mirror of
https://github.com/privatevoid-net/nix-super.git
synced 2024-11-25 15:26:17 +02:00
6df32889a5
This implements the git input attributes `verifyCommit`, `keytype`, `publicKey` and `publicKeys` as experimental feature `verified-fetches`. `publicKeys` should be a json string. This representation was chosen because all attributes must be of type bool, int or string so they can be included in flake uris (see definition of fetchers::Attr).
194 lines
5.4 KiB
C++
194 lines
5.4 KiB
C++
#pragma once
|
|
///@file
|
|
|
|
#include "types.hh"
|
|
#include "hash.hh"
|
|
#include "canon-path.hh"
|
|
#include "attrs.hh"
|
|
#include "url.hh"
|
|
|
|
#include <memory>
|
|
#include <nlohmann/json_fwd.hpp>
|
|
|
|
namespace nix { class Store; class StorePath; }
|
|
|
|
namespace nix::fetchers {
|
|
|
|
struct InputScheme;
|
|
|
|
/**
|
|
* The `Input` object is generated by a specific fetcher, based on
|
|
* user-supplied information, and contains
|
|
* the information that the specific fetcher needs to perform the
|
|
* actual fetch. The Input object is most commonly created via the
|
|
* `fromURL()` or `fromAttrs()` static functions.
|
|
*/
|
|
struct Input
|
|
{
|
|
friend struct InputScheme;
|
|
|
|
std::shared_ptr<InputScheme> scheme; // note: can be null
|
|
Attrs attrs;
|
|
bool locked = false;
|
|
|
|
/**
|
|
* path of the parent of this input, used for relative path resolution
|
|
*/
|
|
std::optional<Path> parent;
|
|
|
|
public:
|
|
/**
|
|
* Create an `Input` from a URL.
|
|
*
|
|
* The URL indicate which sort of fetcher, and provides information to that fetcher.
|
|
*/
|
|
static Input fromURL(const std::string & url, bool requireTree = true);
|
|
|
|
static Input fromURL(const ParsedURL & url, bool requireTree = true);
|
|
|
|
/**
|
|
* Create an `Input` from a an `Attrs`.
|
|
*
|
|
* The URL indicate which sort of fetcher, and provides information to that fetcher.
|
|
*/
|
|
static Input fromAttrs(Attrs && attrs);
|
|
|
|
ParsedURL toURL() const;
|
|
|
|
std::string toURLString(const std::map<std::string, std::string> & extraQuery = {}) const;
|
|
|
|
std::string to_string() const;
|
|
|
|
Attrs toAttrs() const;
|
|
|
|
/**
|
|
* Check whether this is a "direct" input, that is, not
|
|
* one that goes through a registry.
|
|
*/
|
|
bool isDirect() const;
|
|
|
|
/**
|
|
* Check whether this is a "locked" input, that is,
|
|
* one that contains a commit hash or content hash.
|
|
*/
|
|
bool isLocked() const { return locked; }
|
|
|
|
bool operator ==(const Input & other) const;
|
|
|
|
bool contains(const Input & other) const;
|
|
|
|
/**
|
|
* Fetch the entire input into the Nix store, returning the
|
|
* location in the Nix store and the locked input.
|
|
*/
|
|
std::pair<StorePath, Input> fetch(ref<Store> store) const;
|
|
|
|
Input applyOverrides(
|
|
std::optional<std::string> ref,
|
|
std::optional<Hash> rev) const;
|
|
|
|
void clone(const Path & destDir) const;
|
|
|
|
std::optional<Path> getSourcePath() const;
|
|
|
|
/**
|
|
* Write a file to this input, for input types that support
|
|
* writing. Optionally commit the change (for e.g. Git inputs).
|
|
*/
|
|
void putFile(
|
|
const CanonPath & path,
|
|
std::string_view contents,
|
|
std::optional<std::string> commitMsg) const;
|
|
|
|
std::string getName() const;
|
|
|
|
StorePath computeStorePath(Store & store) const;
|
|
|
|
// Convenience functions for common attributes.
|
|
std::string getType() const;
|
|
std::optional<Hash> getNarHash() const;
|
|
std::optional<std::string> getRef() const;
|
|
std::optional<Hash> getRev() const;
|
|
std::optional<uint64_t> getRevCount() const;
|
|
std::optional<time_t> getLastModified() const;
|
|
};
|
|
|
|
|
|
/**
|
|
* The `InputScheme` represents a type of fetcher. Each fetcher
|
|
* registers with nix at startup time. When processing an `Input`,
|
|
* each scheme is given an opportunity to "recognize" that
|
|
* input from the user-provided url or attributes
|
|
* and return an `Input` object to represent the input if it is
|
|
* recognized. The `Input` object contains the information the fetcher
|
|
* needs to actually perform the `fetch()` when called.
|
|
*/
|
|
struct InputScheme
|
|
{
|
|
virtual ~InputScheme()
|
|
{ }
|
|
|
|
virtual std::optional<Input> inputFromURL(const ParsedURL & url, bool requireTree) const = 0;
|
|
|
|
virtual std::optional<Input> inputFromAttrs(const Attrs & attrs) const = 0;
|
|
|
|
/**
|
|
* What is the name of the scheme?
|
|
*
|
|
* The `type` attribute is used to select which input scheme is
|
|
* used, and then the other fields are forwarded to that input
|
|
* scheme.
|
|
*/
|
|
virtual std::string_view schemeName() const = 0;
|
|
|
|
/**
|
|
* Allowed attributes in an attribute set that is converted to an
|
|
* input.
|
|
*
|
|
* `type` is not included from this set, because the `type` field is
|
|
parsed first to choose which scheme; `type` is always required.
|
|
*/
|
|
virtual StringSet allowedAttrs() const = 0;
|
|
|
|
virtual ParsedURL toURL(const Input & input) const;
|
|
|
|
virtual Input applyOverrides(
|
|
const Input & input,
|
|
std::optional<std::string> ref,
|
|
std::optional<Hash> rev) const;
|
|
|
|
virtual void clone(const Input & input, const Path & destDir) const;
|
|
|
|
virtual std::optional<Path> getSourcePath(const Input & input) const;
|
|
|
|
virtual void putFile(
|
|
const Input & input,
|
|
const CanonPath & path,
|
|
std::string_view contents,
|
|
std::optional<std::string> commitMsg) const;
|
|
|
|
virtual std::pair<StorePath, Input> fetch(ref<Store> store, const Input & input) = 0;
|
|
|
|
/**
|
|
* Is this `InputScheme` part of an experimental feature?
|
|
*/
|
|
virtual std::optional<ExperimentalFeature> experimentalFeature() const;
|
|
|
|
virtual bool isDirect(const Input & input) const
|
|
{ return true; }
|
|
};
|
|
|
|
void registerInputScheme(std::shared_ptr<InputScheme> && fetcher);
|
|
|
|
nlohmann::json dumpRegisterInputSchemeInfo();
|
|
|
|
struct PublicKey
|
|
{
|
|
std::string type = "ssh-ed25519";
|
|
std::string key;
|
|
};
|
|
NLOHMANN_DEFINE_TYPE_NON_INTRUSIVE_WITH_DEFAULT(PublicKey, type, key)
|
|
|
|
std::string publicKeys_to_string(const std::vector<PublicKey>&);
|
|
|
|
}
|