diff options
author | Mx Kookie <kookie@spacekookie.de> | 2020-10-31 19:35:09 +0100 |
---|---|---|
committer | Mx Kookie <kookie@spacekookie.de> | 2020-10-31 19:35:09 +0100 |
commit | c4625b175f8200f643fd6e11010932ea44c78433 (patch) | |
tree | bce3f89888c8ac3991fa5569a878a9eab6801ccc /infra/libkookie/nixpkgs/pkgs/tools/networking/libreswan | |
parent | 49f735974dd103039ddc4cb576bb76555164a9e7 (diff) | |
parent | d661aa56a8843e991261510c1bb28fdc2f6975ae (diff) |
Add 'infra/libkookie/' from commit 'd661aa56a8843e991261510c1bb28fdc2f6975ae'
git-subtree-dir: infra/libkookie
git-subtree-mainline: 49f735974dd103039ddc4cb576bb76555164a9e7
git-subtree-split: d661aa56a8843e991261510c1bb28fdc2f6975ae
Diffstat (limited to 'infra/libkookie/nixpkgs/pkgs/tools/networking/libreswan')
-rw-r--r-- | infra/libkookie/nixpkgs/pkgs/tools/networking/libreswan/default.nix | 89 |
1 files changed, 89 insertions, 0 deletions
diff --git a/infra/libkookie/nixpkgs/pkgs/tools/networking/libreswan/default.nix b/infra/libkookie/nixpkgs/pkgs/tools/networking/libreswan/default.nix new file mode 100644 index 000000000000..3e7719c40d41 --- /dev/null +++ b/infra/libkookie/nixpkgs/pkgs/tools/networking/libreswan/default.nix @@ -0,0 +1,89 @@ +{ stdenv, fetchurl, makeWrapper, + pkgconfig, systemd, gmp, unbound, bison, flex, pam, libevent, libcap_ng, curl, nspr, + bash, iproute, iptables, procps, coreutils, gnused, gawk, nss, which, python, + docs ? false, xmlto, libselinux, ldns + }: + +let + binPath = stdenv.lib.makeBinPath [ + bash iproute iptables procps coreutils gnused gawk nss.tools which python + ]; +in + +assert docs -> xmlto != null; +assert stdenv.isLinux -> libselinux != null; + +stdenv.mkDerivation rec { + pname = "libreswan"; + version = "3.32"; + + src = fetchurl { + url = "https://download.libreswan.org/${pname}-${version}.tar.gz"; + sha256 = "0bj3g6qwd3ir3gk6hdl9npy3k44shf56vcgjahn30qpmx3z5fsr3"; + }; + + # These flags were added to compile v3.18. Try to lift them when updating. + NIX_CFLAGS_COMPILE = toString [ "-Wno-error=redundant-decls" "-Wno-error=format-nonliteral" + # these flags were added to build with gcc7 + "-Wno-error=implicit-fallthrough" + "-Wno-error=format-truncation" + "-Wno-error=pointer-compare" + "-Wno-error=stringop-truncation" + ]; + + nativeBuildInputs = [ makeWrapper pkgconfig ]; + buildInputs = [ bash iproute iptables systemd coreutils gnused gawk gmp unbound bison flex pam libevent + libcap_ng curl nspr nss python ldns ] + ++ stdenv.lib.optional docs xmlto + ++ stdenv.lib.optional stdenv.isLinux libselinux; + + prePatch = '' + # Correct bash path + sed -i -e 's|/bin/bash|/usr/bin/env bash|' mk/config.mk + + # Fix systemd unit directory, and prevent the makefile from trying to reload the + # systemd daemon or create tmpfiles + sed -i -e 's|UNITDIR=.*$|UNITDIR=$\{out}/etc/systemd/system/|g' \ + -e 's|TMPFILESDIR=.*$|TMPFILESDIR=$\{out}/tmpfiles.d/|g' \ + -e 's|systemctl|true|g' \ + -e 's|systemd-tmpfiles|true|g' \ + initsystems/systemd/Makefile + + # Fix the ipsec program from crushing the PATH + sed -i -e 's|\(PATH=".*"\):.*$|\1:$PATH|' programs/ipsec/ipsec.in + + # Fix python script to use the correct python + sed -i -e 's|#!/usr/bin/python|#!/usr/bin/env python|' -e 's/^\(\W*\)installstartcheck()/\1sscmd = "ss"\n\0/' programs/verify/verify.in + ''; + + # Set appropriate paths for build + preBuild = "export INC_USRLOCAL=\${out}"; + + makeFlags = [ + "INITSYSTEM=systemd" + (if docs then "all" else "base") + ]; + + installTargets = [ (if docs then "install" else "install-base") ]; + # Hack to make install work + installFlags = [ + "FINALVARDIR=\${out}/var" + "FINALSYSCONFDIR=\${out}/etc" + ]; + + postInstall = '' + for i in $out/bin/* $out/libexec/ipsec/*; do + wrapProgram "$i" --prefix PATH ':' "$out/bin:${binPath}" + done + ''; + + enableParallelBuilding = true; + + meta = with stdenv.lib; { + homepage = "https://libreswan.org"; + description = "A free software implementation of the VPN protocol based on IPSec and the Internet Key Exchange"; + platforms = platforms.linux ++ platforms.darwin ++ platforms.freebsd; + license = licenses.gpl2; + maintainers = [ maintainers.afranchuk ]; + }; +} |