guix/substitute.mk

%: %.in Makefile
	sed \
	 -e "s^@abs_top_srcdir\@^$(abs_top_srcdir)^g" \
	 -e "s^@abs_top_builddir\@^$(abs_top_builddir)^g" \
	 -e "s^@extra1\@^$(extra1)^g" \
	 -e "s^@prefix\@^$(prefix)^g" \
	 -e "s^@bindir\@^$(bindir)^g" \
	 -e "s^@datadir\@^$(datadir)^g" \
	 -e "s^@sysconfdir\@^$(sysconfdir)^g" \
	 -e "s^@profiledir\@^$(profiledir)^g" \
	 -e "s^@localstatedir\@^$(localstatedir)^g" \
	 -e "s^@datadir\@^$(datadir)^g" \
	 -e "s^@libdir\@^$(libdir)^g" \
	 -e "s^@libexecdir\@^$(libexecdir)^g" \
	 -e "s^@storedir\@^$(storedir)^g" \
	 -e "s^@system\@^$(system)^g" \
	 -e "s^@shell\@^$(bash)^g" \
	 -e "s^@curl\@^$(curl)^g" \
	 -e "s^@bzip2\@^$(bzip2)^g" \
	 -e "s^@xz\@^$(xz)^g" \
	 -e "s^@perl\@^$(perl)^g" \
	 -e "s^@perlFlags\@^$(perlFlags)^g" \
	 -e "s^@coreutils\@^$(coreutils)^g" \
	 -e "s^@sed\@^$(sed)^g" \
	 -e "s^@tar\@^$(tar)^g" \
	 -e "s^@tarFlags\@^$(tarFlags)^g" \
	 -e "s^@gzip\@^$(gzip)^g" \
	 -e "s^@pv\@^$(pv)^g" \
	 -e "s^@tr\@^$(tr)^g" \
	 -e "s^@dot\@^$(dot)^g" \
	 -e "s^@xmllint\@^$(xmllint)^g" \
	 -e "s^@xmlflags\@^$(xmlflags)^g" \
	 -e "s^@xsltproc\@^$(xsltproc)^g" \
	 -e "s^@sqlite_bin\@^$(sqlite_bin)^g" \
	 -e "s^@version\@^$(VERSION)^g" \
	 -e "s^@perlbindings\@^$(perlbindings)^g" \
	 -e "s^@testPath\@^$(coreutils):$$(dirname $$(type -p expr))^g" \
	 -e "s^@openssl\@^$(openssl_prog)^g" \
	 < $< > $@ || rm $@
	if test -x $<; then chmod +x $@; fi

$(CONFIG_HEADER):
	true
* Refactorings. 2003-07-20 19:29:38 +00:00			`%: %.in Makefile`
			`sed \`
tests: Run `download-using-manifests' via libtool so that dlopening works. 2012-01-11 16:58:49 +00:00			`-e "s^@abs_top_srcdir\@^$(abs_top_srcdir)^g" \`
			`-e "s^@abs_top_builddir\@^$(abs_top_builddir)^g" \`
* A test to verify that Nix executes build jobs in parallel, if possible. This test fails right now because this hasn't been implemented right now. Yes, I'm doing Test-Driven Development! ;-) 2004-05-04 17:04:17 +00:00			`-e "s^@extra1\@^$(extra1)^g" \`
* Maintain integrity of the substitute and successor mappings when deleting a path in the store. * Allow absolute paths in Nix expressions. * Get nix-prefetch-url to work again. * Various other fixes. 2003-11-22 18:45:56 +00:00			`-e "s^@prefix\@^$(prefix)^g" \`
			`-e "s^@bindir\@^$(bindir)^g" \`
Replace "make check" with "make installcheck" Ensuring that the tests work from the build tree requires a growing number of nasty hacks. The tests also don't verify that the installed Nix actually works. Thus, the tests now require "make install" to have been run. 2012-03-19 00:20:02 +00:00			`-e "s^@datadir\@^$(datadir)^g" \`
* Maintain integrity of the substitute and successor mappings when deleting a path in the store. * Allow absolute paths in Nix expressions. * Get nix-prefetch-url to work again. * Various other fixes. 2003-11-22 18:45:56 +00:00			`-e "s^@sysconfdir\@^$(sysconfdir)^g" \`
Urgggh http://hydra.nixos.org/build/3661100 2013-01-02 22:52:15 +00:00			`-e "s^@profiledir\@^$(profiledir)^g" \`
* Maintain integrity of the substitute and successor mappings when deleting a path in the store. * Allow absolute paths in Nix expressions. * Get nix-prefetch-url to work again. * Various other fixes. 2003-11-22 18:45:56 +00:00			`-e "s^@localstatedir\@^$(localstatedir)^g" \`
			`-e "s^@datadir\@^$(datadir)^g" \`
* Install NixManifest.pm, NixConfig.pm and GeneratePatches.pm under the Nix:: namespace. 2011-10-10 21:11:08 +00:00			`-e "s^@libdir\@^$(libdir)^g" \`
* nix-pull requires libexecdir to be substituted. 2003-12-23 22:15:12 +00:00			`-e "s^@libexecdir\@^$(libexecdir)^g" \`
* Use $(storedir) instead of $(prefix)/store. 2004-02-20 11:32:30 +00:00			`-e "s^@storedir\@^$(storedir)^g" \`
* Use a system name that does not include the OS manufacturer (i.e., "i686-linux" instead of "i686-suse-linux"). 2003-12-01 14:36:50 +00:00			`-e "s^@system\@^$(system)^g" \`
* Make really sure that we use bash. The line NEED_PROG(shell, bash) actually uses the content of $shell if set, which often points at /bin/sh. 2008-04-10 09:54:23 +00:00			`-e "s^@shell\@^$(bash)^g" \`
* Switched from wget to curl. * Made the dependencies on bzip2 and the shell explicit. 2004-04-06 08:18:51 +00:00			`-e "s^@curl\@^$(curl)^g" \`
Drop the externals directory Nix now requires SQLite and bzip2 to be pre-installed. SQLite is detected using pkg-config. We required DBD::SQLite anyway, so depending on SQLite is not a big problem. The --with-bzip2, --with-openssl and --with-sqlite flags are gone. 2012-03-18 22:54:57 +00:00			`-e "s^@bzip2\@^$(bzip2)^g" \`
Use XZ compression in binary caches XZ compresses significantly better than bzip2. Here are the compression ratios and execution times (using 4 cores in parallel) on my /var/run/current-system (3.1 GiB): bzip2: total compressed size 849.56 MiB, 30.8% [2m08] xz -6: total compressed size 641.84 MiB, 23.4% [6m53] xz -7: total compressed size 621.82 MiB, 22.6% [7m19] xz -8: total compressed size 599.33 MiB, 21.8% [7m18] xz -9: total compressed size 588.18 MiB, 21.4% [7m40] Note that compression takes much longer. More importantly, however, decompression is much faster: bzip2: 1m47.274s xz -6: 0m55.446s xz -7: 0m54.119s xz -8: 0m52.388s xz -9: 0m51.842s The only downside to using -9 is that decompression takes a fair amount (~65 MB) of memory. 2012-06-29 18:26:31 +00:00			`-e "s^@xz\@^$(xz)^g" \`
* Make perl a dependency of Nix. 2004-03-15 15:23:53 +00:00			`-e "s^@perl\@^$(perl)^g" \`
* configure: detect whether DBD::SQLite is present. If necessary the location to DBI and DBD::SQLite can be passed with --with-dbi and --with-dbd-sqlite. 2011-04-11 10:13:53 +00:00			`-e "s^@perlFlags\@^$(perlFlags)^g" \`
* Purify all corepkgs builders. 2005-03-15 12:03:15 +00:00			`-e "s^@coreutils\@^$(coreutils)^g" \`
* nix-prefetch-url depends on sed (see http://hydra.nixos.org/build/311170). 2010-03-05 18:26:47 +00:00			`-e "s^@sed\@^$(sed)^g" \`
* Purify all corepkgs builders. 2005-03-15 12:03:15 +00:00			`-e "s^@tar\@^$(tar)^g" \`
Use a GNU tar flag to shut up warnings about implausibly old timestamp 2012-08-01 20:42:51 +00:00			`-e "s^@tarFlags\@^$(tarFlags)^g" \`
--proxy=proxy:3128 2008-05-07 14:18:28 +00:00			`-e "s^@gzip\@^$(gzip)^g" \`
If "pv" is available at compile time, hard-code its path 2012-04-13 12:41:33 +00:00			`-e "s^@pv\@^$(pv)^g" \`
* Give unpacked channels more sensible names than 0, 1, ... They now get the basename of the channel URL (e.g., nixpkgs-unstable). The top-level Nix expression of the channel is now an attribute set, the attributes of which are the individual channels (e.g., {nixpkgs_unstable = ...; strategoxt_unstable = ...}). This makes attribute paths ("nix-env -qaA" and "nix-env -iA") more sensible, e.g., "nix-env -iA nixpkgs_unstable.subversion". 2007-05-01 23:16:38 +00:00			`-e "s^@tr\@^$(tr)^g" \`
* Make it easy to run individual tests from the command line. 2006-03-01 12:15:33 +00:00			`-e "s^@dot\@^$(dot)^g" \`
* Add a test for nix-log2xml. 2006-03-01 13:25:08 +00:00			`-e "s^@xmllint\@^$(xmllint)^g" \`
			`-e "s^@xmlflags\@^$(xmlflags)^g" \`
			`-e "s^@xsltproc\@^$(xsltproc)^g" \`
* Set the path to sqlite3 properly. 2010-02-24 11:06:17 +00:00			`-e "s^@sqlite_bin\@^$(sqlite_bin)^g" \`
* Generate RPM spec file. 2004-01-02 16:04:53 +00:00			`-e "s^@version\@^$(VERSION)^g" \`
Support building with the Perl XS bindings disabled Since the Perl bindings require shared libraries, this is required on platforms such as Cygwin where we do a static build. 2012-05-10 23:03:23 +00:00			`-e "s^@perlbindings\@^$(perlbindings)^g" \`
* "type -P" isn't portable. 2010-10-04 15:50:08 +00:00			`-e "s^@testPath\@^$(coreutils):$$(dirname $$(type -p expr))^g" \`
Support cryptographically signed binary caches NAR info files in binary caches can now have a cryptographic signature that Nix will verify before using the corresponding NAR file. To create a private/public key pair for signing and verifying a binary cache, do: $ openssl genrsa -out ./cache-key.sec 2048 $ openssl rsa -in ./cache-key.sec -pubout > ./cache-key.pub You should also come up with a symbolic name for the key, such as "cache.example.org-1". This will be used by clients to look up the public key. (It's a good idea to number keys, in case you ever need to revoke/replace one.) To create a binary cache signed with the private key: $ nix-push --dest /path/to/binary-cache --key ./cache-key.sec --key-name cache.example.org-1 The public key (cache-key.pub) should be distributed to the clients. They should have a nix.conf should contain something like: signed-binary-caches = * binary-cache-public-key-cache.example.org-1 = /path/to/cache-key.pub If all works well, then if Nix fetches something from the signed binary cache, you will see a message like: *** Downloading ‘http://cache.example.org/nar/7dppcj5sc1nda7l54rjc0g5l1hamj09j-subversion-1.7.11’ (signed by ‘cache.example.org-1’) to ‘/nix/store/7dppcj5sc1nda7l54rjc0g5l1hamj09j-subversion-1.7.11’... On the other hand, if the signature is wrong, you get a message like NAR info file `http://cache.example.org/7dppcj5sc1nda7l54rjc0g5l1hamj09j.narinfo' has an invalid signature; ignoring Signatures are implemented as a single line appended to the NAR info file, which looks like this: Signature: 1;cache.example.org-1;HQ9Xzyanq9iV...muQ== Thus the signature has 3 fields: a version (currently "1"), the ID of key, and the base64-encoded signature of the SHA-256 hash of the contents of the NAR info file up to but not including the Signature line. Issue #75. 2014-01-08 14:23:41 +00:00			`-e "s^@openssl\@^$(openssl_prog)^g" \`
* Refactorings. 2003-07-20 19:29:38 +00:00			`< $< > $@ \|\| rm $@`
* Generate RPM spec file. 2004-01-02 16:04:53 +00:00			`if test -x $<; then chmod +x $@; fi`
Prevent config.h from being clobbered 2013-03-08 00:27:04 +00:00
			`$(CONFIG_HEADER):`
			`true`