mirror of
https://github.com/digital-asset/daml.git
synced 2024-09-20 01:07:18 +03:00
9c2e2db34e
Our CI nodes install nix in multi-user mode. This means that changing cache information is only available to certain trusted users for security reasons. The CI user is not part of those so the cache info from dev-env/etc/nix.conf is silently ignored. We could consider not running in multi-user mode although from a security pov this seems like a pretty sensible decision and our signing keys change very rarely so for now, I would keep it. changelog_begin changelog_end
21 lines
1.0 KiB
Plaintext
21 lines
1.0 KiB
Plaintext
build-max-jobs = 2
|
|
binary-caches = https://nix-cache.da-ext.net https://cache.nixos.org
|
|
# Note: the "hydra.da-int.net" string is now part of the name of the key for
|
|
# legacy reasons; it bears no relation to the DNS hostname of the current
|
|
# cache.
|
|
# If you change this, you also need to update the config in infra/vsts_agent_linux_startup.sh.
|
|
binary-cache-public-keys = hydra.da-int.net-2:91tXuJGf/ExbAz7IWsMsxQ5FsO6lG/EGM5QVt+xhZu0= hydra.da-int.net-1:6Oy2+KYvI7xkAOg0gJisD7Nz/6m8CmyKMbWfSKUe03g= cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY= hydra.nixos.org-1:CNHJZBh9K4tP3EKF6FkkgeVYsS3ohTl+oS0Qa8bezVs=
|
|
|
|
# Keep build-time dependencies of non-garbage outputs around
|
|
gc-keep-outputs = true
|
|
gc-keep-derivations = true
|
|
|
|
# NOTE(JM): This is broken on Mac: "cannot link ... : Operation not permitted"
|
|
# auto-optimise-store = true
|
|
|
|
# NOTE(D3): This is needed in order to run nix commands on monorepo from a Docker container.
|
|
build-users-group =
|
|
|
|
# Work around sporadic segfaults. See https://github.com/digital-asset/daml/pull/4427
|
|
http2 = false
|