commit 2da332aa2d5f0458a51aa8df5a70ae53cc2fe507 · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs

lol

fork atom

Merge pull request #155535 from risicle/ris-libreswan-4.6

libreswan: 4.5 -> 4.6

authored by Michele Guerini Rocco and committed by GitHub 4 years ago 2da332aa 5c89b037

+10 -7

2 changed files

expand all

unified split

nixos

tests

libreswan.nix

pkgs

tools

networking

libreswan

default.nix

+2 -2

nixos/tests/libreswan.nix

··· 89 """ 90 Sends a message as Alice to Bob 91 """ 92 - bob.execute("nc -lu ::0 1234 >/tmp/msg >&2 &") 93 alice.sleep(1) 94 alice.succeed(f"echo '{msg}' | nc -uw 0 bob 1234") 95 bob.succeed(f"grep '{msg}' /tmp/msg") ··· 100 Starts eavesdropping on Alice and Bob 101 """ 102 match = "src host alice and dst host bob" 103 - eve.execute(f"tcpdump -i br0 -c 1 -Avv {match} >/tmp/log >&2 &") 104 105 106 start_all()

··· 89 """ 90 Sends a message as Alice to Bob 91 """ 92 + bob.execute("nc -lu ::0 1234 >/tmp/msg &") 93 alice.sleep(1) 94 alice.succeed(f"echo '{msg}' | nc -uw 0 bob 1234") 95 bob.succeed(f"grep '{msg}' /tmp/msg") ··· 100 Starts eavesdropping on Alice and Bob 101 """ 102 match = "src host alice and dst host bob" 103 + eve.execute(f"tcpdump -i br0 -c 1 -Avv {match} >/tmp/log &") 104 105 106 start_all()

+8 -5

pkgs/tools/networking/libreswan/default.nix

··· 42 43 stdenv.mkDerivation rec { 44 pname = "libreswan"; 45 - version = "4.5"; 46 47 src = fetchurl { 48 url = "https://download.libreswan.org/${pname}-${version}.tar.gz"; 49 - sha256 = "18whvmaxqfmaqbmq72calyzk21wyvxa0idddcsxd8x36vhdza0q7"; 50 }; 51 52 strictDeps = true; ··· 70 ] ++ lib.optional stdenv.isLinux libselinux; 71 72 prePatch = '' 73 - # Correct iproute2 path 74 - sed -e 's|"/sbin/ip"|"${iproute2}/bin/ip"|' \ 75 - -e 's|"/sbin/iptables"|"${iptables}/bin/iptables"|' \ 76 -i initsystems/systemd/ipsec.service.in \ 77 programs/verify/verify.in 78 79 # Prevent the makefile from trying to 80 # reload the systemd daemon or create tmpfiles

··· 42 43 stdenv.mkDerivation rec { 44 pname = "libreswan"; 45 + version = "4.6"; 46 47 src = fetchurl { 48 url = "https://download.libreswan.org/${pname}-${version}.tar.gz"; 49 + sha256 = "1zsnsfx18pf5dy1p4jva2sfl0bdfx5y9ls54f9bp70m64r46yf96"; 50 }; 51 52 strictDeps = true; ··· 70 ] ++ lib.optional stdenv.isLinux libselinux; 71 72 prePatch = '' 73 + # Correct iproute2 and iptables path 74 + sed -e 's|/sbin/ip|${iproute2}/bin/ip|' \ 75 + -e 's|/sbin/$ip6\?tables$|${iptables}/bin/\1|' \ 76 -i initsystems/systemd/ipsec.service.in \ 77 + programs/barf/barf.in \ 78 programs/verify/verify.in 79 + sed -e 's|$[[:blank:]]$$ip6\?tables\(-save$\? -\)|\1${iptables}/bin/\2|' \ 80 + -i programs/verify/verify.in 81 82 # Prevent the makefile from trying to 83 # reload the systemd daemon or create tmpfiles