{ stdenv
, lib
, fetchFromGitHub
, fetchpatch
, callPackage
, makeWrapper
, buildGoModule
, buildGoPackage
, glibc
, docker
, linkFarm
, containerRuntimePath ? "${docker}/libexec/docker/runc"
}:

with lib; let
  libnvidia-container = callPackage ./libnvc.nix { };
  isolatedContainerRuntimePath = linkFarm "isolated_container_runtime_path" [
    {
      name = "runc";
      path = containerRuntimePath;
    }
  ];

  nvidia-container-runtime = buildGoPackage rec {
    pname = "nvidia-container-runtime";
    version = "3.4.0";
    src = fetchFromGitHub {
      owner = "NVIDIA";
      repo = "nvidia-container-runtime";
      rev = "v${version}";
      sha256 = "095mks0r4079vawi50pk4zb5jk0g6s9idg2s1w55a0d27jkknldr";
    };
    goPackagePath = "github.com/nvidia-container-runtime/src";
    buildFlagsArray = [ "-ldflags=" "-s -w" ];
    postInstall = ''
      mv $out/bin/{src,nvidia-container-runtime}
    '';
  };

  nvidia-container-toolkit = buildGoModule rec {
    pname = "nvidia-container-toolkit";
    version = "1.3.0";
    src = fetchFromGitHub {
      owner = "NVIDIA";
      repo = "nvidia-container-toolkit";
      rev = "v${version}";
      sha256 = "04284bhgx4j55vg9ifvbji2bvmfjfy3h1lq7q356ffgw3yr9n0hn";
    };
    vendorSha256 = "17zpiyvf22skfcisflsp6pn56y6a793jcx89kw976fq2x5br1bz7";
    buildFlagsArray = [ "-ldflags=" "-s -w" ];
    postInstall = ''
      mv $out/bin/{pkg,${pname}}
      cp $out/bin/{${pname},nvidia-container-runtime-hook}
    '';
  };

in
stdenv.mkDerivation rec {
  pname = "nvidia-docker";
  version = "2.5.0";

  src = fetchFromGitHub {
    owner = "NVIDIA";
    repo = "nvidia-docker";
    rev = "v${version}";
    sha256 = "1n1k7fnimky67s12p2ycaq9mgk245fchq62vgd7bl3bzfcbg0z4h";
  };

  nativeBuildInputs = [ makeWrapper ];

  buildPhase = ''
    mkdir bin

    cp nvidia-docker bin
    substituteInPlace bin/nvidia-docker --subst-var-by VERSION ${version}

    cp ${libnvidia-container}/bin/nvidia-container-cli bin
    cp ${nvidia-container-toolkit}/bin/nvidia-container-{toolkit,runtime-hook} bin
    cp ${nvidia-container-runtime}/bin/nvidia-container-runtime bin
  '';

  installPhase = ''
    mkdir -p $out/{bin,etc}
    cp -r bin $out

    wrapProgram $out/bin/nvidia-container-cli \
      --prefix LD_LIBRARY_PATH : /run/opengl-driver/lib:/run/opengl-driver-32/lib

    # nvidia-container-runtime invokes docker-runc or runc if that isn't available on PATH
    wrapProgram $out/bin/nvidia-container-runtime --prefix PATH : ${isolatedContainerRuntimePath}

    cp ${./config.toml} $out/etc/config.toml
    substituteInPlace $out/etc/config.toml --subst-var-by glibcbin ${lib.getBin glibc}

    cp ${./podman-config.toml} $out/etc/podman-config.toml
    substituteInPlace $out/etc/podman-config.toml --subst-var-by glibcbin ${lib.getBin glibc}
  '';

  meta = {
    homepage = "https://github.com/NVIDIA/nvidia-docker";
    description = "NVIDIA container runtime for Docker";
    license = licenses.bsd3;
    platforms = platforms.linux;
    maintainers = with lib.maintainers; [ cpcloud ];
  };
}