a19cd4ffb1
This reverts commit 65a333600d5c88a98d674f637d092807cfc12253. This wasn't tested for correctness with something like fodwatch [0], and should not have been (self-)merged so quickly, especially without further review. It also resulted in the breakage of at least one package [1] (and that's the one we know of and was caught). A few packages that were updated in between this commit and this revert were not reverted back to using `rev`, but other than that, this is a 1:1 revert. [0]: https://codeberg.org/raphaelr/fodwatch [1]: https://github.com/NixOS/nixpkgs/pull/396904 / 758551e4587d75882aebc21a04bee960418f8ce9
94 lines
2.2 KiB
Nix
94 lines
2.2 KiB
Nix
{
|
|
lib,
|
|
stdenv,
|
|
fetchFromGitHub,
|
|
git,
|
|
makeWrapper,
|
|
openssl,
|
|
coreutils,
|
|
util-linux,
|
|
gnugrep,
|
|
gnused,
|
|
gawk,
|
|
testers,
|
|
transcrypt,
|
|
}:
|
|
|
|
stdenv.mkDerivation rec {
|
|
pname = "transcrypt";
|
|
version = "2.3.1";
|
|
|
|
src = fetchFromGitHub {
|
|
owner = "elasticdog";
|
|
repo = "transcrypt";
|
|
rev = "v${version}";
|
|
sha256 = "sha256-s95EnEmcdd5mFAKvtZ88aXxkrRLSZUP0VBrCy5PR4fo=";
|
|
};
|
|
|
|
nativeBuildInputs = [ makeWrapper ];
|
|
buildInputs = [
|
|
git
|
|
openssl
|
|
coreutils
|
|
util-linux
|
|
gnugrep
|
|
gnused
|
|
gawk
|
|
];
|
|
|
|
installPhase = ''
|
|
install -m 755 -D transcrypt $out/bin/transcrypt
|
|
install -m 644 -D man/transcrypt.1 $out/share/man/man1/transcrypt.1
|
|
install -m 644 -D contrib/bash/transcrypt $out/share/bash-completion/completions/transcrypt
|
|
install -m 644 -D contrib/zsh/_transcrypt $out/share/zsh/site-functions/_transcrypt
|
|
|
|
wrapProgram $out/bin/transcrypt \
|
|
--prefix PATH : "${
|
|
lib.makeBinPath [
|
|
git
|
|
openssl
|
|
coreutils
|
|
util-linux
|
|
gnugrep
|
|
gnused
|
|
gawk
|
|
]
|
|
}"
|
|
|
|
cat > $out/bin/transcrypt-depspathprefix << EOF
|
|
#!${stdenv.shell}
|
|
echo "${
|
|
lib.makeBinPath [
|
|
git
|
|
openssl
|
|
coreutils
|
|
gawk
|
|
]
|
|
}:"
|
|
EOF
|
|
chmod +x $out/bin/transcrypt-depspathprefix
|
|
'';
|
|
|
|
passthru.tests.version = testers.testVersion {
|
|
package = transcrypt;
|
|
command = "transcrypt --version";
|
|
version = "transcrypt ${version}";
|
|
};
|
|
|
|
meta = with lib; {
|
|
description = "Transparently encrypt files within a Git repository";
|
|
longDescription = ''
|
|
A script to configure transparent encryption of sensitive files stored in
|
|
a Git repository. Files that you choose will be automatically encrypted
|
|
when you commit them, and automatically decrypted when you check them
|
|
out. The process will degrade gracefully, so even people without your
|
|
encryption password can safely commit changes to the repository's
|
|
non-encrypted files.
|
|
'';
|
|
homepage = "https://github.com/elasticdog/transcrypt";
|
|
license = licenses.mit;
|
|
maintainers = [ maintainers.elasticdog ];
|
|
platforms = platforms.all;
|
|
};
|
|
}
|