mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-12-02 11:53:27 +00:00
cb7aad71e5
* fscrypt-experimental: 0.3.1 -> 0.3.2 (#160747) * fscrypt-experimental: 0.3.2 -> 0.3.3 Fixes CVE-2022-25326 Fixes CVE-2022-25327 Fixes CVE-2022-25328 Co-authored-by: Renaud <c0bw3b@users.noreply.github.com>
56 lines
1.4 KiB
Nix
56 lines
1.4 KiB
Nix
{ lib, buildGoModule, fetchFromGitHub, gnum4, pam, fscrypt-experimental }:
|
|
|
|
# Don't use this for anything important yet!
|
|
|
|
buildGoModule rec {
|
|
pname = "fscrypt";
|
|
version = "0.3.3";
|
|
|
|
src = fetchFromGitHub {
|
|
owner = "google";
|
|
repo = "fscrypt";
|
|
rev = "v${version}";
|
|
hash = "sha256-kkcZuX8tB7N8l9O3X6H92EqEqdAcqSbX+pwr7GrcRFY=";
|
|
};
|
|
|
|
postPatch = ''
|
|
substituteInPlace Makefile \
|
|
--replace 'TAG_VERSION := $(shell git describe --tags)' "" \
|
|
--replace "/usr/local" "$out"
|
|
'';
|
|
|
|
vendorSha256 = "sha256-6zcHz7ePJFSxxfIlhVK2VEf6+soBoUInT9ZsZK/Ag78=";
|
|
|
|
doCheck = false;
|
|
|
|
nativeBuildInputs = [ gnum4 ];
|
|
buildInputs = [ pam ];
|
|
|
|
buildPhase = ''
|
|
runHook preBuild
|
|
make
|
|
runHook postBuild
|
|
'';
|
|
|
|
installPhase = ''
|
|
runHook preInstall
|
|
make install
|
|
runHook postInstall
|
|
'';
|
|
|
|
meta = with lib; {
|
|
description =
|
|
"A high-level tool for the management of Linux filesystem encryption";
|
|
longDescription = ''
|
|
This tool manages metadata, key generation, key wrapping, PAM integration,
|
|
and provides a uniform interface for creating and modifying encrypted
|
|
directories.
|
|
'';
|
|
inherit (src.meta) homepage;
|
|
changelog = "https://github.com/google/fscrypt/releases/tag/v${version}";
|
|
license = licenses.asl20;
|
|
platforms = platforms.linux;
|
|
maintainers = with maintainers; [ primeos ];
|
|
};
|
|
}
|