2021-01-11 07:54:33 +00:00
|
|
|
{ lib, stdenv, fetchFromGitHub }:
|
2017-09-24 22:00:40 +01:00
|
|
|
|
|
|
|
stdenv.mkDerivation rec {
|
2021-02-04 12:34:07 +00:00
|
|
|
pname = "fscryptctl";
|
2021-02-11 11:36:34 +00:00
|
|
|
version = "1.0.0";
|
2017-09-24 22:00:40 +01:00
|
|
|
|
|
|
|
goPackagePath = "github.com/google/fscrypt";
|
|
|
|
|
|
|
|
src = fetchFromGitHub {
|
|
|
|
owner = "google";
|
|
|
|
repo = "fscryptctl";
|
2021-02-04 12:34:07 +00:00
|
|
|
rev = "v${version}";
|
2021-02-11 11:36:34 +00:00
|
|
|
sha256 = "1hwj726mm0yhlcf6523n07h0yq1rvkv4km64h3ydpjcrcxklhw6l";
|
2017-09-24 22:00:40 +01:00
|
|
|
};
|
|
|
|
|
2021-02-11 11:36:34 +00:00
|
|
|
makeFlags = [ "PREFIX=${placeholder "out"}" ];
|
2017-09-24 22:00:40 +01:00
|
|
|
|
2021-01-11 07:54:33 +00:00
|
|
|
meta = with lib; {
|
2021-02-04 12:34:07 +00:00
|
|
|
description = "Small C tool for Linux filesystem encryption";
|
|
|
|
longDescription = ''
|
|
|
|
fscryptctl is a low-level tool written in C that handles raw keys and
|
|
|
|
manages policies for Linux filesystem encryption, specifically the
|
|
|
|
"fscrypt" kernel interface which is supported by the ext4, f2fs, and
|
|
|
|
UBIFS filesystems.
|
|
|
|
fscryptctl is mainly intended for embedded systems which can't use the
|
|
|
|
full-featured fscrypt tool, or for testing or experimenting with the
|
|
|
|
kernel interface to Linux filesystem encryption. fscryptctl does not
|
|
|
|
handle key generation, key stretching, key wrapping, or PAM integration.
|
|
|
|
Most users should use the fscrypt tool instead, which supports these
|
|
|
|
features and generally is much easier to use.
|
|
|
|
As fscryptctl is intended for advanced users, you should read the kernel
|
|
|
|
documentation for filesystem encryption before using fscryptctl.
|
2017-09-24 22:00:40 +01:00
|
|
|
'';
|
|
|
|
inherit (src.meta) homepage;
|
2021-11-06 14:22:27 +00:00
|
|
|
changelog = "https://github.com/google/fscryptctl/releases/tag/v${version}";
|
2017-09-24 22:00:40 +01:00
|
|
|
license = licenses.asl20;
|
|
|
|
platforms = platforms.linux;
|
|
|
|
maintainers = with maintainers; [ primeos ];
|
|
|
|
};
|
|
|
|
}
|