nixpkgs/pkgs/development/libraries/wolfssl/default.nix
2021-02-23 23:45:29 +01:00

48 lines
1.5 KiB
Nix

{ lib, stdenv, fetchFromGitHub, autoreconfHook }:
stdenv.mkDerivation rec {
pname = "wolfssl";
version = "4.7.0";
src = fetchFromGitHub {
owner = "wolfSSL";
repo = "wolfssl";
rev = "v${version}-stable";
sha256 = "1aa51j0xnhi49izc8djya68l70jkjv25559pgybfb9sa4fa4gz97";
};
# almost same as Debian but for now using --enable-all instead of --enable-distro to ensure options.h gets installed
configureFlags = [ "--enable-all" "--enable-pkcs11" "--enable-tls13" "--enable-base64encode" ];
outputs = [ "out" "dev" "doc" "lib" ];
nativeBuildInputs = [ autoreconfHook ];
postPatch = ''
# fix recursive cycle:
# build flags (including location of header files) are exposed in the
# public API of wolfssl, causing lib to depend on dev
substituteInPlace configure.ac \
--replace '#define LIBWOLFSSL_CONFIGURE_ARGS \"$ac_configure_args\"' ' '
substituteInPlace configure.ac \
--replace '#define LIBWOLFSSL_GLOBAL_CFLAGS \"$CPPFLAGS $AM_CPPFLAGS $CFLAGS $AM_CFLAGS\"' ' '
'';
postInstall = ''
# fix recursive cycle:
# wolfssl-config points to dev, dev propagates bin
moveToOutput bin/wolfssl-config "$dev"
# moveToOutput also removes "$out" so recreate it
mkdir -p "$out"
'';
meta = with lib; {
description = "A small, fast, portable implementation of TLS/SSL for embedded devices";
homepage = "https://www.wolfssl.com/";
platforms = platforms.all;
license = licenses.gpl2Plus;
maintainers = with maintainers; [ mcmtroffaes ];
};
}