diff options
| author | zowoq <59103226+zowoq@users.noreply.github.com> | 2023-01-30 10:25:06 +1000 |
|---|---|---|
| committer | zowoq <59103226+zowoq@users.noreply.github.com> | 2023-02-07 06:20:57 +1000 |
| commit | 421acf1022541abcbc167c17a38b4cf2e9bd26e3 (patch) | |
| tree | 93a9472afd0e8c8a2fb15aabba6e43516c8359e8 /pkgs/build-support/go/package.nix | |
| parent | 4abe923106e5f1bc1f46001a236222caeece5b4b (diff) | |
| download | nixpkgs-421acf1022541abcbc167c17a38b4cf2e9bd26e3.tar nixpkgs-421acf1022541abcbc167c17a38b4cf2e9bd26e3.tar.gz nixpkgs-421acf1022541abcbc167c17a38b4cf2e9bd26e3.tar.bz2 nixpkgs-421acf1022541abcbc167c17a38b4cf2e9bd26e3.tar.lz nixpkgs-421acf1022541abcbc167c17a38b4cf2e9bd26e3.tar.xz nixpkgs-421acf1022541abcbc167c17a38b4cf2e9bd26e3.tar.zst nixpkgs-421acf1022541abcbc167c17a38b4cf2e9bd26e3.zip | |
buildGo{Module,Package}: respect nix hardening flags when setting buildmode
Diffstat (limited to 'pkgs/build-support/go/package.nix')
| -rw-r--r-- | pkgs/build-support/go/package.nix | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/pkgs/build-support/go/package.nix b/pkgs/build-support/go/package.nix index ba1ab37a0c0..9106bf9796e 100644 --- a/pkgs/build-support/go/package.nix +++ b/pkgs/build-support/go/package.nix @@ -134,6 +134,12 @@ let export GOPATH=$NIX_BUILD_TOP/go:$GOPATH export GOCACHE=$TMPDIR/go-cache + # currently pie is only enabled by default in pkgsMusl + # this will respect the `hardening{Disable,Enable}` flags if set + if [[ $NIX_HARDENING_ENABLE =~ "pie" ]]; then + export GOFLAGS="-buildmode=pie $GOFLAGS" + fi + runHook postConfigure ''; |