nixpkgs/pkgs/build-support/build-fhs-userenv/default.nix

{ writeText, writeScriptBin, stdenv, ruby } : { env, runScript } :

let
  name = env.pname;

  # Sandboxing script
  chroot-user = writeScriptBin "chroot-user" ''
    #! ${ruby}/bin/ruby
    ${builtins.readFile ./chroot-user.rb}
  '';

  init = writeText "init" ''
           # Make /tmp directory
           mkdir -m 1777 /tmp

           # Expose sockets in /tmp
           for i in /host-tmp/.*-unix; do
             ln -s "$i" "/tmp/$(basename "$i")"
           done

           [ -d "$1" ] && [ -r "$1" ] && cd "$1"
           shift
           exec "${runScript}" "$@"
         '';

in writeScriptBin name ''
  #! ${stdenv.shell}
  exec ${chroot-user}/bin/chroot-user ${env} bash -l ${init} "$(pwd)" "$@"
''
fhs-userenv: refactor and try to chdir to the current directory runScript now expects a filename instead of a Bash snippet; thus, "exec" should be omitted. 2015-04-22 08:50:49 -04:00			`{ writeText, writeScriptBin, stdenv, ruby } : { env, runScript } :`
userFHSEnv: add build tool 2015-02-05 10:14:28 -05:00
			`let`
			`name = env.pname;`

			`# Sandboxing script`
fhs-userenv: refactor and try to chdir to the current directory runScript now expects a filename instead of a Bash snippet; thus, "exec" should be omitted. 2015-04-22 08:50:49 -04:00			`chroot-user = writeScriptBin "chroot-user" ''`
			`#! ${ruby}/bin/ruby`
			`${builtins.readFile ./chroot-user.rb}`
			`'';`
userFHSEnv: add build tool 2015-02-05 10:14:28 -05:00
fhs-userenv: refactor and try to chdir to the current directory runScript now expects a filename instead of a Bash snippet; thus, "exec" should be omitted. 2015-04-22 08:50:49 -04:00			`init = writeText "init" ''`
build-fhs-userenv: move /tmp handling to bash part 2015-08-23 18:59:20 -04:00			`# Make /tmp directory`
			`mkdir -m 1777 /tmp`

build-fhs-{chroot,user}env: expose sockets in /tmp 2015-08-23 18:42:40 -04:00			`# Expose sockets in /tmp`
			`for i in /host-tmp/.*-unix; do`
			`ln -s "$i" "/tmp/$(basename "$i")"`
			`done`

fhs-userenv: refactor and try to chdir to the current directory runScript now expects a filename instead of a Bash snippet; thus, "exec" should be omitted. 2015-04-22 08:50:49 -04:00			`[ -d "$1" ] && [ -r "$1" ] && cd "$1"`
			`shift`
			`exec "${runScript}" "$@"`
			`'';`
userFHSEnv: add build tool 2015-02-05 10:14:28 -05:00
fhs-userenv: refactor and try to chdir to the current directory runScript now expects a filename instead of a Bash snippet; thus, "exec" should be omitted. 2015-04-22 08:50:49 -04:00			`in writeScriptBin name ''`
			`#! ${stdenv.shell}`
			`exec ${chroot-user}/bin/chroot-user ${env} bash -l ${init} "$(pwd)" "$@"`
			`''`