{
description = "redacted";
inputs = {
nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable";
utils.url = "github:numtide/flake-utils";
flake-compat = {
url = "github:edolstra/flake-compat";
flake = false;
};
naersk = {
url = "github:nix-community/naersk";
inputs.nixpkgs.follows = "nixpkgs";
};
# Used for rust compiler
rust-overlay = {
url = "github:oxalica/rust-overlay";
inputs.nixpkgs.follows = "nixpkgs";
};
# Advisory db from rust-sec
advisory-db = {
url = "github:RustSec/advisory-db";
flake = false;
};
};
outputs = { self, nixpkgs, flake-compat, utils, naersk, rust-overlay, advisory-db }:
utils.lib.eachDefaultSystem (system:
let
pkgs = import nixpkgs {
inherit system;
overlays = [
(import rust-overlay)
];
};
crateName = "redacted";
rust = pkgs.rust-bin.stable.latest.default.override {
extensions = [ "llvm-tools-preview" ];
};
naersk-lib = naersk.lib."${system}".override {
rustc = rust;
cargo = rust;
};
cargo-llvm-cov = naersk-lib.buildPackage {
pname = "cargo-llvm-cov";
src = pkgs.fetchzip {
url = "https://crates.io/api/v1/crates/cargo-llvm-cov/0.4.14/download";
extension = ".tar.gz";
sha256 = "sha256-DY5eBSx/PSmKaG7I6scDEbyZQ5hknA/pfl0KjTNqZlo=";
};
};
cargo-nextest = naersk-lib.buildPackage {
pname = "cargo-nextest";
src = pkgs.fetchzip {
url = "https://crates.io/api/v1/crates/cargo-nextest/0.9.34/download";
extension = ".tar.gz";
sha256 = "sha256-B4B+5rIaupTflJXmLQZu5Q7kzUmquQpgcRvUTgjg6uM=";
};
};
devBase = with pkgs; [
cargo-audit
nixpkgs-fmt
git-chglog
openssl
pkgconfig
pre-commit
rust-analyzer
cmake
cargo-release
git
git-lfs
cargo-udeps
cbor-diag
cargo-criterion
perl
python39Packages.mdformat
cargo-llvm-cov
cargo-nextest
gnuplot
# for ci reasons
bash
cacert
];
in
rec
{
# Main binary
packages.${crateName} = naersk-lib.buildPackage {
pname = "${crateName}";
root = ./.;
};
# binary + tests
packages.tests.${crateName} = naersk-lib.buildPackage {
pname = "${crateName}";
root = ./.;
doCheck = true;
};
packages.docs.${crateName} = naersk-lib.buildPackage {
pname = "${crateName}";
root = ./.;
dontBuild = true;
doDoc = true;
doDocFail = true;
};
defaultPackage = packages.${crateName};
# Make some things eaiser to do in CI
packages.lints = {
# lint formatting
format.${crateName} =
with import nixpkgs { inherit system; };
stdenv.mkDerivation {
name = "format lint";
src = self;
nativeBuildInputs = with pkgs; [ rust-bin.stable.latest.default ];
buildPhase = "cargo fmt -- --check";
installPhase = "mkdir -p $out; echo 'done'";
};
# audit against stored advisory db
audit.${crateName} =
with import nixpkgs { inherit system; };
stdenv.mkDerivation {
name = "format lint";
src = self;
nativeBuildInputs = with pkgs; [ rust-bin.stable.latest.default cargo-audit ];
buildPhase = ''
export HOME=$TMP
mkdir -p ~/.cargo
cp -r ${advisory-db} ~/.cargo/advisory-db
cargo audit -n
'';
installPhase = "mkdir -p $out; echo 'done'";
};
# Clippy
clippy.${crateName} = naersk-lib.buildPackage {
pname = "${crateName}";
root = ./.;
cargoTestCommands = (old: [ ''cargo $cargo_options clippy'' ]);
doCheck = true;
dontBuild = true;
};
};
devShell = pkgs.mkShell {
inputsFrom = builtins.attrValues self.packages.${system};
buildInputs =
[ rust ] ++ devBase;
};
packages.nightlyRustShell = pkgs.mkShell {
buildInputs =
[
(pkgs.rust-bin.selectLatestNightlyWith (toolchain: toolchain.default.override {
extensions = [ "rust-src" "clippy" "llvm-tools-preview" ];
}))
] ++ devBase;
};
});
}