@ -2,7 +2,7 @@
, makeWrapper , autoreconfHook , fetchpatch
, coreutils , libxml2 , gnutls , perl , python2 , attr , glib , docutils
, iproute , readline , lvm2 , util-linux , systemd , libpciaccess , gettext
, libtasn1 , iptables-nftables-compat , libgcrypt , yajl , pmutils , libcap_ng , libapparmor
, libtasn1 , iptables , ebtables , libgcrypt , yajl , pmutils , libcap_ng , libapparmor
, dnsmasq , libnl , libpcap , libxslt , xhtml1 , numad , numactl , perlPackages
, curl , libiconv , gmp , zfs , parted , bridge-utils , dmidecode , dbus , libtirpc , rpcsvc-proto , darwin
, meson , ninja , audit , cmake , bash-completion , pkg-config
@ -16,6 +16,19 @@ with lib;
# if you update, also bump <nixpkgs/pkgs/development/python-modules/libvirt/default.nix> and SysVirt in <nixpkgs/pkgs/top-level/perl-packages.nix>
let
buildFromTarball = stdenv . isDarwin ;
# libvirt hardcodes the binary name 'ebtables', but in nixpkgs the ebtables
# binary we want to use is named 'ebtables-legacy'.
# Create a derivation to alias the binary name so that libvirt can find the right one, and use that below.
ebtables-compat = stdenv . mkDerivation {
pname = " e b t a b l e s - c o m p a t " ;
version = ebtables . version ;
src = null ;
buildInputs = [ ebtables ] ;
buildCommand = ''
mkdir - p $ out/bin
ln - sf $ { ebtables } /bin/ebtables-legacy $ out/bin/ebtables
'' ;
} ;
in stdenv . mkDerivation rec {
pname = " l i b v i r t " ;
version = " 6 . 8 . 0 " ;
@ -72,7 +85,7 @@ in stdenv.mkDerivation rec {
sed - i meson . build - e " s | c o n f . s e t _ q u o t e d ( ' ${ var } ' , . * | c o n f . s e t _ q u o t e d ( ' ${ var } ' , ' ${ value } ' ) | "
'' ;
in ''
PATH = $ { lib . makeBinPath ( [ dnsmasq ] ++ optionals stdenv . isLinux [ iproute iptables-nf tables-compat lvm2 systemd numad ] ++ optionals enableIscsi [ openiscsi ] ) }: $ PATH
PATH = $ { lib . makeBinPath ( [ dnsmasq ] ++ optionals stdenv . isLinux [ iproute iptables eb tables-compat lvm2 systemd numad ] ++ optionals enableIscsi [ openiscsi ] ) }: $ PATH
# the path to qemu-kvm will be stored in VM's .xml and .save files
# do not use "''${qemu_kvm}/bin/qemu-kvm" to avoid bound VMs to particular qemu derivations
substituteInPlace src/lxc/lxc_conf.c \
@ -115,15 +128,15 @@ in stdenv.mkDerivation rec {
] ;
postInstall = let
# iptables-nftables-compat for an 'ebtables' binary
binPath = [ iptables-nf tables-compat iproute pmutils numad numactl bridge-utils dmidecode dnsmasq ] ++ optionals enableIscsi [ openiscsi ] ;
# Keep the legacy iptables binary for now for backwards compatibility (comment on #109332)
binPath = [ iptables eb tables-compat iproute pmutils numad numactl bridge-utils dmidecode dnsmasq ] ++ optionals enableIscsi [ openiscsi ] ;
in ''
substituteInPlace $ out/libexec/libvirt-guests.sh \
- - replace ' ON_BOOT = sta rt' ' ON_BOOT = '' ${ ON_BOOT : - start } ' \
- - replace ' ON_SHUTDOWN = susp en d' ' ON_SHUTDOWN = '' ${ ON_SHUTDOWN : - suspend } ' \
- - replace " $ o u t / b i n " ' $ { gettext } /bin ' \
- - replace ' lock/subsys ' ' lock' \
- - replace ' gettext . sh' ' gettext . sh
- - replace ' ON_BOOT = " s ta r t" ' ' ON_BOOT = '' ${ ON_BOOT : - start } ' \
- - replace ' ON_SHUTDOWN = " s us p en d" ' ' ON_SHUTDOWN = '' ${ ON_SHUTDOWN : - suspend } ' \
- - replace " $ o u t / b i n " ' $ { gettext } /bin ' \
- - replace ' lock/subsys ' ' lock' \
- - replace ' gettext . sh' ' gettext . sh
# Added in nixpkgs:
gettext ( ) { " ${ gettext } / b i n / g e t t e x t " " $ @ " ; }
'