to be content-addressed but isn't", store.printStorePath(path));
|
|
|
|
return res;
|
|
}
|
|
|
|
size_t ValidPathInfo::checkSignatures(const StoreDirConfig & store, const PublicKeys & publicKeys) const
|
|
{
|
|
if (isContentAddressed(store))
|
|
return maxSigs;
|
|
|
|
size_t good = 0;
|
|
for (auto & sig : sigs)
|
|
if (checkSignature(store, publicKeys, sig))
|
|
good++;
|
|
return good;
|
|
}
|
|
|
|
bool ValidPathInfo::checkSignature(
|
|
const StoreDirConfig & store, const PublicKeys & publicKeys, const std::string & sig) const
|
|
{
|
|
return verifyDetached(fingerprint(store), sig, publicKeys);
|
|
}
|
|
|
|
Strings ValidPathInfo::shortRefs() const
|
|
{
|
|
Strings refs;
|
|
for (auto & r : references)
|
|
refs.push_back(std::string(r.to_string()));
|
|
return refs;
|
|
}
|
|
|
|
ValidPathInfo ValidPathInfo::makeFromCA(
|
|
const StoreDirConfig & store, std::string_view name, ContentAddressWithReferences && ca, Hash narHash)
|
|
{
|
|
ValidPathInfo res{
|
|
store.makeFixedOutputPathFromCA(name, ca),
|
|
narHash,
|
|
};
|
|
res.ca = ContentAddress{
|
|
.method = ca.getMethod(),
|
|
.hash = ca.getHash(),
|
|
};
|
|
res.references = std::visit(
|
|
overloaded{
|
|
[&](TextInfo && ti) { return std::move(ti.references); },
|
|
[&](FixedOutputInfo && foi) {
|
|
auto references = std::move(foi.references.others);
|
|
if (foi.references.self)
|
|
references.insert(res.path);
|
|
return references;
|
|
},
|
|
},
|
|
std::move(ca).raw);
|
|
return res;
|
|
}
|
|
|
|
nlohmann::json UnkeyedValidPathInfo::toJSON(const StoreDirConfig * store, bool includeImpureInfo) const
|
|
{
|
|
using nlohmann::json;
|
|
|
|
auto jsonObject = json::object();
|
|
|
|
jsonObject["version"] = 2;
|
|
|
|
jsonObject["narHash"] = narHash;
|
|
jsonObject["narSize"] = narSize;
|
|
|
|
{
|
|
auto & jsonRefs = jsonObject["references"] = json::array();
|
|
for (auto & ref : references)
|
|
jsonRefs.emplace_back(store ? static_cast<json>(store->printStorePath(ref)) : static_cast<json>(ref));
|
|
}
|
|
|
|
jsonObject["ca"] = ca;
|
|
|
|
if (includeImpureInfo) {
|
|
jsonObject["deriver"] = deriver ? (store ? static_cast<json>(std::optional{store->printStorePath(*deriver)})
|
|
: static_cast<json>(std::optional{*deriver}))
|
|
: static_cast<json>(std::optional<StorePath>{});
|
|
|
|
jsonObject["registrationTime"] = registrationTime ? (std::optional{registrationTime}) : std::nullopt;
|
|
|
|
jsonObject["ultimate"] = ultimate;
|
|
|
|
auto & sigsObj = jsonObject["signatures"] = json::array();
|
|
for (auto & sig : sigs)
|
|
sigsObj.push_back(sig);
|
|
}
|
|
|
|
return jsonObject;
|
|
}
|
|
|
|
UnkeyedValidPathInfo UnkeyedValidPathInfo::fromJSON(const StoreDirConfig * store, const nlohmann::json & _json)
|
|
{
|
|
UnkeyedValidPathInfo res{
|
|
Hash(Hash::dummy),
|
|
};
|
|
|
|
auto & json = getObject(_json);
|
|
|
|
{
|
|
auto version = getUnsigned(valueAt(json, "version"));
|
|
if (version != 2)
|
|
throw Error("Unsupported path info JSON format version %d, only version 2 is currently supported", version);
|
|
}
|
|
|
|
res.narHash = valueAt(json, "narHash");
|
|
res.narSize = getUnsigned(valueAt(json, "narSize"));
|
|
|
|
try {
|
|
auto references = getStringList(valueAt(json, "references"));
|
|
for (auto & input : references)
|
|
res.references.insert(store ? store->parseStorePath(getString(input)) : static_cast<StorePath>(input));
|
|
} catch (Error & e) {
|
|
e.addTrace({}, "while reading key 'references'");
|
|
throw;
|
|
}
|
|
|
|
try {
|
|
res.ca = ptrToOwned<ContentAddress>(getNullable(valueAt(json, "ca")));
|
|
} catch (Error & e) {
|
|
e.addTrace({}, "while reading key 'ca'");
|
|
throw;
|
|
}
|
|
|
|
if (auto * rawDeriver0 = optionalValueAt(json, "deriver"))
|
|
if (auto * rawDeriver = getNullable(*rawDeriver0))
|
|
res.deriver = store ? store->parseStorePath(getString(*rawDeriver)) : static_cast<StorePath>(*rawDeriver);
|
|
|
|
if (auto * rawRegistrationTime0 = optionalValueAt(json, "registrationTime"))
|
|
if (auto * rawRegistrationTime = getNullable(*rawRegistrationTime0))
|
|
res.registrationTime = getInteger<time_t>(*rawRegistrationTime);
|
|
|
|
if (auto * rawUltimate = optionalValueAt(json, "ultimate"))
|
|
res.ultimate = getBoolean(*rawUltimate);
|
|
|
|
if (auto * rawSignatures = optionalValueAt(json, "signatures"))
|
|
res.sigs = getStringSet(*rawSignatures);
|
|
|
|
return res;
|
|
}
|
|
|
|
} // namespace nix
|
|
|
|
namespace nlohmann {
|
|
|
|
using namespace nix;
|
|
|
|
UnkeyedValidPathInfo adl_serializer<UnkeyedValidPathInfo>::from_json(const json & json)
|
|
{
|
|
return UnkeyedValidPathInfo::fromJSON(nullptr, json);
|
|
}
|
|
|
|
void adl_serializer<UnkeyedValidPathInfo>::to_json(json & json, const UnkeyedValidPathInfo & c)
|
|
{
|
|
json = c.toJSON(nullptr, true);
|
|
}
|
|
|
|
} // namespace nlohmann
|