blob: 61afb9082d0fadc74478f5faf83ed00de3f0784a (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
|
{ stdenv, fetchurl, botan2, libobjc, Security }:
stdenv.mkDerivation rec {
pname = "softhsm";
version = "2.6.1";
src = fetchurl {
url = "https://dist.opendnssec.org/source/${pname}-${version}.tar.gz";
hash = "sha256:1wkmyi6n3z2pak1cj5yk6v6bv9w0m24skycya48iikab0mrr8931";
};
configureFlags = [
"--with-crypto-backend=botan"
"--with-botan=${botan2}"
"--sysconfdir=$out/etc"
"--localstatedir=$out/var"
];
propagatedBuildInputs =
stdenv.lib.optionals stdenv.isDarwin [ libobjc Security ];
buildInputs = [ botan2 ];
postInstall = "rm -rf $out/var";
meta = with stdenv.lib; {
homepage = "https://www.opendnssec.org/softhsm";
description = "Cryptographic store accessible through a PKCS #11 interface";
longDescription = "
SoftHSM provides a software implementation of a generic
cryptographic device with a PKCS#11 interface, which is of
course especially useful in environments where a dedicated hardware
implementation of such a device - for instance a Hardware
Security Module (HSM) or smartcard - is not available.
SoftHSM follows the OASIS PKCS#11 standard, meaning it should be
able to work with many cryptographic products. SoftHSM is a
programme of The Commons Conservancy.
";
license = licenses.bsd2;
maintainers = [ maintainers.leenaars ];
platforms = platforms.unix;
};
}
|
