nixpkgs/pkgs/tools/security/softhsm/default.nix

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

46 lines
1.4 KiB
Nix
Raw Normal View History

{ lib, stdenv, fetchurl, botan2, libobjc, Security }:
2016-04-18 08:36:47 +00:00
stdenv.mkDerivation rec {
pname = "softhsm";
2020-08-17 08:31:10 +00:00
version = "2.6.1";
2016-04-18 08:36:47 +00:00
src = fetchurl {
url = "https://dist.opendnssec.org/source/${pname}-${version}.tar.gz";
2022-06-03 00:55:26 +00:00
hash = "sha256-YSSUcwVLzRgRUZ75qYmogKe9zDbTF8nCVFf8YU30dfI=";
2016-04-18 08:36:47 +00:00
};
configureFlags = [
"--with-crypto-backend=botan"
2020-08-17 08:31:10 +00:00
"--with-botan=${botan2}"
2016-04-18 08:36:47 +00:00
"--sysconfdir=$out/etc"
"--localstatedir=$out/var"
];
2017-12-06 03:51:28 +00:00
propagatedBuildInputs =
2021-01-15 09:19:50 +00:00
lib.optionals stdenv.isDarwin [ libobjc Security ];
2017-12-06 03:51:28 +00:00
2020-08-17 08:31:10 +00:00
buildInputs = [ botan2 ];
2016-04-18 08:36:47 +00:00
postInstall = "rm -rf $out/var";
meta = with lib; {
homepage = "https://www.opendnssec.org/softhsm";
2016-04-18 08:36:47 +00:00
description = "Cryptographic store accessible through a PKCS #11 interface";
2020-08-17 08:31:10 +00:00
longDescription = "
SoftHSM provides a software implementation of a generic
cryptographic device with a PKCS#11 interface, which is of
course especially useful in environments where a dedicated hardware
implementation of such a device - for instance a Hardware
Security Module (HSM) or smartcard - is not available.
SoftHSM follows the OASIS PKCS#11 standard, meaning it should be
able to work with many cryptographic products. SoftHSM is a
programme of The Commons Conservancy.
";
license = licenses.bsd2;
maintainers = [ maintainers.leenaars ];
2017-12-06 03:51:28 +00:00
platforms = platforms.unix;
2016-04-18 08:36:47 +00:00
};
}