-
-
Notifications
You must be signed in to change notification settings - Fork 13.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[wip] Bump most apple-source-releases to macOS 10.14.1 #60439
Conversation
Welp, this turns out to be more work than I expected; I'm going to start over bottom-up rather than top-down. |
Hey, thanks for working on this! Some things are okay to update, like command line tools, but other things are important to leave older, like libdispatch or Libsystem. We want to support older macOS systems and that means using the older headers. There are some major changes to this that are included in #56744 and now in staging-next. It might be a good idea to base off of those. |
Hey, 10.12's Libc actually has the header that led me down this whole path in the first place, so that's great. I definitely underestimated the complexity here 🤯. I might continue to plug away at this just to learn the system better—it's looking like we're likely to be deploying nix to 500–1000 macbooks and I'd like to have a handle on how this part of it works. |
Yeah we definitely need more visibility and documentation. The difference between "bootstrapping" things like Libsystem and the others are not clearly marked from the less critical apps. |
Being stuck on 10.10 for so long with the unavailability of CF was definitively becoming painful. The stdenv is pretty complex because we have to deal with impurities that are out of control of nix as well as the fact that we want binaries to be backwards compatible with (some) previous releases. |
I haven't figured out sandboxing yet, I'll give that a crack tomorrow. This is thoroughly untested and guaranteed to not work yet.
There's a lot of version drift in
apple-source-releases
and none of it is up-to-date. I'll try to get it all updated and refactored a bit.Motivation for this change
Things done
sandbox
innix.conf
on non-NixOS)nix-shell -p nix-review --run "nix-review wip"
./result/bin/
)nix path-info -S
before and after)