2021-01-17 02:09:27 +00:00
|
|
|
|
{ lib, stdenv, fetchurl, fetchpatch, python, zlib, pkg-config, glib
|
2021-06-10 03:57:09 +01:00
|
|
|
|
, perl, pixman, vde2, alsa-lib, texinfo, flex
|
2020-12-15 18:25:55 +00:00
|
|
|
|
, bison, lzo, snappy, libaio, gnutls, nettle, curl, ninja, meson
|
|
|
|
|
, makeWrapper, autoPatchelfHook
|
2016-02-29 00:22:06 +00:00
|
|
|
|
, attr, libcap, libcap_ng
|
2019-02-12 21:52:28 +00:00
|
|
|
|
, CoreServices, Cocoa, Hypervisor, rez, setfile
|
treewide: isArm -> isAarch32
Following legacy packing conventions, `isArm` was defined just for
32-bit ARM instruction set. This is confusing to non packagers though,
because Aarch64 is an ARM instruction set.
The official ARM overview for ARMv8[1] is surprisingly not confusing,
given the overall state of affairs for ARM naming conventions, and
offers us a solution. It divides the nomenclature into three levels:
```
ISA: ARMv8 {-A, -R, -M}
/ \
Mode: Aarch32 Aarch64
| / \
Encoding: A64 A32 T32
```
At the top is the overall v8 instruction set archicture. Second are the
two modes, defined by bitwidth but differing in other semantics too, and
buttom are the encodings, (hopefully?) isomorphic if they encode the
same mode.
The 32 bit encodings are mostly backwards compatible with previous
non-Thumb and Thumb encodings, and if so we can pun the mode names to
instead mean "sets of compatable or isomorphic encodings", and then
voilà we have nice names for 32-bit and 64-bit arm instruction sets
which do not use the word ARM so as to not confused either laymen or
experienced ARM packages.
[1]: https://developer.arm.com/products/architecture/a-profile
2018-03-20 02:41:06 +00:00
|
|
|
|
, numaSupport ? stdenv.isLinux && !stdenv.isAarch32, numactl
|
2016-02-29 00:22:06 +00:00
|
|
|
|
, seccompSupport ? stdenv.isLinux, libseccomp
|
2021-01-11 07:54:33 +00:00
|
|
|
|
, alsaSupport ? lib.hasSuffix "linux" stdenv.hostPlatform.system && !nixosTestRunner
|
2020-10-05 14:36:37 +01:00
|
|
|
|
, pulseSupport ? !stdenv.isDarwin && !nixosTestRunner, libpulseaudio
|
2020-12-15 18:25:55 +00:00
|
|
|
|
, sdlSupport ? !stdenv.isDarwin && !nixosTestRunner, SDL2, SDL2_image
|
2020-10-05 14:36:37 +01:00
|
|
|
|
, gtkSupport ? !stdenv.isDarwin && !xenSupport && !nixosTestRunner, gtk3, gettext, vte, wrapGAppsHook
|
|
|
|
|
, vncSupport ? !nixosTestRunner, libjpeg, libpng
|
|
|
|
|
, smartcardSupport ? !nixosTestRunner, libcacard
|
|
|
|
|
, spiceSupport ? !stdenv.isDarwin && !nixosTestRunner, spice, spice-protocol
|
2020-10-19 16:49:31 +01:00
|
|
|
|
, ncursesSupport ? !nixosTestRunner, ncurses
|
2016-09-05 19:37:03 +01:00
|
|
|
|
, usbredirSupport ? spiceSupport, usbredir
|
2016-11-02 16:06:48 +00:00
|
|
|
|
, xenSupport ? false, xen
|
2019-02-06 18:53:23 +00:00
|
|
|
|
, cephSupport ? false, ceph
|
2021-05-05 21:05:21 +01:00
|
|
|
|
, glusterfsSupport ? false, glusterfs, libuuid
|
2019-05-28 20:09:34 +01:00
|
|
|
|
, openGLSupport ? sdlSupport, mesa, epoxy, libdrm
|
2018-03-25 22:33:23 +01:00
|
|
|
|
, virglSupport ? openGLSupport, virglrenderer
|
2020-08-12 12:47:41 +01:00
|
|
|
|
, libiscsiSupport ? true, libiscsi
|
2018-06-10 23:18:31 +01:00
|
|
|
|
, smbdSupport ? false, samba
|
2020-07-11 21:33:40 +01:00
|
|
|
|
, tpmSupport ? true
|
2017-11-24 12:34:04 +00:00
|
|
|
|
, hostCpuOnly ? false
|
2018-11-13 22:54:08 +00:00
|
|
|
|
, hostCpuTargets ? (if hostCpuOnly
|
2021-01-11 07:54:33 +00:00
|
|
|
|
then (lib.optional stdenv.isx86_64 "i386-softmmu"
|
2018-11-13 22:54:08 +00:00
|
|
|
|
++ ["${stdenv.hostPlatform.qemuArch}-softmmu"])
|
|
|
|
|
else null)
|
2016-11-17 16:06:17 +00:00
|
|
|
|
, nixosTestRunner ? false
|
2013-07-04 16:44:44 +01:00
|
|
|
|
}:
|
2013-02-08 01:44:02 +00:00
|
|
|
|
|
2021-01-15 05:42:41 +00:00
|
|
|
|
with lib;
|
2014-08-28 19:21:23 +01:00
|
|
|
|
let
|
2020-10-05 14:36:37 +01:00
|
|
|
|
audio = optionalString alsaSupport "alsa,"
|
2015-06-01 19:55:53 +01:00
|
|
|
|
+ optionalString pulseSupport "pa,"
|
|
|
|
|
+ optionalString sdlSupport "sdl,";
|
2017-11-24 12:34:04 +00:00
|
|
|
|
|
2014-08-28 19:21:23 +01:00
|
|
|
|
in
|
2013-07-31 13:50:42 +01:00
|
|
|
|
|
2013-02-08 01:44:02 +00:00
|
|
|
|
stdenv.mkDerivation rec {
|
2021-05-01 01:22:19 +01:00
|
|
|
|
version = "6.0.0";
|
2019-11-05 15:20:59 +00:00
|
|
|
|
pname = "qemu"
|
2021-01-15 05:42:41 +00:00
|
|
|
|
+ lib.optionalString xenSupport "-xen"
|
|
|
|
|
+ lib.optionalString hostCpuOnly "-host-cpu-only"
|
|
|
|
|
+ lib.optionalString nixosTestRunner "-for-vm-tests";
|
2013-02-08 01:44:02 +00:00
|
|
|
|
|
|
|
|
|
src = fetchurl {
|
2020-04-27 20:48:18 +01:00
|
|
|
|
url= "https://download.qemu.org/qemu-${version}.tar.xz";
|
2021-05-01 01:22:19 +01:00
|
|
|
|
sha256 = "1f9hz8rf12jm8baa7kda34yl4hyl0xh0c4ap03krfjx23i3img47";
|
2013-02-08 01:44:02 +00:00
|
|
|
|
};
|
|
|
|
|
|
2021-02-08 21:42:49 +00:00
|
|
|
|
nativeBuildInputs = [ python python.pkgs.sphinx pkg-config flex bison meson ninja ]
|
|
|
|
|
++ optionals gtkSupport [ wrapGAppsHook ]
|
|
|
|
|
++ optionals stdenv.isLinux [ autoPatchelfHook ];
|
2015-06-01 19:55:53 +01:00
|
|
|
|
buildInputs =
|
2020-10-19 16:49:31 +01:00
|
|
|
|
[ zlib glib perl pixman
|
2019-04-27 08:19:07 +01:00
|
|
|
|
vde2 texinfo makeWrapper lzo snappy
|
2016-11-23 12:01:32 +00:00
|
|
|
|
gnutls nettle curl
|
2015-06-01 19:55:53 +01:00
|
|
|
|
]
|
2020-10-19 16:49:31 +01:00
|
|
|
|
++ optionals ncursesSupport [ ncurses ]
|
2019-02-12 21:52:28 +00:00
|
|
|
|
++ optionals stdenv.isDarwin [ CoreServices Cocoa Hypervisor rez setfile ]
|
2016-02-29 00:22:06 +00:00
|
|
|
|
++ optionals seccompSupport [ libseccomp ]
|
|
|
|
|
++ optionals numaSupport [ numactl ]
|
2015-06-01 19:55:53 +01:00
|
|
|
|
++ optionals pulseSupport [ libpulseaudio ]
|
2020-12-15 18:25:55 +00:00
|
|
|
|
++ optionals sdlSupport [ SDL2 SDL2_image ]
|
2018-12-25 23:15:46 +00:00
|
|
|
|
++ optionals gtkSupport [ gtk3 gettext vte ]
|
2015-06-01 19:55:53 +01:00
|
|
|
|
++ optionals vncSupport [ libjpeg libpng ]
|
2018-10-12 19:58:49 +01:00
|
|
|
|
++ optionals smartcardSupport [ libcacard ]
|
2018-02-25 02:23:58 +00:00
|
|
|
|
++ optionals spiceSupport [ spice-protocol spice ]
|
2016-09-05 19:37:03 +01:00
|
|
|
|
++ optionals usbredirSupport [ usbredir ]
|
2021-06-10 03:57:09 +01:00
|
|
|
|
++ optionals stdenv.isLinux [ alsa-lib libaio libcap_ng libcap attr ]
|
2018-03-18 02:27:01 +00:00
|
|
|
|
++ optionals xenSupport [ xen ]
|
2019-02-06 18:53:23 +00:00
|
|
|
|
++ optionals cephSupport [ ceph ]
|
2021-05-05 21:05:21 +01:00
|
|
|
|
++ optionals glusterfsSupport [ glusterfs libuuid ]
|
2019-05-28 20:09:34 +01:00
|
|
|
|
++ optionals openGLSupport [ mesa epoxy libdrm ]
|
2018-06-10 23:18:31 +01:00
|
|
|
|
++ optionals virglSupport [ virglrenderer ]
|
2020-08-12 12:47:41 +01:00
|
|
|
|
++ optionals libiscsiSupport [ libiscsi ]
|
2018-06-10 23:18:31 +01:00
|
|
|
|
++ optionals smbdSupport [ samba ];
|
2013-02-08 01:44:02 +00:00
|
|
|
|
|
2020-12-15 18:25:55 +00:00
|
|
|
|
dontUseMesonConfigure = true; # meson's configurePhase isn't compatible with qemu build
|
2013-02-08 01:44:02 +00:00
|
|
|
|
|
2018-04-20 10:05:50 +01:00
|
|
|
|
outputs = [ "out" "ga" ];
|
|
|
|
|
|
2018-08-10 19:59:53 +01:00
|
|
|
|
patches = [
|
|
|
|
|
./fix-qemu-ga.patch
|
2019-03-14 13:56:55 +00:00
|
|
|
|
./9p-ignore-noatime.patch
|
2021-07-18 14:35:50 +01:00
|
|
|
|
(fetchpatch {
|
|
|
|
|
name = "CVE-2021-3545.patch";
|
|
|
|
|
url = "https://gitlab.com/qemu-project/qemu/-/commit/121841b25d72d13f8cad554363138c360f1250ea.patch";
|
|
|
|
|
sha256 = "13dgfd8dmxcalh2nvb68iv0kyv4xxrvpdqdxf1h3bjr4451glag1";
|
|
|
|
|
})
|
|
|
|
|
(fetchpatch {
|
|
|
|
|
name = "CVE-2021-3546.patch";
|
|
|
|
|
url = "https://gitlab.com/qemu-project/qemu/-/commit/9f22893adcb02580aee5968f32baa2cd109b3ec2.patch";
|
|
|
|
|
sha256 = "1vkhm9vl671y4cra60b6704339qk1h5dyyb3dfvmvpsvfyh2pm7n";
|
|
|
|
|
})
|
2018-08-10 19:59:53 +01:00
|
|
|
|
] ++ optional nixosTestRunner ./force-uid0-on-9p.patch
|
2018-03-25 03:15:43 +01:00
|
|
|
|
++ optionals stdenv.hostPlatform.isMusl [
|
|
|
|
|
(fetchpatch {
|
2020-04-01 02:11:51 +01:00
|
|
|
|
url = "https://raw.githubusercontent.com/alpinelinux/aports/2bb133986e8fa90e2e76d53369f03861a87a74ef/main/qemu/xattr_size_max.patch";
|
2018-03-25 03:15:43 +01:00
|
|
|
|
sha256 = "1xfdjs1jlvs99hpf670yianb8c3qz2ars8syzyz8f2c2cp5y4bxb";
|
|
|
|
|
})
|
|
|
|
|
(fetchpatch {
|
2020-04-01 02:11:51 +01:00
|
|
|
|
url = "https://raw.githubusercontent.com/alpinelinux/aports/2bb133986e8fa90e2e76d53369f03861a87a74ef/main/qemu/musl-F_SHLCK-and-F_EXLCK.patch";
|
2018-03-25 03:15:43 +01:00
|
|
|
|
sha256 = "1gm67v41gw6apzgz7jr3zv9z80wvkv0jaxd2w4d16hmipa8bhs0k";
|
|
|
|
|
})
|
2018-09-10 07:14:37 +01:00
|
|
|
|
./sigrtminmax.patch
|
2018-03-25 03:15:43 +01:00
|
|
|
|
(fetchpatch {
|
2020-04-01 02:11:51 +01:00
|
|
|
|
url = "https://raw.githubusercontent.com/alpinelinux/aports/2bb133986e8fa90e2e76d53369f03861a87a74ef/main/qemu/fix-sigevent-and-sigval_t.patch";
|
2018-03-25 03:15:43 +01:00
|
|
|
|
sha256 = "0wk0rrcqywhrw9hygy6ap0lfg314m9z1wr2hn8338r5gfcw75mav";
|
|
|
|
|
})
|
|
|
|
|
];
|
2017-02-22 08:06:49 +00:00
|
|
|
|
|
2021-02-10 20:48:54 +00:00
|
|
|
|
postPatch = ''
|
2021-05-21 07:52:56 +01:00
|
|
|
|
# Otherwise tries to ensure /var/run exists.
|
2021-02-10 20:48:54 +00:00
|
|
|
|
sed -i "/install_subdir('run', install_dir: get_option('localstatedir'))/d" \
|
|
|
|
|
qga/meson.build
|
2021-05-21 07:52:56 +01:00
|
|
|
|
|
|
|
|
|
# TODO: On aarch64-darwin, we automatically codesign everything, but qemu
|
|
|
|
|
# needs specific entitlements and does its own signing. This codesign
|
|
|
|
|
# command fails, but we have no fix at the moment, so this disables it.
|
|
|
|
|
# This means `-accel hvf` is broken for now, on aarch64-darwin only.
|
|
|
|
|
substituteInPlace meson.build \
|
|
|
|
|
--replace 'if exe_sign' 'if false'
|
2021-05-31 17:34:55 +01:00
|
|
|
|
|
|
|
|
|
# glibc 2.33 compat fix: if `has_statx = true` is set, `tools/virtiofsd/passthrough_ll.c` will
|
|
|
|
|
# rely on `stx_mnt_id`[1] which is not part of glibc's `statx`-struct definition.
|
|
|
|
|
#
|
|
|
|
|
# `has_statx` will be set to `true` if a simple C program which uses a few `statx`
|
|
|
|
|
# consts & struct fields successfully compiles. It seems as this only builds on glibc-2.33
|
|
|
|
|
# since most likely[2] and because of that, the problematic code-path will be used.
|
|
|
|
|
#
|
|
|
|
|
# [1] https://github.com/torvalds/linux/commit/fa2fcf4f1df1559a0a4ee0f46915b496cc2ebf60#diff-64bab5a0a3fcb55e1a6ad77b1dfab89d2c9c71a770a07ecf44e6b82aae76a03a
|
|
|
|
|
# [2] https://sourceware.org/git/?p=glibc.git;a=blobdiff;f=io/bits/statx-generic.h;h=c34697e3c1fd79cddd60db294302e461ed8db6e2;hp=7a09e94be2abb92d2df612090c132e686a24d764;hb=88a2cf6c4bab6e94a65e9c0db8813709372e9180;hpb=c4e4b2e149705559d28b16a9b47ba2f6142d6a6c
|
|
|
|
|
substituteInPlace meson.build \
|
|
|
|
|
--replace 'has_statx = cc.links(statx_test)' 'has_statx = false'
|
2021-02-10 20:48:54 +00:00
|
|
|
|
'';
|
|
|
|
|
|
2017-07-21 17:39:50 +01:00
|
|
|
|
preConfigure = ''
|
|
|
|
|
unset CPP # intereferes with dependency calculation
|
2020-12-15 18:25:55 +00:00
|
|
|
|
# this script isn't marked as executable b/c it's indirectly used by meson. Needed to patch its shebang
|
|
|
|
|
chmod +x ./scripts/shaderinclude.pl
|
|
|
|
|
patchShebangs .
|
2021-02-08 21:42:05 +00:00
|
|
|
|
# avoid conflicts with libc++ include for <version>
|
|
|
|
|
mv VERSION QEMU_VERSION
|
2021-05-01 01:22:19 +01:00
|
|
|
|
substituteInPlace configure \
|
|
|
|
|
--replace '$source_path/VERSION' '$source_path/QEMU_VERSION'
|
2021-02-08 21:42:05 +00:00
|
|
|
|
substituteInPlace meson.build \
|
|
|
|
|
--replace "'VERSION'" "'QEMU_VERSION'"
|
2018-04-26 13:27:23 +01:00
|
|
|
|
'' + optionalString stdenv.hostPlatform.isMusl ''
|
|
|
|
|
NIX_CFLAGS_COMPILE+=" -D_LINUX_SYSINFO_H"
|
2017-07-21 17:39:50 +01:00
|
|
|
|
'';
|
|
|
|
|
|
2015-06-01 19:55:53 +01:00
|
|
|
|
configureFlags =
|
2018-06-10 23:18:31 +01:00
|
|
|
|
[ "--audio-drv-list=${audio}"
|
2019-07-03 17:33:16 +01:00
|
|
|
|
"--enable-docs"
|
2020-04-27 20:48:18 +01:00
|
|
|
|
"--enable-tools"
|
|
|
|
|
"--enable-guest-agent"
|
2021-02-10 20:48:54 +00:00
|
|
|
|
"--localstatedir=/var"
|
2021-02-13 00:25:28 +00:00
|
|
|
|
"--sysconfdir=/etc"
|
2015-06-01 19:55:53 +01:00
|
|
|
|
]
|
2016-02-29 00:22:06 +00:00
|
|
|
|
++ optional numaSupport "--enable-numa"
|
|
|
|
|
++ optional seccompSupport "--enable-seccomp"
|
2018-10-12 19:58:49 +01:00
|
|
|
|
++ optional smartcardSupport "--enable-smartcard"
|
2015-06-01 19:55:53 +01:00
|
|
|
|
++ optional spiceSupport "--enable-spice"
|
2016-09-05 19:37:03 +01:00
|
|
|
|
++ optional usbredirSupport "--enable-usb-redir"
|
2021-01-15 05:42:41 +00:00
|
|
|
|
++ optional (hostCpuTargets != null) "--target-list=${lib.concatStringsSep "," hostCpuTargets}"
|
2016-02-29 00:22:06 +00:00
|
|
|
|
++ optional stdenv.isDarwin "--enable-cocoa"
|
2019-02-12 21:52:28 +00:00
|
|
|
|
++ optional stdenv.isDarwin "--enable-hvf"
|
2016-11-02 16:06:48 +00:00
|
|
|
|
++ optional stdenv.isLinux "--enable-linux-aio"
|
2018-04-14 01:33:25 +01:00
|
|
|
|
++ optional gtkSupport "--enable-gtk"
|
2018-03-18 02:27:01 +00:00
|
|
|
|
++ optional xenSupport "--enable-xen"
|
2019-02-06 18:53:23 +00:00
|
|
|
|
++ optional cephSupport "--enable-rbd"
|
2021-05-05 21:05:21 +01:00
|
|
|
|
++ optional glusterfsSupport "--enable-glusterfs"
|
2018-03-17 16:14:52 +00:00
|
|
|
|
++ optional openGLSupport "--enable-opengl"
|
2018-06-10 23:18:31 +01:00
|
|
|
|
++ optional virglSupport "--enable-virglrenderer"
|
2020-07-11 21:33:40 +01:00
|
|
|
|
++ optional tpmSupport "--enable-tpm"
|
2020-08-12 12:47:41 +01:00
|
|
|
|
++ optional libiscsiSupport "--enable-libiscsi"
|
2018-06-10 23:18:31 +01:00
|
|
|
|
++ optional smbdSupport "--smbd=${samba}/bin/smbd";
|
2015-06-01 19:55:53 +01:00
|
|
|
|
|
2018-04-25 04:20:18 +01:00
|
|
|
|
doCheck = false; # tries to access /dev
|
2020-06-01 21:56:37 +01:00
|
|
|
|
dontWrapGApps = true;
|
2018-04-25 04:20:18 +01:00
|
|
|
|
|
2020-06-01 21:56:37 +01:00
|
|
|
|
postFixup = ''
|
2020-07-22 06:38:23 +01:00
|
|
|
|
# the .desktop is both invalid and pointless
|
2021-03-01 17:32:39 +00:00
|
|
|
|
rm -f $out/share/applications/qemu.desktop
|
2020-07-22 06:38:23 +01:00
|
|
|
|
|
|
|
|
|
# copy qemu-ga (guest agent) to separate output
|
|
|
|
|
mkdir -p $ga/bin
|
|
|
|
|
cp $out/bin/qemu-ga $ga/bin/
|
|
|
|
|
'' + optionalString gtkSupport ''
|
|
|
|
|
# wrap GTK Binaries
|
|
|
|
|
for f in $out/bin/qemu-system-*; do
|
|
|
|
|
wrapGApp $f
|
|
|
|
|
done
|
|
|
|
|
'';
|
2020-12-15 18:25:55 +00:00
|
|
|
|
preBuild = "cd build";
|
2016-04-08 00:45:53 +01:00
|
|
|
|
|
2017-12-06 18:06:33 +00:00
|
|
|
|
# Add a ‘qemu-kvm’ wrapper for compatibility/convenience.
|
2018-11-13 22:54:08 +00:00
|
|
|
|
postInstall = ''
|
|
|
|
|
if [ -x $out/bin/qemu-system-${stdenv.hostPlatform.qemuArch} ]; then
|
|
|
|
|
makeWrapper $out/bin/qemu-system-${stdenv.hostPlatform.qemuArch} \
|
|
|
|
|
$out/bin/qemu-kvm \
|
|
|
|
|
--add-flags "\$([ -e /dev/kvm ] && echo -enable-kvm)"
|
|
|
|
|
fi
|
|
|
|
|
'';
|
2013-07-31 13:31:04 +01:00
|
|
|
|
|
2017-12-07 21:26:42 +00:00
|
|
|
|
passthru = {
|
|
|
|
|
qemu-system-i386 = "bin/qemu-system-i386";
|
|
|
|
|
};
|
|
|
|
|
|
2021-04-26 01:49:20 +01:00
|
|
|
|
# Builds in ~3h with 2 cores, and ~20m with a big-parallel builder.
|
|
|
|
|
requiredSystemFeatures = [ "big-parallel" ];
|
|
|
|
|
|
2021-01-11 07:54:33 +00:00
|
|
|
|
meta = with lib; {
|
2020-04-01 02:11:51 +01:00
|
|
|
|
homepage = "http://www.qemu.org/";
|
2013-07-04 15:52:43 +01:00
|
|
|
|
description = "A generic and open source machine emulator and virtualizer";
|
2014-02-20 20:02:55 +00:00
|
|
|
|
license = licenses.gpl2Plus;
|
2021-05-01 01:22:19 +01:00
|
|
|
|
maintainers = with maintainers; [ eelco qyliss ];
|
|
|
|
|
platforms = platforms.unix;
|
2013-02-08 01:44:02 +00:00
|
|
|
|
};
|
|
|
|
|
}
|