/bin/sh -> ${stdenv.shell}

[rht]

Motivation for this change

Use ${stdenv.shell} in pkgs/build-support and pkgs/servers.

Address a subset of #183, #1424.

Things done

• Tested using sandboxing
  (nix.useSandbox on NixOS,
  or option build-use-sandbox in nix.conf
  on non-NixOS)
• Built on platform(s)
  • NixOS
  • macOS
  • Linux
• Tested compilation of all pkgs that depend on this change using nix-shell -p nox --run "nox-review wip"
• Tested execution of all binary files (usually in ./result/bin/)
• Fits CONTRIBUTING.md.

---

[mention-bot]

@rht, thanks for your PR! By analyzing the history of the files in this pull request, we identified @lethalman, @viric and @rbvermaa to be potential reviewers.

[Mic92]

is this safe to use? I think there is a reason why on nixos the root login shell points to /run/current-system/sw/bin/bash. I could be that docker is special because the shell in nixos-based images are never updated.

[rht]

(I have an insufficient information to figure out why, for docker's case)

[vcunat]

IIRC you can only use paths from /etc/shells as a login shell. Universal paths like /run/current-system/... seem less likely to break that.

[vcunat]

Though in a docker container the risk might be very low.

[7c6f434c]

/etc/shells is only relevant for a non-root user doing chsh on herself; nologin is usually not in /etc/shells but works as a login-no-intended shell just fine.

[7c6f434c]

Re: root shell: /bin/sh is non-interactive, too.

[joachifm]

This one looks a bit odd to me, are you sure it is not deliberately using /bin/sh here?

[rht]

It definitely looks deliberate -- there is a further check attrs.builder == attrs.stdenv.shell when defining origBuilder later on. The file was originally written by @aszlig, if @aszlig could quickly shed some light here.

[aszlig]

Yes, this is deliberate, because this is within a VM and within a cygwin shell and there is no access to the store.

[rht]

I see.

[7c6f434c]

Manually merged to master.