nix: wrap program from libexec
test / test (push) Successful in 24s
Details
test / test (push) Successful in 24s
Details
This avoids renaming the fortify binary. Signed-off-by: Ophestra Umiker <cat@ophivana.moe>
This commit is contained in:
parent
8f3f0c7bbf
commit
748a0ae2c8
SSH Key Fingerprint:
SHA256:gQ67O0enBZ7UdZypgtspB2FDM1g3GVw8nX0XSdcFw8Q
11
package.nix
11
package.nix
|
|
@ -29,7 +29,7 @@ buildGoModule rec {
|
||||||
"-s"
|
"-s"
|
||||||
"-w"
|
"-w"
|
||||||
"-X"
|
"-X"
|
||||||
"main.Fmain=${placeholder "out"}/bin/.fortify-wrapped"
|
"main.Fmain=${placeholder "out"}/libexec/fortify"
|
||||||
"-X"
|
"-X"
|
||||||
"main.Fshim=${placeholder "out"}/libexec/fshim"
|
"main.Fshim=${placeholder "out"}/libexec/fshim"
|
||||||
]
|
]
|
||||||
|
|
@ -47,14 +47,15 @@ buildGoModule rec {
|
||||||
nativeBuildInputs = [ makeBinaryWrapper ];
|
nativeBuildInputs = [ makeBinaryWrapper ];
|
||||||
|
|
||||||
postInstall = ''
|
postInstall = ''
|
||||||
wrapProgram $out/bin/${pname} --prefix PATH : ${
|
mkdir "$out/libexec"
|
||||||
|
mv "$out"/bin/* "$out/libexec/"
|
||||||
|
|
||||||
|
makeBinaryWrapper "$out/libexec/fortify" "$out/bin/fortify" \
|
||||||
|
--inherit-argv0 --prefix PATH : ${
|
||||||
lib.makeBinPath [
|
lib.makeBinPath [
|
||||||
bubblewrap
|
bubblewrap
|
||||||
xdg-dbus-proxy
|
xdg-dbus-proxy
|
||||||
]
|
]
|
||||||
}
|
}
|
||||||
|
|
||||||
mkdir $out/libexec
|
|
||||||
(cd $out/bin && mv fsu fshim finit fuserdb ../libexec/)
|
|
||||||
'';
|
'';
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue