Commit | Line | Data |
---|---|---|
233e7676 | 1 | ;;; GNU Guix --- Functional package management for GNU |
079fca3b | 2 | ;;; Copyright © 2012, 2013 Andreas Enge <andreas@enge.fr> |
89e34644 | 3 | ;;; Copyright © 2014, 2015, 2016 Mark H Weaver <mhw@netris.org> |
719f3534 | 4 | ;;; Copyright © 2016, 2017 Leo Famulari <leo@famulari.name> |
a007d699 | 5 | ;;; Copyright © 2016 Efraim Flashner <efraim@flashner.co.il> |
89e34644 | 6 | ;;; Copyright © 2012, 2013 Nikita Karetnikov <nikita@karetnikov.org> |
67fee545 | 7 | ;;; Copyright © 2012, 2017 Ludovic Courtès <ludo@gnu.org> |
3154e202 | 8 | ;;; Copyright © 2017 Ricardo Wurmus <rekado@elephly.net> |
9dc6f288 | 9 | ;;; |
233e7676 | 10 | ;;; This file is part of GNU Guix. |
9dc6f288 | 11 | ;;; |
233e7676 | 12 | ;;; GNU Guix is free software; you can redistribute it and/or modify it |
9dc6f288 AE |
13 | ;;; under the terms of the GNU General Public License as published by |
14 | ;;; the Free Software Foundation; either version 3 of the License, or (at | |
15 | ;;; your option) any later version. | |
16 | ;;; | |
233e7676 | 17 | ;;; GNU Guix is distributed in the hope that it will be useful, but |
9dc6f288 AE |
18 | ;;; WITHOUT ANY WARRANTY; without even the implied warranty of |
19 | ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
20 | ;;; GNU General Public License for more details. | |
21 | ;;; | |
22 | ;;; You should have received a copy of the GNU General Public License | |
233e7676 | 23 | ;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>. |
9dc6f288 | 24 | |
89e34644 | 25 | (define-module (gnu packages kerberos) |
59a43334 | 26 | #:use-module (gnu packages) |
1abc08a8 | 27 | #:use-module (gnu packages autotools) |
1ffa7090 LC |
28 | #:use-module (gnu packages bison) |
29 | #:use-module (gnu packages perl) | |
1abc08a8 | 30 | #:use-module (gnu packages gettext) |
89e34644 LC |
31 | #:use-module (gnu packages gnupg) |
32 | #:use-module (gnu packages libidn) | |
33 | #:use-module (gnu packages linux) | |
34 | #:use-module (gnu packages pkg-config) | |
35 | #:use-module (gnu packages compression) | |
67fee545 LC |
36 | #:use-module (gnu packages databases) |
37 | #:use-module (gnu packages readline) | |
1abc08a8 | 38 | #:use-module (gnu packages texinfo) |
89e34644 LC |
39 | #:use-module (gnu packages tls) |
40 | #:use-module ((guix licenses) #:prefix license:) | |
9dc6f288 AE |
41 | #:use-module (guix packages) |
42 | #:use-module (guix download) | |
4d53c29e | 43 | #:use-module (guix utils) |
9dc6f288 AE |
44 | #:use-module (guix build-system gnu)) |
45 | ||
46 | (define-public mit-krb5 | |
47 | (package | |
df8a09c7 | 48 | (name "mit-krb5") |
6ac46bfa | 49 | (version "1.16") |
df8a09c7 LC |
50 | (source (origin |
51 | (method url-fetch) | |
6ac46bfa MB |
52 | (uri (list |
53 | (string-append "https://web.mit.edu/kerberos/dist/krb5/" | |
54 | (version-major+minor version) | |
55 | "/krb5-" version ".tar.gz") | |
56 | (string-append "https://kerberos.org/dist/krb5/" | |
57 | (version-major+minor version) | |
58 | "/krb5-" version ".tar.gz"))) | |
16114c34 MW |
59 | (sha256 |
60 | (base32 | |
6ac46bfa | 61 | "024yjr15ij0qdnay0bcqfpclgfri0qa8iw4r5zdlryxhhdgi5szs")))) |
df8a09c7 LC |
62 | (build-system gnu-build-system) |
63 | (native-inputs | |
9715df7f | 64 | `(("bison" ,bison) |
16114c34 | 65 | ("perl" ,perl))) |
df8a09c7 | 66 | (arguments |
9269ce49 | 67 | `(;; XXX: On 32-bit systems, 'kdb5_util' hangs on an fcntl/F_SETLKW call |
d2375c43 LC |
68 | ;; while running the tests in 'src/tests'. |
69 | #:tests? ,(string=? (%current-system) "x86_64-linux") | |
d9ecec9b | 70 | |
a083b5cb | 71 | #:phases |
4d53c29e | 72 | (modify-phases %standard-phases |
16114c34 | 73 | (add-after 'unpack 'enter-source-directory |
4d53c29e MW |
74 | (lambda _ |
75 | (chdir "src") | |
76 | #t)) | |
4d53c29e MW |
77 | (add-before 'check 'pre-check |
78 | (lambda* (#:key inputs #:allow-other-keys) | |
79 | (let ((perl (assoc-ref inputs "perl"))) | |
80 | (substitute* "plugins/kdb/db2/libdb2/test/run.test" | |
81 | (("/bin/cat") (string-append perl "/bin/perl")) | |
58ea4d40 | 82 | (("D/bin/sh") (string-append "D" (which "sh"))) |
4d53c29e MW |
83 | (("bindir=/bin/.") (string-append "bindir=" perl "/bin")))) |
84 | ||
85 | ;; avoid service names since /etc/services is unavailable | |
df8a09c7 LC |
86 | (substitute* "tests/resolve/Makefile" |
87 | (("-p telnet") "-p 23")) | |
4d53c29e | 88 | #t))))) |
df8a09c7 LC |
89 | (synopsis "MIT Kerberos 5") |
90 | (description | |
91 | "Massachusetts Institute of Technology implementation of Kerberos. | |
9dc6f288 | 92 | Kerberos is a network authentication protocol designed to provide strong |
e881752c AK |
93 | authentication for client/server applications by using secret-key |
94 | cryptography.") | |
89e34644 LC |
95 | (license (license:non-copyleft "file://NOTICE" |
96 | "See NOTICE in the distribution.")) | |
5e578674 TGR |
97 | (home-page "http://web.mit.edu/kerberos/") |
98 | (properties '((cpe-name . "kerberos"))))) | |
89e34644 LC |
99 | |
100 | (define-public shishi | |
101 | (package | |
102 | (name "shishi") | |
103 | (version "1.0.2") | |
104 | (source | |
105 | (origin | |
106 | (method url-fetch) | |
107 | (uri (string-append "mirror://gnu/shishi/shishi-" | |
108 | version ".tar.gz")) | |
1abc08a8 | 109 | (patches (search-patches "shishi-fix-libgcrypt-detection.patch")) |
89e34644 LC |
110 | (sha256 |
111 | (base32 | |
112 | "032qf72cpjdfffq1yq54gz3ahgqf2ijca4vl31sfabmjzq9q370d")))) | |
113 | (build-system gnu-build-system) | |
1abc08a8 LF |
114 | (arguments |
115 | '(;; This is required since we patch some of the build scripts. | |
116 | ;; Remove for the next Shishi release after 1.0.2 or when | |
117 | ;; removing 'shishi-fix-libgcrypt-detection.patch'. | |
118 | #:configure-flags '("ac_cv_libgcrypt=yes"))) | |
89e34644 LC |
119 | (native-inputs `(("pkg-config" ,pkg-config))) |
120 | (inputs | |
121 | `(("gnutls" ,gnutls) | |
122 | ("libidn" ,libidn) | |
123 | ("linux-pam" ,linux-pam-1.2) | |
124 | ("zlib" ,zlib) | |
1abc08a8 | 125 | ("libgcrypt" ,libgcrypt) |
89e34644 | 126 | ("libtasn1" ,libtasn1))) |
6fd52309 | 127 | (home-page "https://www.gnu.org/software/shishi/") |
89e34644 LC |
128 | (synopsis "Implementation of the Kerberos 5 network security system") |
129 | (description | |
130 | "GNU Shishi is a free implementation of the Kerberos 5 network security | |
131 | system. It is used to allow non-secure network nodes to communicate in a | |
132 | secure manner through client-server mutual authentication via tickets.") | |
133 | (license license:gpl3+))) | |
67fee545 LC |
134 | |
135 | (define-public heimdal | |
136 | (package | |
137 | (name "heimdal") | |
138 | (version "1.5.3") | |
139 | (source (origin | |
140 | (method url-fetch) | |
141 | (uri (string-append "http://www.h5l.org/dist/src/heimdal-" | |
142 | version ".tar.gz")) | |
143 | (sha256 | |
144 | (base32 | |
145 | "19gypf9vzfrs2bw231qljfl4cqc1riyg0ai0xmm1nd1wngnpphma")) | |
81c35029 AV |
146 | (patches (search-patches "heimdal-CVE-2017-6594.patch" |
147 | "heimdal-CVE-2017-11103.patch")) | |
67fee545 LC |
148 | (modules '((guix build utils))) |
149 | (snippet | |
150 | '(substitute* "configure" | |
151 | (("User=.*$") "User=Guix\n") | |
152 | (("Date=.*$") "Date=2017\n"))))) | |
153 | (build-system gnu-build-system) | |
154 | (arguments | |
155 | '(#:configure-flags (list | |
156 | ;; Work around a linker error. | |
157 | "CFLAGS=-pthread" | |
158 | ||
159 | ;; Avoid 7 MiB of .a files. | |
160 | "--disable-static" | |
161 | ||
162 | ;; Do not build libedit. | |
163 | (string-append | |
164 | "--with-readline-lib=" | |
165 | (assoc-ref %build-inputs "readline") "/lib") | |
166 | (string-append | |
167 | "--with-readline-include=" | |
168 | (assoc-ref %build-inputs "readline") "/include")) | |
169 | ||
170 | #:phases (modify-phases %standard-phases | |
171 | (add-before 'check 'skip-tests | |
172 | (lambda _ | |
173 | ;; The test simply runs 'ftp --version && ftp --help' | |
174 | ;; but that fails in the chroot because 'ftp' tries to | |
175 | ;; do a service lookup before printing the help/version. | |
176 | (substitute* "appl/ftp/ftp/Makefile.in" | |
177 | (("^CHECK_LOCAL =.*") | |
178 | "CHECK_LOCAL = no-check-local\n")) | |
179 | #t))))) | |
180 | (native-inputs `(("e2fsprogs" ,e2fsprogs))) ;for 'compile_et' | |
181 | (inputs `(("readline" ,readline) | |
182 | ("bdb" ,bdb) | |
183 | ("e2fsprogs" ,e2fsprogs))) ;for libcom_err | |
184 | (home-page "http://www.h5l.org/") | |
185 | (synopsis "Kerberos 5 network authentication") | |
186 | (description | |
187 | "Heimdal is an implementation of Kerberos 5 network authentication | |
188 | service.") | |
189 | (license license:bsd-3))) |