diff options
| author | Emily <vcs@emily.moe> | 2023-07-16 17:02:10 +0100 |
|---|---|---|
| committer | Emily <vcs@emily.moe> | 2024-06-15 12:15:13 +0100 |
| commit | 36a15e8c6c4686be29ccbf0ae0ac1d6133074615 (patch) | |
| tree | 794941cdc402380430cd698af2f7abfcec7e1339 /modules/lib | |
| parent | b833d4a32d965e6393a63b2c91b46eca2a5030d8 (diff) | |
write-text: remove support for `copy`
This is a huge anti‐declarative footgun; `copy` files cannot
distinguish if a previous version is managed by nix-darwin, so they
can’t check the hash, so they’re prone to destroying data, and
copied files are not deleted when they’re removed from the system
configuration, which led to a security bug. Nothing else in‐tree
was using this functionality, so let’s make sure it doesn’t
cause any more bugs.
Diffstat (limited to 'modules/lib')
| -rw-r--r-- | modules/lib/write-text.nix | 8 |
1 files changed, 0 insertions, 8 deletions
diff --git a/modules/lib/write-text.nix b/modules/lib/write-text.nix index 2fe02af..ddf4076 100644 --- a/modules/lib/write-text.nix +++ b/modules/lib/write-text.nix @@ -45,14 +45,6 @@ in ''; }; - copy = mkOption { - type = types.bool; - default = false; - description = '' - Whether this file should be copied instead of symlinking. - ''; - }; - knownSha256Hashes = mkOption { internal = true; type = types.listOf types.str; |