[Nix-dev] Nix 1.4 released
Eelco Dolstra
eelco.dolstra at logicblox.com
Tue Feb 26 14:46:11 CET 2013
Hi,
I'm pleased to announce the availability of a new stable release of the
Nix package manager. Release 1.4 can be found at
http://hydra.nixos.org/release/nix/nix-1.4
This release fixes a security bug in multi-user operation. It was possible for
derivations to cause the mode of files outside of the Nix store to be changed
to 444 (read-only but world-readable) by creating hard links to those files (see
https://github.com/NixOS/nix/commit/5526a282b5b44e9296e61e07d7d2626a79141ac4 for
details).
There are also the following improvements:
* New built-in function: builtins.hashString.
* Build logs are now stored in /nix/var/log/nix/drvs/XX/, where XX is the
first two characters of the derivation. This is useful on machines that
keep a lot of build logs (such as Hydra servers).
* The function corepkgs/fetchurl can now make the downloaded file executable.
This will allow getting rid of all bootstrap binaries in the Nixpkgs source
tree.
* Language change: The expression "${./path} ..." now evaluates to a string
instead of a path.
--
Eelco Dolstra | LogicBlox, Inc. | http://nixos.org/~eelco/
More information about the nix-dev
mailing list