{ fetchurl, stdenv, libtasn1, libgcrypt, gnutls }:

stdenv.mkDerivation rec {
  name = "shishi-1.0.2";

  src = fetchurl {
    url = "mirror://gnu/shishi/${name}.tar.gz";
    sha256 = "032qf72cpjdfffq1yq54gz3ahgqf2ijca4vl31sfabmjzq9q370d";
  };

  buildInputs = [ libtasn1 libgcrypt gnutls ] ;

  NIX_CFLAGS_COMPILE
    = stdenv.lib.optionalString stdenv.isDarwin "-DBIND_8_COMPAT";

  doCheck = true;

  meta = {
    description = "An implementation of the Kerberos 5 network security system";
    homepage    = http://www.gnu.org/software/shishi/;
    license     = stdenv.lib.licenses.gpl3Plus;
    maintainers = with stdenv.lib.maintainers; [ bjg lovek323 ];
    platforms   = stdenv.lib.platforms.all;

    longDescription =
      '' GNU Shishi is an implementation of the Kerberos 5 network
         authentication system, as specified in RFC 4120.  Shishi can be
         used to authenticate users in distributed systems.

         Shishi contains a library (`libshishi') that can be used by
         application developers to add support for Kerberos 5.  Shishi
         contains a command line utility (1shishi') that is used by
         users to acquire and manage tickets (and more).  The server
         side, a Key Distribution Center, is implemented by `shishid'.
      '';
  };
}