nixpkgs/pkgs/tools/security/opensc/default.nix
Marek Mahut 4bd324935c opensc: CVE-2019-15946
(cherry picked from commit 80c90b48c2)
2019-10-28 12:50:01 +01:00

84 lines
2.6 KiB
Nix

{ stdenv, fetchFromGitHub, autoreconfHook, pkgconfig, zlib, readline, openssl
, libiconv, pcsclite, libassuan, libXt, fetchpatch
, docbook_xsl, libxslt, docbook_xml_dtd_412
, Carbon, PCSC, buildPackages
, withApplePCSC ? stdenv.isDarwin
}:
stdenv.mkDerivation rec {
pname = "opensc";
version = "0.19.0";
src = fetchFromGitHub {
owner = "OpenSC";
repo = "OpenSC";
rev = version;
sha256 = "10575gb9l38cskq7swyjp0907wlziyxg4ppq33ndz319dsx69d87";
};
patches = [
(fetchpatch {
name = "CVE-2019-6502.patch";
url = "https://github.com/OpenSC/OpenSC/commit/0d7967549751b7032f22b437106b41444aff0ba9.patch";
sha256 = "1y42lmz8i9w99hgpakdncnv8f94cqjfabz0v4xg6wfz9akl3ff7d";
})
(fetchpatch {
name = "CVE-2019-15945.patch";
url = "https://github.com/OpenSC/OpenSC/commit/412a6142c27a5973c61ba540e33cdc22d5608e68.patch";
sha256 = "088i2i1fkvdxnywmb54bn4283vhbxx6i2632b34ss5dh7k080hp7";
})
(fetchpatch {
name = "CVE-2019-15946.patch";
url = "https://github.com/OpenSC/OpenSC/commit/a3fc7693f3a035a8a7921cffb98432944bb42740.patch";
sha256 = "1qr9n8cbarrdn4kr5z0ys7flq50hfmcbm8584mhw7r39p08qwmvq";
})
];
nativeBuildInputs = [ pkgconfig autoreconfHook ];
buildInputs = [
zlib readline openssl libassuan
libXt libxslt libiconv docbook_xml_dtd_412
]
++ stdenv.lib.optional stdenv.isDarwin Carbon
++ (if withApplePCSC then [ PCSC ] else [ pcsclite ]);
NIX_CFLAGS_COMPILE = "-Wno-error";
configureFlags = [
"--enable-zlib"
"--enable-readline"
"--enable-openssl"
"--enable-pcsc"
"--enable-sm"
"--enable-man"
"--enable-doc"
"--localstatedir=/var"
"--sysconfdir=/etc"
"--with-xsl-stylesheetsdir=${docbook_xsl}/xml/xsl/docbook"
"--with-pcsc-provider=${
if withApplePCSC then
"${PCSC}/Library/Frameworks/PCSC.framework/PCSC"
else
"${stdenv.lib.getLib pcsclite}/lib/libpcsclite${stdenv.hostPlatform.extensions.sharedLibrary}"
}"
(stdenv.lib.optionalString (stdenv.hostPlatform != stdenv.buildPlatform)
"XSLTPROC=${buildPackages.libxslt}/bin/xsltproc")
];
PCSC_CFLAGS = stdenv.lib.optionalString withApplePCSC
"-I${PCSC}/Library/Frameworks/PCSC.framework/Headers";
installFlags = [
"sysconfdir=$(out)/etc"
"completiondir=$(out)/etc"
];
meta = with stdenv.lib; {
description = "Set of libraries and utilities to access smart cards";
homepage = https://github.com/OpenSC/OpenSC/wiki;
license = licenses.lgpl21Plus;
platforms = platforms.all;
maintainers = [ maintainers.erictapen ];
};
}