fix(3p/overlays): pin specific version of tpm2-pkcs11 r/7476

Newer versions broke compatibility with who knows whatever part of the stack is required for correct TVM + OpenVPN interaction, but I need this to work. This was previously picked from stable, but we've bumped stable and it has advanced to a version where this is also broken. I believe this is a known issue, but right now I don't have the time to look into it. Change-Id: I1060f3ecfd7b43ebe5e1860f59f7574ca094570a Reviewed-on: https://cl.tvl.fyi/c/depot/+/10743 Reviewed-by: tazjin <tazjin@tvl.su> Autosubmit: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI
author: Vincent Ambo <tazjin@tvl.su> 2024-02-04T17·32+0300
committer: clbot <clbot@tvl.fyi> 2024-02-05T21·10+0000
commit: c397aaceef4ab72a9437eeb6fb97d534dce1b663 (patch)
tree: 67d2e6f4f536c60f8ca746302659dc4286bacfd3 /third_party/overlays/tvl.nix
parent: 0d55a6dcc86b4f7f3f0f26fb8a5db5fc2e72a08e (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/third_party/overlays/tvl.nix b/third_party/overlays/tvl.nix
index a070320c73..6614709143 100644
--- a/third_party/overlays/tvl.nix
+++ b/third_party/overlays/tvl.nix
@@ -132,4 +132,9 @@ depot.nix.readTree.drvTargets {
       license = licenses.asl20;
     };
   };
+
+  # OpenVPN + TPM2 is broken on versions of this package somewhere
+  # after 1.8.0, but it is a critical dependency for tazjin. For this
+  # reason it is vendored from a specific nixpkgs commit.
+  tpm2-pkcs11 = self.callPackage ./patches/tpm2-pkcs11.nix { };
 }
author	Vincent Ambo <tazjin@tvl.su>	2024-02-04T17·32+0300
committer	clbot <clbot@tvl.fyi>	2024-02-05T21·10+0000
commit	c397aaceef4ab72a9437eeb6fb97d534dce1b663 (patch)
tree	67d2e6f4f536c60f8ca746302659dc4286bacfd3 /third_party/overlays/tvl.nix
parent	0d55a6dcc86b4f7f3f0f26fb8a5db5fc2e72a08e (diff)