diff options
Diffstat (limited to 'nixpkgs/pkgs/tools/security/tboot/default.nix')
-rw-r--r-- | nixpkgs/pkgs/tools/security/tboot/default.nix | 36 |
1 files changed, 36 insertions, 0 deletions
diff --git a/nixpkgs/pkgs/tools/security/tboot/default.nix b/nixpkgs/pkgs/tools/security/tboot/default.nix new file mode 100644 index 000000000000..f159dd27c42a --- /dev/null +++ b/nixpkgs/pkgs/tools/security/tboot/default.nix @@ -0,0 +1,36 @@ +{ stdenv, fetchurl, trousers, openssl, zlib }: + +stdenv.mkDerivation rec { + name = "tboot-${version}"; + version = "1.9.8"; + + src = fetchurl { + url = "mirror://sourceforge/tboot/${name}.tar.gz"; + sha256 = "06f0ggl6vrb5ghklblvh2ixgmmjv31rkp1vfj9qm497iqwq9ac00"; + }; + + patches = [ ./tboot-add-well-known-secret-option-to-lcp_writepol.patch ]; + + buildInputs = [ trousers openssl zlib ]; + + enableParallelBuilding = true; + + hardeningDisable = [ "pic" "stackprotector" ]; + + configurePhase = '' + for a in lcptools utils tb_polgen; do + substituteInPlace $a/Makefile --replace /usr/sbin /sbin + done + substituteInPlace docs/Makefile --replace /usr/share /share + ''; + + installFlags = "DESTDIR=$(out)"; + + meta = with stdenv.lib; { + description = "A pre-kernel/VMM module that uses Intel(R) TXT to perform a measured and verified launch of an OS kernel/VMM"; + homepage = https://sourceforge.net/projects/tboot/; + license = licenses.bsd3; + maintainers = with maintainers; [ ak ]; + platforms = [ "x86_64-linux" "i686-linux" ]; + }; +} |