2021-01-17 02:09:27 +00:00
|
|
|
|
{ lib, stdenv, fetchurl, fetchpatch, python, zlib, pkg-config, glib
|
2021-06-10 03:57:09 +01:00
|
|
|
|
, perl, pixman, vde2, alsa-lib, texinfo, flex
|
2021-08-27 09:16:15 +01:00
|
|
|
|
, bison, lzo, snappy, libaio, libtasn1, gnutls, nettle, curl, ninja, meson, sigtool
|
2020-12-15 18:25:55 +00:00
|
|
|
|
, makeWrapper, autoPatchelfHook
|
2016-02-29 00:22:06 +00:00
|
|
|
|
, attr, libcap, libcap_ng
|
2019-02-12 21:52:28 +00:00
|
|
|
|
, CoreServices, Cocoa, Hypervisor, rez, setfile
|
treewide: isArm -> isAarch32
Following legacy packing conventions, `isArm` was defined just for
32-bit ARM instruction set. This is confusing to non packagers though,
because Aarch64 is an ARM instruction set.
The official ARM overview for ARMv8[1] is surprisingly not confusing,
given the overall state of affairs for ARM naming conventions, and
offers us a solution. It divides the nomenclature into three levels:
```
ISA: ARMv8 {-A, -R, -M}
/ \
Mode: Aarch32 Aarch64
| / \
Encoding: A64 A32 T32
```
At the top is the overall v8 instruction set archicture. Second are the
two modes, defined by bitwidth but differing in other semantics too, and
buttom are the encodings, (hopefully?) isomorphic if they encode the
same mode.
The 32 bit encodings are mostly backwards compatible with previous
non-Thumb and Thumb encodings, and if so we can pun the mode names to
instead mean "sets of compatable or isomorphic encodings", and then
voilà we have nice names for 32-bit and 64-bit arm instruction sets
which do not use the word ARM so as to not confused either laymen or
experienced ARM packages.
[1]: https://developer.arm.com/products/architecture/a-profile
2018-03-20 02:41:06 +00:00
|
|
|
|
, numaSupport ? stdenv.isLinux && !stdenv.isAarch32, numactl
|
2016-02-29 00:22:06 +00:00
|
|
|
|
, seccompSupport ? stdenv.isLinux, libseccomp
|
2021-01-11 07:54:33 +00:00
|
|
|
|
, alsaSupport ? lib.hasSuffix "linux" stdenv.hostPlatform.system && !nixosTestRunner
|
2020-10-05 14:36:37 +01:00
|
|
|
|
, pulseSupport ? !stdenv.isDarwin && !nixosTestRunner, libpulseaudio
|
2020-12-15 18:25:55 +00:00
|
|
|
|
, sdlSupport ? !stdenv.isDarwin && !nixosTestRunner, SDL2, SDL2_image
|
2020-10-05 14:36:37 +01:00
|
|
|
|
, gtkSupport ? !stdenv.isDarwin && !xenSupport && !nixosTestRunner, gtk3, gettext, vte, wrapGAppsHook
|
|
|
|
|
, vncSupport ? !nixosTestRunner, libjpeg, libpng
|
|
|
|
|
, smartcardSupport ? !nixosTestRunner, libcacard
|
|
|
|
|
, spiceSupport ? !stdenv.isDarwin && !nixosTestRunner, spice, spice-protocol
|
2020-10-19 16:49:31 +01:00
|
|
|
|
, ncursesSupport ? !nixosTestRunner, ncurses
|
2016-09-05 19:37:03 +01:00
|
|
|
|
, usbredirSupport ? spiceSupport, usbredir
|
2016-11-02 16:06:48 +00:00
|
|
|
|
, xenSupport ? false, xen
|
2019-02-06 18:53:23 +00:00
|
|
|
|
, cephSupport ? false, ceph
|
2021-05-05 21:05:21 +01:00
|
|
|
|
, glusterfsSupport ? false, glusterfs, libuuid
|
2019-05-28 20:09:34 +01:00
|
|
|
|
, openGLSupport ? sdlSupport, mesa, epoxy, libdrm
|
2018-03-25 22:33:23 +01:00
|
|
|
|
, virglSupport ? openGLSupport, virglrenderer
|
2020-08-12 12:47:41 +01:00
|
|
|
|
, libiscsiSupport ? true, libiscsi
|
2018-06-10 23:18:31 +01:00
|
|
|
|
, smbdSupport ? false, samba
|
2020-07-11 21:33:40 +01:00
|
|
|
|
, tpmSupport ? true
|
2017-11-24 12:34:04 +00:00
|
|
|
|
, hostCpuOnly ? false
|
2018-11-13 22:54:08 +00:00
|
|
|
|
, hostCpuTargets ? (if hostCpuOnly
|
2021-01-11 07:54:33 +00:00
|
|
|
|
then (lib.optional stdenv.isx86_64 "i386-softmmu"
|
2018-11-13 22:54:08 +00:00
|
|
|
|
++ ["${stdenv.hostPlatform.qemuArch}-softmmu"])
|
|
|
|
|
else null)
|
2016-11-17 16:06:17 +00:00
|
|
|
|
, nixosTestRunner ? false
|
2013-07-04 16:44:44 +01:00
|
|
|
|
}:
|
2013-02-08 01:44:02 +00:00
|
|
|
|
|
2014-08-28 19:21:23 +01:00
|
|
|
|
let
|
2021-08-04 19:54:48 +01:00
|
|
|
|
audio = lib.optionalString alsaSupport "alsa,"
|
|
|
|
|
+ lib.optionalString pulseSupport "pa,"
|
|
|
|
|
+ lib.optionalString sdlSupport "sdl,";
|
2017-11-24 12:34:04 +00:00
|
|
|
|
|
2014-08-28 19:21:23 +01:00
|
|
|
|
in
|
2013-07-31 13:50:42 +01:00
|
|
|
|
|
2013-02-08 01:44:02 +00:00
|
|
|
|
stdenv.mkDerivation rec {
|
2019-11-05 15:20:59 +00:00
|
|
|
|
pname = "qemu"
|
2021-01-15 05:42:41 +00:00
|
|
|
|
+ lib.optionalString xenSupport "-xen"
|
|
|
|
|
+ lib.optionalString hostCpuOnly "-host-cpu-only"
|
|
|
|
|
+ lib.optionalString nixosTestRunner "-for-vm-tests";
|
2021-08-27 09:16:15 +01:00
|
|
|
|
version = "6.1.0";
|
2013-02-08 01:44:02 +00:00
|
|
|
|
|
|
|
|
|
src = fetchurl {
|
2020-04-27 20:48:18 +01:00
|
|
|
|
url= "https://download.qemu.org/qemu-${version}.tar.xz";
|
2021-08-27 09:16:15 +01:00
|
|
|
|
sha256 = "15iw7982g6vc4jy1l9kk1z9sl5bm1bdbwr74y7nvwjs1nffhig7f";
|
2013-02-08 01:44:02 +00:00
|
|
|
|
};
|
|
|
|
|
|
2021-09-29 13:53:21 +01:00
|
|
|
|
nativeBuildInputs = [ makeWrapper python python.pkgs.sphinx python.pkgs.sphinx_rtd_theme pkg-config flex bison meson ninja ]
|
2021-08-04 19:54:48 +01:00
|
|
|
|
++ lib.optionals gtkSupport [ wrapGAppsHook ]
|
2021-08-27 09:16:15 +01:00
|
|
|
|
++ lib.optionals stdenv.isLinux [ autoPatchelfHook ]
|
|
|
|
|
++ lib.optionals stdenv.isDarwin [ sigtool ];
|
2021-08-04 19:54:48 +01:00
|
|
|
|
|
|
|
|
|
buildInputs = [ zlib glib perl pixman
|
2021-08-27 09:16:15 +01:00
|
|
|
|
vde2 texinfo lzo snappy libtasn1
|
2021-08-04 19:54:48 +01:00
|
|
|
|
gnutls nettle curl
|
|
|
|
|
]
|
|
|
|
|
++ lib.optionals ncursesSupport [ ncurses ]
|
|
|
|
|
++ lib.optionals stdenv.isDarwin [ CoreServices Cocoa Hypervisor rez setfile ]
|
|
|
|
|
++ lib.optionals seccompSupport [ libseccomp ]
|
|
|
|
|
++ lib.optionals numaSupport [ numactl ]
|
|
|
|
|
++ lib.optionals pulseSupport [ libpulseaudio ]
|
|
|
|
|
++ lib.optionals sdlSupport [ SDL2 SDL2_image ]
|
|
|
|
|
++ lib.optionals gtkSupport [ gtk3 gettext vte ]
|
|
|
|
|
++ lib.optionals vncSupport [ libjpeg libpng ]
|
|
|
|
|
++ lib.optionals smartcardSupport [ libcacard ]
|
|
|
|
|
++ lib.optionals spiceSupport [ spice-protocol spice ]
|
|
|
|
|
++ lib.optionals usbredirSupport [ usbredir ]
|
|
|
|
|
++ lib.optionals stdenv.isLinux [ alsa-lib libaio libcap_ng libcap attr ]
|
|
|
|
|
++ lib.optionals xenSupport [ xen ]
|
|
|
|
|
++ lib.optionals cephSupport [ ceph ]
|
|
|
|
|
++ lib.optionals glusterfsSupport [ glusterfs libuuid ]
|
|
|
|
|
++ lib.optionals openGLSupport [ mesa epoxy libdrm ]
|
|
|
|
|
++ lib.optionals virglSupport [ virglrenderer ]
|
|
|
|
|
++ lib.optionals libiscsiSupport [ libiscsi ]
|
|
|
|
|
++ lib.optionals smbdSupport [ samba ];
|
2013-02-08 01:44:02 +00:00
|
|
|
|
|
2020-12-15 18:25:55 +00:00
|
|
|
|
dontUseMesonConfigure = true; # meson's configurePhase isn't compatible with qemu build
|
2013-02-08 01:44:02 +00:00
|
|
|
|
|
2018-04-20 10:05:50 +01:00
|
|
|
|
outputs = [ "out" "ga" ];
|
|
|
|
|
|
2018-08-10 19:59:53 +01:00
|
|
|
|
patches = [
|
|
|
|
|
./fix-qemu-ga.patch
|
2019-03-14 13:56:55 +00:00
|
|
|
|
./9p-ignore-noatime.patch
|
2021-08-27 09:16:15 +01:00
|
|
|
|
# Cocoa clipboard support only works on macOS 10.14+
|
2021-07-18 14:35:50 +01:00
|
|
|
|
(fetchpatch {
|
2021-08-27 09:16:15 +01:00
|
|
|
|
url = "https://gitlab.com/qemu-project/qemu/-/commit/7e3e20d89129614f4a7b2451fe321cc6ccca3b76.diff";
|
|
|
|
|
sha256 = "09xz06g57wxbacic617pq9c0qb7nly42gif0raplldn5lw964xl2";
|
|
|
|
|
revert = true;
|
2021-07-18 14:35:50 +01:00
|
|
|
|
})
|
2021-10-28 05:34:32 +01:00
|
|
|
|
(fetchpatch {
|
|
|
|
|
name = "CVE-2021-3713.patch"; # remove with next release
|
|
|
|
|
url = "https://gitlab.com/qemu-project/qemu/-/commit/13b250b12ad3c59114a6a17d59caf073ce45b33a.patch";
|
|
|
|
|
sha256 = "0lkzfc7gdlvj4rz9wk07fskidaqysmx8911g914ds1jnczgk71mf";
|
|
|
|
|
})
|
2021-08-04 19:54:48 +01:00
|
|
|
|
] ++ lib.optional nixosTestRunner ./force-uid0-on-9p.patch
|
|
|
|
|
++ lib.optionals stdenv.hostPlatform.isMusl [
|
2018-03-25 03:15:43 +01:00
|
|
|
|
(fetchpatch {
|
2020-04-01 02:11:51 +01:00
|
|
|
|
url = "https://raw.githubusercontent.com/alpinelinux/aports/2bb133986e8fa90e2e76d53369f03861a87a74ef/main/qemu/musl-F_SHLCK-and-F_EXLCK.patch";
|
2018-03-25 03:15:43 +01:00
|
|
|
|
sha256 = "1gm67v41gw6apzgz7jr3zv9z80wvkv0jaxd2w4d16hmipa8bhs0k";
|
|
|
|
|
})
|
2018-09-10 07:14:37 +01:00
|
|
|
|
./sigrtminmax.patch
|
2018-03-25 03:15:43 +01:00
|
|
|
|
(fetchpatch {
|
2020-04-01 02:11:51 +01:00
|
|
|
|
url = "https://raw.githubusercontent.com/alpinelinux/aports/2bb133986e8fa90e2e76d53369f03861a87a74ef/main/qemu/fix-sigevent-and-sigval_t.patch";
|
2018-03-25 03:15:43 +01:00
|
|
|
|
sha256 = "0wk0rrcqywhrw9hygy6ap0lfg314m9z1wr2hn8338r5gfcw75mav";
|
|
|
|
|
})
|
2021-10-01 06:42:17 +01:00
|
|
|
|
] ++ lib.optionals stdenv.isDarwin [
|
|
|
|
|
# The Hypervisor.framework support patch converted something that can be applied:
|
|
|
|
|
# * https://patchwork.kernel.org/project/qemu-devel/list/?series=548227
|
|
|
|
|
# The base revision is whatever commit there is before the series starts:
|
|
|
|
|
# * https://github.com/patchew-project/qemu/commits/patchew/20210916155404.86958-1-agraf%40csgraf.de
|
|
|
|
|
# The target revision is what patchew has as the series tag from patchwork:
|
|
|
|
|
# * https://github.com/patchew-project/qemu/releases/tag/patchew%2F20210916155404.86958-1-agraf%40csgraf.de
|
|
|
|
|
(fetchpatch {
|
|
|
|
|
url = "https://github.com/patchew-project/qemu/compare/7adb961995a3744f51396502b33ad04a56a317c3..d2603c06d9c4a28e714b9b70fe5a9d0c7b0f934d.diff";
|
|
|
|
|
sha256 = "sha256-nSi5pFf9+EefUmyJzSEKeuxOt39ztgkXQyUB8fTHlcY=";
|
|
|
|
|
})
|
2018-03-25 03:15:43 +01:00
|
|
|
|
];
|
2017-02-22 08:06:49 +00:00
|
|
|
|
|
2021-02-10 20:48:54 +00:00
|
|
|
|
postPatch = ''
|
2021-05-21 07:52:56 +01:00
|
|
|
|
# Otherwise tries to ensure /var/run exists.
|
2021-02-10 20:48:54 +00:00
|
|
|
|
sed -i "/install_subdir('run', install_dir: get_option('localstatedir'))/d" \
|
|
|
|
|
qga/meson.build
|
2021-05-21 07:52:56 +01:00
|
|
|
|
|
2021-05-31 17:34:55 +01:00
|
|
|
|
# glibc 2.33 compat fix: if `has_statx = true` is set, `tools/virtiofsd/passthrough_ll.c` will
|
|
|
|
|
# rely on `stx_mnt_id`[1] which is not part of glibc's `statx`-struct definition.
|
|
|
|
|
#
|
|
|
|
|
# `has_statx` will be set to `true` if a simple C program which uses a few `statx`
|
|
|
|
|
# consts & struct fields successfully compiles. It seems as this only builds on glibc-2.33
|
|
|
|
|
# since most likely[2] and because of that, the problematic code-path will be used.
|
|
|
|
|
#
|
|
|
|
|
# [1] https://github.com/torvalds/linux/commit/fa2fcf4f1df1559a0a4ee0f46915b496cc2ebf60#diff-64bab5a0a3fcb55e1a6ad77b1dfab89d2c9c71a770a07ecf44e6b82aae76a03a
|
|
|
|
|
# [2] https://sourceware.org/git/?p=glibc.git;a=blobdiff;f=io/bits/statx-generic.h;h=c34697e3c1fd79cddd60db294302e461ed8db6e2;hp=7a09e94be2abb92d2df612090c132e686a24d764;hb=88a2cf6c4bab6e94a65e9c0db8813709372e9180;hpb=c4e4b2e149705559d28b16a9b47ba2f6142d6a6c
|
|
|
|
|
substituteInPlace meson.build \
|
|
|
|
|
--replace 'has_statx = cc.links(statx_test)' 'has_statx = false'
|
2021-02-10 20:48:54 +00:00
|
|
|
|
'';
|
|
|
|
|
|
2017-07-21 17:39:50 +01:00
|
|
|
|
preConfigure = ''
|
|
|
|
|
unset CPP # intereferes with dependency calculation
|
2020-12-15 18:25:55 +00:00
|
|
|
|
# this script isn't marked as executable b/c it's indirectly used by meson. Needed to patch its shebang
|
|
|
|
|
chmod +x ./scripts/shaderinclude.pl
|
|
|
|
|
patchShebangs .
|
2021-02-08 21:42:05 +00:00
|
|
|
|
# avoid conflicts with libc++ include for <version>
|
|
|
|
|
mv VERSION QEMU_VERSION
|
2021-05-01 01:22:19 +01:00
|
|
|
|
substituteInPlace configure \
|
|
|
|
|
--replace '$source_path/VERSION' '$source_path/QEMU_VERSION'
|
2021-02-08 21:42:05 +00:00
|
|
|
|
substituteInPlace meson.build \
|
|
|
|
|
--replace "'VERSION'" "'QEMU_VERSION'"
|
2021-08-04 19:54:48 +01:00
|
|
|
|
'' + lib.optionalString stdenv.hostPlatform.isMusl ''
|
2018-04-26 13:27:23 +01:00
|
|
|
|
NIX_CFLAGS_COMPILE+=" -D_LINUX_SYSINFO_H"
|
2017-07-21 17:39:50 +01:00
|
|
|
|
'';
|
|
|
|
|
|
2021-08-04 19:54:48 +01:00
|
|
|
|
configureFlags = [
|
|
|
|
|
"--audio-drv-list=${audio}"
|
|
|
|
|
"--enable-docs"
|
|
|
|
|
"--enable-tools"
|
|
|
|
|
"--enable-guest-agent"
|
|
|
|
|
"--localstatedir=/var"
|
|
|
|
|
"--sysconfdir=/etc"
|
|
|
|
|
] ++ lib.optional numaSupport "--enable-numa"
|
|
|
|
|
++ lib.optional seccompSupport "--enable-seccomp"
|
|
|
|
|
++ lib.optional smartcardSupport "--enable-smartcard"
|
|
|
|
|
++ lib.optional spiceSupport "--enable-spice"
|
|
|
|
|
++ lib.optional usbredirSupport "--enable-usb-redir"
|
|
|
|
|
++ lib.optional (hostCpuTargets != null) "--target-list=${lib.concatStringsSep "," hostCpuTargets}"
|
|
|
|
|
++ lib.optional stdenv.isDarwin "--enable-cocoa"
|
|
|
|
|
++ lib.optional stdenv.isDarwin "--enable-hvf"
|
|
|
|
|
++ lib.optional stdenv.isLinux "--enable-linux-aio"
|
|
|
|
|
++ lib.optional gtkSupport "--enable-gtk"
|
|
|
|
|
++ lib.optional xenSupport "--enable-xen"
|
|
|
|
|
++ lib.optional cephSupport "--enable-rbd"
|
|
|
|
|
++ lib.optional glusterfsSupport "--enable-glusterfs"
|
|
|
|
|
++ lib.optional openGLSupport "--enable-opengl"
|
|
|
|
|
++ lib.optional virglSupport "--enable-virglrenderer"
|
|
|
|
|
++ lib.optional tpmSupport "--enable-tpm"
|
|
|
|
|
++ lib.optional libiscsiSupport "--enable-libiscsi"
|
|
|
|
|
++ lib.optional smbdSupport "--smbd=${samba}/bin/smbd";
|
2015-06-01 19:55:53 +01:00
|
|
|
|
|
2018-04-25 04:20:18 +01:00
|
|
|
|
doCheck = false; # tries to access /dev
|
2020-06-01 21:56:37 +01:00
|
|
|
|
dontWrapGApps = true;
|
2018-04-25 04:20:18 +01:00
|
|
|
|
|
2021-10-01 06:42:17 +01:00
|
|
|
|
# QEMU attaches entitlements with codesign and strip removes those,
|
|
|
|
|
# voiding the entitlements and making it non-operational.
|
|
|
|
|
# The alternative is to re-sign with entitlements after stripping:
|
|
|
|
|
# * https://github.com/qemu/qemu/blob/v6.1.0/scripts/entitlement.sh#L25
|
|
|
|
|
dontStrip = stdenv.isDarwin;
|
|
|
|
|
|
2020-06-01 21:56:37 +01:00
|
|
|
|
postFixup = ''
|
2020-07-22 06:38:23 +01:00
|
|
|
|
# the .desktop is both invalid and pointless
|
2021-03-01 17:32:39 +00:00
|
|
|
|
rm -f $out/share/applications/qemu.desktop
|
2020-07-22 06:38:23 +01:00
|
|
|
|
|
|
|
|
|
# copy qemu-ga (guest agent) to separate output
|
|
|
|
|
mkdir -p $ga/bin
|
|
|
|
|
cp $out/bin/qemu-ga $ga/bin/
|
2021-08-04 19:54:48 +01:00
|
|
|
|
'' + lib.optionalString gtkSupport ''
|
2020-07-22 06:38:23 +01:00
|
|
|
|
# wrap GTK Binaries
|
|
|
|
|
for f in $out/bin/qemu-system-*; do
|
|
|
|
|
wrapGApp $f
|
|
|
|
|
done
|
|
|
|
|
'';
|
2020-12-15 18:25:55 +00:00
|
|
|
|
preBuild = "cd build";
|
2016-04-08 00:45:53 +01:00
|
|
|
|
|
2017-12-06 18:06:33 +00:00
|
|
|
|
# Add a ‘qemu-kvm’ wrapper for compatibility/convenience.
|
2018-11-13 22:54:08 +00:00
|
|
|
|
postInstall = ''
|
|
|
|
|
if [ -x $out/bin/qemu-system-${stdenv.hostPlatform.qemuArch} ]; then
|
|
|
|
|
makeWrapper $out/bin/qemu-system-${stdenv.hostPlatform.qemuArch} \
|
|
|
|
|
$out/bin/qemu-kvm \
|
|
|
|
|
--add-flags "\$([ -e /dev/kvm ] && echo -enable-kvm)"
|
|
|
|
|
fi
|
|
|
|
|
'';
|
2013-07-31 13:31:04 +01:00
|
|
|
|
|
2017-12-07 21:26:42 +00:00
|
|
|
|
passthru = {
|
|
|
|
|
qemu-system-i386 = "bin/qemu-system-i386";
|
|
|
|
|
};
|
|
|
|
|
|
2021-04-26 01:49:20 +01:00
|
|
|
|
# Builds in ~3h with 2 cores, and ~20m with a big-parallel builder.
|
|
|
|
|
requiredSystemFeatures = [ "big-parallel" ];
|
|
|
|
|
|
2021-01-11 07:54:33 +00:00
|
|
|
|
meta = with lib; {
|
2020-04-01 02:11:51 +01:00
|
|
|
|
homepage = "http://www.qemu.org/";
|
2013-07-04 15:52:43 +01:00
|
|
|
|
description = "A generic and open source machine emulator and virtualizer";
|
2014-02-20 20:02:55 +00:00
|
|
|
|
license = licenses.gpl2Plus;
|
2021-05-01 01:22:19 +01:00
|
|
|
|
maintainers = with maintainers; [ eelco qyliss ];
|
|
|
|
|
platforms = platforms.unix;
|
2013-02-08 01:44:02 +00:00
|
|
|
|
};
|
|
|
|
|
}
|