209 lines
5.9 KiB
Nix
209 lines
5.9 KiB
Nix
|
{ lib, fetchFromGitHub
|
||
|
, version
|
||
|
, suffix ? ""
|
||
|
, sha256 ? null
|
||
|
, src ? fetchFromGitHub { owner = "NixOS"; repo = "nix"; rev = version; inherit sha256; }
|
||
|
, patches ? [ ]
|
||
|
}:
|
||
|
assert (sha256 == null) -> (src != null);
|
||
|
let
|
||
|
atLeast24 = lib.versionAtLeast version "2.4pre";
|
||
|
atLeast25 = lib.versionAtLeast version "2.5pre";
|
||
|
in
|
||
|
{ stdenv
|
||
|
, autoconf-archive
|
||
|
, autoreconfHook
|
||
|
, bash
|
||
|
, bison
|
||
|
, boehmgc
|
||
|
, boost
|
||
|
, brotli
|
||
|
, busybox-sandbox-shell
|
||
|
, bzip2
|
||
|
, callPackage
|
||
|
, coreutils
|
||
|
, curl
|
||
|
, editline
|
||
|
, flex
|
||
|
, gnutar
|
||
|
, gtest
|
||
|
, gzip
|
||
|
, jq
|
||
|
, lib
|
||
|
, libarchive
|
||
|
, libcpuid
|
||
|
, libsodium
|
||
|
, lowdown
|
||
|
, mdbook
|
||
|
, nlohmann_json
|
||
|
, openssl
|
||
|
, perl
|
||
|
, pkg-config
|
||
|
, Security
|
||
|
, sqlite
|
||
|
, util-linuxMinimal
|
||
|
, xz
|
||
|
|
||
|
, enableDocumentation ? atLeast24 || stdenv.hostPlatform == stdenv.buildPlatform
|
||
|
, enableStatic ? stdenv.hostPlatform.isStatic
|
||
|
, withAWS ? !enableStatic && (stdenv.isLinux || stdenv.isDarwin), aws-sdk-cpp
|
||
|
, withLibseccomp ? lib.meta.availableOn stdenv.hostPlatform libseccomp, libseccomp
|
||
|
|
||
|
, confDir
|
||
|
, stateDir
|
||
|
, storeDir
|
||
|
}:
|
||
|
stdenv.mkDerivation {
|
||
|
pname = "nix";
|
||
|
|
||
|
version = "${version}${suffix}";
|
||
|
VERSION_SUFFIX = suffix;
|
||
|
|
||
|
inherit src patches;
|
||
|
|
||
|
outputs =
|
||
|
[ "out" "dev" ]
|
||
|
++ lib.optionals enableDocumentation [ "man" "doc" ];
|
||
|
|
||
|
hardeningEnable = lib.optionals (!stdenv.isDarwin) [ "pie" ];
|
||
|
|
||
|
nativeBuildInputs = [
|
||
|
pkg-config
|
||
|
] ++ lib.optionals atLeast24 [
|
||
|
autoconf-archive
|
||
|
autoreconfHook
|
||
|
bison
|
||
|
flex
|
||
|
jq
|
||
|
] ++ lib.optionals (atLeast24 && enableDocumentation) [
|
||
|
(lib.getBin lowdown)
|
||
|
mdbook
|
||
|
] ++ lib.optionals stdenv.isLinux [
|
||
|
util-linuxMinimal
|
||
|
];
|
||
|
|
||
|
buildInputs = [
|
||
|
boost
|
||
|
brotli
|
||
|
bzip2
|
||
|
curl
|
||
|
editline
|
||
|
libsodium
|
||
|
openssl
|
||
|
sqlite
|
||
|
xz
|
||
|
] ++ lib.optionals stdenv.isDarwin [
|
||
|
Security
|
||
|
] ++ lib.optionals atLeast24 [
|
||
|
gtest
|
||
|
libarchive
|
||
|
lowdown
|
||
|
] ++ lib.optionals (atLeast24 && stdenv.isx86_64) [
|
||
|
libcpuid
|
||
|
] ++ lib.optionals withLibseccomp [
|
||
|
libseccomp
|
||
|
] ++ lib.optionals withAWS [
|
||
|
aws-sdk-cpp
|
||
|
];
|
||
|
|
||
|
propagatedBuildInputs = [ boehmgc ];
|
||
|
|
||
|
NIX_LDFLAGS = lib.optionals (!atLeast24) [
|
||
|
# https://github.com/NixOS/nix/commit/3e85c57a6cbf46d5f0fe8a89b368a43abd26daba
|
||
|
(lib.optionalString enableStatic "-lssl -lbrotlicommon -lssh2 -lz -lnghttp2 -lcrypto")
|
||
|
# https://github.com/NixOS/nix/commits/74b4737d8f0e1922ef5314a158271acf81cd79f8
|
||
|
(lib.optionalString (stdenv.hostPlatform.system == "armv5tel-linux" || stdenv.hostPlatform.system == "armv6l-linux") "-latomic")
|
||
|
];
|
||
|
|
||
|
preConfigure =
|
||
|
# Copy libboost_context so we don't get all of Boost in our closure.
|
||
|
# https://github.com/NixOS/nixpkgs/issues/45462
|
||
|
lib.optionalString (!enableStatic) ''
|
||
|
mkdir -p $out/lib
|
||
|
cp -pd ${boost}/lib/{libboost_context*,libboost_thread*,libboost_system*} $out/lib
|
||
|
rm -f $out/lib/*.a
|
||
|
${lib.optionalString stdenv.isLinux ''
|
||
|
chmod u+w $out/lib/*.so.*
|
||
|
patchelf --set-rpath $out/lib:${stdenv.cc.cc.lib}/lib $out/lib/libboost_thread.so.*
|
||
|
''}
|
||
|
'' +
|
||
|
# On all versions before c9f51e87057652db0013289a95deffba495b35e7, which
|
||
|
# removes config.nix entirely and is not present in 2.3.x, we need to
|
||
|
# patch around an issue where the Nix configure step pulls in the build
|
||
|
# system's bash and other utilities when cross-compiling.
|
||
|
lib.optionalString (stdenv.buildPlatform != stdenv.hostPlatform && !atLeast24) ''
|
||
|
mkdir tmp/
|
||
|
substitute corepkgs/config.nix.in tmp/config.nix.in \
|
||
|
--subst-var-by bash ${bash}/bin/bash \
|
||
|
--subst-var-by coreutils ${coreutils}/bin \
|
||
|
--subst-var-by bzip2 ${bzip2}/bin/bzip2 \
|
||
|
--subst-var-by gzip ${gzip}/bin/gzip \
|
||
|
--subst-var-by xz ${xz}/bin/xz \
|
||
|
--subst-var-by tar ${gnutar}/bin/tar \
|
||
|
--subst-var-by tr ${coreutils}/bin/tr
|
||
|
mv tmp/config.nix.in corepkgs/config.nix.in
|
||
|
'';
|
||
|
|
||
|
configureFlags = [
|
||
|
"--with-store-dir=${storeDir}"
|
||
|
"--localstatedir=${stateDir}"
|
||
|
"--sysconfdir=${confDir}"
|
||
|
"--enable-gc"
|
||
|
] ++ lib.optionals (!enableDocumentation) [
|
||
|
"--disable-doc-gen"
|
||
|
] ++ lib.optionals (!atLeast24) [
|
||
|
# option was removed in 2.4
|
||
|
"--disable-init-state"
|
||
|
] ++ lib.optionals stdenv.isLinux [
|
||
|
"--with-sandbox-shell=${busybox-sandbox-shell}/bin/busybox"
|
||
|
] ++ lib.optionals (stdenv.hostPlatform != stdenv.buildPlatform && stdenv.hostPlatform ? nix && stdenv.hostPlatform.nix ? system) [
|
||
|
"--with-system=${stdenv.hostPlatform.nix.system}"
|
||
|
] ++ lib.optionals (!withLibseccomp) [
|
||
|
# RISC-V support in progress https://github.com/seccomp/libseccomp/pull/50
|
||
|
"--disable-seccomp-sandboxing"
|
||
|
];
|
||
|
|
||
|
makeFlags = [
|
||
|
"profiledir=$(out)/etc/profile.d"
|
||
|
] ++ lib.optional (stdenv.hostPlatform != stdenv.buildPlatform) "PRECOMPILE_HEADERS=0";
|
||
|
|
||
|
installFlags = [ "sysconfdir=$(out)/etc" ];
|
||
|
|
||
|
doInstallCheck = true;
|
||
|
|
||
|
# socket path becomes too long otherwise
|
||
|
preInstallCheck = lib.optionalString stdenv.isDarwin ''
|
||
|
export TMPDIR=$NIX_BUILD_TOP
|
||
|
''
|
||
|
# See https://github.com/NixOS/nix/issues/5687
|
||
|
+ lib.optionalString (atLeast25 && stdenv.isDarwin) ''
|
||
|
echo "exit 99" > tests/gc-non-blocking.sh
|
||
|
'';
|
||
|
|
||
|
separateDebugInfo = stdenv.isLinux && (atLeast24 -> !enableStatic);
|
||
|
|
||
|
enableParallelBuilding = true;
|
||
|
|
||
|
meta = with lib; {
|
||
|
description = "Powerful package manager that makes package management reliable and reproducible";
|
||
|
longDescription = ''
|
||
|
Nix is a powerful package manager for Linux and other Unix systems that
|
||
|
makes package management reliable and reproducible. It provides atomic
|
||
|
upgrades and rollbacks, side-by-side installation of multiple versions of
|
||
|
a package, multi-user package management and easy setup of build
|
||
|
environments.
|
||
|
'';
|
||
|
homepage = "https://nixos.org/";
|
||
|
license = licenses.lgpl2Plus;
|
||
|
maintainers = with maintainers; [ eelco lovesegfault ];
|
||
|
platforms = platforms.unix;
|
||
|
outputsToInstall = [ "out" ] ++ optional enableDocumentation "man";
|
||
|
};
|
||
|
|
||
|
passthru = {
|
||
|
inherit boehmgc;
|
||
|
|
||
|
perl-bindings = perl.pkgs.toPerlModule (callPackage ./nix-perl.nix { inherit src version; });
|
||
|
};
|
||
|
}
|