treewide: update sandboxroot to fedora 40, nix to 24.05
We didn't bump our sandboxroot in a long time, this updates it to fedora
40
and updates the nix shell to nixpkgs-24.05. It also bumps rules_oci to
the current version.
Change-Id: I9ffb6f4dcd1a95be48b52015df987824dbb169f6
Reviewed-on: https://review.monogon.dev/c/monogon/+/3205
Tested-by: Jenkins CI
Reviewed-by: Leopold Schabel <leo@monogon.tech>
diff --git a/third_party/qemu/patches/bazel_support.patch b/third_party/qemu/patches/bazel_support.patch
index a2c65a0..6a1daff 100644
--- a/third_party/qemu/patches/bazel_support.patch
+++ b/third_party/qemu/patches/bazel_support.patch
@@ -3,7 +3,7 @@
index 0000000000..436f8c5cf3
--- /dev/null
+++ b/BUILD
-@@ -0,0 +1,1358 @@
+@@ -0,0 +1,1356 @@
+load("@rules_cc//cc:defs.bzl", "cc_binary", "cc_library")
+load("@rules_python//python:defs.bzl", "py_binary")
+load("@dev_source_monogon//build/utils:template_file.bzl", "template_file")
@@ -126,8 +126,6 @@
+ "io/**/*.inc",
+ "libdecnumber/**/*.h",
+ "libdecnumber/**/*.inc",
-+ "linux-headers/**/*.h",
-+ "linux-headers/**/*.inc",
+ "linux-user/**/*.h",
+ "linux-user/**/*.inc",
+ "migration/**/*.h",
@@ -1116,7 +1114,7 @@
+ "@zlib//:zlib",
+ ],
+ visibility = ["//visibility:public"],
-+ includes = ["linux-headers", "include"],
++ includes = ["include"],
+)
+
+cc_binary(
@@ -1262,7 +1260,7 @@
+ "@zlib//:zlib",
+ ],
+ visibility = ["//visibility:public"],
-+ includes = ["target/i386", "tcg/i386", "accel/tcg", "linux-headers"],
++ includes = ["target/i386", "tcg/i386", "accel/tcg"],
+)
+
+genrule(