ghostfox/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
nixpkgs/pkgs/by-name/sp/spire/package.nix
Dark Steveneq 646b892680
Some checks failed
Periodic Merges (6h) / master → staging-nixos (push) Failing after 12m50s
Details
Periodic Merges (6h) / master → staging-next (push) Failing after 12m54s
Details
Periodic Merges (24h) / merge-base(master,staging) → haskell-updates (push) Failing after 11m54s
Details
Periodic Merges (6h) / staging-next → staging (push) Failing after 12m13s
Details
Periodic Merges (24h) / staging-next-25.05 → staging-25.05 (push) Failing after 13m24s
Details
Periodic Merges (24h) / release-25.05 → staging-next-25.05 (push) Failing after 14m28s
Details
push sheeet
2025-10-09 14:15:47 +02:00

105 lines
2.4 KiB
Nix
Raw Permalink Blame History

{
lib,
buildGoModule,
fetchFromGitHub,
}:
buildGoModule (finalAttrs: {
pname = "spire";
version = "1.13.0";
outputs = [
"out"
"agent"
"server"
];
src = fetchFromGitHub {
owner = "spiffe";
repo = "spire";
tag = "v${finalAttrs.version}";
sha256 = "sha256-hUvzC3gaNpp5yvIOoWG72WcC8yy5yLgf5RRzP+hPXrA=";
};
vendorHash = "sha256-qhYuE/rlaGJyOxt4e0a1QzAySF0wWOFoNdLAe2nKQbw=";
ldflags = [
"-s"
"-w"
"-X github.com/spiffe/spire/pkg/common/version.gittag=${finalAttrs.version}"
];
subPackages = [
"cmd/spire-agent"
"cmd/spire-server"
];
excludedPackages = [
# ensure these files aren't evaluated, see preCheck
"test/tmpsimulator"
"pkg/agent/plugin/nodeattestor/tpmdevid"
];
__darwinAllowLocalNetworking = true;
checkFlags =
let
skippedTests = [
# wants to reach remote TUF mirror
"TestDockerConfig"
"TestPlugin"
];
in
[ "-skip=^${builtins.concatStringsSep "$|^" skippedTests}$" ];
preCheck = ''
# remove test files which reference github.com/google/go-tpm-tools/simulator
# since it requires cgo and some missing header files
rm -rf test/tpmsimulator pkg/server/plugin/nodeattestor/tpmdevid/devid_test.go
# unset to run all tests
unset subPackages
'';
# Usually either the agent or server is needed for a given use case, but not both
postInstall = ''
mkdir -vp $agent/bin $server/bin
mv -v $out/bin/spire-agent $agent/bin/
mv -v $out/bin/spire-server $server/bin/
ln -vs $agent/bin/spire-agent $out/bin/spire-agent
ln -vs $server/bin/spire-server $out/bin/spire-server
'';
doInstallCheck = true;
installCheckPhase = ''
runHook preInstallCheck
$out/bin/spire-agent -h
if [ "$($out/bin/spire-agent --version 2>&1)" != "${finalAttrs.version}" ]; then
echo "spire-agent version does not match"
exit 1
fi
$out/bin/spire-server -h
if [ "$($out/bin/spire-server --version 2>&1)" != "${finalAttrs.version}" ]; then
echo "spire-server version does not match"
exit 1
fi
runHook postInstallCheck
'';
meta = {
description = "SPIFFE Runtime Environment";
homepage = "https://spiffe.io/";
downloadPage = "https://github.com/spiffe/spire";
changelog = "https://github.com/spiffe/spire/releases/tag/v${finalAttrs.version}";
license = lib.licenses.asl20;
maintainers = with lib.maintainers; [
fkautz
jk
];
};
})
Reference in New Issue View Git Blame Copy Permalink