{ lib, stdenv, fetchurl, openssl, python, zlib, libuv, util-linux, http-parser, bash , pkg-config, which, buildPackages , testers # for `.pkgs` attribute , callPackage # Updater dependencies , writeScript, coreutils, gnugrep, jq, curl, common-updater-scripts, nix, runtimeShell , gnupg , darwin, xcbuild , procps, icu , installShellFiles }: { enableNpm ? true, version, sha256, patches ? [] } @args: let inherit (darwin.apple_sdk.frameworks) CoreServices ApplicationServices; isCross = stdenv.hostPlatform != stdenv.buildPlatform; majorVersion = lib.versions.major version; minorVersion = lib.versions.minor version; pname = if enableNpm then "nodejs" else "nodejs-slim"; useSharedHttpParser = !stdenv.isDarwin && lib.versionOlder "${majorVersion}.${minorVersion}" "11.4"; sharedLibDeps = { inherit openssl zlib libuv; } // (lib.optionalAttrs useSharedHttpParser { inherit http-parser; }); sharedConfigureFlags = lib.concatMap (name: [ "--shared-${name}" "--shared-${name}-libpath=${lib.getLib sharedLibDeps.${name}}/lib" /** Closure notes: we explicitly avoid specifying --shared-*-includes, * as that would put the paths into bin/nodejs. * Including pkg-config in build inputs would also have the same effect! */ ]) (builtins.attrNames sharedLibDeps) ++ [ "--with-intl=system-icu" "--openssl-use-def-ca-store" ]; copyLibHeaders = map (name: "${lib.getDev sharedLibDeps.${name}}/include/*") (builtins.attrNames sharedLibDeps); extraConfigFlags = lib.optionals (!enableNpm) [ "--without-npm" ]; package = stdenv.mkDerivation (finalAttrs: let /** the final package fixed point, after potential overrides */ self = finalAttrs.finalPackage; in { inherit pname version; src = fetchurl { url = "https://nodejs.org/dist/v${version}/node-v${version}.tar.xz"; inherit sha256; }; strictDeps = true; env = lib.optionalAttrs (stdenv.isDarwin && stdenv.isx86_64) { # Make sure libc++ uses `posix_memalign` instead of `aligned_alloc` on x86_64-darwin. # Otherwise, nodejs would require the 11.0 SDK and macOS 10.15+. NIX_CFLAGS_COMPILE = "-D__ENVIRONMENT_MAC_OS_X_VERSION_MIN_REQUIRED__=101300"; }; depsBuildBuild = [ buildPackages.stdenv.cc openssl libuv zlib icu ]; # NB: technically, we do not need bash in build inputs since all scripts are # wrappers over the corresponding JS scripts. There are some packages though # that use bash wrappers, e.g. polaris-web. buildInputs = lib.optionals stdenv.isDarwin [ CoreServices ApplicationServices ] ++ [ zlib libuv openssl http-parser icu bash ]; nativeBuildInputs = [ installShellFiles pkg-config python which ] ++ lib.optionals stdenv.isDarwin [ xcbuild ]; outputs = [ "out" "libv8" ]; setOutputFlags = false; moveToDev = false; configureFlags = let inherit (stdenv.hostPlatform) gcc isAarch32; in sharedConfigureFlags ++ lib.optionals (lib.versionOlder version "19") [ "--without-dtrace" ] ++ (lib.optionals isCross [ "--cross-compiling" "--dest-cpu=${let platform = stdenv.hostPlatform; in if platform.isAarch32 then "arm" else if platform.isAarch64 then "arm64" else if platform.isMips32 && platform.isLittleEndian then "mipsel" else if platform.isMips32 && !platform.isLittleEndian then "mips" else if platform.isMips64 && platform.isLittleEndian then "mips64el" else if platform.isPower && platform.is32bit then "ppc" else if platform.isPower && platform.is64bit then "ppc64" else if platform.isx86_64 then "x86_64" else if platform.isx86_32 then "x86" else if platform.isS390 && platform.is64bit then "s390x" else if platform.isRiscV && platform.is64bit then "riscv64" else throw "unsupported cpu ${stdenv.hostPlatform.uname.processor}"}" ]) ++ (lib.optionals (isCross && isAarch32 && lib.hasAttr "fpu" gcc) [ "--with-arm-fpu=${gcc.fpu}" ]) ++ (lib.optionals (isCross && isAarch32 && lib.hasAttr "float-abi" gcc) [ "--with-arm-float-abi=${gcc.float-abi}" ]) ++ extraConfigFlags; configurePlatforms = []; dontDisableStatic = true; configureScript = writeScript "nodejs-configure" '' export CC_host="$CC_FOR_BUILD" CXX_host="$CXX_FOR_BUILD" exec ${python.executable} configure.py "$@" ''; enableParallelBuilding = true; # Don't allow enabling content addressed conversion as `nodejs` # checksums it's image before conversion happens and image loading # breaks: # $ nix build -f. nodejs --arg config '{ contentAddressedByDefault = true; }' # $ ./result/bin/node # Check failed: VerifyChecksum(blob). __contentAddressed = false; passthru.interpreterName = "nodejs"; passthru.pkgs = callPackage ../../node-packages/default.nix { nodejs = self; }; setupHook = ./setup-hook.sh; pos = builtins.unsafeGetAttrPos "version" args; inherit patches; __darwinAllowLocalNetworking = true; # for tests # TODO: what about tests when cross-compiling? # Note that currently stdenv does not run check phase if build ≠ host. doCheck = true; # Some dependencies required for tools/doc/node_modules (and therefore # test-addons, jstest and others) target are not included in the tarball. # Run test targets that do not require network access. checkTarget = lib.concatStringsSep " " ([ "build-js-native-api-tests" "build-node-api-tests" "tooltest" "cctest" ] ++ lib.optionals (!stdenv.buildPlatform.isDarwin || lib.versionAtLeast version "20") [ # There are some test failures on macOS before v20 that are not worth the # time to debug for a version that would be eventually removed in less # than a year (Node.js 18 will be EOL at 2025-04-30). Note that these # failures are specific to Nix sandbox on macOS and should not affect # actual functionality. ] ++ lib.optionals (!stdenv.isDarwin) [ # TODO: JS test suite is too flaky on Darwin; revisit at a later date. "test-ci-js" ]); checkFlags = [ # Do not create __pycache__ when running tests. "PYTHONDONTWRITEBYTECODE=1" ] ++ lib.optionals (!stdenv.buildPlatform.isDarwin || lib.versionAtLeast version "20") [ "FLAKY_TESTS=skip" # Skip some tests that are not passing in this context "CI_SKIP_TESTS=${lib.concatStringsSep "," ([ "test-child-process-exec-env" "test-child-process-uid-gid" "test-fs-write-stream-eagain" "test-https-foafssl" "test-process-euid-egid" "test-process-initgroups" "test-process-setgroups" "test-process-uid-gid" "test-setproctitle" "test-tls-cli-max-version-1.3" "test-tls-client-auth" "test-tls-sni-option" ] ++ lib.optionals stdenv.hostPlatform.isDarwin [ # Disable tests that don’t work under macOS sandbox. "test-macos-app-sandbox" "test-os" "test-os-process-priority" # This is a bit weird, but for some reason fs watch tests fail with # sandbox. "test-fs-promises-watch" "test-fs-watch" "test-fs-watch-encoding" "test-fs-watch-non-recursive" "test-fs-watch-recursive-add-file" "test-fs-watch-recursive-add-file-to-existing-subfolder" "test-fs-watch-recursive-add-file-to-new-folder" "test-fs-watch-recursive-add-file-with-url" "test-fs-watch-recursive-add-folder" "test-fs-watch-recursive-assert-leaks" "test-fs-watch-recursive-promise" "test-fs-watch-recursive-symlink" "test-fs-watch-recursive-sync-write" "test-fs-watch-recursive-update-file" "test-fs-watchfile" "test-runner-run" "test-runner-watch-mode" "test-watch-mode-files_watcher" ])}" ]; postInstall = '' HOST_PATH=$out/bin patchShebangs --host $out ${lib.optionalString (stdenv.buildPlatform.canExecute stdenv.hostPlatform) '' $out/bin/${self.meta.mainProgram} --completion-bash > ${self.meta.mainProgram}.bash installShellCompletion ${self.meta.mainProgram}.bash ''} ${lib.optionalString (enableNpm) '' mkdir -p $out/share/bash-completion/completions ln -s $out/lib/node_modules/npm/lib/utils/completion.sh \ $out/share/bash-completion/completions/npm for dir in "$out/lib/node_modules/npm/man/"*; do mkdir -p $out/share/man/$(basename "$dir") for page in "$dir"/*; do ln -rs $page $out/share/man/$(basename "$dir") done done ''} # install the missing headers for node-gyp cp -r ${lib.concatStringsSep " " copyLibHeaders} $out/include/node # assemble a static v8 library and put it in the 'libv8' output mkdir -p $libv8/lib pushd out/Release/obj.target find . -path "./torque_*/**/*.o" -or -path "./v8*/**/*.o" | sort -u >files ${if stdenv.buildPlatform.isGnu then '' ar -cqs $libv8/lib/libv8.a @files '' else '' # llvm-ar supports response files, so take advantage of it if it’s available. if [ "$(basename $(readlink -f $(command -v ar)))" = "llvm-ar" ]; then ar -cqs $libv8/lib/libv8.a @files else cat files | while read -r file; do ar -cqS $libv8/lib/libv8.a $file done fi ''} popd # copy v8 headers cp -r deps/v8/include $libv8/ # create a pkgconfig file for v8 major=$(grep V8_MAJOR_VERSION deps/v8/include/v8-version.h | cut -d ' ' -f 3) minor=$(grep V8_MINOR_VERSION deps/v8/include/v8-version.h | cut -d ' ' -f 3) patch=$(grep V8_PATCH_LEVEL deps/v8/include/v8-version.h | cut -d ' ' -f 3) mkdir -p $libv8/lib/pkgconfig cat > $libv8/lib/pkgconfig/v8.pc << EOF Name: v8 Description: V8 JavaScript Engine Version: $major.$minor.$patch Libs: -L$libv8/lib -lv8 -pthread -licui18n -licuuc Cflags: -I$libv8/include EOF ''; passthru.tests = { version = testers.testVersion { package = self; version = "v${version}"; }; }; passthru.updateScript = import ./update.nix { inherit writeScript coreutils gnugrep jq curl common-updater-scripts gnupg nix runtimeShell; inherit lib; inherit majorVersion; }; meta = with lib; { description = "Event-driven I/O framework for the V8 JavaScript engine"; homepage = "https://nodejs.org"; changelog = "https://github.com/nodejs/node/releases/tag/v${version}"; license = licenses.mit; maintainers = with maintainers; [ aduh95 ]; platforms = platforms.linux ++ platforms.darwin; mainProgram = "node"; knownVulnerabilities = optional (versionOlder version "18") "This NodeJS release has reached its end of life. See https://nodejs.org/en/about/releases/."; # Node.js build system does not have separate host and target OS # configurations (architectures are defined as host_arch and target_arch, # but there is no such thing as host_os and target_os). # # We may be missing something here, but it doesn’t look like it is # possible to cross-compile between different operating systems. broken = stdenv.buildPlatform.parsed.kernel.name != stdenv.hostPlatform.parsed.kernel.name; }; passthru.python = python; # to ensure nodeEnv uses the same version }); in package