diff options
| author | Euan Kemp <euank@euank.com> | 2020-10-25 22:54:18 -0700 |
|---|---|---|
| committer | Euan Kemp <euank@euank.com> | 2020-12-09 00:08:15 -0800 |
| commit | 6eb941d8c48db2363b896faa7124aade74612f62 (patch) | |
| tree | a175eca95dcc125ff0e72cccb43d780644577a71 /pkgs/applications/networking/cluster | |
| parent | 23290bd131fe33cb5844a9722662e8c458811ce3 (diff) | |
| download | nixlib-6eb941d8c48db2363b896faa7124aade74612f62.tar nixlib-6eb941d8c48db2363b896faa7124aade74612f62.tar.gz nixlib-6eb941d8c48db2363b896faa7124aade74612f62.tar.bz2 nixlib-6eb941d8c48db2363b896faa7124aade74612f62.tar.lz nixlib-6eb941d8c48db2363b896faa7124aade74612f62.tar.xz nixlib-6eb941d8c48db2363b896faa7124aade74612f62.tar.zst nixlib-6eb941d8c48db2363b896faa7124aade74612f62.zip | |
k3s: propagate runtime dependencies of the k3s binary
Fixes #101734 Prior to this change, the k3s binary included a tarball containing binaries like 'kubectl', but didn't keep a runtime reference to those runtime dependencies in plaintext (since they were gzipped inside the single combined k3s binary). In order for nix's automatic runtime dependency detection to work, we need to have a reference to them somewhere in $out. propagatedBuildInputs seems to do the right thing for us here. Running `nix-store -q --tree /nix/store/path/to/k3s` produces a different output after this change which includes the `libseccomp` reference I expect.
Diffstat (limited to 'pkgs/applications/networking/cluster')
| -rw-r--r-- | pkgs/applications/networking/cluster/k3s/default.nix | 12 |
1 files changed, 7 insertions, 5 deletions
diff --git a/pkgs/applications/networking/cluster/k3s/default.nix b/pkgs/applications/networking/cluster/k3s/default.nix index 55d51a656d9c..04dd58502093 100644 --- a/pkgs/applications/networking/cluster/k3s/default.nix +++ b/pkgs/applications/networking/cluster/k3s/default.nix @@ -158,8 +158,8 @@ let platforms = platforms.linux; }; }; - k3sBuild = buildGoPackage rec { - name = "k3s-build"; + k3sBin = buildGoPackage rec { + name = "k3s-bin"; version = "${k3sVersion}"; goPackagePath = "github.com/rancher/k3s"; @@ -169,7 +169,9 @@ let patches = [ ./patches/0001-Use-rm-from-path-in-go-generate.patch ./patches/0002-Add-nixpkgs-patches.patch ]; nativeBuildInputs = [ git pkgconfig ]; - buildInputs = [ k3sBuildStage1 k3sPlugins runc ]; + # These dependencies are embedded as compressed files in k3s at runtime. + # Propagate them to avoid broken runtime references to libraries. + propagatedBuildInputs = [ k3sPlugins k3sBuildStage1 runc ]; # k3s appends a suffix to the final distribution binary for some arches archSuffix = @@ -240,7 +242,7 @@ stdenv.mkDerivation rec { ]; buildInputs = [ - k3sBuild + k3sBin makeWrapper ] ++ k3sRuntimeDeps; @@ -254,7 +256,7 @@ stdenv.mkDerivation rec { # execute, but that we didn't bundle with it. installPhase = '' mkdir -p "$out/bin" - makeWrapper ${k3sBuild}/bin/k3s "$out/bin/k3s" \ + makeWrapper ${k3sBin}/bin/k3s "$out/bin/k3s" \ --prefix PATH : ${lib.makeBinPath k3sRuntimeDeps} \ --prefix PATH : "$out/bin" ''; |