nixpkgs/pkgs/servers/ftp/vsftpd/default.nix

{ lib, stdenv, fetchurl, libcap, libseccomp, openssl, pam, nixosTests }:

stdenv.mkDerivation rec {
  pname = "vsftpd";
  version = "3.0.5";

  src = fetchurl {
    url = "https://security.appspot.com/downloads/vsftpd-${version}.tar.gz";
    sha256 = "sha256-JrYCrkVLC6bZnvRKCba54N+n9nIoEGc23x8njHC8kdM=";
  };

  buildInputs = [ libcap openssl libseccomp pam ];

  patches = [ ./CVE-2015-1419.patch ];

  postPatch = ''
    sed -i "/VSF_BUILD_SSL/s/^#undef/#define/" builddefs.h

    substituteInPlace Makefile \
      --replace -dirafter "" \
      --replace /usr $out \
      --replace /etc $out/etc \
      --replace "-Werror" ""


    mkdir -p $out/sbin $out/man/man{5,8}
  '';

  makeFlags = [
    "CC=${stdenv.cc.targetPrefix}cc"
  ];

  NIX_LDFLAGS = "-lcrypt -lssl -lcrypto -lpam -lcap -lseccomp";

  enableParallelBuilding = true;

  passthru = {
    tests = { inherit (nixosTests) vsftpd; };
  };

  meta = with lib; {
    description = "A very secure FTP daemon";
    license = licenses.gpl2;
    maintainers = with maintainers; [ peterhoeg ];
    platforms = platforms.linux;
  };
}
vsftpd: enable seccomp (#158974) * vsftpd: enable seccomp * nixos/tests/vsftpd: add basic test * vsftpd: add test to passthru 2022-03-01 03:03:47 +00:00			`{ lib, stdenv, fetchurl, libcap, libseccomp, openssl, pam, nixosTests }:`
vsftpd svn path=/nixpkgs/trunk/; revision=3811 2005-09-12 15:20:57 +00:00
Clean up the vsftpd module a bit 2013-11-07 15:14:59 +00:00			`stdenv.mkDerivation rec {`
servers: replace name with pname&version 2021-07-25 21:53:02 +00:00			`pname = "vsftpd";`
vsftpd: 3.0.3 -> 3.0.5 2021-08-17 21:01:21 +00:00			`version = "3.0.5";`
Clean up the vsftpd module a bit 2013-11-07 15:14:59 +00:00
vsftpd svn path=/nixpkgs/trunk/; revision=3811 2005-09-12 15:20:57 +00:00			`src = fetchurl {`
servers: replace name with pname&version 2021-07-25 21:53:02 +00:00			`url = "https://security.appspot.com/downloads/vsftpd-${version}.tar.gz";`
vsftpd: 3.0.3 -> 3.0.5 2021-08-17 21:01:21 +00:00			`sha256 = "sha256-JrYCrkVLC6bZnvRKCba54N+n9nIoEGc23x8njHC8kdM=";`
vsftpd svn path=/nixpkgs/trunk/; revision=3811 2005-09-12 15:20:57 +00:00			`};`
Attempt to fix the vsftpd build on i686-linux svn path=/nixpkgs/trunk/; revision=27054 2011-04-29 18:18:56 +00:00
vsftpd: enable seccomp (#158974) * vsftpd: enable seccomp * nixos/tests/vsftpd: add basic test * vsftpd: add test to passthru 2022-03-01 03:03:47 +00:00			`buildInputs = [ libcap openssl libseccomp pam ];`
vsftpd: compile with OpenSSL for SSL support SSL support was selectable via a flag, but as we are bound to have OpenSSL on the machine anyway, it really doesn't make sense to not compile in support. Did a bunch of cleanups too. 2018-12-06 09:53:53 +00:00
vsftpd: fix CVE-2015-1419 Adds patch from Debian. 2015-07-15 20:12:29 +00:00			`patches = [ ./CVE-2015-1419.patch ];`

vsftpd: compile with OpenSSL for SSL support SSL support was selectable via a flag, but as we are bound to have OpenSSL on the machine anyway, it really doesn't make sense to not compile in support. Did a bunch of cleanups too. 2018-12-06 09:53:53 +00:00			`postPatch = ''`
Clean up the vsftpd module a bit 2013-11-07 15:14:59 +00:00			`sed -i "/VSF_BUILD_SSL/s/^#undef/#define/" builddefs.h`

vsftpd: compile with OpenSSL for SSL support SSL support was selectable via a flag, but as we are bound to have OpenSSL on the machine anyway, it really doesn't make sense to not compile in support. Did a bunch of cleanups too. 2018-12-06 09:53:53 +00:00			`substituteInPlace Makefile \`
			`--replace -dirafter "" \`
			`--replace /usr $out \`
vsftpd: fix cross-compilation, remove -Werror 2021-06-18 14:41:39 +00:00			`--replace /etc $out/etc \`
			`--replace "-Werror" ""`

vsftpd: fixing build in x86_64/i686 It was building fine in the sheevaplug though. 2013-01-03 18:52:14 +00:00
vsftpd: compile with OpenSSL for SSL support SSL support was selectable via a flag, but as we are bound to have OpenSSL on the machine anyway, it really doesn't make sense to not compile in support. Did a bunch of cleanups too. 2018-12-06 09:53:53 +00:00			`mkdir -p $out/sbin $out/man/man{5,8}`
			`'';`
vsftpd-2.3.4, make ssl optional, do not hardcode userlist svn path=/nixpkgs/trunk/; revision=26927 2011-04-23 06:58:57 +00:00
vsftpd: fix cross-compilation, remove -Werror 2021-06-18 14:41:39 +00:00			`makeFlags = [`
			`"CC=${stdenv.cc.targetPrefix}cc"`
			`];`
vsftpd: fix build with gcc9 We still use that version on aarch64. 2021-05-12 12:00:05 +00:00
vsftpd: enable seccomp (#158974) * vsftpd: enable seccomp * nixos/tests/vsftpd: add basic test * vsftpd: add test to passthru 2022-03-01 03:03:47 +00:00			`NIX_LDFLAGS = "-lcrypt -lssl -lcrypto -lpam -lcap -lseccomp";`
vsftpd-2.3.4, make ssl optional, do not hardcode userlist svn path=/nixpkgs/trunk/; revision=26927 2011-04-23 06:58:57 +00:00
vsftpd: compile with OpenSSL for SSL support SSL support was selectable via a flag, but as we are bound to have OpenSSL on the machine anyway, it really doesn't make sense to not compile in support. Did a bunch of cleanups too. 2018-12-06 09:53:53 +00:00			`enableParallelBuilding = true;`
treewide: Add lots of platforms to packages with no meta Build-tested on x86_64 Linux and on Darwin. 2016-08-02 16:06:29 +00:00
vsftpd: enable seccomp (#158974) * vsftpd: enable seccomp * nixos/tests/vsftpd: add basic test * vsftpd: add test to passthru 2022-03-01 03:03:47 +00:00			`passthru = {`
			`tests = { inherit (nixosTests) vsftpd; };`
			`};`

treewide: with stdenv.lib; in meta -> with lib; Part of: https://github.com/NixOS/nixpkgs/issues/108938 meta = with stdenv.lib; is a widely used pattern. We want to slowly remove the `stdenv.lib` indirection and encourage people to use `lib` directly. Thus let’s start with the meta field. This used a rewriting script to mostly automatically replace all occurances of this pattern, and add the `lib` argument to the package header if it doesn’t exist yet. The script in its current form is available at https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix 2021-01-11 07:54:33 +00:00			`meta = with lib; {`
vsftpd: compile with OpenSSL for SSL support SSL support was selectable via a flag, but as we are bound to have OpenSSL on the machine anyway, it really doesn't make sense to not compile in support. Did a bunch of cleanups too. 2018-12-06 09:53:53 +00:00			`description = "A very secure FTP daemon";`
			`license = licenses.gpl2;`
			`maintainers = with maintainers; [ peterhoeg ];`
			`platforms = platforms.linux;`
treewide: Add lots of platforms to packages with no meta Build-tested on x86_64 Linux and on Darwin. 2016-08-02 16:06:29 +00:00			`};`
Clean up the vsftpd module a bit 2013-11-07 15:14:59 +00:00			`}`