ghostfox/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

push sheeet
Some checks failed
Periodic Merges (6h) / master → staging-nixos (push) Failing after 12m50s
Details
Periodic Merges (6h) / master → staging-next (push) Failing after 12m54s
Details
Periodic Merges (24h) / merge-base(master,staging) → haskell-updates (push) Failing after 11m54s
Details
Periodic Merges (6h) / staging-next → staging (push) Failing after 12m13s
Details
Periodic Merges (24h) / staging-next-25.05 → staging-25.05 (push) Failing after 13m24s
Details
Periodic Merges (24h) / release-25.05 → staging-next-25.05 (push) Failing after 14m28s
Details

Browse Source
This commit is contained in:
Dark Steveneq
2025-10-09 14:15:47 +02:00
commit 646b892680
49168 changed files with 5897842 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
pkgs/by-name/li/librandombytes/environment-variable-tools.patch Normal file
View File

@@ -0,0 +1,34 @@
diff --git a/configure b/configure
index 36fcf67..39612f3 100755
--- a/configure
+++ b/configure
@@ -143,6 +143,16 @@ firstcompiler = None
with open('compilers/default') as f:
for c in f.readlines():
c = c.strip()
+ if env_cc := os.getenv('CC'):
+ c_as_list= c.split()
+ # check if the compiler we're testing has the name inside the last
+ # part of the CC env var
+ # i.e. gcc == x86_64-linux-unknown-gnu-gcc
+ # or gcc == gcc
+ if c_as_list[0] == env_cc.split("-")[-1]:
+ c_as_list[0] = env_cc
+ c = ' '.join(c_as_list)
+ log('patched command as %s' % c)
cv = compilerversion(c)
if cv == None:
log('skipping default compiler %s' % c)
diff --git a/scripts-build/staticlib b/scripts-build/staticlib
index 7b2fc92..a6bbe41 100755
--- a/scripts-build/staticlib
+++ b/scripts-build/staticlib
@@ -4,6 +4,6 @@ lib="$1"
shift
rm -f package/lib/"$lib".a
-ar cr package/lib/"$lib".a "$@"
-ranlib package/lib/"$lib".a || :
+${AR:-ar} cr package/lib/"$lib".a "$@"
+${RANLIB:-ranlib} package/lib/"$lib".a || :
chmod 644 package/lib/"$lib".a

91
pkgs/by-name/li/librandombytes/package.nix Normal file
View File

@@ -0,0 +1,91 @@
{
stdenv,
lib,
python3,
openssl,
fetchzip,
}:
stdenv.mkDerivation (finalAttrs: {
pname = "librandombytes";
version = "20240318";
src = fetchzip {
url = "https://randombytes.cr.yp.to/librandombytes-${finalAttrs.version}.tar.gz";
hash = "sha256-LE8iWw7FxckPREyqefgKtslD6CPDsL7VsfHScQ6JmLs=";
};
patches = [ ./environment-variable-tools.patch ];
postPatch = ''
patchShebangs configure
patchShebangs scripts-build
'';
__structuredAttrs = true;
# NOTE: librandombytes uses a custom Python `./configure`: it does not expect standard
# autoconfig --build --host etc. arguments: disable
configurePlatforms = [ ];
# NOTE: the librandombytes library has required specific CFLAGS defined:
# https://randombytes.cr.yp.to/librandombytes-20240318/compilers/default.html
# - `-O` (alias `-O1`) safe optimization
# - `-Qunused-arguments` suppress clang warning
# the default "fortify" hardening sets -O2, -D_FORTIFY_SOURCE=2:
# since librandombytes uses -O1, we disable the fortify hardening, and then manually re-enable -D_FORTIFY_SOURCE.
hardeningDisable = [ "fortify" ];
env.NIX_CFLAGS_COMPILE = toString (
lib.optionals stdenv.cc.isClang [ "-Qunused-arguments" ]
++ [
"-D_FORTIFY_SOURCE=2"
"-O1"
]
);
nativeBuildInputs = [ python3 ];
buildInputs = [ openssl ];
preFixup = lib.optionalString stdenv.hostPlatform.isDarwin ''
install_name_tool -id "$out/lib/librandombytes-kernel.1.dylib" "$out/lib/librandombytes-kernel.1.dylib"
install_name_tool -change "librandombytes-kernel.1.dylib" "$out/lib/librandombytes-kernel.1.dylib" "$out/bin/randombytes-info"
'';
passthru.updateScript = ./update.sh;
meta = {
homepage = "https://randombytes.cr.yp.to/";
description = "Simple API for applications generating fresh randomness";
changelog = "https://randombytes.cr.yp.to/download.html";
license = with lib.licenses; [
# Upstream specifies the public domain licenses with the terms here https://cr.yp.to/spdx.html
publicDomain
cc0
bsd0
mit
mit0
];
maintainers = with lib.maintainers; [
kiike
imadnyc
jleightcap
];
platforms = [
"i686-linux"
"x86_64-linux"
"armv7a-linux"
"aarch64-linux"
# Cannot support 32 bit MIPS because options in libcpucycles only supports mips64: https://cpucycles.cr.yp.to/libcpucycles-20240318/cpucycles/options.html
"mips64-linux"
"mips64el-linux"
# powerpc-linux (32 bits) is supported by upstream project but not by nix
"powerpc64-linux"
"powerpc64le-linux"
"riscv32-linux"
"riscv64-linux"
"s390x-linux"
# Upstream package supports sparc, but nix does not
]
++ lib.platforms.darwin; # Work on MacOS X mentioned: https://randombytes.cr.yp.to/download.html
};
})

11
pkgs/by-name/li/librandombytes/update.sh Executable file
View File

@@ -0,0 +1,11 @@
#!/usr/bin/env nix-shell
#!nix-shell -i bash -p curl cacert nix common-updater-scripts --pure
#shellcheck shell=bash
set -eu -o pipefail
# upstream doesn't use git, but has this file specifically for versioning
version="$(curl https://randombytes.cr.yp.to/librandombytes-latest-version.txt)"
update-source-version librandombytes "$version"