diff options
author | Alex Franchuk <alex.franchuk@gmail.com> | 2016-02-23 23:06:45 -0500 |
---|---|---|
committer | Alex Franchuk <alex.franchuk@gmail.com> | 2016-03-02 09:44:30 -0500 |
commit | 69d8cb4a6bf85b2a6546a20a9e8b9c9c0f2943ec (patch) | |
tree | 5e6a6d779e6c6968752dee7d8f0996bcbb8c56c8 /pkgs/tools/networking/libreswan | |
parent | a2b19cdb0464eb71757b7584579cf0154c1d3771 (diff) | |
download | nixlib-69d8cb4a6bf85b2a6546a20a9e8b9c9c0f2943ec.tar nixlib-69d8cb4a6bf85b2a6546a20a9e8b9c9c0f2943ec.tar.gz nixlib-69d8cb4a6bf85b2a6546a20a9e8b9c9c0f2943ec.tar.bz2 nixlib-69d8cb4a6bf85b2a6546a20a9e8b9c9c0f2943ec.tar.lz nixlib-69d8cb4a6bf85b2a6546a20a9e8b9c9c0f2943ec.tar.xz nixlib-69d8cb4a6bf85b2a6546a20a9e8b9c9c0f2943ec.tar.zst nixlib-69d8cb4a6bf85b2a6546a20a9e8b9c9c0f2943ec.zip |
libreswan: add package and service to nixos
Diffstat (limited to 'pkgs/tools/networking/libreswan')
-rw-r--r-- | pkgs/tools/networking/libreswan/default.nix | 73 |
1 files changed, 73 insertions, 0 deletions
diff --git a/pkgs/tools/networking/libreswan/default.nix b/pkgs/tools/networking/libreswan/default.nix new file mode 100644 index 000000000000..700e6293d426 --- /dev/null +++ b/pkgs/tools/networking/libreswan/default.nix @@ -0,0 +1,73 @@ +{ stdenv, fetchurl, makeWrapper, + pkgconfig, systemd, gmp, unbound, bison, flex, pam, libevent, libcap_ng, curl, nspr, + bash, iproute, iptables, procps, coreutils, gnused, gawk, nssTools, which, python, + docs ? false, xmlto + }: + +let + optional = stdenv.lib.optional; + version = "3.16"; + name = "libreswan-${version}"; + binPath = stdenv.lib.makeBinPath [ + bash iproute iptables procps coreutils gnused gawk nssTools which python + ]; +in + +assert docs -> xmlto != null; + +stdenv.mkDerivation { + inherit name; + inherit version; + + src = fetchurl { + url = "https://download.libreswan.org/${name}.tar.gz"; + sha256 = "15qv4101p1jw591l04gsfscb3farzd278mgi8yph015vmifyjxrd"; + }; + + nativeBuildInputs = [ makeWrapper ]; + buildInputs = [ pkgconfig bash iproute iptables systemd coreutils gnused gawk gmp unbound bison flex pam libevent + libcap_ng curl nspr nssTools python ] + ++ optional docs xmlto; + + prePatch = '' + # Correct bash path + sed -i -e 's|/bin/bash|/usr/bin/env bash|' mk/config.mk + + # Fix systemd unit directory, and prevent the makefile from trying to reload the systemd daemon + sed -i -e 's|UNITDIR=.*$|UNITDIR=$\{out}/etc/systemd/system/|' -e 's|systemctl --system daemon-reload|true|' initsystems/systemd/Makefile + + # Fix the ipsec program from crushing the PATH + sed -i -e 's|\(PATH=".*"\):.*$|\1:$PATH|' programs/ipsec/ipsec.in + + # Fix python script to use the correct python + sed -i -e 's|#!/usr/bin/python|#!/usr/bin/env python|' -e 's/^\(\W*\)installstartcheck()/\1sscmd = "ss"\n\0/' programs/verify/verify.in + ''; + + # Set appropriate paths for build + preBuild = "export INC_USRLOCAL=\${out}"; + + makeFlags = [ + "INITSYSTEM=systemd" + (if docs then "all" else "base") + ]; + + installTargets = [ (if docs then "install" else "install-base") ]; + # Hack to make install work + installFlags = [ + "FINALVARDIR=\${out}/var" + "FINALSYSCONFDIR=\${out}/etc" + ]; + + postInstall = '' + for i in $out/bin/* $out/libexec/ipsec/*; do + wrapProgram "$i" --prefix PATH ':' "$out/bin:${binPath}" + done + ''; + + meta = { + homepage = "https://libreswan.org"; + description = "A free software implementation of the VPN protocol based on IPSec and the Internet Key Exchange"; + platforms = stdenv.lib.platforms.linux ++ stdenv.lib.platforms.darwin ++ stdenv.lib.platforms.freebsd; + maintainers = [ stdenv.lib.maintainers.afranchuk ]; + }; +} |