75b969b1ad
Many dependencies of clan-cli are currently dynamically loaded via nix-shell on each execution. This is nice, as it reduces the initial closure size of clan, but the overhead introduced by nix-shell piles up quickly, as some commands shell out many times during their lifetime. For example, when adding a secret git is called 10+ times. This reduces the time of a test which adds a secret from around 50 seconds to 15 seconds. - add run_cmd() as an alternative to nix_shell() - introduce the concept of static dependencies which do not need to go through nix-shell - static dependencies are defined at build time and included into the wrapper for clan-cli - add package: clan-cli-full which statically ships all required dependencies TODO: deprecate nix_shell() in favor of run_cmd()
90 lines
2.4 KiB
Nix
90 lines
2.4 KiB
Nix
{
|
|
inputs,
|
|
self,
|
|
lib,
|
|
...
|
|
}:
|
|
{
|
|
perSystem =
|
|
{ self', pkgs, ... }:
|
|
let
|
|
flakeLock = lib.importJSON (self + /flake.lock);
|
|
flakeInputs = (builtins.removeAttrs inputs [ "self" ]);
|
|
flakeLockVendoredDeps = flakeLock // {
|
|
nodes =
|
|
flakeLock.nodes
|
|
// (lib.flip lib.mapAttrs flakeInputs (
|
|
name: _:
|
|
flakeLock.nodes.${name}
|
|
// {
|
|
locked = {
|
|
inherit (flakeLock.nodes.${name}.locked) narHash;
|
|
lastModified =
|
|
# lol, nixpkgs has a different timestamp on the fs???
|
|
if name == "nixpkgs" then 0 else 1;
|
|
path = "${inputs.${name}}";
|
|
type = "path";
|
|
};
|
|
}
|
|
));
|
|
};
|
|
flakeLockFile = builtins.toFile "clan-core-flake.lock" (builtins.toJSON flakeLockVendoredDeps);
|
|
clanCoreWithVendoredDeps =
|
|
lib.trace flakeLockFile pkgs.runCommand "clan-core-with-vendored-deps" { }
|
|
''
|
|
cp -r ${self} $out
|
|
chmod +w -R $out
|
|
cp ${flakeLockFile} $out/flake.lock
|
|
'';
|
|
in
|
|
{
|
|
|
|
devShells.clan-cli = pkgs.callPackage ./shell.nix {
|
|
inherit (self'.packages) clan-cli clan-cli-full;
|
|
inherit self';
|
|
};
|
|
packages = {
|
|
clan-cli = pkgs.python3.pkgs.callPackage ./default.nix {
|
|
inherit (inputs) nixpkgs;
|
|
clan-core-path = clanCoreWithVendoredDeps;
|
|
includedRuntimeDeps = [
|
|
"age"
|
|
"git"
|
|
];
|
|
};
|
|
clan-cli-full = pkgs.python3.pkgs.callPackage ./default.nix {
|
|
inherit (inputs) nixpkgs;
|
|
clan-core-path = clanCoreWithVendoredDeps;
|
|
includedRuntimeDeps = lib.importJSON ./clan_cli/nix/allowed-programs.json;
|
|
};
|
|
clan-cli-docs = pkgs.stdenv.mkDerivation {
|
|
name = "clan-cli-docs";
|
|
src = ./.;
|
|
|
|
buildInputs = [ pkgs.python3 ];
|
|
|
|
installPhase = ''
|
|
python docs.py reference
|
|
mkdir -p $out
|
|
cp -r out/* $out
|
|
ls -lah $out
|
|
'';
|
|
};
|
|
clan-ts-api = pkgs.stdenv.mkDerivation {
|
|
name = "clan-ts-api";
|
|
src = ./.;
|
|
|
|
buildInputs = [ pkgs.python3 ];
|
|
|
|
installPhase = ''
|
|
python api.py > $out
|
|
'';
|
|
};
|
|
|
|
default = self'.packages.clan-cli;
|
|
};
|
|
|
|
checks = self'.packages.clan-cli.tests;
|
|
};
|
|
}
|