97
flake.nix
97
flake.nix
@@ -56,65 +56,66 @@
|
||||
pkgs.gnutar
|
||||
pkgs.gzip
|
||||
];
|
||||
dontFixup = true;
|
||||
buildCommand = ''
|
||||
set -euo pipefail
|
||||
set -euo pipefail
|
||||
|
||||
PAY="$PWD/payload"
|
||||
mkdir -p "$PAY/nix/store"
|
||||
PAY="$PWD/payload"
|
||||
mkdir -p "$PAY/nix/store"
|
||||
|
||||
# 1) copy closure (no nix calls; uses closureInfo)
|
||||
while IFS= read -r p; do
|
||||
cp -a --no-preserve=ownership "$p" "$PAY/nix/store/"
|
||||
done < ${ci}/store-paths
|
||||
# 1) copy closure (no nix calls; uses closureInfo)
|
||||
while IFS= read -r p; do
|
||||
cp -a --no-preserve=ownership "$p" "$PAY/nix/store/"
|
||||
done < ${ci}/store-paths
|
||||
|
||||
# 2) pick app binary and make relative path used by the runner
|
||||
APP_BIN=$(find ${appBinGuess} -maxdepth 1 -type f -perm -111 | head -n1)
|
||||
if [ -z "''${APP_BIN:-}" ]; then
|
||||
echo "no executable found in ${appBinGuess}" >&2
|
||||
exit 1
|
||||
fi
|
||||
APP_REL="/nix/store/$(basename "$(dirname "$APP_BIN")")/$(basename "$APP_BIN")"
|
||||
# 2) pick app binary and make relative path used by the runner
|
||||
APP_BIN=$(find ${appBinGuess} -maxdepth 1 -type f -perm -111 | head -n1)
|
||||
if [ -z "''${APP_BIN:-}" ]; then
|
||||
echo "no executable found in ${appBinGuess}" >&2
|
||||
exit 1
|
||||
fi
|
||||
APP_REL="/nix/store/$(basename "$(dirname "$APP_BIN")")/$(basename "$APP_BIN")"
|
||||
|
||||
# 3) tar the payload OUTSIDE $PAY to avoid self-inclusion
|
||||
_TMP="$(mktemp -d)"
|
||||
( cd "$PAY" && tar \
|
||||
--sort=name \
|
||||
--owner=0 --group=0 --numeric-owner \
|
||||
-czf "$_TMP/payload.tar.gz" . )
|
||||
# 3) tar the payload OUTSIDE $PAY to avoid self-inclusion
|
||||
_TMP="$(mktemp -d)"
|
||||
( cd "$PAY" && tar \
|
||||
--sort=name \
|
||||
--owner=0 --group=0 --numeric-owner \
|
||||
-czf "$_TMP/payload.tar.gz" . )
|
||||
|
||||
# 4) write the self-extracting stub
|
||||
cat > "$out" <<'SH'
|
||||
#!/bin/sh
|
||||
set -euf
|
||||
: "''${TMPDIR:=/tmp}"
|
||||
EXTRACT_DIR="$(mktemp -d "''${TMPDIR%/}/nxbdl.XXXXXX")"
|
||||
cleanup() { [ -n "''${KEEP_BUNDLE:-}" ] || rm -rf "$EXTRACT_DIR"; }
|
||||
trap cleanup EXIT INT TERM
|
||||
# 4) write the self-extracting stub
|
||||
cat > "$out" <<'SH'
|
||||
#!/bin/sh
|
||||
set -euf
|
||||
: "''${TMPDIR:=/tmp}"
|
||||
EXTRACT_DIR="$(mktemp -d "''${TMPDIR%/}/nxbdl.XXXXXX")"
|
||||
cleanup() { [ -n "''${KEEP_BUNDLE:-}" ] || rm -rf "$EXTRACT_DIR"; }
|
||||
trap cleanup EXIT INT TERM
|
||||
|
||||
ARCHIVE_LINE=$(awk '/^__ARCHIVE_BELOW__/ {print NR+1; exit 0}' "$0")
|
||||
tail -n +"$ARCHIVE_LINE" "$0" | tar -xzf - -C "$EXTRACT_DIR"
|
||||
ARCHIVE_LINE=$(awk '/^__ARCHIVE_BELOW__/ {print NR+1; exit 0}' "$0")
|
||||
tail -n +"$ARCHIVE_LINE" "$0" | tar -xzf - -C "$EXTRACT_DIR"
|
||||
|
||||
cd "$EXTRACT_DIR"
|
||||
APP_REL='__APP_REL__'
|
||||
PROOT_REL='__PROOT_REL__'
|
||||
cd "$EXTRACT_DIR"
|
||||
APP_REL='__APP_REL__'
|
||||
PROOT_REL='__PROOT_REL__'
|
||||
|
||||
BUNDLE_PWD="''${BUNDLE_PWD:-$PWD}"
|
||||
exec ".${PROOT_REL}" \
|
||||
-b ./nix:nix \
|
||||
-R / \
|
||||
-w "$BUNDLE_PWD" \
|
||||
".$APP_REL" "$@"
|
||||
BUNDLE_PWD="''${BUNDLE_PWD:-$PWD}"
|
||||
exec ".${PROOT_REL}" \
|
||||
-b ./nix:nix \
|
||||
-R / \
|
||||
-w "$BUNDLE_PWD" \
|
||||
".$APP_REL" "$@"
|
||||
|
||||
__ARCHIVE_BELOW__
|
||||
SH
|
||||
__ARCHIVE_BELOW__
|
||||
SH
|
||||
|
||||
# 5) inject paths, chmod, and append payload
|
||||
sed -i \
|
||||
-e "s|__APP_REL__|$APP_REL|g" \
|
||||
-e "s|__PROOT_REL__|${PROOT_REL}|g" \
|
||||
"$out"
|
||||
chmod +x "$out"
|
||||
cat "$_TMP/payload.tar.gz" >> "$out"
|
||||
# 5) inject paths, chmod, and append payload
|
||||
sed -i \
|
||||
-e "s|__APP_REL__|$APP_REL|g" \
|
||||
-e "s|__PROOT_REL__|${PROOT_REL}|g" \
|
||||
"$out"
|
||||
chmod +x "$out"
|
||||
cat "$_TMP/payload.tar.gz" >> "$out"
|
||||
'';
|
||||
};
|
||||
|
||||
|
||||
Reference in New Issue
Block a user