mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-11-22 15:03:28 +00:00
22885f81c5
- Drop libSystem. It’s no longer needed. The SDK can be downloaded and built with existing tools. - Add jq and tapi. Adding these allows the stdenv bootstrap to stop special-casing stage 0. - Update tests for updated ld64. It handles code-signing properly, so the signatures aren’t broken.
300 lines
9.3 KiB
Nix
300 lines
9.3 KiB
Nix
{
|
|
lib,
|
|
stdenv,
|
|
bash,
|
|
bzip2,
|
|
coreutils,
|
|
cpio,
|
|
curlMinimal,
|
|
darwin,
|
|
diffutils,
|
|
dumpnar,
|
|
findutils,
|
|
gawk,
|
|
gettext,
|
|
gmpxx,
|
|
gnugrep,
|
|
gnumake,
|
|
gnused,
|
|
gnutar,
|
|
gzip,
|
|
jq,
|
|
ld64,
|
|
libffi,
|
|
libiconv,
|
|
libtapi,
|
|
libxml2,
|
|
llvmPackages,
|
|
ncurses,
|
|
nukeReferences,
|
|
oniguruma,
|
|
openssl,
|
|
patch,
|
|
pbzx,
|
|
runCommand,
|
|
writeText,
|
|
xarMinimal,
|
|
xz,
|
|
zlib,
|
|
}:
|
|
stdenv.mkDerivation (finalAttrs: {
|
|
name = "stdenv-bootstrap-tools";
|
|
|
|
nativeBuildInputs = [
|
|
dumpnar
|
|
nukeReferences
|
|
];
|
|
|
|
buildCommand =
|
|
let
|
|
inherit (lib) getBin getDev getLib;
|
|
|
|
coreutils_ =
|
|
(coreutils.override (prevArgs: {
|
|
# We want coreutils without ACL support.
|
|
aclSupport = false;
|
|
# Cannot use a single binary build, or it gets dynamically linked against gmp.
|
|
singleBinary = false;
|
|
})).overrideAttrs
|
|
(prevAttrs: {
|
|
# Increase header size to be able to inject extra RPATHs. Otherwise
|
|
# x86_64-darwin build fails as:
|
|
# https://cache.nixos.org/log/g5wyq9xqshan6m3kl21bjn1z88hx48rh-stdenv-bootstrap-tools.drv
|
|
NIX_LDFLAGS = (prevAttrs.NIX_LDFLAGS or "") + " -headerpad_max_install_names";
|
|
});
|
|
|
|
# Avoid messing with libkrb5 and libnghttp2.
|
|
curl_ = curlMinimal.override (prevArgs: {
|
|
gssSupport = false;
|
|
http2Support = false;
|
|
scpSupport = false;
|
|
});
|
|
|
|
unpackScript = writeText "bootstrap-tools-unpack.sh" ''
|
|
set -euo pipefail
|
|
|
|
echo Unpacking the bootstrap tools... >&2
|
|
mkdir $out
|
|
tar xf "$1" -C $out
|
|
|
|
updateInstallName() {
|
|
local path="$1"
|
|
|
|
cp "$path" "$path.new"
|
|
install_name_tool -id "$path" "$path.new"
|
|
codesign -f -i "$(basename "$path")" -s - "$path.new"
|
|
mv -f "$path.new" "$path"
|
|
}
|
|
|
|
find $out/lib -type f -name '*.dylib' -print0 | while IFS= read -r -d $'\0' lib; do
|
|
updateInstallName "$lib"
|
|
done
|
|
|
|
# as is a wrapper around clang. need to replace the nuked store paths
|
|
sed -i 's|/.*/bin/|'"$out"'/bin/|' $out/bin/as
|
|
|
|
# Provide a gunzip script.
|
|
cat > $out/bin/gunzip <<EOF
|
|
#!$out/bin/sh
|
|
exec $out/bin/gzip -d "\$@"
|
|
EOF
|
|
chmod +x $out/bin/gunzip
|
|
|
|
# Provide fgrep/egrep.
|
|
echo "#! $out/bin/sh" > $out/bin/egrep
|
|
echo "exec $out/bin/grep -E \"\$@\"" >> $out/bin/egrep
|
|
echo "#! $out/bin/sh" > $out/bin/fgrep
|
|
echo "exec $out/bin/grep -F \"\$@\"" >> $out/bin/fgrep
|
|
|
|
cat >$out/bin/dsymutil << EOF
|
|
#!$out/bin/sh
|
|
EOF
|
|
|
|
chmod +x $out/bin/egrep $out/bin/fgrep $out/bin/dsymutil
|
|
'';
|
|
|
|
in
|
|
''
|
|
mkdir -p $out/bin $out/include $out/lib $out/lib/darwin
|
|
|
|
chmod -R u+w $out/include
|
|
cp -rL ${getDev libiconv}/include/* $out/include
|
|
cp -rL ${getDev gnugrep.pcre2}/include/* $out/include
|
|
|
|
# Copy binutils.
|
|
for i in as ld ar ranlib nm strip otool install_name_tool lipo codesign_allocate; do
|
|
cp ${getBin darwin.binutils-unwrapped}/bin/$i $out/bin
|
|
done
|
|
cp -d ${getLib ld64}/lib/libcodedirectory*.dylib $out/lib
|
|
|
|
# Copy coreutils, bash, etc.
|
|
cp ${getBin coreutils_}/bin/* $out/bin
|
|
(cd $out/bin && rm vdir dir sha*sum pinky factor pathchk runcon shuf who whoami shred users)
|
|
|
|
cp -d ${getBin bash}/bin/{ba,}sh $out/bin
|
|
cp -d ${getBin diffutils}/bin/* $out/bin
|
|
cp ${getBin findutils}/bin/{find,xargs} $out/bin
|
|
cp -d ${getBin gawk}/bin/{g,}awk $out/bin
|
|
cp -d ${getBin gnugrep}/bin/grep $out/bin
|
|
cp -d ${getBin gnumake}/bin/* $out/bin
|
|
cp -d ${getBin gnused}/bin/* $out/bin
|
|
cp -d ${getBin patch}/bin/* $out/bin
|
|
|
|
cp -d ${getLib gettext}/lib/libintl*.dylib $out/lib
|
|
cp -d ${getLib gnugrep.pcre2}/lib/libpcre2*.dylib $out/lib
|
|
cp -d ${getLib libiconv}/lib/lib*.dylib $out/lib
|
|
cp -d ${getLib libxml2}/lib/libxml2*.dylib $out/lib
|
|
cp -d ${getLib ncurses}/lib/libncurses*.dylib $out/lib
|
|
|
|
# copy package extraction tools
|
|
cp -d ${getBin bzip2}/bin/b{,un}zip2 $out/bin
|
|
cp ${getBin cpio}/bin/cpio $out/bin
|
|
cp ${getBin gnutar}/bin/tar $out/bin
|
|
cp ${getBin gzip}/bin/.gzip-wrapped $out/bin/gzip
|
|
cp ${getBin pbzx}/bin/pbzx $out/bin
|
|
cp ${getBin xz}/bin/xz $out/bin
|
|
cp -d ${getLib bzip2}/lib/libbz2*.dylib $out/lib
|
|
cp -d ${getLib gmpxx}/lib/libgmp*.dylib $out/lib
|
|
cp -d ${getLib xarMinimal}/lib/libxar*.dylib $out/lib
|
|
cp -d ${getLib xz}/lib/liblzma*.dylib $out/lib
|
|
cp -d ${getLib zlib}/lib/libz*.dylib $out/lib
|
|
|
|
# This used to be in-nixpkgs, but now is in the bundle
|
|
# because I can't be bothered to make it partially static
|
|
cp ${getBin curl_}/bin/curl $out/bin
|
|
cp -d ${getLib curl_}/lib/libcurl*.dylib $out/lib
|
|
cp -d ${getLib openssl}/lib/*.dylib $out/lib
|
|
|
|
# Copy what we need of clang
|
|
cp -d ${getBin llvmPackages.clang-unwrapped}/bin/clang{,++,-cl,-cpp,-[0-9]*} $out/bin
|
|
cp -d ${getLib llvmPackages.clang-unwrapped}/lib/libclang-cpp*.dylib $out/lib
|
|
cp -rd ${getLib llvmPackages.clang-unwrapped}/lib/clang $out/lib
|
|
|
|
cp -d ${getLib llvmPackages.libcxx}/lib/libc++*.dylib $out/lib
|
|
mkdir -p $out/lib/darwin
|
|
cp -d ${getLib llvmPackages.compiler-rt}/lib/darwin/libclang_rt.{,profile_}osx.a $out/lib/darwin
|
|
cp -d ${getLib llvmPackages.compiler-rt}/lib/libclang_rt.{,profile_}osx.a $out/lib
|
|
cp -d ${getLib llvmPackages.llvm}/lib/libLLVM.dylib $out/lib
|
|
cp -d ${getLib libffi}/lib/libffi*.dylib $out/lib
|
|
|
|
cp -rd ${getDev llvmPackages.libcxx}/include/c++ $out/include
|
|
|
|
# Copy tools needed to build the SDK
|
|
cp -d ${getBin jq}/bin/* $out/bin
|
|
cp -d ${getBin libtapi}/bin/* $out/bin
|
|
|
|
cp -d ${getLib jq}/lib/lib*.dylib $out/lib
|
|
cp -d ${getLib oniguruma}/lib/lib*.dylib $out/lib
|
|
cp -d ${getLib libtapi}/lib/libtapi*.dylib $out/lib
|
|
|
|
# copy sigtool
|
|
cp -d ${getBin darwin.sigtool}/bin/{codesign,sigtool} $out/bin
|
|
|
|
# tools needed to unpack bootstrap archive
|
|
mkdir -p unpack/bin unpack/lib
|
|
cp -d ${getBin bash}/bin/{bash,sh} unpack/bin
|
|
cp ${getBin coreutils_}/bin/mkdir unpack/bin
|
|
cp ${getBin gnutar}/bin/tar unpack/bin
|
|
cp ${getBin xz}/bin/xz unpack/bin
|
|
cp -d ${getLib gettext}/lib/libintl*.dylib unpack/lib
|
|
cp -d ${getLib libiconv}/lib/lib*.dylib unpack/lib
|
|
cp -d ${getLib xz}/lib/liblzma*.dylib unpack/lib
|
|
cp ${unpackScript} unpack/bootstrap-tools-unpack.sh
|
|
|
|
#
|
|
# All files copied. Perform processing to update references to point into
|
|
# the archive
|
|
#
|
|
|
|
chmod -R u+w $out unpack
|
|
|
|
# - change nix store library paths to use @rpath/library
|
|
# - if needed add an rpath containing lib/
|
|
# - strip executable
|
|
rpathify() {
|
|
local libs=$(${stdenv.cc.targetPrefix}otool -L "$1" | tail -n +2 | grep -o "$NIX_STORE.*-\S*" || true)
|
|
local lib rpath
|
|
for lib in $libs; do
|
|
${stdenv.cc.targetPrefix}install_name_tool -change $lib "@rpath/$(basename "$lib")" "$1"
|
|
done
|
|
|
|
case "$(dirname "$1")" in
|
|
*/bin)
|
|
# Strip executables even further
|
|
${stdenv.cc.targetPrefix}strip "$i"
|
|
rpath='@executable_path/../lib'
|
|
;;
|
|
*/lib)
|
|
# the '/.' suffix is required
|
|
rpath='@loader_path/.'
|
|
;;
|
|
*/lib/darwin)
|
|
rpath='@loader_path/..'
|
|
;;
|
|
*)
|
|
echo unkown executable $1 >&2
|
|
exit 1
|
|
;;
|
|
esac
|
|
|
|
# if shared object contains references add an rpath to lib/
|
|
if ${stdenv.cc.targetPrefix}otool -l "$1"| grep -q '@rpath/'; then
|
|
${stdenv.cc.targetPrefix}install_name_tool -add_rpath "$rpath" "$1"
|
|
fi
|
|
}
|
|
|
|
# check that linked library paths exist in lib
|
|
# must be run after rpathify is performed
|
|
checkDeps() {
|
|
local deps=$(${stdenv.cc.targetPrefix}otool -l "$1"| grep -o '@rpath/[^ ]*' || true)
|
|
local lib
|
|
shopt -s extglob
|
|
for lib in $deps; do
|
|
local root="''${1/\/@(lib|bin)\/*}"
|
|
if [[ ! -e $root/''${lib/@rpath/lib} ]]; then
|
|
echo "error: $1 missing lib for $lib" >&2
|
|
exit 1
|
|
fi
|
|
done
|
|
shopt -u extglob
|
|
}
|
|
|
|
for i in {unpack,$out}/bin/* {unpack,$out}/lib{,/darwin}/*.dylib; do
|
|
if [[ ! -L $i ]] && isMachO "$i"; then
|
|
rpathify "$i"
|
|
checkDeps "$i"
|
|
fi
|
|
done
|
|
|
|
nuke-refs {unpack,$out}/bin/*
|
|
nuke-refs {unpack,$out}/lib/*
|
|
nuke-refs $out/lib/darwin/*
|
|
|
|
mkdir $out/.pack
|
|
mv $out/* $out/.pack
|
|
mv $out/.pack $out/pack
|
|
|
|
mkdir $out/on-server
|
|
cp -r unpack $out
|
|
|
|
XZ_OPT="-9 -T $NIX_BUILD_CORES" tar cvJf $out/on-server/bootstrap-tools.tar.xz \
|
|
--hard-dereference --sort=name --numeric-owner --owner=0 --group=0 --mtime=@1 -C $out/pack .
|
|
dumpnar $out/unpack | xz -9 -T $NIX_BUILD_CORES > $out/on-server/unpack.nar.xz
|
|
'';
|
|
|
|
allowedReferences = [ ];
|
|
|
|
passthru = {
|
|
bootstrapFiles = {
|
|
bootstrapTools = "${finalAttrs.finalPackage}/on-server/bootstrap-tools.tar.xz";
|
|
unpack = runCommand "unpack" { allowedReferences = [ ]; } ''
|
|
cp -r ${finalAttrs.finalPackage}/unpack $out
|
|
'';
|
|
};
|
|
};
|
|
|
|
meta = {
|
|
maintainers = [ lib.maintainers.copumpkin ];
|
|
};
|
|
})
|