diff --git a/pkgs/tools/networking/strongswan/default.nix b/pkgs/tools/networking/strongswan/default.nix index 7a9edef50044..9f68e5856ba9 100644 --- a/pkgs/tools/networking/strongswan/default.nix +++ b/pkgs/tools/networking/strongswan/default.nix @@ -1,5 +1,5 @@ { stdenv, fetchurl, gmp, pkgconfig, python, autoreconfHook -, curl, trousers, sqlite +, curl, trousers, sqlite, iptables, libxml2 , enableTNC ? false }: stdenv.mkDerivation rec { @@ -13,8 +13,8 @@ stdenv.mkDerivation rec { dontPatchELF = true; buildInputs = - [ gmp pkgconfig python autoreconfHook ] - ++ stdenv.lib.optionals enableTNC [ curl trousers sqlite ]; + [ gmp pkgconfig python autoreconfHook iptables ] + ++ stdenv.lib.optionals enableTNC [ curl trousers sqlite libxml2 ]; patches = [ ./ext_auth-path.patch @@ -23,13 +23,22 @@ stdenv.mkDerivation rec { ]; configureFlags = - [ "--enable-swanctl" "--enable-cmd" ] + [ "--enable-swanctl" "--enable-cmd" + "--enable-farp" "--enable-dhcp" + "--enable-eap-sim" "--enable-eap-sim-file" "--enable-eap-simaka-pseudonym" + "--enable-eap-simaka-reauth" "--enable-eap-identity" "--enable-eap-md5" + "--enable-eap-gtc" "--enable-eap-aka" "--enable-eap-aka-3gpp2" + "--enable-eap-mschapv2" "--enable-xauth-eap" "--enable-ext-auth" + "--enable-forecast" "--enable-connmark" "--enable-acert" + "--enable-aesni" "--enable-af-alg" "--enable-rdrand" ] + ++ stdenv.lib.optional (stdenv.system == "i686-linux") "--enable-padlock" ++ stdenv.lib.optionals enableTNC [ "--disable-gmp" "--disable-aes" "--disable-md5" "--disable-sha1" "--disable-sha2" "--disable-fips-prf" - "--enable-curl" "--enable-openssl" "--enable-eap-identity" "--enable-eap-md5" "--enable-eap-mschapv2" + "--enable-curl" "--enable-openssl" "--enable-eap-tnc" "--enable-eap-ttls" "--enable-eap-dynamic" "--enable-tnccs-20" "--enable-tnc-imc" "--enable-imc-os" "--enable-imc-attestation" "--enable-tnc-imv" "--enable-imv-attestation" + "--enable-tnc-ifmap" "--enable-tnc-imc" "--enable-tnc-imv" "--with-tss=trousers" "--enable-aikgen" "--enable-sqlite" ];