mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-11-18 07:46:09 +01:00
fd78240ac8
At some point, I'd like to make another attempt at71f1f4884b
("openssl: stop static binaries referencing libs"), which was reverted in195c7da07d
. One problem with my previous attempt is that I moved OpenSSL's libraries to a lib output, but many dependent packages were hardcoding the out output as the location of the libraries. This patch fixes every such case I could find in the tree. It won't have any effect immediately, but will mean these packages will automatically use an OpenSSL lib output if it is reintroduced in future. This patch should cause very few rebuilds, because it shouldn't make any change at all to most packages I'm touching. The few rebuilds that are introduced come from when I've changed a package builder not to use variable names like openssl.out in scripts / substitution patterns, which would be confusing since they don't hardcode the output any more. I started by making the following global replacements: ${pkgs.openssl.out}/lib -> ${lib.getLib pkgs.openssl}/lib ${openssl.out}/lib -> ${lib.getLib openssl}/lib Then I removed the ".out" suffix when part of the argument to lib.makeLibraryPath, since that function uses lib.getLib internally. Then I fixed up cases where openssl was part of the -L flag to the compiler/linker, since that unambigously is referring to libraries. Then I manually investigated and fixed the following packages: - pycurl - citrix-workspace - ppp - wraith - unbound - gambit - acl2 I'm reasonably confindent in my fixes for all of them. For acl2, since the openssl library paths are manually provided above anyway, I don't think openssl is required separately as a build input at all. Removing it doesn't make a difference to the output size, the file list, or the closure. I've tested evaluation with the OfBorg meta checks, to protect against introducing evaluation failures.
50 lines
1.3 KiB
Nix
50 lines
1.3 KiB
Nix
{ lib
|
|
, stdenv
|
|
, rustPlatform
|
|
, fetchFromGitHub
|
|
, openssl
|
|
, postgresql
|
|
, libiconv
|
|
, Security
|
|
, protobuf
|
|
}:
|
|
let
|
|
pinData = lib.importJSON ./pin.json;
|
|
version = pinData.version;
|
|
in
|
|
rustPlatform.buildRustPackage rec {
|
|
inherit version;
|
|
pname = "lemmy-server";
|
|
|
|
src = fetchFromGitHub {
|
|
owner = "LemmyNet";
|
|
repo = "lemmy";
|
|
rev = version;
|
|
sha256 = pinData.serverSha256;
|
|
};
|
|
|
|
cargoSha256 = pinData.serverCargoSha256;
|
|
|
|
buildInputs = [ postgresql ]
|
|
++ lib.optionals stdenv.isDarwin [ libiconv Security ];
|
|
|
|
# Using OPENSSL_NO_VENDOR is not an option on darwin
|
|
# As of version 0.10.35 rust-openssl looks for openssl on darwin
|
|
# with a hardcoded path to /usr/lib/libssl.x.x.x.dylib
|
|
# https://github.com/sfackler/rust-openssl/blob/master/openssl-sys/build/find_normal.rs#L115
|
|
OPENSSL_LIB_DIR = "${lib.getLib openssl}/lib";
|
|
OPENSSL_INCLUDE_DIR = "${openssl.dev}/include";
|
|
|
|
PROTOC = "${protobuf}/bin/protoc";
|
|
PROTOC_INCLUDE = "${protobuf}/include";
|
|
nativeBuildInputs = [ protobuf ];
|
|
|
|
passthru.updateScript = ./update.sh;
|
|
|
|
meta = with lib; {
|
|
description = "🐀 Building a federated alternative to reddit in rust";
|
|
homepage = "https://join-lemmy.org/";
|
|
license = licenses.agpl3Only;
|
|
maintainers = with maintainers; [ happysalada ];
|
|
};
|
|
}
|