depot/third_party/nixpkgs/nixos/modules/security/wrappers/wrapper.nix

{ stdenv, unsecvars, linuxHeaders, sourceProg, debug ? false }:
# For testing:
# $ nix-build -E 'with import <nixpkgs> {}; pkgs.callPackage ./wrapper.nix { parentWrapperDir = "/run/wrappers"; debug = true; }'
stdenv.mkDerivation {
  name = "security-wrapper";
  buildInputs = [ linuxHeaders ];
  dontUnpack = true;
  CFLAGS = [
    ''-DSOURCE_PROG="${sourceProg}"''
  ] ++ (if debug then [
    "-Werror" "-Og" "-g"
  ] else [
    "-Wall" "-O2"
  ]);
  dontStrip = debug;
  installPhase = ''
    mkdir -p $out/bin
    $CC $CFLAGS ${./wrapper.c} -I${unsecvars} -o $out/bin/security-wrapper
  '';
}
Project import generated by Copybara. GitOrigin-RevId: f99e5f03cc0aa231ab5950a15ed02afec45ed51a 2023-10-09 19:29:22 +00:00			`{ stdenv, unsecvars, linuxHeaders, sourceProg, debug ? false }:`
Project import generated by Copybara. GitOrigin-RevId: 536fe36e23ab0fc8b7f35c24603422eee9fc17a2 2021-02-05 17:12:51 +00:00			`# For testing:`
			`# $ nix-build -E 'with import <nixpkgs> {}; pkgs.callPackage ./wrapper.nix { parentWrapperDir = "/run/wrappers"; debug = true; }'`
			`stdenv.mkDerivation {`
			`name = "security-wrapper";`
			`buildInputs = [ linuxHeaders ];`
			`dontUnpack = true;`
			`CFLAGS = [`
Project import generated by Copybara. GitOrigin-RevId: f99e5f03cc0aa231ab5950a15ed02afec45ed51a 2023-10-09 19:29:22 +00:00			`''-DSOURCE_PROG="${sourceProg}"''`
Project import generated by Copybara. GitOrigin-RevId: 536fe36e23ab0fc8b7f35c24603422eee9fc17a2 2021-02-05 17:12:51 +00:00			`] ++ (if debug then [`
			`"-Werror" "-Og" "-g"`
			`] else [`
			`"-Wall" "-O2"`
			`]);`
			`dontStrip = debug;`
			`installPhase = ''`
			`mkdir -p $out/bin`
Project import generated by Copybara. GitOrigin-RevId: f99e5f03cc0aa231ab5950a15ed02afec45ed51a 2023-10-09 19:29:22 +00:00			`$CC $CFLAGS ${./wrapper.c} -I${unsecvars} -o $out/bin/security-wrapper`
Project import generated by Copybara. GitOrigin-RevId: 536fe36e23ab0fc8b7f35c24603422eee9fc17a2 2021-02-05 17:12:51 +00:00			`'';`
			`}`