linux-hardened/flake.nix

{
  inputs = {
    nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable";
  };

  nixConfig = {
    extra-substituters = [ "https://cache.kyouma.net" ];
    extra-trusted-public-keys = [ "cache.kyouma.net:Frjwu4q1rnwE/MnSTmX9yx86GNA/z3p/oElGvucLiZg=" ];
  };

  outputs = { self, nixpkgs, ... }:
  let
    inherit (nixpkgs) lib;
    inherit (lib) mapAttrs;

    profiles = import ./profiles.nix;
    legacyPackages = mapAttrs (system: profile: import nixpkgs { inherit system; }) profiles;
    linux-hardened = import ./linux-hardened.nix;
  in {
    packages = mapAttrs
      (system: profiles: mapAttrs
        (name: profile: linux-hardened legacyPackages.${system} profile)
      profiles) profiles;

    devShells = mapAttrs (system: profile:
    let
      pkgs = legacyPackages.${system};
      dummy = linux-hardened pkgs { arch = ""; config = ./dummy.nix; firmware = [ ]; };

      mkShell = packages:
        pkgs.mkShell {
          inherit packages;
          shellHook = ''
            exec $SHELL
          '';
        };
    in {
      default = mkShell
        (with pkgs; dummy.nativeBuildInputs ++ [ ncurses pkg-config ]);
    }) profiles;

    hydraJobs = {
      kernel = self.packages;
      shell = self.devShells;
    };
  };
}
Initial import 2024-07-31 11:00:49 +02:00			`{`
			`inputs = {`
			`nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable";`
			`};`

			`nixConfig = {`
			`extra-substituters = [ "https://cache.kyouma.net" ];`
			`extra-trusted-public-keys = [ "cache.kyouma.net:Frjwu4q1rnwE/MnSTmX9yx86GNA/z3p/oElGvucLiZg=" ];`
			`};`

Reformat code for compactness 2024-08-12 21:12:18 +02:00			`outputs = { self, nixpkgs, ... }:`
			`let`
			`inherit (nixpkgs) lib;`
			`inherit (lib) mapAttrs;`
Initial import 2024-07-31 11:00:49 +02:00
Reformat code for compactness 2024-08-12 21:12:18 +02:00			`profiles = import ./profiles.nix;`
			`legacyPackages = mapAttrs (system: profile: import nixpkgs { inherit system; }) profiles;`
			`linux-hardened = import ./linux-hardened.nix;`
			`in {`
			`packages = mapAttrs`
			`(system: profiles: mapAttrs`
			`(name: profile: linux-hardened legacyPackages.${system} profile)`
			`profiles) profiles;`
Initial import 2024-07-31 11:00:49 +02:00
Reformat code for compactness 2024-08-12 21:12:18 +02:00			`devShells = mapAttrs (system: profile:`
			`let`
			`pkgs = legacyPackages.${system};`
			`dummy = linux-hardened pkgs { arch = ""; config = ./dummy.nix; firmware = [ ]; };`
Initial import 2024-07-31 11:00:49 +02:00
Reformat code for compactness 2024-08-12 21:12:18 +02:00			`mkShell = packages:`
			`pkgs.mkShell {`
			`inherit packages;`
			`shellHook = ''`
			`exec $SHELL`
			`'';`
			`};`
			`in {`
			`default = mkShell`
			`(with pkgs; dummy.nativeBuildInputs ++ [ ncurses pkg-config ]);`
			`}) profiles;`
Initial import 2024-07-31 11:00:49 +02:00
Reformat code for compactness 2024-08-12 21:12:18 +02:00			`hydraJobs = {`
			`kernel = self.packages;`
			`shell = self.devShells;`
Initial import 2024-07-31 11:00:49 +02:00			`};`
Reformat code for compactness 2024-08-12 21:12:18 +02:00			`};`
Initial import 2024-07-31 11:00:49 +02:00			`}`