rename nixpkgs entry in NIX_PATH

This ensures the local sources are still allowed in restricted mode, but referencing <nixpkgs> in expressions inside nixpkgs is not.
2020-04-05 20:03:54 +02:00 · 2020-04-05 20:03:54 +02:00 · f6c22bfc4f
parent b55535a608
commit f6c22bfc4f
1 changed files with 3 additions and 3 deletions
--- a/ofborg/src/nix.rs
+++ b/ofborg/src/nix.rs
@ -298,7 +298,7 @@ impl Nix {
    where
        S: AsRef<OsStr>,
    {
-        let nixpkgspath = format!("nixpkgs={}", nixpkgs.display());
+        let nixpkgspath = format!("ofborg-nixpkgs-pr={}", nixpkgs.display());
        let mut nixpath: Vec<String> = safe_paths
            .iter()
            .map(|path| format!("{}", path.display()))
@ -577,7 +577,7 @@ mod tests {
            Expect::Pass,
            vec![
                "HOME=/homeless-shelter",
-                "NIX_PATH=nixpkgs=",
+                "NIX_PATH=ofborg-nixpkgs-pr=",
                "NIX_REMOTE=",
                "PATH=",
            ],
@ -604,7 +604,7 @@ mod tests {
            Expect::Pass,
            vec![
                "HOME=/homeless-shelter",
-                "NIX_PATH=nixpkgs=",
+                "NIX_PATH=ofborg-nixpkgs-pr=",
                "NIX_REMOTE=",
                "PATH=",
                "GC_INITIAL_HEAP_SIZE=4g",