mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-12-22 21:53:32 +00:00
ca9932abe5
I am deeply saddened at the fact that I need to do this. I have no interest in re-litigating everything that has happened over the past weeks and months, but I want to make my position(s) extremely clear: The thought of any of my work contributing to someone's death by drone makes me feel physically ill. Recent communications from senior members of the NixOS community have made it clear that leadership is unaware or uninterested in the basics of how to run and moderate a community in a way that is resilient to bad actors. The recent post by @edolstra is tone-deaf and gives me no confidence that the Nix/NixOS community is a place that I want to remain involved in going forward. I am thus choosing to remove myself from such a community. I also hereby resign from the ACME team. See also: #307033 Signed-off-by: Andrew Dunham <andrew@du.nham.ca>
53 lines
1.3 KiB
Nix
53 lines
1.3 KiB
Nix
{ lib
|
|
, nixosTests
|
|
, buildGoModule
|
|
, fetchFromGitHub
|
|
, iproute2
|
|
, iptables
|
|
, makeWrapper
|
|
, procps
|
|
}:
|
|
|
|
buildGoModule {
|
|
pname = "gvisor";
|
|
version = "20240401.0";
|
|
|
|
# gvisor provides a synthetic go branch (https://github.com/google/gvisor/tree/go)
|
|
# that can be used to build gvisor without bazel.
|
|
# For updates, you should stick to the commits labeled "Merge release-** (automated)"
|
|
|
|
src = fetchFromGitHub {
|
|
owner = "google";
|
|
repo = "gvisor";
|
|
rev = "9d995324d058812a5476f8c06b20167012511e9c";
|
|
hash = "sha256-idgUEbYAfnm/HphVs12Sj1FwG+jmL2BBr0PJnG9BC3A=";
|
|
};
|
|
|
|
vendorHash = "sha256-jbMXeNXzvjfJcIfHjvf8I3ePjm6KFTXJ94ia4T2hUs4=";
|
|
|
|
nativeBuildInputs = [ makeWrapper ];
|
|
|
|
CGO_ENABLED = 0;
|
|
|
|
ldflags = [ "-s" "-w" ];
|
|
|
|
subPackages = [ "runsc" "shim" ];
|
|
|
|
postInstall = ''
|
|
# Needed for the 'runsc do' subcommand
|
|
wrapProgram $out/bin/runsc \
|
|
--prefix PATH : ${lib.makeBinPath [ iproute2 iptables procps ]}
|
|
mv $out/bin/shim $out/bin/containerd-shim-runsc-v1
|
|
'';
|
|
|
|
passthru.tests = { inherit (nixosTests) gvisor; };
|
|
|
|
meta = with lib; {
|
|
description = "Application Kernel for Containers";
|
|
homepage = "https://github.com/google/gvisor";
|
|
license = licenses.asl20;
|
|
maintainers = with maintainers; [ gpl ];
|
|
platforms = [ "x86_64-linux" "aarch64-linux" ];
|
|
};
|
|
}
|