NixOS/nix
NixOS/nix
1
0
Fork 0
mirror of https://github.com/NixOS/nix synced 2024-09-20 11:11:03 -04:00
Code Activity
nix/src/libstore/remote-store.cc

606 lines
17 KiB
C++
Raw Normal View History

* When NIX_REMOTE is set to "slave", fork off nix-worker in slave mode. Presumably nix-worker would be setuid to the Nix store user. The worker performs all operations on the Nix store and database, so the caller can be completely unprivileged. This is already much more secure than the old setuid scheme, since the worker doesn't need to do Nix expression evaluation and so on. Most importantly, this means that it doesn't need to access any user files, with all resulting security risks; it only performs pure store operations. Once this works, it is easy to move to a daemon model that forks off a worker for connections established through a Unix domain socket. That would be even more secure.
2006-11-30 14:54:43 -05:00
#include "serialise.hh"
#include "util.hh"
* Oops.
2006-11-30 13:35:50 -05:00
#include "remote-store.hh"
* First remote operation: isValidPath().
2006-11-30 15:13:59 -05:00
#include "worker-protocol.hh"
* More operations.
2006-11-30 15:45:20 -05:00
#include "archive.hh"
Run the daemon worker on the same CPU as the client On a system with multiple CPUs, running Nix operations through the daemon is significantly slower than "direct" mode: $ NIX_REMOTE= nix-instantiate '<nixos>' -A system real 0m0.974s user 0m0.875s sys 0m0.088s $ NIX_REMOTE=daemon nix-instantiate '<nixos>' -A system real 0m2.118s user 0m1.463s sys 0m0.218s The main reason seems to be that the client and the worker get moved to a different CPU after every call to the worker. This patch adds a hack to lock them to the same CPU. With this, the overhead of going through the daemon is very small: $ NIX_REMOTE=daemon nix-instantiate '<nixos>' -A system real 0m1.074s user 0m0.809s sys 0m0.098s
2013-08-07 07:51:55 -04:00
#include "affinity.hh"
* Install the worker in bindir, not libexecdir. * Allow the worker path to be overriden through the NIX_WORKER environment variable.
2006-12-04 08:09:16 -05:00
#include "globals.hh"
Implement buildDerivation() via the daemon
2015-09-03 06:56:59 -04:00
#include "derivations.hh"
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
#include "pool.hh"
* Oops.
2006-11-30 13:35:50 -05:00
* Some hackery to propagate the worker's stderr and exceptions to the client.
2006-12-02 21:08:13 -05:00
#include <sys/types.h>
#include <sys/stat.h>
* Use a Unix domain socket instead of pipes.
2006-12-02 21:36:44 -05:00
#include <sys/socket.h>
* When NIX_REMOTE=daemon, connect to /nix/var/nix/daemon.socket instead of forking a worker.
2006-12-04 09:21:39 -05:00
#include <sys/un.h>
Explicitly include required C headers
2014-12-09 06:16:27 -05:00
#include <errno.h>
* Some hackery to propagate the worker's stderr and exceptions to the client.
2006-12-02 21:08:13 -05:00
#include <fcntl.h>
* When NIX_REMOTE is set to "slave", fork off nix-worker in slave mode. Presumably nix-worker would be setuid to the Nix store user. The worker performs all operations on the Nix store and database, so the caller can be completely unprivileged. This is already much more secure than the old setuid scheme, since the worker doesn't need to do Nix expression evaluation and so on. Most importantly, this means that it doesn't need to access any user files, with all resulting security risks; it only performs pure store operations. Once this works, it is easy to move to a daemon model that forks off a worker for connections established through a Unix domain socket. That would be even more secure.
2006-11-30 14:54:43 -05:00
#include <unistd.h>
Pool<T>: Allow a maximum pool size
2016-02-23 10:40:16 -05:00
Include <cstring> to ensure that strcpy(), strlen(), and memset() are declared. An "using namespace std" was added locally in those functions that refer to names from <cstring>. That is not pretty, but it's a very portable solution, because strcpy() and friends will be found in both the 'std' and in the global namespace.
2010-06-24 13:51:04 -04:00
#include <cstring>
* When NIX_REMOTE is set to "slave", fork off nix-worker in slave mode. Presumably nix-worker would be setuid to the Nix store user. The worker performs all operations on the Nix store and database, so the caller can be completely unprivileged. This is already much more secure than the old setuid scheme, since the worker doesn't need to do Nix expression evaluation and so on. Most importantly, this means that it doesn't need to access any user files, with all resulting security risks; it only performs pure store operations. Once this works, it is easy to move to a daemon model that forks off a worker for connections established through a Unix domain socket. That would be even more secure.
2006-11-30 14:54:43 -05:00
* Oops.
2006-11-30 13:35:50 -05:00
namespace nix {
* The determination of the root set should be made by the privileged process, so forward the operation. * Spam the user about GC misconfigurations (NIX-71). * findRoots: skip all roots that are unreadable - the warnings with which we spam the user should be enough.
2006-12-04 20:31:45 -05:00
Path readStorePath(Source & from)
{
Path path = readString(from);
assertStorePath(path);
return path;
}
* importPath() -> importPaths(). Because of buffering of the input stream it's now necessary for the daemon to process the entire sequence of exported paths, rather than letting the client do it.
2011-12-16 17:31:25 -05:00
template<class T> T readStorePaths(Source & from)
* The determination of the root set should be made by the privileged process, so forward the operation. * Spam the user about GC misconfigurations (NIX-71). * findRoots: skip all roots that are unreadable - the warnings with which we spam the user should be enough.
2006-12-04 20:31:45 -05:00
{
* importPath() -> importPaths(). Because of buffering of the input stream it's now necessary for the daemon to process the entire sequence of exported paths, rather than letting the client do it.
2011-12-16 17:31:25 -05:00
T paths = readStrings<T>(from);
OCD: foreach -> C++11 ranged for
2015-07-17 13:24:28 -04:00
for (auto & i : paths) assertStorePath(i);
* The determination of the root set should be made by the privileged process, so forward the operation. * Spam the user about GC misconfigurations (NIX-71). * findRoots: skip all roots that are unreadable - the warnings with which we spam the user should be enough.
2006-12-04 20:31:45 -05:00
return paths;
}
* importPath() -> importPaths(). Because of buffering of the input stream it's now necessary for the daemon to process the entire sequence of exported paths, rather than letting the client do it.
2011-12-16 17:31:25 -05:00
template PathSet readStorePaths(Source & from);
* The determination of the root set should be made by the privileged process, so forward the operation. * Spam the user about GC misconfigurations (NIX-71). * findRoots: skip all roots that are unreadable - the warnings with which we spam the user should be enough.
2006-12-04 20:31:45 -05:00
Pool<T>: Allow a maximum pool size
2016-02-23 10:40:16 -05:00
RemoteStore::RemoteStore(size_t maxConnections)
: connections(make_ref<Pool<Connection>>(maxConnections, [this]() { return openConnection(); }))
* Refactoring.
2006-12-04 08:28:14 -05:00
{
* Open the connection to the daemon lazily (on demand) so that read-only operations (like nix-env -qa) work properly when the daemon isn't running.
2008-12-11 09:30:25 -05:00
}
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
ref<RemoteStore::Connection> RemoteStore::openConnection(bool reserveSpace)
* Open the connection to the daemon lazily (on demand) so that read-only operations (like nix-env -qa) work properly when the daemon isn't running.
2008-12-11 09:30:25 -05:00
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn = make_ref<Connection>();
* Open the connection to the daemon lazily (on demand) so that read-only operations (like nix-env -qa) work properly when the daemon isn't running.
2008-12-11 09:30:25 -05:00
Use the daemon when we don't have write access to the Nix database
2016-01-31 04:19:14 -05:00
/* Connect to a daemon that does the privileged work for us. */
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->fd = socket(PF_UNIX, SOCK_STREAM, 0);
if (conn->fd == -1)
* When NIX_REMOTE=daemon, connect to /nix/var/nix/daemon.socket instead of forking a worker.
2006-12-04 09:21:39 -05:00
throw SysError("cannot create Unix domain socket");
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
closeOnExec(conn->fd);
* When NIX_REMOTE=daemon, connect to /nix/var/nix/daemon.socket instead of forking a worker.
2006-12-04 09:21:39 -05:00
Revert "Prevent config.h from being clobbered" This reverts commit 28bba8c44f484eae38e8a15dcec73cfa999156f6.
2013-03-07 19:24:59 -05:00
string socketPath = settings.nixDaemonSocketFile;
* When NIX_REMOTE=daemon, connect to /nix/var/nix/daemon.socket instead of forking a worker.
2006-12-04 09:21:39 -05:00
* sockaddr_un doesn't allow path names of more than 108 characters. This isn't usually a problem, except that it causes tests to fail when performed in a directory with a very long path name. So chdir to the socket directory and use a relative path name.
2008-04-09 01:57:01 -04:00
/* Urgh, sockaddr_un allows path names of only 108 characters. So
chdir to the socket directory so that we can pass a relative
path name. !!! this is probably a bad idea in multi-threaded
applications... */
AutoCloseFD fdPrevDir = open(".", O_RDONLY);
if (fdPrevDir == -1) throw SysError("couldn't open current directory");
Better error message
2014-12-13 10:54:40 -05:00
if (chdir(dirOf(socketPath).c_str()) == -1) throw SysError(format("couldn't change to directory of %1%") % socketPath);
* sockaddr_un doesn't allow path names of more than 108 characters. This isn't usually a problem, except that it causes tests to fail when performed in a directory with a very long path name. So chdir to the socket directory and use a relative path name.
2008-04-09 01:57:01 -04:00
Path socketPathRel = "./" + baseNameOf(socketPath);
Whitespace
2012-07-30 17:13:25 -04:00
* When NIX_REMOTE=daemon, connect to /nix/var/nix/daemon.socket instead of forking a worker.
2006-12-04 09:21:39 -05:00
struct sockaddr_un addr;
addr.sun_family = AF_UNIX;
* sockaddr_un doesn't allow path names of more than 108 characters. This isn't usually a problem, except that it causes tests to fail when performed in a directory with a very long path name. So chdir to the socket directory and use a relative path name.
2008-04-09 01:57:01 -04:00
if (socketPathRel.size() >= sizeof(addr.sun_path))
Use proper quotes everywhere
2014-08-20 11:00:17 -04:00
throw Error(format("socket path %1% is too long") % socketPathRel);
* sockaddr_un doesn't allow path names of more than 108 characters. This isn't usually a problem, except that it causes tests to fail when performed in a directory with a very long path name. So chdir to the socket directory and use a relative path name.
2008-04-09 01:57:01 -04:00
strcpy(addr.sun_path, socketPathRel.c_str());
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
if (connect(conn->fd, (struct sockaddr *) &addr, sizeof(addr)) == -1)
Use proper quotes everywhere
2014-08-20 11:00:17 -04:00
throw SysError(format("cannot connect to daemon at %1%") % socketPath);
* sockaddr_un doesn't allow path names of more than 108 characters. This isn't usually a problem, except that it causes tests to fail when performed in a directory with a very long path name. So chdir to the socket directory and use a relative path name.
2008-04-09 01:57:01 -04:00
if (fchdir(fdPrevDir) == -1)
throw SysError("couldn't change back to previous directory");
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->from.fd = conn->fd;
conn->to.fd = conn->fd;
/* Send the magic greeting, check for the reply. */
try {
conn->to << WORKER_MAGIC_1;
conn->to.flush();
unsigned int magic = readInt(conn->from);
if (magic != WORKER_MAGIC_2) throw Error("protocol mismatch");
conn->daemonVersion = readInt(conn->from);
if (GET_PROTOCOL_MAJOR(conn->daemonVersion) != GET_PROTOCOL_MAJOR(PROTOCOL_VERSION))
throw Error("Nix daemon protocol version not supported");
conn->to << PROTOCOL_VERSION;
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 14) {
int cpu = settings.lockCPU ? lockToCurrentCPU() : -1;
if (cpu != -1)
conn->to << 1 << cpu;
else
conn->to << 0;
}
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 11)
conn->to << reserveSpace;
conn->processStderr();
}
catch (Error & e) {
throw Error(format("cannot start daemon worker: %1%") % e.msg());
}
setOptions(conn);
return conn;
* Oops.
2006-11-30 13:35:50 -05:00
}
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
void RemoteStore::setOptions(ref<Connection> conn)
* Pass various options to the worker so that flags like -K or -j work in multi-user Nix (NIX-72). * Client/worker: exchange a protocol version number for future compatibility.
2007-09-18 05:11:20 -04:00
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << wopSetOptions
More cleanup
2015-07-19 19:16:16 -04:00
<< settings.keepFailed
<< settings.keepGoing
<< settings.tryFallback
<< verbosity
<< settings.maxBuildJobs
<< settings.maxSilentTime;
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 2)
conn->to << settings.useBuildHook;
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 4)
conn->to << settings.buildVerbosity
More cleanup
2015-07-19 19:16:16 -04:00
<< logType
<< settings.printBuildTrace;
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 6)
conn->to << settings.buildCores;
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 10)
conn->to << settings.useSubstitutes;
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 12) {
Pass all --option flags to the daemon
2012-07-31 18:19:44 -04:00
Settings::SettingsMap overrides = settings.getOverrides();
nix-daemon: Pass on the user's $SSH_AUTH_SOCK to the SSH substituter
2014-07-25 12:02:48 -04:00
if (overrides["ssh-auth-sock"] == "")
overrides["ssh-auth-sock"] = getEnv("SSH_AUTH_SOCK");
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << overrides.size();
More cleanup
2015-07-19 19:16:16 -04:00
for (auto & i : overrides)
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << i.first << i.second;
Pass all --option flags to the daemon
2012-07-31 18:19:44 -04:00
}
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->processStderr();
* Pass various options to the worker so that flags like -K or -j work in multi-user Nix (NIX-72). * Client/worker: exchange a protocol version number for future compatibility.
2007-09-18 05:11:20 -04:00
}
* Oops.
2006-11-30 13:35:50 -05:00
bool RemoteStore::isValidPath(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopIsValidPath << path;
conn->processStderr();
unsigned int reply = readInt(conn->from);
* First remote operation: isValidPath().
2006-11-30 15:13:59 -05:00
return reply != 0;
* Oops.
2006-11-30 13:35:50 -05:00
}
Add a function queryValidPaths() queryValidPaths() combines multiple calls to isValidPath() in one. This matters when using the Nix daemon because it reduces latency. For instance, on "nix-env -qas \*" it reduces execution time from 5.7s to 4.7s (which is indistinguishable from the non-daemon case).
2012-07-11 11:08:47 -04:00
PathSet RemoteStore::queryValidPaths(const PathSet & paths)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
if (GET_PROTOCOL_MINOR(conn->daemonVersion) < 12) {
Add a function queryValidPaths() queryValidPaths() combines multiple calls to isValidPath() in one. This matters when using the Nix daemon because it reduces latency. For instance, on "nix-env -qas \*" it reduces execution time from 5.7s to 4.7s (which is indistinguishable from the non-daemon case).
2012-07-11 11:08:47 -04:00
PathSet res;
OCD: foreach -> C++11 ranged for
2015-07-17 13:24:28 -04:00
for (auto & i : paths)
if (isValidPath(i)) res.insert(i);
Add a function queryValidPaths() queryValidPaths() combines multiple calls to isValidPath() in one. This matters when using the Nix daemon because it reduces latency. For instance, on "nix-env -qas \*" it reduces execution time from 5.7s to 4.7s (which is indistinguishable from the non-daemon case).
2012-07-11 11:08:47 -04:00
return res;
} else {
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << wopQueryValidPaths << paths;
conn->processStderr();
return readStorePaths<PathSet>(conn->from);
Add a function queryValidPaths() queryValidPaths() combines multiple calls to isValidPath() in one. This matters when using the Nix daemon because it reduces latency. For instance, on "nix-env -qas \*" it reduces execution time from 5.7s to 4.7s (which is indistinguishable from the non-daemon case).
2012-07-11 11:08:47 -04:00
}
}
Rename queryValidPaths() to queryAllValidPaths()
2012-07-11 10:49:04 -04:00
PathSet RemoteStore::queryAllValidPaths()
* nix-store --dump-db / --load-db to dump/load the Nix DB. * nix-store --register-validity: option to supply the content hash of each path. * Removed compatibility with Nix <= 0.7 stores.
2008-01-29 13:17:36 -05:00
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryAllValidPaths;
conn->processStderr();
return readStorePaths<PathSet>(conn->from);
* nix-store --dump-db / --load-db to dump/load the Nix DB. * nix-store --register-validity: option to supply the content hash of each path. * Removed compatibility with Nix <= 0.7 stores.
2008-01-29 13:17:36 -05:00
}
Replace hasSubstitutes() with querySubstitutablePaths() querySubstitutablePaths() takes a set of paths, so this greatly reduces daemon <-> client latency.
2012-07-11 17:52:18 -04:00
PathSet RemoteStore::querySubstitutablePaths(const PathSet & paths)
* More remote operations. * Added new operation hasSubstitutes(), which is more efficient than querySubstitutes().size() > 0.
2006-11-30 17:43:55 -05:00
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
if (GET_PROTOCOL_MINOR(conn->daemonVersion) < 12) {
Replace hasSubstitutes() with querySubstitutablePaths() querySubstitutablePaths() takes a set of paths, so this greatly reduces daemon <-> client latency.
2012-07-11 17:52:18 -04:00
PathSet res;
OCD: foreach -> C++11 ranged for
2015-07-17 13:24:28 -04:00
for (auto & i : paths) {
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << wopHasSubstitutes << i;
conn->processStderr();
if (readInt(conn->from)) res.insert(i);
Replace hasSubstitutes() with querySubstitutablePaths() querySubstitutablePaths() takes a set of paths, so this greatly reduces daemon <-> client latency.
2012-07-11 17:52:18 -04:00
}
return res;
} else {
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << wopQuerySubstitutablePaths << paths;
conn->processStderr();
return readStorePaths<PathSet>(conn->from);
Replace hasSubstitutes() with querySubstitutablePaths() querySubstitutablePaths() takes a set of paths, so this greatly reduces daemon <-> client latency.
2012-07-11 17:52:18 -04:00
}
* Oops.
2006-11-30 13:35:50 -05:00
}
download-from-binary-cache: parallelise fetching of NAR info files Getting substitute information using the binary cache substituter has non-trivial latency overhead. A package or NixOS system configuration can have hundreds of dependencies, and in the worst case (when the local info cache is empty) we have to do a separate HTTP request for each of these. If the ping time to the server is t, getting N info files will take tN seconds; e.g., with a ping time of 0.1s to nixos.org, sequentially downloading 1000 info files (a typical NixOS config) will take at least 100 seconds. To fix this problem, the binary cache substituter can now perform requests in parallel. This required changing the substituter interface to support a function querySubstitutablePathInfos() that queries multiple paths at the same time, and rewriting queryMissing() to take advantage of parallelism. (Due to local caching, parallelising queryMissing() is sufficient for most use cases, since it's almost always called before building a derivation and thus fills the local info cache.) For example, parallelism speeds up querying all 1056 paths in a particular NixOS system configuration from 116s to 2.6s. It works so well because the eccentricity of the top-level derivation in the dependency graph is only 9. So we only need 10 round-trips (when using an unlimited number of parallel connections) to get everything. Currently we do a maximum of 150 parallel connections to the server. Thus it's important that the binary cache server (e.g. nixos.org) has a high connection limit. Alternatively we could use HTTP pipelining, but WWW::Curl doesn't support it and libcurl has a hard-coded limit of 5 requests per pipeline.
2012-07-06 19:08:20 -04:00
void RemoteStore::querySubstitutablePathInfos(const PathSet & paths,
SubstitutablePathInfos & infos)
{
if (paths.empty()) return;
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
if (GET_PROTOCOL_MINOR(conn->daemonVersion) < 3) return;
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
if (GET_PROTOCOL_MINOR(conn->daemonVersion) < 12) {
Whitespace
2012-07-30 17:13:25 -04:00
OCD: foreach -> C++11 ranged for
2015-07-17 13:24:28 -04:00
for (auto & i : paths) {
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
SubstitutablePathInfo info;
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << wopQuerySubstitutablePathInfo << i;
conn->processStderr();
unsigned int reply = readInt(conn->from);
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
if (reply == 0) continue;
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
info.deriver = readString(conn->from);
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
if (info.deriver != "") assertStorePath(info.deriver);
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
info.references = readStorePaths<PathSet>(conn->from);
info.downloadSize = readLongLong(conn->from);
info.narSize = GET_PROTOCOL_MINOR(conn->daemonVersion) >= 7 ? readLongLong(conn->from) : 0;
OCD: foreach -> C++11 ranged for
2015-07-17 13:24:28 -04:00
infos[i] = info;
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
}
Whitespace
2012-07-30 17:13:25 -04:00
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
} else {
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << wopQuerySubstitutablePathInfos << paths;
conn->processStderr();
unsigned int count = readInt(conn->from);
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
for (unsigned int n = 0; n < count; n++) {
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
Path path = readStorePath(conn->from);
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
SubstitutablePathInfo & info(infos[path]);
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
info.deriver = readString(conn->from);
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
if (info.deriver != "") assertStorePath(info.deriver);
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
info.references = readStorePaths<PathSet>(conn->from);
info.downloadSize = readLongLong(conn->from);
info.narSize = readLongLong(conn->from);
Implement querySubstitutablePathInfos() in the daemon Also removed querySubstitutablePathInfo().
2012-07-11 10:43:24 -04:00
}
Whitespace
2012-07-30 17:13:25 -04:00
download-from-binary-cache: parallelise fetching of NAR info files Getting substitute information using the binary cache substituter has non-trivial latency overhead. A package or NixOS system configuration can have hundreds of dependencies, and in the worst case (when the local info cache is empty) we have to do a separate HTTP request for each of these. If the ping time to the server is t, getting N info files will take tN seconds; e.g., with a ping time of 0.1s to nixos.org, sequentially downloading 1000 info files (a typical NixOS config) will take at least 100 seconds. To fix this problem, the binary cache substituter can now perform requests in parallel. This required changing the substituter interface to support a function querySubstitutablePathInfos() that queries multiple paths at the same time, and rewriting queryMissing() to take advantage of parallelism. (Due to local caching, parallelising queryMissing() is sufficient for most use cases, since it's almost always called before building a derivation and thus fills the local info cache.) For example, parallelism speeds up querying all 1056 paths in a particular NixOS system configuration from 116s to 2.6s. It works so well because the eccentricity of the top-level derivation in the dependency graph is only 9. So we only need 10 round-trips (when using an unlimited number of parallel connections) to get everything. Currently we do a maximum of 150 parallel connections to the server. Thus it's important that the binary cache server (e.g. nixos.org) has a high connection limit. Alternatively we could use HTTP pipelining, but WWW::Curl doesn't support it and libcurl has a hard-coded limit of 5 requests per pipeline.
2012-07-06 19:08:20 -04:00
}
}
* Store the size of a store path in the database (to be precise, the size of the NAR serialisation of the path, i.e., `nix-store --dump PATH'). This is useful for Hydra.
2010-11-16 12:11:46 -05:00
ValidPathInfo RemoteStore::queryPathInfo(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryPathInfo << path;
conn->processStderr();
* Implement RemoteStore::queryPathInfo().
2010-11-17 07:08:01 -05:00
ValidPathInfo info;
info.path = path;
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
info.deriver = readString(conn->from);
* Implement RemoteStore::queryPathInfo().
2010-11-17 07:08:01 -05:00
if (info.deriver != "") assertStorePath(info.deriver);
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
info.narHash = parseHash(htSHA256, readString(conn->from));
info.references = readStorePaths<PathSet>(conn->from);
info.registrationTime = readInt(conn->from);
info.narSize = readLongLong(conn->from);
* Implement RemoteStore::queryPathInfo().
2010-11-17 07:08:01 -05:00
return info;
* Store the size of a store path in the database (to be precise, the size of the NAR serialisation of the path, i.e., `nix-store --dump PATH'). This is useful for Hydra.
2010-11-16 12:11:46 -05:00
}
* Oops.
2006-11-30 13:35:50 -05:00
Hash RemoteStore::queryPathHash(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryPathHash << path;
conn->processStderr();
string hash = readString(conn->from);
* Remove queryPathHash(). * Help for nix-worker.
2006-12-02 09:27:24 -05:00
return parseHash(htSHA256, hash);
* Oops.
2006-11-30 13:35:50 -05:00
}
* More remote operations. * Added new operation hasSubstitutes(), which is more efficient than querySubstitutes().size() > 0.
2006-11-30 17:43:55 -05:00
void RemoteStore::queryReferences(const Path & path,
* Oops.
2006-11-30 13:35:50 -05:00
PathSet & references)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryReferences << path;
conn->processStderr();
PathSet references2 = readStorePaths<PathSet>(conn->from);
* More remote operations. * Added new operation hasSubstitutes(), which is more efficient than querySubstitutes().size() > 0.
2006-11-30 17:43:55 -05:00
references.insert(references2.begin(), references2.end());
* Oops.
2006-11-30 13:35:50 -05:00
}
* More remote operations. * Added new operation hasSubstitutes(), which is more efficient than querySubstitutes().size() > 0.
2006-11-30 17:43:55 -05:00
void RemoteStore::queryReferrers(const Path & path,
* Oops.
2006-11-30 13:35:50 -05:00
PathSet & referrers)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryReferrers << path;
conn->processStderr();
PathSet referrers2 = readStorePaths<PathSet>(conn->from);
* More remote operations. * Added new operation hasSubstitutes(), which is more efficient than querySubstitutes().size() > 0.
2006-11-30 17:43:55 -05:00
referrers.insert(referrers2.begin(), referrers2.end());
* Oops.
2006-11-30 13:35:50 -05:00
}
* Support queryDeriver() in multi-user installations.
2007-06-12 12:53:44 -04:00
Path RemoteStore::queryDeriver(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryDeriver << path;
conn->processStderr();
Path drvPath = readString(conn->from);
* Flag `--no-build-hook' to disable distributed builds. * queryDeriver in daemon mode: don't barf if the other side returns an empty string (which means there is no deriver).
2007-11-16 11:15:26 -05:00
if (drvPath != "") assertStorePath(drvPath);
return drvPath;
* Support queryDeriver() in multi-user installations.
2007-06-12 12:53:44 -04:00
}
nix-store -q --roots: Respect the gc-keep-outputs/gc-keep-derivations settings So if a path is not garbage solely because it's reachable from a root due to the gc-keep-outputs or gc-keep-derivations settings, ‘nix-store -q --roots’ now shows that root.
2012-12-20 12:41:44 -05:00
PathSet RemoteStore::queryValidDerivers(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryValidDerivers << path;
conn->processStderr();
return readStorePaths<PathSet>(conn->from);
nix-store -q --roots: Respect the gc-keep-outputs/gc-keep-derivations settings So if a path is not garbage solely because it's reachable from a root due to the gc-keep-outputs or gc-keep-derivations settings, ‘nix-store -q --roots’ now shows that root.
2012-12-20 12:41:44 -05:00
}
* Get derivation outputs from the database instead of the .drv file, which requires more I/O.
2010-02-22 07:44:36 -05:00
PathSet RemoteStore::queryDerivationOutputs(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryDerivationOutputs << path;
conn->processStderr();
return readStorePaths<PathSet>(conn->from);
* Get derivation outputs from the database instead of the .drv file, which requires more I/O.
2010-02-22 07:44:36 -05:00
}
Include all outputs of derivations in the closure of explicitly-passed derivation paths This required adding a queryOutputDerivationNames function in the store API
2011-11-06 01:28:20 -05:00
PathSet RemoteStore::queryDerivationOutputNames(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryDerivationOutputNames << path;
conn->processStderr();
return readStrings<PathSet>(conn->from);
Include all outputs of derivations in the closure of explicitly-passed derivation paths This required adding a queryOutputDerivationNames function in the store API
2011-11-06 01:28:20 -05:00
}
Add function queryPathFromHashPart() To implement binary caches efficiently, Hydra needs to be able to map the hash part of a store path (e.g. "gbg...zr7") to the full store path (e.g. "/nix/store/gbg...kzr7-subversion-1.7.5"). (The binary cache mechanism uses hash parts as a key for looking up store paths to ensure privacy.) However, doing a search in the Nix store for /nix/store/<hash>* is expensive since it requires reading the entire directory. queryPathFromHashPart() prevents this by doing a cheap database lookup.
2012-07-17 18:55:39 -04:00
Path RemoteStore::queryPathFromHashPart(const string & hashPart)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryPathFromHashPart << hashPart;
conn->processStderr();
Path path = readString(conn->from);
Add function queryPathFromHashPart() To implement binary caches efficiently, Hydra needs to be able to map the hash part of a store path (e.g. "gbg...zr7") to the full store path (e.g. "/nix/store/gbg...kzr7-subversion-1.7.5"). (The binary cache mechanism uses hash parts as a key for looking up store paths to ensure privacy.) However, doing a search in the Nix store for /nix/store/<hash>* is expensive since it requires reading the entire directory. queryPathFromHashPart() prevents this by doing a cheap database lookup.
2012-07-17 18:55:39 -04:00
if (!path.empty()) assertStorePath(path);
return path;
}
addToStore(): Take explicit name argument
2015-03-25 12:06:12 -04:00
Path RemoteStore::addToStore(const string & name, const Path & _srcPath,
Add a ‘--repair’ flag to nix-instantiate This allows repairing corrupted derivations and other source files.
2012-10-03 15:09:18 -04:00
bool recursive, HashType hashAlgo, PathFilter & filter, bool repair)
* Oops.
2006-11-30 13:35:50 -05:00
{
Add a ‘--repair’ flag to nix-instantiate This allows repairing corrupted derivations and other source files.
2012-10-03 15:09:18 -04:00
if (repair) throw Error("repairing is not supported when building through the Nix daemon");
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
Whitespace
2012-07-30 17:13:25 -04:00
* Merge addToStore and addToStoreFixed. * addToStore now adds unconditionally, it doesn't use readOnlyMode. Read-only operation is up to the caller (who can call computeStorePathForPath).
2006-12-01 15:51:18 -05:00
Path srcPath(absPath(_srcPath));
* When doing "nix-store --add-fixed" without "--recursive" via the Nix daemon (which is an error), print a nicer error message than "Connection reset by peer" or "broken pipe". * In the daemon, log errors that occur during request parameter processing.
2011-12-01 08:48:48 -05:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << wopAddToStore << name
More cleanup
2015-07-19 19:16:16 -04:00
<< ((hashAlgo == htSHA256 && recursive) ? 0 : 1) /* backwards compatibility hack */
<< (recursive ? 1 : 0)
<< printHashType(hashAlgo);
Report daemon OOM better When copying a large path causes the daemon to run out of memory, you now get: error: Nix daemon out of memory instead of: error: writing to file: Broken pipe
2014-06-10 07:45:50 -04:00
try {
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to.written = 0;
conn->to.warn = true;
dumpPath(srcPath, conn->to, filter);
conn->to.warn = false;
conn->processStderr();
Report daemon OOM better When copying a large path causes the daemon to run out of memory, you now get: error: Nix daemon out of memory instead of: error: writing to file: Broken pipe
2014-06-10 07:45:50 -04:00
} catch (SysError & e) {
/* Daemon closed while we were sending the path. Probably OOM
or I/O error. */
if (e.errNo == EPIPE)
try {
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->processStderr();
Report daemon OOM better When copying a large path causes the daemon to run out of memory, you now get: error: Nix daemon out of memory instead of: error: writing to file: Broken pipe
2014-06-10 07:45:50 -04:00
} catch (EndOfFile & e) { }
throw;
}
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
return readStorePath(conn->from);
* Oops.
2006-11-30 13:35:50 -05:00
}
* Unify the treatment of sources copied to the store, and recursive SHA-256 outputs of fixed-output derivations. I.e. they now produce the same store path: $ nix-store --add x /nix/store/j2fq9qxvvxgqymvpszhs773ncci45xsj-x $ nix-store --add-fixed --recursive sha256 x /nix/store/j2fq9qxvvxgqymvpszhs773ncci45xsj-x the latter being the same as the path that a derivation derivation { name = "x"; outputHashAlgo = "sha256"; outputHashMode = "recursive"; outputHash = "..."; ... }; produces. This does change the output path for such fixed-output derivations. Fortunately they are quite rare. The most common use is fetchsvn calls with SHA-256 hashes. (There are a handful of those is Nixpkgs, mostly unstable development packages.) * Documented the computation of store paths (in store-api.cc).
2008-12-03 10:06:30 -05:00
Path RemoteStore::addTextToStore(const string & name, const string & s,
Add a ‘--repair’ flag to nix-instantiate This allows repairing corrupted derivations and other source files.
2012-10-03 15:09:18 -04:00
const PathSet & references, bool repair)
* Oops.
2006-11-30 13:35:50 -05:00
{
Add a ‘--repair’ flag to nix-instantiate This allows repairing corrupted derivations and other source files.
2012-10-03 15:09:18 -04:00
if (repair) throw Error("repairing is not supported when building through the Nix daemon");
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopAddTextToStore << name << s << references;
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->processStderr();
return readStorePath(conn->from);
* Oops.
2006-11-30 13:35:50 -05:00
}
* Start of `nix-store --export' operation for serialising a store path. This is like `nix-store --dump', only it also dumps the meta-information of the store path (references, deriver). Will add a `--sign' flag later to add a cryptographic signature, which we will use for exchanging store paths between build farm machines in a secure manner.
2007-02-20 18:17:20 -05:00
void RemoteStore::exportPath(const Path & path, bool sign,
Sink & sink)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopExportPath << path << (sign ? 1 : 0);
conn->processStderr(&sink); /* sink receives the actual data */
readInt(conn->from);
* Start of `nix-store --export' operation for serialising a store path. This is like `nix-store --dump', only it also dumps the meta-information of the store path (references, deriver). Will add a `--sign' flag later to add a cryptographic signature, which we will use for exchanging store paths between build farm machines in a secure manner.
2007-02-20 18:17:20 -05:00
}
* importPath() -> importPaths(). Because of buffering of the input stream it's now necessary for the daemon to process the entire sequence of exported paths, rather than letting the client do it.
2011-12-16 17:31:25 -05:00
Paths RemoteStore::importPaths(bool requireSignature, Source & source)
* `nix-store --import': import an archive created by `nix-store --export' into the Nix store, and optionally check the cryptographic signatures against /nix/etc/nix/signing-key.pub. (TODO: verify against a set of public keys.)
2007-02-21 10:45:32 -05:00
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopImportPaths;
* `nix-store --import' now also works in remote mode. The worker always requires a signature on the archive. This is to ensure that unprivileged users cannot add Trojan horses to the Nix store.
2007-02-21 12:34:02 -05:00
/* We ignore requireSignature, since the worker forces it to true
* Refactoring: move sink/source buffering into separate classes. * Buffer the HashSink. This speeds up hashing a bit because it prevents lots of calls to the hash update functions (e.g. nix-hash went from 9.3s to 8.7s of user time on the closure of my /var/run/current-system).
2011-12-15 11:19:53 -05:00
anyway. */
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->processStderr(0, &source);
return readStorePaths<Paths>(conn->from);
* `nix-store --import': import an archive created by `nix-store --export' into the Nix store, and optionally check the cryptographic signatures against /nix/etc/nix/signing-key.pub. (TODO: verify against a set of public keys.)
2007-02-21 10:45:32 -05:00
}
Add a flag ‘--check’ to verify build determinism The flag ‘--check’ to ‘nix-store -r’ or ‘nix-build’ will cause Nix to redo the build of a derivation whose output paths are already valid. If the new output differs from the original output, an error is printed. This makes it easier to test if a build is deterministic. (Obviously this cannot catch all sources of non-determinism, but it catches the most common one, namely the current time.) For example: $ nix-build '<nixpkgs>' -A patchelf ... $ nix-build '<nixpkgs>' -A patchelf --check error: derivation `/nix/store/1ipvxsdnbhl1rw6siz6x92s7sc8nwkkb-patchelf-0.6' may not be deterministic: hash mismatch in output `/nix/store/4pc1dmw5xkwmc6q3gdc9i5nbjl4dkjpp-patchelf-0.6.drv' The --check build fails if not all outputs are valid. Thus the first call to nix-build is necessary to ensure that all outputs are valid. The current outputs are left untouched: the new outputs are either put in a chroot or diverted to a different location in the store using hash rewriting.
2014-02-17 19:01:14 -05:00
void RemoteStore::buildPaths(const PathSet & drvPaths, BuildMode buildMode)
* Oops.
2006-11-30 13:35:50 -05:00
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopBuildPaths;
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 13) {
conn->to << drvPaths;
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 15)
conn->to << buildMode;
daemon: Add 'buildMode' parameter to 'buildPaths' RPC
2015-12-02 12:13:33 -05:00
else
/* Old daemons did not take a 'buildMode' parameter, so we
need to validate it here on the client side. */
if (buildMode != bmNormal)
throw Error("repairing or checking is not supported when building through the Nix daemon");
} else {
nix-build: Support talking to old daemons Fixes #76.
2012-12-29 17:21:46 -05:00
/* For backwards compatibility with old daemons, strip output
identifiers. */
PathSet drvPaths2;
OCD: foreach -> C++11 ranged for
2015-07-17 13:24:28 -04:00
for (auto & i : drvPaths)
drvPaths2.insert(string(i, 0, i.find('!')));
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << drvPaths2;
nix-build: Support talking to old daemons Fixes #76.
2012-12-29 17:21:46 -05:00
}
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->processStderr();
readInt(conn->from);
* Oops.
2006-11-30 13:35:50 -05:00
}
Allow remote builds without sending the derivation closure Previously, to build a derivation remotely, we had to copy the entire closure of the .drv file to the remote machine, even though we only need the top-level derivation. This is very wasteful: the closure can contain thousands of store paths, and in some Hydra use cases, include source paths that are very large (e.g. Git/Mercurial checkouts). So now there is a new operation, StoreAPI::buildDerivation(), that performs a build from an in-memory representation of a derivation (BasicDerivation) rather than from a on-disk .drv file. The only files that need to be in the Nix store are the sources of the derivation (drv.inputSrcs), and the needed output paths of the dependencies (as described by drv.inputDrvs). "nix-store --serve" exposes this interface. Note that this is a privileged operation, because you can construct a derivation that builds any store path whatsoever. Fixing this will require changing the hashing scheme (i.e., the output paths should be computed from the other fields in BasicDerivation, allowing them to be verified without access to other derivations). However, this would be quite nice because it would allow .drv-free building (e.g. "nix-env -i" wouldn't have to write any .drv files to disk). Fixes #173.
2015-07-17 11:57:40 -04:00
BuildResult RemoteStore::buildDerivation(const Path & drvPath, const BasicDerivation & drv,
BuildMode buildMode)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopBuildDerivation << drvPath << drv << buildMode;
conn->processStderr();
Implement buildDerivation() via the daemon
2015-09-03 06:56:59 -04:00
BuildResult res;
unsigned int status;
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->from >> status >> res.errorMsg;
Implement buildDerivation() via the daemon
2015-09-03 06:56:59 -04:00
res.status = (BuildResult::Status) status;
return res;
Allow remote builds without sending the derivation closure Previously, to build a derivation remotely, we had to copy the entire closure of the .drv file to the remote machine, even though we only need the top-level derivation. This is very wasteful: the closure can contain thousands of store paths, and in some Hydra use cases, include source paths that are very large (e.g. Git/Mercurial checkouts). So now there is a new operation, StoreAPI::buildDerivation(), that performs a build from an in-memory representation of a derivation (BasicDerivation) rather than from a on-disk .drv file. The only files that need to be in the Nix store are the sources of the derivation (drv.inputSrcs), and the needed output paths of the dependencies (as described by drv.inputDrvs). "nix-store --serve" exposes this interface. Note that this is a privileged operation, because you can construct a derivation that builds any store path whatsoever. Fixing this will require changing the hashing scheme (i.e., the output paths should be computed from the other fields in BasicDerivation, allowing them to be verified without access to other derivations). However, this would be quite nice because it would allow .drv-free building (e.g. "nix-env -i" wouldn't have to write any .drv files to disk). Fixes #173.
2015-07-17 11:57:40 -04:00
}
* More remote operations. * Added new operation hasSubstitutes(), which is more efficient than querySubstitutes().size() > 0.
2006-11-30 17:43:55 -05:00
void RemoteStore::ensurePath(const Path & path)
* Oops.
2006-11-30 13:35:50 -05:00
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopEnsurePath << path;
conn->processStderr();
readInt(conn->from);
* Oops.
2006-11-30 13:35:50 -05:00
}
* Move addTempRoot() to the store API, and add another function syncWithGC() to allow clients to register GC roots without needing write access to the global roots directory or the GC lock.
2006-12-02 11:41:36 -05:00
void RemoteStore::addTempRoot(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopAddTempRoot << path;
conn->processStderr();
readInt(conn->from);
* Move addTempRoot() to the store API, and add another function syncWithGC() to allow clients to register GC roots without needing write access to the global roots directory or the GC lock.
2006-12-02 11:41:36 -05:00
}
* Add indirect root registration to the protocol so that unprivileged processes can register indirect roots. Of course, there is still the problem that the garbage collector can only read the targets of the indirect roots when it's running as root...
2006-12-04 18:29:16 -05:00
void RemoteStore::addIndirectRoot(const Path & path)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopAddIndirectRoot << path;
conn->processStderr();
readInt(conn->from);
* Add indirect root registration to the protocol so that unprivileged processes can register indirect roots. Of course, there is still the problem that the garbage collector can only read the targets of the indirect roots when it's running as root...
2006-12-04 18:29:16 -05:00
}
* Move addTempRoot() to the store API, and add another function syncWithGC() to allow clients to register GC roots without needing write access to the global roots directory or the GC lock.
2006-12-02 11:41:36 -05:00
void RemoteStore::syncWithGC()
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopSyncWithGC;
conn->processStderr();
readInt(conn->from);
* Move addTempRoot() to the store API, and add another function syncWithGC() to allow clients to register GC roots without needing write access to the global roots directory or the GC lock.
2006-12-02 11:41:36 -05:00
}
* The determination of the root set should be made by the privileged process, so forward the operation. * Spam the user about GC misconfigurations (NIX-71). * findRoots: skip all roots that are unreadable - the warnings with which we spam the user should be enough.
2006-12-04 20:31:45 -05:00
Roots RemoteStore::findRoots()
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopFindRoots;
conn->processStderr();
unsigned int count = readInt(conn->from);
* The determination of the root set should be made by the privileged process, so forward the operation. * Spam the user about GC misconfigurations (NIX-71). * findRoots: skip all roots that are unreadable - the warnings with which we spam the user should be enough.
2006-12-04 20:31:45 -05:00
Roots result;
while (count--) {
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
Path link = readString(conn->from);
Path target = readStorePath(conn->from);
* The determination of the root set should be made by the privileged process, so forward the operation. * Spam the user about GC misconfigurations (NIX-71). * findRoots: skip all roots that are unreadable - the warnings with which we spam the user should be enough.
2006-12-04 20:31:45 -05:00
result[link] = target;
}
return result;
}
* Some refactoring: put the GC options / results in separate structs. * The garbage collector now also prints the number of blocks freed.
2008-06-18 05:34:17 -04:00
void RemoteStore::collectGarbage(const GCOptions & options, GCResults & results)
* Allow unprivileged users to run the garbage collector and to do `nix-store --delete'. But unprivileged users are not allowed to ignore liveness. * `nix-store --delete --ignore-liveness': ignore the runtime roots as well.
2006-12-04 21:18:46 -05:00
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << wopCollectGarbage << options.action << options.pathsToDelete << options.ignoreLiveness
More cleanup
2015-07-19 19:16:16 -04:00
<< options.maxFreed << 0;
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
if (GET_PROTOCOL_MINOR(conn->daemonVersion) >= 5)
* Remove the --use-atime / --max-atime garbage collector flags. Many (Linux) machines no longer maintain the atime because it's too expensive, and on the machines where --use-atime is useful (like the buildfarm), reading the atimes on the entire Nix store takes way too much time to make it practical.
2009-11-20 12:12:38 -05:00
/* removed options */
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->to << 0 << 0;
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
conn->processStderr();
Whitespace
2012-07-30 17:13:25 -04:00
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
results.paths = readStrings<PathSet>(conn->from);
results.bytesFreed = readLongLong(conn->from);
readLongLong(conn->from); // obsolete
* Allow unprivileged users to run the garbage collector and to do `nix-store --delete'. But unprivileged users are not allowed to ignore liveness. * `nix-store --delete --ignore-liveness': ignore the runtime roots as well.
2006-12-04 21:18:46 -05:00
}
* Allow unprivileged users to do `nix-store --clear-failed-paths' and `nix-store --query-failed-paths'.
2010-05-04 06:45:10 -04:00
PathSet RemoteStore::queryFailedPaths()
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopQueryFailedPaths;
conn->processStderr();
return readStorePaths<PathSet>(conn->from);
* Allow unprivileged users to do `nix-store --clear-failed-paths' and `nix-store --query-failed-paths'.
2010-05-04 06:45:10 -04:00
}
void RemoteStore::clearFailedPaths(const PathSet & paths)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopClearFailedPaths << paths;
conn->processStderr();
readInt(conn->from);
* Allow unprivileged users to do `nix-store --clear-failed-paths' and `nix-store --query-failed-paths'.
2010-05-04 06:45:10 -04:00
}
Add an 'optimiseStore' remote procedure call.
2014-09-01 16:21:42 -04:00
void RemoteStore::optimiseStore()
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopOptimiseStore;
conn->processStderr();
readInt(conn->from);
Add an 'optimiseStore' remote procedure call.
2014-09-01 16:21:42 -04:00
}
* Allow unprivileged users to do `nix-store --clear-failed-paths' and `nix-store --query-failed-paths'.
2010-05-04 06:45:10 -04:00
Add a ‘verifyStore’ RPC Hello! The patch below adds a ‘verifyStore’ RPC with the same signature as the current LocalStore::verifyStore method. Thanks, Ludo’. >From aef46c03ca77eb6344f4892672eb6d9d06432041 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ludovic=20Court=C3=A8s?= <ludo@gnu.org> Date: Mon, 1 Jun 2015 23:17:10 +0200 Subject: [PATCH] Add a 'verifyStore' remote procedure call.
2015-06-01 17:20:11 -04:00
bool RemoteStore::verifyStore(bool checkContents, bool repair)
{
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
auto conn(connections->get());
conn->to << wopVerifyStore << checkContents << repair;
conn->processStderr();
return readInt(conn->from) != 0;
Add a ‘verifyStore’ RPC Hello! The patch below adds a ‘verifyStore’ RPC with the same signature as the current LocalStore::verifyStore method. Thanks, Ludo’. >From aef46c03ca77eb6344f4892672eb6d9d06432041 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ludovic=20Court=C3=A8s?= <ludo@gnu.org> Date: Mon, 1 Jun 2015 23:17:10 +0200 Subject: [PATCH] Add a 'verifyStore' remote procedure call.
2015-06-01 17:20:11 -04:00
}
Pool<T>: Allow a maximum pool size
2016-02-23 10:40:16 -05:00
RemoteStore::Connection::~Connection()
{
try {
to.flush();
fd.close();
} catch (...) {
ignoreException();
}
}
RemoteStore: Make thread-safe This allows a RemoteStore object to be used safely from multiple threads concurrently. It will make multiple daemon connections if necessary. Note: pool.hh and sync.hh have been copied from the Hydra source tree.
2016-02-23 09:00:59 -05:00
void RemoteStore::Connection::processStderr(Sink * sink, Source * source)
* Some hackery to propagate the worker's stderr and exceptions to the client.
2006-12-02 21:08:13 -05:00
{
* Buffer writes in FdSink. This significantly reduces the number of system calls / context switches when dumping a NAR and in the worker protocol.
2011-12-14 18:30:06 -05:00
to.flush();
* Some hackery to propagate the worker's stderr and exceptions to the client.
2006-12-02 21:08:13 -05:00
unsigned int msg;
* `nix-store --import' now also works in remote mode. The worker always requires a signature on the archive. This is to ensure that unprivileged users cannot add Trojan horses to the Nix store.
2007-02-21 12:34:02 -05:00
while ((msg = readInt(from)) == STDERR_NEXT
|| msg == STDERR_READ || msg == STDERR_WRITE) {
if (msg == STDERR_WRITE) {
string s = readString(from);
* Support exportPath() in remote mode.
2007-02-21 11:34:00 -05:00
if (!sink) throw Error("no sink");
Use data() instead of c_str() where appropriate
2012-02-09 12:27:45 -05:00
(*sink)((const unsigned char *) s.data(), s.size());
* Support exportPath() in remote mode.
2007-02-21 11:34:00 -05:00
}
* `nix-store --import' now also works in remote mode. The worker always requires a signature on the archive. This is to ensure that unprivileged users cannot add Trojan horses to the Nix store.
2007-02-21 12:34:02 -05:00
else if (msg == STDERR_READ) {
if (!source) throw Error("no source");
* Make the import operation through the daemon much more efficient (way fewer roundtrips) by allowing the client to send data in bigger chunks. * Some refactoring.
2011-12-16 14:44:13 -05:00
size_t len = readInt(from);
* `nix-store --import' now also works in remote mode. The worker always requires a signature on the archive. This is to ensure that unprivileged users cannot add Trojan horses to the Nix store.
2007-02-21 12:34:02 -05:00
unsigned char * buf = new unsigned char[len];
AutoDeleteArray<unsigned char> d(buf);
* importPath() -> importPaths(). Because of buffering of the input stream it's now necessary for the daemon to process the entire sequence of exported paths, rather than letting the client do it.
2011-12-16 17:31:25 -05:00
writeString(buf, source->read(buf, len), to);
* Buffer writes in FdSink. This significantly reduces the number of system calls / context switches when dumping a NAR and in the worker protocol.
2011-12-14 18:30:06 -05:00
to.flush();
* `nix-store --import' now also works in remote mode. The worker always requires a signature on the archive. This is to ensure that unprivileged users cannot add Trojan horses to the Nix store.
2007-02-21 12:34:02 -05:00
}
else {
string s = readString(from);
Don't use std::cerr in a few places Slightly scared of using std::cerr in a vforked process...
2012-11-15 09:01:02 -05:00
writeToStderr(s);
* `nix-store --import' now also works in remote mode. The worker always requires a signature on the archive. This is to ensure that unprivileged users cannot add Trojan horses to the Nix store.
2007-02-21 12:34:02 -05:00
}
* Some hackery to propagate the worker's stderr and exceptions to the client.
2006-12-02 21:08:13 -05:00
}
* Propagate the "100" exit status for failed builds through the Nix daemon.
2010-12-17 06:28:26 -05:00
if (msg == STDERR_ERROR) {
string error = readString(from);
unsigned int status = GET_PROTOCOL_MINOR(daemonVersion) >= 8 ? readInt(from) : 1;
* Handle error messages from the Nix worker containing the `%' character. (Nix/216)
2011-04-19 06:44:44 -04:00
throw Error(format("%1%") % error, status);
* Propagate the "100" exit status for failed builds through the Nix daemon.
2010-12-17 06:28:26 -05:00
}
* Some hackery to propagate the worker's stderr and exceptions to the client.
2006-12-02 21:08:13 -05:00
else if (msg != STDERR_LAST)
throw Error("protocol error processing standard error");
}
* Oops.
2006-11-30 13:35:50 -05:00
}
Copy permalink