lix/src/libexpr/primops/flake.cc

298 lines
9.4 KiB
C++
Raw Normal View History

2019-02-12 17:23:11 +00:00
#include "flake.hh"
2018-11-29 18:18:36 +00:00
#include "primops.hh"
#include "eval-inline.hh"
#include "fetchGit.hh"
#include "download.hh"
#include <queue>
2018-11-30 15:11:15 +00:00
#include <regex>
2018-11-29 18:18:36 +00:00
#include <nlohmann/json.hpp>
namespace nix {
2019-02-12 21:43:22 +00:00
/* Read the registry or a lock file. (Currently they have an identical
format. */
static std::unique_ptr<FlakeRegistry> readRegistry(const Path & path)
{
auto registry = std::make_unique<FlakeRegistry>();
auto json = nlohmann::json::parse(readFile(path));
auto version = json.value("version", 0);
if (version != 1)
throw Error("flake registry '%s' has unsupported version %d", path, version);
auto flakes = json["flakes"];
for (auto i = flakes.begin(); i != flakes.end(); ++i) {
FlakeRegistry::Entry entry{FlakeRef(i->value("uri", ""))};
registry->entries.emplace(i.key(), entry);
}
return registry;
}
2019-02-12 17:23:11 +00:00
const FlakeRegistry & EvalState::getFlakeRegistry()
2018-11-29 18:18:36 +00:00
{
std::call_once(_flakeRegistryInit, [&]()
{
#if 0
auto registryUri = "file:///home/eelco/Dev/gists/nix-flakes/registry.json";
2018-11-29 18:18:36 +00:00
auto registryFile = getDownloader()->download(DownloadRequest(registryUri));
#endif
2018-11-29 18:18:36 +00:00
2019-02-12 21:43:22 +00:00
auto registryFile = settings.nixDataDir + "/nix/flake-registry.json";
2018-11-29 18:18:36 +00:00
2019-02-12 21:43:22 +00:00
_flakeRegistry = readRegistry(registryFile);
2018-11-29 18:18:36 +00:00
});
return *_flakeRegistry;
}
Value * makeFlakeRegistryValue(EvalState & state)
2018-11-29 18:18:36 +00:00
{
auto v = state.allocValue();
auto registry = state.getFlakeRegistry();
2018-11-29 18:18:36 +00:00
state.mkAttrs(*v, registry.entries.size());
2018-11-29 18:18:36 +00:00
for (auto & entry : registry.entries) {
auto vEntry = state.allocAttr(*v, entry.first);
state.mkAttrs(*vEntry, 2);
mkString(*state.allocAttr(*vEntry, state.symbols.create("uri")), entry.second.ref.to_string());
2018-11-29 18:18:36 +00:00
vEntry->attrs->sort();
}
v->attrs->sort();
2018-11-29 18:18:36 +00:00
return v;
}
2018-11-29 18:18:36 +00:00
2019-02-12 21:43:22 +00:00
static FlakeRef lookupFlake(EvalState & state, const FlakeRef & flakeRef,
std::vector<const FlakeRegistry *> registries)
2019-02-12 17:23:11 +00:00
{
if (auto refData = std::get_if<FlakeRef::IsFlakeId>(&flakeRef.data)) {
2019-02-12 21:43:22 +00:00
for (auto registry : registries) {
auto i = registry->entries.find(refData->id);
if (i != registry->entries.end()) {
auto newRef = FlakeRef(i->second.ref);
if (!newRef.isDirect())
throw Error("found indirect flake URI '%s' in the flake registry", i->second.ref.to_string());
return newRef;
}
}
throw Error("cannot find flake '%s' in the flake registry or in the flake lock file", refData->id);
2019-02-12 17:23:11 +00:00
} else
return flakeRef;
}
struct FlakeSourceInfo
{
Path storePath;
std::optional<Hash> rev;
};
static FlakeSourceInfo fetchFlake(EvalState & state, const FlakeRef & flakeRef)
2018-11-29 18:18:36 +00:00
{
2019-02-12 17:23:11 +00:00
assert(flakeRef.isDirect());
2019-02-12 17:23:11 +00:00
if (auto refData = std::get_if<FlakeRef::IsGitHub>(&flakeRef.data)) {
// FIXME: require hash in pure mode.
// FIXME: use regular /archive URLs instead? api.github.com
// might have stricter rate limits.
2019-02-12 17:23:11 +00:00
// FIXME: support passing auth tokens for private repos.
auto url = fmt("https://api.github.com/repos/%s/%s/tarball/%s",
refData->owner, refData->repo,
refData->rev
? refData->rev->to_string(Base16, false)
: refData->ref
? *refData->ref
: "master");
auto result = getDownloader()->downloadCached(state.store, url, true, "source",
Hash(), nullptr, refData->rev ? 1000000000 : settings.tarballTtl);
if (!result.etag)
throw Error("did not receive an ETag header from '%s'", url);
if (result.etag->size() != 42 || (*result.etag)[0] != '"' || (*result.etag)[41] != '"')
throw Error("ETag header '%s' from '%s' is not a Git revision", *result.etag, url);
FlakeSourceInfo info;
info.storePath = result.path;
info.rev = Hash(std::string(*result.etag, 1, result.etag->size() - 2), htSHA1);
return info;
}
2019-02-12 17:23:11 +00:00
else if (auto refData = std::get_if<FlakeRef::IsGit>(&flakeRef.data)) {
auto gitInfo = exportGit(state.store, refData->uri, refData->ref,
refData->rev ? refData->rev->to_string(Base16, false) : "", "source");
FlakeSourceInfo info;
info.storePath = gitInfo.storePath;
info.rev = Hash(gitInfo.rev, htSHA1);
return info;
2018-11-30 15:11:15 +00:00
}
2018-11-29 18:18:36 +00:00
2019-02-12 17:23:11 +00:00
else abort();
2018-11-30 15:11:15 +00:00
}
Flake getFlake(EvalState & state, const FlakeRef & flakeRef)
2018-11-30 15:11:15 +00:00
{
auto sourceInfo = fetchFlake(state, flakeRef);
debug("got flake source '%s' with revision %s",
sourceInfo.storePath, sourceInfo.rev.value_or(Hash(htSHA1)).to_string(Base16, false));
auto flakePath = sourceInfo.storePath;
2018-11-30 15:11:15 +00:00
state.store->assertStorePath(flakePath);
if (state.allowedPaths)
state.allowedPaths->insert(flakePath);
2018-11-30 15:11:15 +00:00
Flake flake;
2018-11-29 18:18:36 +00:00
Value vInfo;
2019-02-12 21:43:22 +00:00
state.evalFile(flakePath + "/flake.nix", vInfo); // FIXME: symlink attack
2018-11-29 18:18:36 +00:00
state.forceAttrs(vInfo);
if (auto name = vInfo.attrs->get(state.sName))
2019-02-12 17:23:11 +00:00
flake.id = state.forceStringNoCtx(*(**name).value, *(**name).pos);
2018-11-29 18:18:36 +00:00
else
throw Error("flake lacks attribute 'name'");
if (auto description = vInfo.attrs->get(state.sDescription))
flake.description = state.forceStringNoCtx(*(**description).value, *(**description).pos);
if (auto requires = vInfo.attrs->get(state.symbols.create("requires"))) {
state.forceList(*(**requires).value, *(**requires).pos);
for (unsigned int n = 0; n < (**requires).value->listSize(); ++n)
2019-02-12 21:43:22 +00:00
flake.requires.push_back(FlakeRef(state.forceStringNoCtx(
*(**requires).value->listElems()[n], *(**requires).pos)));
2018-11-29 18:18:36 +00:00
}
if (auto provides = vInfo.attrs->get(state.symbols.create("provides"))) {
state.forceFunction(*(**provides).value, *(**provides).pos);
flake.vProvides = (**provides).value;
} else
throw Error("flake lacks attribute 'provides'");
2019-02-12 21:43:22 +00:00
auto lockFile = flakePath + "/flake.lock"; // FIXME: symlink attack
if (pathExists(lockFile)) {
flake.lockFile = readRegistry(lockFile);
for (auto & entry : flake.lockFile->entries)
if (!entry.second.ref.isImmutable())
throw Error("flake lock file '%s' contains mutable entry '%s'",
lockFile, entry.second.ref.to_string());
}
2018-11-29 18:18:36 +00:00
return flake;
}
/* Given a flake reference, recursively fetch it and its
dependencies.
FIXME: this should return a graph of flakes.
*/
static std::tuple<FlakeId, std::map<FlakeId, Flake>> resolveFlake(EvalState & state,
const FlakeRef & topRef, bool impureTopRef)
2018-11-29 18:18:36 +00:00
{
2019-02-12 17:23:11 +00:00
std::map<FlakeId, Flake> done;
std::queue<std::tuple<FlakeRef, bool>> todo;
std::optional<FlakeId> topFlakeId; /// FIXME: ambiguous
todo.push({topRef, true});
2018-11-29 18:18:36 +00:00
2019-02-12 21:43:22 +00:00
std::vector<const FlakeRegistry *> registries;
FlakeRegistry localRegistry;
registries.push_back(&localRegistry);
if (!evalSettings.pureEval)
registries.push_back(&state.getFlakeRegistry());
2018-11-29 18:18:36 +00:00
while (!todo.empty()) {
auto [flakeRef, toplevel] = todo.front();
2018-11-29 18:18:36 +00:00
todo.pop();
2019-02-12 17:23:11 +00:00
if (auto refData = std::get_if<FlakeRef::IsFlakeId>(&flakeRef.data)) {
if (done.count(refData->id)) continue; // optimization
2019-02-12 21:43:22 +00:00
flakeRef = lookupFlake(state, flakeRef, registries);
2019-02-12 17:23:11 +00:00
}
if (evalSettings.pureEval && !flakeRef.isImmutable() && (!toplevel || !impureTopRef))
throw Error("mutable flake '%s' is not allowed in pure mode; use --no-pure-eval to disable", flakeRef.to_string());
2019-02-12 17:23:11 +00:00
auto flake = getFlake(state, flakeRef);
if (done.count(flake.id)) continue;
2018-11-29 18:18:36 +00:00
if (toplevel) topFlakeId = flake.id;
2018-11-30 15:11:15 +00:00
for (auto & require : flake.requires)
todo.push({require, false});
2018-11-29 18:18:36 +00:00
2019-02-12 21:43:22 +00:00
if (flake.lockFile)
for (auto & entry : flake.lockFile->entries) {
if (localRegistry.entries.count(entry.first)) continue;
localRegistry.entries.emplace(entry.first, entry.second);
}
done.emplace(flake.id, std::move(flake));
2018-11-29 18:18:36 +00:00
}
assert(topFlakeId);
2019-02-12 21:43:22 +00:00
return {*topFlakeId, std::move(done)};
2018-11-29 18:18:36 +00:00
}
Value * makeFlakeValue(EvalState & state, std::string flakeUri, Value & v)
2018-11-29 18:18:36 +00:00
{
// FIXME: temporary hack to make the default installation source
// work.
bool impure = false;
if (hasPrefix(flakeUri, "impure:")) {
flakeUri = std::string(flakeUri, 7);
impure = true;
}
auto flakeRef = FlakeRef(flakeUri);
2018-11-29 18:18:36 +00:00
auto [topFlakeId, flakes] = resolveFlake(state, flakeUri, impure);
// FIXME: we should call each flake with only its dependencies
// (rather than the closure of the top-level flake).
2018-11-29 18:18:36 +00:00
auto vResult = state.allocValue();
state.mkAttrs(*vResult, flakes.size());
Value * vTop = 0;
2018-11-29 18:18:36 +00:00
for (auto & flake : flakes) {
2019-02-12 17:23:11 +00:00
auto vFlake = state.allocAttr(*vResult, flake.second.id);
if (topFlakeId == flake.second.id) vTop = vFlake;
2018-11-29 18:18:36 +00:00
state.mkAttrs(*vFlake, 2);
mkString(*state.allocAttr(*vFlake, state.sDescription), flake.second.description);
auto vProvides = state.allocAttr(*vFlake, state.symbols.create("provides"));
mkApp(*vProvides, *flake.second.vProvides, *vResult);
vFlake->attrs->sort();
}
vResult->attrs->sort();
v = *vResult;
assert(vTop);
return vTop;
}
static void prim_getFlake(EvalState & state, const Pos & pos, Value * * args, Value & v)
{
makeFlakeValue(state, state.forceStringNoCtx(*args[0], pos), v);
2018-11-29 18:18:36 +00:00
}
static RegisterPrimOp r2("getFlake", 1, prim_getFlake);
}