Skip to content

Commit

Permalink
stdenvAdapters: add withDefaultHardeningFlags
Browse files Browse the repository at this point in the history
  • Loading branch information
@risicle
risicle committed Oct 21, 2023
1 parent f515f77 commit 52b481a
Showing 1 changed file with 14 additions and 0 deletions.
14 changes: 14 additions & 0 deletions pkgs/stdenv/adapters.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -248,4 +248,18 @@ rec {
env = (args.env or {}) // { NIX_CFLAGS_COMPILE = toString (args.env.NIX_CFLAGS_COMPILE or "") + " ${toString compilerFlags}"; };
});
});

withDefaultHardeningFlags = defaultHardeningFlags: stdenv: let
bintools = let
bintools' = stdenv.cc.bintools;
in if bintools' ? override then (bintools'.override {
inherit defaultHardeningFlags;
}) else bintools';
in
stdenv.override (old: {
cc = if stdenv.cc == null then null else stdenv.cc.override {
inherit bintools;
};
allowedRequisites = lib.mapNullable (rs: rs ++ [ bintools ]) (stdenv.allowedRequisites or null);
});
}

0 comments on commit 52b481a

Please sign in to comment.