2020-04-19 19:07:39 +03:00
|
|
|
{ stdenv, lib, buildEnv, buildGoPackage, fetchFromGitHub, makeWrapper, coreutils
|
2020-10-06 01:52:33 +03:00
|
|
|
, runCommand, runtimeShell, writeText, terraform-providers, fetchpatch }:
|
2016-06-05 12:16:58 +03:00
|
|
|
|
2017-03-17 12:05:16 +03:00
|
|
|
let
|
2017-03-31 14:19:22 +03:00
|
|
|
goPackagePath = "github.com/hashicorp/terraform";
|
|
|
|
|
|
|
|
generic = { version, sha256, ... }@attrs:
|
2019-11-14 18:30:19 +03:00
|
|
|
let attrs' = builtins.removeAttrs attrs [ "version" "sha256" ];
|
|
|
|
in buildGoPackage ({
|
2017-03-31 14:19:22 +03:00
|
|
|
name = "terraform-${version}";
|
|
|
|
|
|
|
|
inherit goPackagePath;
|
|
|
|
|
|
|
|
src = fetchFromGitHub {
|
2019-11-14 18:30:19 +03:00
|
|
|
owner = "hashicorp";
|
|
|
|
repo = "terraform";
|
|
|
|
rev = "v${version}";
|
2017-03-31 14:19:22 +03:00
|
|
|
inherit sha256;
|
|
|
|
};
|
|
|
|
|
2020-04-19 19:07:39 +03:00
|
|
|
postPatch = ''
|
|
|
|
# speakeasy hardcodes /bin/stty https://github.com/bgentry/speakeasy/issues/22
|
|
|
|
substituteInPlace vendor/github.com/bgentry/speakeasy/speakeasy_unix.go \
|
|
|
|
--replace "/bin/stty" "${coreutils}/bin/stty"
|
|
|
|
'';
|
|
|
|
|
2017-03-31 14:19:22 +03:00
|
|
|
postInstall = ''
|
|
|
|
# remove all plugins, they are part of the main binary now
|
2020-04-28 04:50:57 +03:00
|
|
|
for i in $out/bin/*; do
|
2017-03-31 14:19:22 +03:00
|
|
|
if [[ $(basename $i) != terraform ]]; then
|
|
|
|
rm "$i"
|
|
|
|
fi
|
|
|
|
done
|
|
|
|
'';
|
2017-03-17 12:05:16 +03:00
|
|
|
|
2017-03-31 14:19:22 +03:00
|
|
|
preCheck = ''
|
|
|
|
export HOME=$TMP
|
|
|
|
'';
|
|
|
|
|
|
|
|
meta = with stdenv.lib; {
|
2019-11-14 18:30:19 +03:00
|
|
|
description =
|
|
|
|
"Tool for building, changing, and versioning infrastructure";
|
|
|
|
homepage = "https://www.terraform.io/";
|
2017-03-31 14:19:22 +03:00
|
|
|
license = licenses.mpl20;
|
2019-11-14 18:30:19 +03:00
|
|
|
maintainers = with maintainers; [
|
2020-10-08 23:55:59 +03:00
|
|
|
Chili-Man
|
|
|
|
babariviere
|
2019-11-14 18:30:19 +03:00
|
|
|
kalbasit
|
|
|
|
marsam
|
2020-10-08 23:55:59 +03:00
|
|
|
peterhoeg
|
|
|
|
timstott
|
|
|
|
zimbatm
|
2019-11-14 18:30:19 +03:00
|
|
|
];
|
2017-03-31 14:19:22 +03:00
|
|
|
};
|
|
|
|
} // attrs');
|
2017-08-30 19:25:34 +03:00
|
|
|
|
|
|
|
pluggable = terraform:
|
|
|
|
let
|
2017-08-31 01:53:14 +03:00
|
|
|
withPlugins = plugins:
|
|
|
|
let
|
|
|
|
actualPlugins = plugins terraform.plugins;
|
2017-08-30 19:25:34 +03:00
|
|
|
|
2020-10-06 01:52:33 +03:00
|
|
|
# Make providers available in Terraform 0.13 and 0.12 search paths.
|
|
|
|
pluginDir = lib.concatMapStrings (pl: let
|
2020-10-09 13:44:23 +03:00
|
|
|
inherit (pl) version GOOS GOARCH;
|
|
|
|
|
|
|
|
pname = pl.pname or (throw "${pl.name} is missing a pname attribute");
|
|
|
|
|
|
|
|
# This is just the name, without the terraform-provider- prefix
|
|
|
|
plugin_name = lib.removePrefix "terraform-provider-" pname;
|
|
|
|
|
|
|
|
slug = pl.passthru.provider-source-address or "registry.terraform.io/nixpkgs/${plugin_name}";
|
2020-10-06 01:52:33 +03:00
|
|
|
|
|
|
|
shim = writeText "shim" ''
|
|
|
|
#!${runtimeShell}
|
2020-10-09 13:44:23 +03:00
|
|
|
exec ${pl}/bin/${pname}_v${version} "$@"
|
2020-10-06 01:52:33 +03:00
|
|
|
'';
|
|
|
|
in ''
|
2020-10-09 13:44:23 +03:00
|
|
|
TF_0_13_PROVIDER_PATH=$out/plugins/${slug}/${version}/${GOOS}_${GOARCH}/${pname}_v${version}
|
2020-10-06 01:52:33 +03:00
|
|
|
mkdir -p "$(dirname $TF_0_13_PROVIDER_PATH)"
|
|
|
|
|
|
|
|
cp ${shim} "$TF_0_13_PROVIDER_PATH"
|
|
|
|
chmod +x "$TF_0_13_PROVIDER_PATH"
|
|
|
|
|
2020-10-09 13:44:23 +03:00
|
|
|
TF_0_12_PROVIDER_PATH=$out/plugins/${pname}_v${version}
|
2020-10-06 01:52:33 +03:00
|
|
|
|
|
|
|
cp ${shim} "$TF_0_12_PROVIDER_PATH"
|
|
|
|
chmod +x "$TF_0_12_PROVIDER_PATH"
|
|
|
|
''
|
|
|
|
) actualPlugins;
|
|
|
|
|
2018-03-28 03:25:23 +03:00
|
|
|
# Wrap PATH of plugins propagatedBuildInputs, plugins may have runtime dependencies on external binaries
|
2019-11-14 18:30:19 +03:00
|
|
|
wrapperInputs = lib.unique (lib.flatten
|
|
|
|
(lib.catAttrs "propagatedBuildInputs"
|
|
|
|
(builtins.filter (x: x != null) actualPlugins)));
|
2018-03-28 03:25:23 +03:00
|
|
|
|
2017-08-31 01:53:14 +03:00
|
|
|
passthru = {
|
2019-11-14 18:30:19 +03:00
|
|
|
withPlugins = newplugins:
|
|
|
|
withPlugins (x: newplugins x ++ actualPlugins);
|
2018-11-19 23:03:44 +03:00
|
|
|
full = withPlugins lib.attrValues;
|
2017-08-30 19:25:34 +03:00
|
|
|
|
2017-08-31 01:53:14 +03:00
|
|
|
# Ouch
|
2019-11-14 18:30:19 +03:00
|
|
|
overrideDerivation = f:
|
|
|
|
(pluggable (terraform.overrideDerivation f)).withPlugins plugins;
|
|
|
|
overrideAttrs = f:
|
|
|
|
(pluggable (terraform.overrideAttrs f)).withPlugins plugins;
|
|
|
|
override = x:
|
|
|
|
(pluggable (terraform.override x)).withPlugins plugins;
|
2017-08-31 01:53:14 +03:00
|
|
|
};
|
|
|
|
# Don't bother wrapping unless we actually have plugins, since the wrapper will stop automatic downloading
|
|
|
|
# of plugins, which might be counterintuitive if someone just wants a vanilla Terraform.
|
2019-11-14 18:30:19 +03:00
|
|
|
in if actualPlugins == [ ] then
|
|
|
|
terraform.overrideAttrs
|
|
|
|
(orig: { passthru = orig.passthru // passthru; })
|
|
|
|
else
|
|
|
|
lib.appendToName "with-plugins" (stdenv.mkDerivation {
|
|
|
|
inherit (terraform) name;
|
|
|
|
buildInputs = [ makeWrapper ];
|
|
|
|
|
2020-10-06 01:52:33 +03:00
|
|
|
buildCommand = pluginDir + ''
|
2019-11-14 18:30:19 +03:00
|
|
|
mkdir -p $out/bin/
|
2020-04-28 04:50:57 +03:00
|
|
|
makeWrapper "${terraform}/bin/terraform" "$out/bin/terraform" \
|
2020-10-06 01:52:33 +03:00
|
|
|
--set NIX_TERRAFORM_PLUGIN_DIR $out/plugins \
|
2019-11-14 18:30:19 +03:00
|
|
|
--prefix PATH : "${lib.makeBinPath wrapperInputs}"
|
|
|
|
'';
|
|
|
|
|
|
|
|
inherit passthru;
|
|
|
|
});
|
|
|
|
in withPlugins (_: [ ]);
|
|
|
|
|
|
|
|
plugins = removeAttrs terraform-providers [
|
|
|
|
"override"
|
|
|
|
"overrideDerivation"
|
|
|
|
"recurseForDerivations"
|
|
|
|
];
|
2018-01-10 12:47:52 +03:00
|
|
|
in rec {
|
2017-11-23 00:06:02 +03:00
|
|
|
terraform_0_11 = pluggable (generic {
|
2019-05-23 12:06:57 +03:00
|
|
|
version = "0.11.14";
|
|
|
|
sha256 = "1bzz5wy13gh8j47mxxp6ij6yh20xmxd9n5lidaln3mf1bil19dmc";
|
2017-11-23 00:06:02 +03:00
|
|
|
patches = [ ./provider-path.patch ];
|
|
|
|
passthru = { inherit plugins; };
|
|
|
|
});
|
2018-01-10 12:47:52 +03:00
|
|
|
|
2018-11-19 23:03:44 +03:00
|
|
|
terraform_0_11-full = terraform_0_11.full;
|
2018-10-04 23:41:19 +03:00
|
|
|
|
2018-11-19 23:18:13 +03:00
|
|
|
terraform_0_12 = pluggable (generic {
|
2020-07-26 02:22:08 +03:00
|
|
|
version = "0.12.29";
|
|
|
|
sha256 = "18i7vkvnvfybwzhww8d84cyh93xfbwswcnwfrgvcny1qwm8rsaj8";
|
2020-04-26 11:37:59 +03:00
|
|
|
patches = [
|
|
|
|
./provider-path.patch
|
|
|
|
(fetchpatch {
|
|
|
|
name = "fix-mac-mojave-crashes.patch";
|
2020-05-28 12:28:02 +03:00
|
|
|
url = "https://github.com/hashicorp/terraform/commit/cd65b28da051174a13ac76e54b7bb95d3051255c.patch";
|
2020-04-26 11:37:59 +03:00
|
|
|
sha256 = "1k70kk4hli72x8gza6fy3vpckdm3sf881w61fmssrah3hgmfmbrs";
|
|
|
|
}) ];
|
2018-11-19 23:18:13 +03:00
|
|
|
passthru = { inherit plugins; };
|
|
|
|
});
|
|
|
|
|
2020-07-10 14:20:40 +03:00
|
|
|
terraform_0_13 = pluggable (generic {
|
2020-10-22 02:00:00 +03:00
|
|
|
version = "0.13.5";
|
|
|
|
sha256 = "1fnydzm5h65pdy2gkq403sllx05cvpldkdzdpcy124ywljb4x9d8";
|
2020-07-10 14:20:40 +03:00
|
|
|
patches = [ ./provider-path.patch ];
|
|
|
|
passthru = { inherit plugins; };
|
|
|
|
});
|
|
|
|
|
2018-10-04 23:41:19 +03:00
|
|
|
# Tests that the plugins are being used. Terraform looks at the specific
|
|
|
|
# file pattern and if the plugin is not found it will try to download it
|
|
|
|
# from the Internet. With sandboxing enable this test will fail if that is
|
|
|
|
# the case.
|
|
|
|
terraform_plugins_test = let
|
|
|
|
mainTf = writeText "main.tf" ''
|
|
|
|
resource "random_id" "test" {}
|
|
|
|
'';
|
|
|
|
terraform = terraform_0_11.withPlugins (p: [ p.random ]);
|
2019-11-14 18:30:19 +03:00
|
|
|
test =
|
|
|
|
runCommand "terraform-plugin-test" { buildInputs = [ terraform ]; } ''
|
2018-10-04 23:41:19 +03:00
|
|
|
set -e
|
|
|
|
# make it fail outside of sandbox
|
|
|
|
export HTTP_PROXY=http://127.0.0.1:0 HTTPS_PROXY=https://127.0.0.1:0
|
|
|
|
cp ${mainTf} main.tf
|
|
|
|
terraform init
|
|
|
|
touch $out
|
|
|
|
'';
|
|
|
|
in test;
|
|
|
|
|
2016-06-05 12:16:58 +03:00
|
|
|
}
|