pkgs/os-specific/linux/ima-evm-utils/default.nix at fix-function-merge · tjh.dev/nixpkgs

tjh.dev / nixpkgs

Clone of https://github.com/NixOS/nixpkgs.git (to stress-test knotserver)

nixpkgs / pkgs / os-specific / linux / ima-evm-utils / default.nix

at fix-function-merge 54 lines 1.1 kB view raw

 1{
 2  lib,
 3  stdenv,
 4  fetchFromGitHub,
 5  autoreconfHook,
 6  pkg-config,
 7  openssl,
 8  tpm2-tss,
 9  keyutils,
10  asciidoc,
11  libxslt,
12  docbook_xsl,
13}:
14
15stdenv.mkDerivation rec {
16  pname = "ima-evm-utils";
17  version = "1.6";
18
19  src = fetchFromGitHub {
20    owner = "linux-integrity";
21    repo = "ima-evm-utils";
22    rev = "refs/tags/v${version}";
23    hash = "sha256-rS2KChYKHnaR17VKYXyb28AsWnLZ8CRoHhLOUejO8Z8=";
24  };
25
26  strictDeps = true;
27
28  nativeBuildInputs = [
29    autoreconfHook
30    pkg-config
31    asciidoc
32    libxslt
33  ];
34
35  buildInputs = [
36    keyutils
37    openssl
38    tpm2-tss
39  ];
40
41  env.MANPAGE_DOCBOOK_XSL = "${docbook_xsl}/xml/xsl/docbook/manpages/docbook.xsl";
42
43  meta = {
44    description = "evmctl utility to manage digital signatures of the Linux kernel integrity subsystem (IMA/EVM)";
45    mainProgram = "evmctl";
46    homepage = "https://github.com/linux-integrity/ima-evm-utils";
47    license = with lib.licenses; [
48      lgpl2Plus # libimaevm
49      gpl2Plus # evmctl
50    ];
51    platforms = lib.platforms.linux;
52    maintainers = with lib.maintainers; [ nickcao ];
53  };
54}