mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-11-26 00:43:20 +00:00
ff1a94e523
The nixpkgs-unstable channel's programs.sqlite was used to identify packages producing exactly one binary, and these automatically added to their package definitions wherever possible.
42 lines
1.6 KiB
Nix
42 lines
1.6 KiB
Nix
{ lib, stdenv, fetchFromGitHub }:
|
|
|
|
stdenv.mkDerivation rec {
|
|
pname = "fscryptctl";
|
|
version = "1.0.0";
|
|
|
|
goPackagePath = "github.com/google/fscrypt";
|
|
|
|
src = fetchFromGitHub {
|
|
owner = "google";
|
|
repo = "fscryptctl";
|
|
rev = "v${version}";
|
|
sha256 = "1hwj726mm0yhlcf6523n07h0yq1rvkv4km64h3ydpjcrcxklhw6l";
|
|
};
|
|
|
|
makeFlags = [ "PREFIX=${placeholder "out"}" ];
|
|
|
|
meta = with lib; {
|
|
description = "Small C tool for Linux filesystem encryption";
|
|
mainProgram = "fscryptctl";
|
|
longDescription = ''
|
|
fscryptctl is a low-level tool written in C that handles raw keys and
|
|
manages policies for Linux filesystem encryption, specifically the
|
|
"fscrypt" kernel interface which is supported by the ext4, f2fs, and
|
|
UBIFS filesystems.
|
|
fscryptctl is mainly intended for embedded systems which can't use the
|
|
full-featured fscrypt tool, or for testing or experimenting with the
|
|
kernel interface to Linux filesystem encryption. fscryptctl does not
|
|
handle key generation, key stretching, key wrapping, or PAM integration.
|
|
Most users should use the fscrypt tool instead, which supports these
|
|
features and generally is much easier to use.
|
|
As fscryptctl is intended for advanced users, you should read the kernel
|
|
documentation for filesystem encryption before using fscryptctl.
|
|
'';
|
|
inherit (src.meta) homepage;
|
|
changelog = "https://github.com/google/fscryptctl/releases/tag/v${version}";
|
|
license = licenses.asl20;
|
|
platforms = platforms.linux;
|
|
maintainers = with maintainers; [ primeos ];
|
|
};
|
|
}
|