+5 -4

pkgs/applications/misc/hello/default.nix

reviewed

··· 1 1 - { stdenv, fetchurl }: 1 1 + { stdenv, fetchipfs }: 2 2 3 3 stdenv.mkDerivation rec { 4 4 name = "hello-2.10"; 5 5 6 6 - src = fetchurl { 7 7 - url = "mirror://gnu/hello/${name}.tar.gz"; 8 8 - sha256 = "0ssi1wpaf7plaswqqjwigppsg5fyh99vdlb9kzl7c9lng89ndq1i"; 6 6 + src = fetchipfs { 7 7 + url = "https://ftp.gnu.org/gnu/hello/hello-2.10.tar.gz"; 8 8 + ipfs = "QmWyj65ak3wd8kG2EvPCXKd6Tij15m4SwJz6g2yG2rQ7w8"; 9 9 + sha256 = "1im1gglfm4k10bh4mdaqzmx3lm3kivnsmxrvl6vyvmfqqzljq75l"; 9 10 }; 10 11 11 12 doCheck = true;

+87

pkgs/build-support/fetchipfs/builder.sh

reviewed

··· 1 1 + source $stdenv/setup 2 2 + 3 3 + # Curl flags to handle redirects, not use EPSV, handle cookies for 4 4 + # servers to need them during redirects, and work on SSL without a 5 5 + # certificate (this isn't a security problem because we check the 6 6 + # cryptographic hash of the output anyway). 7 7 + 8 8 + set -o noglob 9 9 + 10 10 + curl="curl \ 11 11 + --location \ 12 12 + --max-redirs 20 \ 13 13 + --retry 2 \ 14 14 + --disable-epsv \ 15 15 + --cookie-jar cookies \ 16 16 + --insecure \ 17 17 + --speed-time 5 \ 18 18 + -# \ 19 19 + --fail \ 20 20 + $curlOpts \ 21 21 + $NIX_CURL_FLAGS" 22 22 + 23 23 + finish() { 24 24 + runHook postFetch 25 25 + set +o noglob 26 26 + exit 0 27 27 + } 28 28 + 29 29 + ipfs_add() { 30 30 + if curl --retry 0 --head --silent "localhost:5001" > /dev/null; then 31 31 + echo "=IPFS= add $ipfs" 32 32 + tar --owner=root --group=root -cWf "source.tar" $(echo *) 33 33 + res=$(curl -# -F "file=@source.tar" "localhost:5001/api/v0/tar/add" | sed 's/.*"Hash":"\(.*\)".*/\1/') 34 34 + if [ $ipfs != $res ]; then 35 35 + echo "\`ipfs tar add' results in $res when $ipfs is expected" 36 36 + exit 1 37 37 + fi 38 38 + rm "source.tar" 39 39 + fi 40 40 + } 41 41 + 42 42 + echo 43 43 + 44 44 + mkdir download 45 45 + cd download 46 46 + 47 47 + if curl --retry 0 --head --silent "localhost:5001" > /dev/null; then 48 48 + curlexit=18; 49 49 + echo "=IPFS= get $ipfs" 50 50 + # if we get error code 18, resume partial download 51 51 + while [ $curlexit -eq 18 ]; do 52 52 + # keep this inside an if statement, since on failure it doesn't abort the script 53 53 + if $curl -C - "http://localhost:5001/api/v0/tar/cat?arg=$ipfs" --output "$ipfs.tar"; then 54 54 + unpackFile "$ipfs.tar" 55 55 + rm "$ipfs.tar" 56 56 + set +o noglob 57 57 + mv $(echo *) "$out" 58 58 + finish 59 59 + else 60 60 + curlexit=$?; 61 61 + fi 62 62 + done 63 63 + fi 64 64 + 65 65 + if test -n "$url"; then 66 66 + curlexit=18; 67 67 + echo "Downloading $url" 68 68 + while [ $curlexit -eq 18 ]; do 69 69 + # keep this inside an if statement, since on failure it doesn't abort the script 70 70 + if $curl "$url" -O; then 71 71 + set +o noglob 72 72 + tmpfile=$(echo *) 73 73 + unpackFile $tmpfile 74 74 + rm $tmpfile 75 75 + ipfs_add 76 76 + mv $(echo *) "$out" 77 77 + finish 78 78 + else 79 79 + curlexit=$?; 80 80 + fi 81 81 + done 82 82 + fi 83 83 + 84 84 + echo "error: cannot download $ipfs from ipfs or the given url" 85 85 + echo 86 86 + set +o noglob 87 87 + exit 1

+52

pkgs/build-support/fetchipfs/default.nix

reviewed

··· 1 1 + { stdenv 2 2 + , curl 3 3 + }: 4 4 + 5 5 + { ipfs 6 6 + , url ? "" 7 7 + , curlOpts ? "" 8 8 + , outputHash ? "" 9 9 + , outputHashAlgo ? "" 10 10 + , md5 ? "" 11 11 + , sha1 ? "" 12 12 + , sha256 ? "" 13 13 + , sha512 ? "" 14 14 + , meta ? {} 15 15 + , port ? "8080" 16 16 + , postFetch ? "" 17 17 + }: 18 18 + 19 19 + assert sha512 != "" -> builtins.compareVersions "1.11" builtins.nixVersion <= 0; 20 20 + 21 21 + let 22 22 + 23 23 + hasHash = (outputHash != "" && outputHashAlgo != "") 24 24 + || md5 != "" || sha1 != "" || sha256 != "" || sha512 != ""; 25 25 + 26 26 + in 27 27 + 28 28 + if (!hasHash) then throw "Specify sha for fetchipfs fixed-output derivation" else stdenv.mkDerivation { 29 29 + name = ipfs; 30 30 + builder = ./builder.sh; 31 31 + buildInputs = [ curl ]; 32 32 + 33 33 + # New-style output content requirements. 34 34 + outputHashAlgo = if outputHashAlgo != "" then outputHashAlgo else 35 35 + if sha512 != "" then "sha512" else if sha256 != "" then "sha256" else if sha1 != "" then "sha1" else "md5"; 36 36 + outputHash = if outputHash != "" then outputHash else 37 37 + if sha512 != "" then sha512 else if sha256 != "" then sha256 else if sha1 != "" then sha1 else md5; 38 38 + 39 39 + outputHashMode = "recursive"; 40 40 + 41 41 + inherit curlOpts 42 42 + postFetch 43 43 + ipfs 44 44 + url 45 45 + port; 46 46 + 47 47 + # Doing the download on a remote machine just duplicates network 48 48 + # traffic, so don't do that. 49 49 + preferLocalBuild = true; 50 50 + 51 51 + inherit meta; 52 52 + }

+4

pkgs/top-level/all-packages.nix

reviewed

··· 177 177 178 178 fetchRepoProject = callPackage ../build-support/fetchrepoproject { }; 179 179 180 180 + fetchipfs = import ../build-support/fetchipfs { 181 181 + inherit curl stdenv; 182 182 + }; 183 183 + 180 184 # fetchurlBoot is used for curl and its dependencies in order to 181 185 # prevent a cyclic dependency (curl depends on curl.tar.bz2, 182 186 # curl.tar.bz2 depends on fetchurl, fetchurl depends on curl). It