4c9993c5a4
... but only when it does not require editing the hash itself, i.e., keeping non-`base64` hashes as-is.
123 lines
2.8 KiB
Nix
123 lines
2.8 KiB
Nix
{
|
|
stdenv,
|
|
fetchurl,
|
|
libxml2,
|
|
gnutls,
|
|
libxslt,
|
|
pkg-config,
|
|
libgcrypt,
|
|
libtool,
|
|
openssl,
|
|
nss,
|
|
lib,
|
|
runCommandCC,
|
|
writeText,
|
|
}:
|
|
|
|
lib.fix (
|
|
self:
|
|
stdenv.mkDerivation rec {
|
|
pname = "xmlsec";
|
|
version = "1.3.7";
|
|
|
|
src = fetchurl {
|
|
urls = [
|
|
"https://www.aleksey.com/xmlsec/download/xmlsec1-${version}.tar.gz"
|
|
|
|
# for when the ${version} gets older than the last two
|
|
"https://www.aleksey.com/xmlsec/download/older-releases/xmlsec1-${version}.tar.gz"
|
|
];
|
|
hash = "sha256-2C6TtpuKogWmFrYpF6JpMiv2Oj6q+zd1AU5hdSsgE+o=";
|
|
};
|
|
|
|
patches = [
|
|
./lt_dladdsearchdir.patch
|
|
./remove_bsd_base64_decode_flag.patch
|
|
];
|
|
|
|
postPatch = ''
|
|
substituteAllInPlace src/dl.c
|
|
'';
|
|
|
|
outputs = [
|
|
"out"
|
|
"dev"
|
|
];
|
|
|
|
nativeBuildInputs = [ pkg-config ];
|
|
|
|
buildInputs = [
|
|
libxml2
|
|
gnutls
|
|
libgcrypt
|
|
libtool
|
|
openssl
|
|
nss
|
|
];
|
|
|
|
propagatedBuildInputs = [
|
|
# required by xmlsec/transforms.h
|
|
libxslt
|
|
];
|
|
|
|
enableParallelBuilding = true;
|
|
doCheck = true;
|
|
nativeCheckInputs = [ nss.tools ];
|
|
preCheck = ''
|
|
export TMPFOLDER=$(mktemp -d)
|
|
substituteInPlace tests/testrun.sh --replace 'timestamp=`date +%Y%m%d_%H%M%S`' 'timestamp=19700101_000000'
|
|
'';
|
|
|
|
# enable deprecated soap headers required by lasso
|
|
# https://dev.entrouvert.org/issues/18771
|
|
configureFlags = [ "--enable-soap" ];
|
|
|
|
# otherwise libxmlsec1-gnutls.so won't find libgcrypt.so, after #909
|
|
NIX_LDFLAGS = "-lgcrypt";
|
|
|
|
postInstall = ''
|
|
moveToOutput "bin/xmlsec1-config" "$dev"
|
|
moveToOutput "lib/xmlsec1Conf.sh" "$dev"
|
|
'';
|
|
|
|
passthru.tests.libxmlsec1-crypto =
|
|
runCommandCC "libxmlsec1-crypto-test"
|
|
{
|
|
nativeBuildInputs = [ pkg-config ];
|
|
buildInputs = [
|
|
self
|
|
libxml2
|
|
libxslt
|
|
libtool
|
|
];
|
|
}
|
|
''
|
|
$CC $(pkg-config --cflags --libs xmlsec1) -o crypto-test ${writeText "crypto-test.c" ''
|
|
#include <xmlsec/xmlsec.h>
|
|
#include <xmlsec/crypto.h>
|
|
|
|
int main(int argc, char **argv) {
|
|
return xmlSecInit() ||
|
|
xmlSecCryptoDLLoadLibrary(argc > 1 ? argv[1] : 0) ||
|
|
xmlSecCryptoInit();
|
|
}
|
|
''}
|
|
|
|
for crypto in "" gcrypt gnutls nss openssl; do
|
|
./crypto-test $crypto
|
|
done
|
|
touch $out
|
|
'';
|
|
|
|
meta = with lib; {
|
|
description = "XML Security Library in C based on libxml2";
|
|
homepage = "https://www.aleksey.com/xmlsec/";
|
|
downloadPage = "https://www.aleksey.com/xmlsec/download.html";
|
|
license = licenses.mit;
|
|
mainProgram = "xmlsec1";
|
|
maintainers = [ ];
|
|
platforms = with platforms; linux ++ darwin;
|
|
};
|
|
}
|
|
)
|