-
Notifications
You must be signed in to change notification settings - Fork 1
/
flake.nix
98 lines (76 loc) · 2.29 KB
/
flake.nix
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
{
description = "Systemd unit generator for a verity protected Nix Store";
inputs = {
nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
flake-parts = {
url = "github:hercules-ci/flake-parts";
inputs.nixpkgs-lib.follows = "nixpkgs";
};
pre-commit-hooks-nix = {
url = "github:cachix/pre-commit-hooks.nix";
inputs = {
nixpkgs.follows = "nixpkgs";
};
};
};
outputs =
inputs@{ self, flake-parts, ... }:
flake-parts.lib.mkFlake { inherit inputs; } (_: {
imports = [
inputs.flake-parts.flakeModules.easyOverlay
inputs.pre-commit-hooks-nix.flakeModule
];
systems = [
"x86_64-linux"
"aarch64-linux"
];
flake.nixosModules = import ./nix/modules;
perSystem =
{
config,
system,
pkgs,
...
}:
{
_module.args.pkgs = import inputs.nixpkgs {
inherit system;
overlays = [
(_final: _prev: {
nix-store-veritysetup-generator = config.packages.nix-store-veritysetup-generator;
})
];
};
packages = {
nix-store-veritysetup-generator = pkgs.callPackage ./. { };
default = config.packages.nix-store-veritysetup-generator;
};
checks = import ./nix/tests { inherit pkgs; };
pre-commit = {
check.enable = true;
settings = {
hooks = {
nixfmt-rfc-style.enable = true;
typos.enable = true;
};
};
};
devShells.default = pkgs.mkShell {
shellHook = ''
${config.pre-commit.installationScript}
'';
packages = [
pkgs.clippy
pkgs.rustfmt
pkgs.cargo-edit
];
inputsFrom = [ config.packages.nix-store-veritysetup-generator ];
# Use a fake path so that the test does not depend on specific Nix
# store paths.
SYSTEMD_VERITYSETUP_PATH = "systemd-veritysetup";
SYSTEMD_ESCAPE_PATH = "${pkgs.systemd}/bin/systemd-escape";
RUST_SRC_PATH = "${pkgs.rustPlatform.rustLibSrc}";
};
};
});
}