mirror of
https://github.com/NixOS/nix
synced 2025-06-30 07:33:16 +02:00
88b7db1ba4
If a build directory is accessible to other users it is possible to smuggle data in and out of build directories. Usually this is only a build purity problem, but in combination with other issues it can be used to break out of a build sandbox. to prevent this we default to using a subdirectory of nixStateDir (which is more restrictive). (cherry picked from pennae Lix commit 55b416f6897fb0d8a9315a530a9b7f0914458ded) (store setting done by roberth)
9 lines
452 B
Markdown
9 lines
452 B
Markdown
---
|
|
synopsis: "`build-dir` no longer defaults to `$TMPDIR`"
|
|
---
|
|
|
|
The directory in which temporary build directories are created no longer defaults
|
|
to `TMPDIR` or `/tmp`, to avoid builders making their directories
|
|
world-accessible. This behavior allowed escaping the build sandbox and can
|
|
cause build impurities even when not used maliciously. We now default to `builds`
|
|
in `NIX_STATE_DIR` (which is `/nix/var/nix/builds` in the default configuration).
|