nixpkgs/pkgs/development/libraries/s2n-tls/default.nix

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

51 lines
1.3 KiB
Nix
Raw Normal View History

{ lib, stdenv
, fetchFromGitHub
, cmake
, openssl
}:
2020-12-26 04:03:42 +00:00
stdenv.mkDerivation rec {
pname = "s2n-tls";
2022-04-30 21:48:24 +00:00
version = "1.3.12";
2020-12-26 04:03:42 +00:00
src = fetchFromGitHub {
owner = "aws";
2020-12-26 04:03:42 +00:00
repo = pname;
rev = "v${version}";
2022-04-30 21:48:24 +00:00
sha256 = "1n1bak4s67cfizh8j5wpf05kfdcjvwqaca4rq9qys25z52bbpn9f";
2020-12-26 04:03:42 +00:00
};
nativeBuildInputs = [ cmake ];
outputs = [ "out" "dev"];
buildInputs = [ openssl ]; # s2n-config has find_dependency(LibCrypto).
2020-12-26 04:03:42 +00:00
cmakeFlags = [
"-DBUILD_SHARED_LIBS=ON"
"-DCMAKE_SKIP_BUILD_RPATH=OFF"
"-DUNSAFE_TREAT_WARNINGS_AS_ERRORS=OFF" # disable -Werror
] ++ lib.optionals stdenv.hostPlatform.isMips64 [
# See https://github.com/aws/s2n-tls/issues/1592 and https://github.com/aws/s2n-tls/pull/1609
"-DS2N_NO_PQ=ON"
2020-12-26 04:03:42 +00:00
];
propagatedBuildInputs = [ openssl ]; # s2n-config has find_dependency(LibCrypto).
postInstall = ''
# Glob for 'shared' or 'static' subdir
for f in $out/lib/s2n/cmake/*/s2n-targets.cmake; do
substituteInPlace "$f" \
--replace 'INTERFACE_INCLUDE_DIRECTORIES "''${_IMPORT_PREFIX}/include"' 'INTERFACE_INCLUDE_DIRECTORIES ""'
done
'';
2020-12-26 04:03:42 +00:00
meta = with lib; {
description = "C99 implementation of the TLS/SSL protocols";
homepage = "https://github.com/aws/s2n-tls";
2020-12-26 04:03:42 +00:00
license = licenses.asl20;
platforms = platforms.unix;
maintainers = with maintainers; [ orivej ];
};
}