nixpkgs/pkgs/by-name/gv/gvisor/package.nix
Andrew Dunham ca9932abe5 maintainers: remove andrew-d as a maintainer
I am deeply saddened at the fact that I need to do this. I have no
interest in re-litigating everything that has happened over the past
weeks and months, but I want to make my position(s) extremely clear:

The thought of any of my work contributing to someone's death by drone
makes me feel physically ill.

Recent communications from senior members of the NixOS community have
made it clear that leadership is unaware or uninterested in the basics
of how to run and moderate a community in a way that is resilient to bad
actors. The recent post by @edolstra is tone-deaf and gives me no
confidence that the Nix/NixOS community is a place that I want to remain
involved in going forward. I am thus choosing to remove myself from such
a community.

I also hereby resign from the ACME team.

See also: #307033

Signed-off-by: Andrew Dunham <andrew@du.nham.ca>
2024-04-27 14:05:07 -04:00

53 lines
1.3 KiB
Nix

{ lib
, nixosTests
, buildGoModule
, fetchFromGitHub
, iproute2
, iptables
, makeWrapper
, procps
}:
buildGoModule {
pname = "gvisor";
version = "20240401.0";
# gvisor provides a synthetic go branch (https://github.com/google/gvisor/tree/go)
# that can be used to build gvisor without bazel.
# For updates, you should stick to the commits labeled "Merge release-** (automated)"
src = fetchFromGitHub {
owner = "google";
repo = "gvisor";
rev = "9d995324d058812a5476f8c06b20167012511e9c";
hash = "sha256-idgUEbYAfnm/HphVs12Sj1FwG+jmL2BBr0PJnG9BC3A=";
};
vendorHash = "sha256-jbMXeNXzvjfJcIfHjvf8I3ePjm6KFTXJ94ia4T2hUs4=";
nativeBuildInputs = [ makeWrapper ];
CGO_ENABLED = 0;
ldflags = [ "-s" "-w" ];
subPackages = [ "runsc" "shim" ];
postInstall = ''
# Needed for the 'runsc do' subcommand
wrapProgram $out/bin/runsc \
--prefix PATH : ${lib.makeBinPath [ iproute2 iptables procps ]}
mv $out/bin/shim $out/bin/containerd-shim-runsc-v1
'';
passthru.tests = { inherit (nixosTests) gvisor; };
meta = with lib; {
description = "Application Kernel for Containers";
homepage = "https://github.com/google/gvisor";
license = licenses.asl20;
maintainers = with maintainers; [ gpl ];
platforms = [ "x86_64-linux" "aarch64-linux" ];
};
}