[Nix-dev] Nix 1.4 released

Eelco Dolstra eelco.dolstra at logicblox.com
Tue Feb 26 14:46:11 CET 2013


I'm pleased to announce the availability of a new stable release of the
Nix package manager.  Release 1.4 can be found at


This release fixes a security bug in multi-user operation. It was possible for
derivations to cause the mode of files outside of the Nix store to be changed
to 444 (read-only but world-readable) by creating hard links to those files (see
https://github.com/NixOS/nix/commit/5526a282b5b44e9296e61e07d7d2626a79141ac4 for

There are also the following improvements:

  * New built-in function: builtins.hashString.

  * Build logs are now stored in /nix/var/log/nix/drvs/XX/, where XX is the
    first two characters of the derivation. This is useful on machines that
    keep a lot of build logs (such as Hydra servers).

  * The function corepkgs/fetchurl can now make the downloaded file executable.
    This will allow getting rid of all bootstrap binaries in the Nixpkgs source

  * Language change: The expression "${./path} ..." now evaluates to a string
    instead of a path.

Eelco Dolstra | LogicBlox, Inc. | http://nixos.org/~eelco/

More information about the nix-dev mailing list