forked from TraceMachina/nativelink
-
Notifications
You must be signed in to change notification settings - Fork 0
/
flake.nix
143 lines (129 loc) · 4.78 KB
/
flake.nix
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
{
description = "nativelink";
inputs = {
nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
pre-commit-hooks = {
url = "github:cachix/pre-commit-hooks.nix";
inputs.nixpkgs.follows = "nixpkgs";
};
crane = {
url = "github:ipetkov/crane";
inputs.nixpkgs.follows = "nixpkgs";
};
};
outputs = inputs @ { self, flake-parts, crane, ... }:
flake-parts.lib.mkFlake { inherit inputs; } {
systems = [
"x86_64-linux"
"x86_64-darwin"
"aarch64-darwin"
];
imports = [ inputs.pre-commit-hooks.flakeModule ];
perSystem = { config, pkgs, system, ... }:
let
isDarwin = builtins.elem system [
"x86_64-darwin"
"aarch64-darwin"
];
maybeDarwinDeps = pkgs.lib.optionals isDarwin [
pkgs.darwin.apple_sdk.frameworks.Security
pkgs.libiconv
];
customStdenv = import ./tools/llvmStdenv.nix { inherit pkgs; };
craneLib = crane.lib.${system};
src = pkgs.lib.cleanSourceWith {
src = craneLib.path ./.;
filter = path: type:
(builtins.match "^.+/data/SekienAkashita\\.jpg" path != null) ||
(craneLib.filterCargoSources path type);
};
commonArgs = {
inherit src;
strictDeps = true;
buildInputs = [ ];
nativeBuildInputs = [
pkgs.autoPatchelfHook
pkgs.cacert
] ++ maybeDarwinDeps;
stdenv = customStdenv;
};
# Additional target for external dependencies to simplify caching.
cargoArtifacts = craneLib.buildDepsOnly commonArgs;
nativelink = craneLib.buildPackage (commonArgs
// {
inherit cargoArtifacts;
});
hooks = import ./tools/pre-commit-hooks.nix { inherit pkgs; };
publish-ghcr = import ./tools/publish-ghcr.nix { inherit pkgs; };
local-image-test = import ./tools/local-image-test.nix { inherit pkgs; };
in
{
apps = {
default = {
type = "app";
program = "${nativelink}/bin/cas";
};
};
packages = {
inherit publish-ghcr local-image-test;
default = nativelink;
image = pkgs.dockerTools.streamLayeredImage {
name = "nativelink";
contents = [
nativelink
pkgs.dockerTools.caCertificates
];
config = {
Entrypoint = [ "/bin/cas" ];
Labels = {
"org.opencontainers.image.description" = "An RBE compatible, high-performance cache and remote executor.";
"org.opencontainers.image.documentation" = "https://github.com/TraceMachina/nativelink";
"org.opencontainers.image.licenses" = "Apache-2.0";
"org.opencontainers.image.revision" = "${self.rev or self.dirtyRev or "dirty"}";
"org.opencontainers.image.source" = "https://github.com/TraceMachina/nativelink";
"org.opencontainers.image.title" = "Native Link";
"org.opencontainers.image.vendor" = "Trace Machina, Inc.";
};
};
};
};
checks = {
# TODO(aaronmondal): Fix the tests.
# tests = craneLib.cargoNextest (commonArgs
# // {
# inherit cargoArtifacts;
# cargoNextestExtraArgs = "--all";
# partitions = 1;
# partitionType = "count";
# });
};
pre-commit.settings = { inherit hooks; };
devShells.default = pkgs.mkShell {
nativeBuildInputs = [
# Development tooling goes here.
pkgs.cargo
pkgs.rustc
pkgs.pre-commit
pkgs.bazel
pkgs.awscli2
pkgs.skopeo
pkgs.dive
pkgs.cosign
# Additional tools from within our development environment.
local-image-test
] ++ maybeDarwinDeps;
shellHook = ''
# Generate the .pre-commit-config.yaml symlink when entering the
# development shell.
${config.pre-commit.installationScript}
# The Bazel and Cargo builds in nix require a Clang toolchain.
# TODO(aaronmondal): The Bazel build currently uses the
# irreproducible host C++ toolchain. Provide
# this toolchain via nix for bitwise identical
# binaries across machines.
export CC=clang
'';
};
};
};
}