Don’t accept experimental features from the client

If the client sends an “experimental features” setting, just ignore it
2021-08-30 10:39:31 +02:00 · 2021-08-30 10:39:31 +02:00 · b2bce915ad
parent d9ba3385a9
commit b2bce915ad
1 changed files with 6 additions and 0 deletions
--- a/src/libstore/daemon.cc
+++ b/src/libstore/daemon.cc
@ -227,6 +227,12 @@ struct ClientSettings
            try {
                if (name == "ssh-auth-sock") // obsolete
                    ;
+                else if (name == settings.experimentalFeatures.name) {
+                    // We don’t want to forward the experimental features to
+                    // the daemon, as that could cause some pretty weird stuff
+                    if (tokenizeString<Strings>(value) != settings.experimentalFeatures.get())
+                        debug("Ignoring the client-specified experimental features");
+                }
                else if (trusted
                    || name == settings.buildTimeout.name
                    || name == "connect-timeout"