HCoop / jackhill / guix / guix.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge branch 'master' into staging
[jackhill/guix/guix.git] / gnu / packages / gnupg.scm
1 ;;; GNU Guix --- Functional package management for GNU
2 ;;; Copyright © 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019 Ludovic Courtès <ludo@gnu.org>
3 ;;; Copyright © 2013, 2015, 2018 Andreas Enge <andreas@enge.fr>
4 ;;; Copyright © 2014, 2018 Eric Bavier <bavier@member.fsf.org>
5 ;;; Copyright © 2014, 2015, 2016 Mark H Weaver <mhw@netris.org>
6 ;;; Copyright © 2015 Paul van der Walt <paul@denknerd.org>
7 ;;; Copyright © 2015, 2016, 2017, 2018, 2019, 2020 Efraim Flashner <efraim@flashner.co.il>
8 ;;; Copyright © 2015, 2016, 2017, 2019 Ricardo Wurmus <rekado@elephly.net>
9 ;;; Copyright © 2016 Christopher Allan Webber <cwebber@dustycloud.org>
10 ;;; Copyright © 2016, 2017 Nikita <nikita@n0.is>
11 ;;; Copyright © 2016 Christopher Baines <mail@cbaines.net>
12 ;;; Copyright © 2016 Mike Gerwitz <mtg@gnu.org>
13 ;;; Copyright © 2016 Troy Sankey <sankeytms@gmail.com>
14 ;;; Copyright © 2017, 2020 Leo Famulari <leo@famulari.name>
15 ;;; Copyright © 2017 Petter <petter@mykolab.ch>
16 ;;; Copyright © 2018, 2019, 2020 Tobias Geerinckx-Rice <me@tobias.gr>
17 ;;; Copyright © 2018, 2019 Marius Bakke <mbakke@fastmail.com>
18 ;;; Copyright © 2018 Björn Höfling <bjoern.hoefling@bjoernhoefling.de>
19 ;;; Copyright © 2019 Mathieu Othacehe <m.othacehe@gmail.com>
20 ;;;
21 ;;; This file is part of GNU Guix.
22 ;;;
23 ;;; GNU Guix is free software; you can redistribute it and/or modify it
24 ;;; under the terms of the GNU General Public License as published by
25 ;;; the Free Software Foundation; either version 3 of the License, or (at
26 ;;; your option) any later version.
27 ;;;
28 ;;; GNU Guix is distributed in the hope that it will be useful, but
29 ;;; WITHOUT ANY WARRANTY; without even the implied warranty of
30 ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
31 ;;; GNU General Public License for more details.
32 ;;;
33 ;;; You should have received a copy of the GNU General Public License
34 ;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
35
36 (define-module (gnu packages gnupg)
37 #:use-module ((guix licenses) #:prefix license:)
38 #:use-module (gnu packages)
39 #:use-module (gnu packages adns)
40 #:use-module (gnu packages autotools)
41 #:use-module (gnu packages base)
42 #:use-module (gnu packages curl)
43 #:use-module (gnu packages crypto)
44 #:use-module (gnu packages emacs)
45 #:use-module (gnu packages enlightenment)
46 #:use-module (gnu packages gettext)
47 #:use-module (gnu packages guile)
48 #:use-module (gnu packages openldap)
49 #:use-module (gnu packages perl)
50 #:use-module (gnu packages perl-check)
51 #:use-module (gnu packages pth)
52 #:use-module (gnu packages python)
53 #:use-module (gnu packages python-xyz)
54 #:use-module (gnu packages qt)
55 #:use-module (gnu packages readline)
56 #:use-module (gnu packages compression)
57 #:use-module (gnu packages gtk)
58 #:use-module (gnu packages glib)
59 #:use-module (gnu packages gnome)
60 #:use-module (gnu packages pkg-config)
61 #:use-module (gnu packages ncurses)
62 #:use-module (gnu packages security-token)
63 #:use-module (gnu packages sqlite)
64 #:use-module (gnu packages swig)
65 #:use-module (gnu packages texinfo)
66 #:use-module (gnu packages tls)
67 #:use-module (gnu packages tor)
68 #:use-module (gnu packages web)
69 #:use-module (gnu packages xorg)
70 #:use-module (gnu packages xml)
71 #:use-module (guix packages)
72 #:use-module (guix download)
73 #:use-module (guix git-download)
74 #:use-module (guix build-system gnu)
75 #:use-module (guix build-system perl)
76 #:use-module (guix build-system python)
77 #:use-module (srfi srfi-1))
78
79 (define-public libgpg-error
80 (package
81 (name "libgpg-error")
82 (version "1.37")
83 (source
84 (origin
85 (method url-fetch)
86 (uri (string-append "mirror://gnupg/libgpg-error/libgpg-error-"
87 version ".tar.bz2"))
88 (sha256
89 (base32
90 "0qwpx8mbc2l421a22l0l1hpzkip9jng06bbzgxwpkkvk5bvnybdk"))))
91 (build-system gnu-build-system)
92 (arguments
93 (if (%current-target-system)
94 `(#:modules ((ice-9 match)
95 (guix build gnu-build-system)
96 (guix build utils))
97 #:phases
98 (modify-phases %standard-phases
99 ;; When cross-compiling, some platform specific properties cannot
100 ;; be detected. Create a symlink to the appropriate platform
101 ;; file. See Cross-Compiling section at:
102 ;; https://github.com/gpg/libgpg-error/blob/master/README
103 (add-after 'unpack 'cross-symlinks
104 (lambda* (#:key target inputs #:allow-other-keys)
105 (let ((triplet
106 (match (string-take target
107 (string-index target #\-))
108 ("armhf" "arm-unknown-linux-gnueabi")
109 (x
110 (string-append x "-unknown-linux-gnu")))))
111 (symlink
112 (string-append "lock-obj-pub." triplet ".h")
113 "src/syscfg/lock-obj-pub.linux-gnu.h"))
114 #t))))
115 '()))
116 (native-inputs `(("gettext" ,gettext-minimal)))
117 (home-page "https://gnupg.org")
118 (synopsis "Library of error values for GnuPG components")
119 (description
120 "Libgpg-error is a small library that defines common error values
121 for all GnuPG components. Among these are GPG, GPGSM, GPGME,
122 GPG-Agent, libgcrypt, Libksba, DirMngr, Pinentry, SmartCard
123 Daemon and possibly more in the future.")
124 (license license:lgpl2.0+)
125 (properties '((ftp-server . "ftp.gnupg.org")
126 (ftp-directory . "/gcrypt/libgpg-error")))))
127
128 (define-public libgcrypt
129 (package
130 (name "libgcrypt")
131 (version "1.8.5")
132 (source (origin
133 (method url-fetch)
134 (uri (string-append "mirror://gnupg/libgcrypt/libgcrypt-"
135 version ".tar.bz2"))
136 (sha256
137 (base32
138 "1hvsazms1bfd769q0ngl0r9g5i4m9mpz9jmvvrdzyzk3rfa2ljiv"))))
139 (build-system gnu-build-system)
140 (propagated-inputs
141 `(("libgpg-error-host" ,libgpg-error)))
142 (native-inputs
143 ;; Needed here for the 'gpg-error' program.
144 `(("libgpg-error-native" ,libgpg-error)))
145 (arguments
146 ;; The '--with-gpg-error-prefix' argument is needed because otherwise
147 ;; 'configure' uses 'gpg-error-config' to determine the '-L' flag, and
148 ;; the 'gpg-error-config' it runs is the native one---i.e., the wrong one.
149 `(#:configure-flags
150 (list (string-append "--with-gpg-error-prefix="
151 (assoc-ref %build-inputs "libgpg-error-host"))
152 ;; When cross-compiling, _gcry_mpih_lshift etc are undefined
153 ,@(if (%current-target-system) '("--disable-asm")
154 '()))))
155 (outputs '("out" "debug"))
156 (home-page "https://gnupg.org/")
157 (synopsis "Cryptographic function library")
158 (description
159 "Libgcrypt is a general-purpose cryptographic library. It provides the
160 standard cryptographic building blocks such as symmetric ciphers, hash
161 algorithms, public key algorithms, large integer functions and random number
162 generation.")
163 (license license:lgpl2.0+)
164 (properties '((ftp-server . "ftp.gnupg.org")
165 (ftp-directory . "/gcrypt/libgcrypt")))))
166
167 (define-public libassuan
168 (package
169 (name "libassuan")
170 (version "2.5.3")
171 (source
172 (origin
173 (method url-fetch)
174 (uri (string-append "mirror://gnupg/libassuan/libassuan-"
175 version ".tar.bz2"))
176 (sha256
177 (base32
178 "00p7cpvzf0q3qwcgg51r9d0vbab4qga2xi8wpk2fgd36710b1g4i"))))
179 (build-system gnu-build-system)
180 (propagated-inputs
181 `(("libgpg-error" ,libgpg-error)
182 ("pth" ,pth)))
183 (home-page "https://gnupg.org")
184 (synopsis
185 "IPC library used by GnuPG and related software")
186 (description
187 "Libassuan is a small library implementing the so-called Assuan
188 protocol. This protocol is used for IPC between most newer
189 GnuPG components. Both, server and client side functions are
190 provided.")
191 (license license:lgpl2.0+)
192 (properties '((ftp-server . "ftp.gnupg.org")
193 (ftp-directory . "/gcrypt/libassuan")))))
194
195 (define-public libksba
196 (package
197 (name "libksba")
198 (version "1.3.5")
199 (source
200 (origin
201 (method url-fetch)
202 (uri (string-append
203 "mirror://gnupg/libksba/libksba-"
204 version ".tar.bz2"))
205 (sha256
206 (base32
207 "0h53q4sns1jz1pkmhcz5wp9qrfn9f5g9i3vjv6dafwzzlvblyi21"))))
208 (build-system gnu-build-system)
209 (propagated-inputs
210 `(("libgpg-error" ,libgpg-error)))
211 (native-inputs
212 `(("libgpg-error" ,libgpg-error)))
213 (arguments
214 `(#:configure-flags
215 (list ,@(if (%current-target-system)
216 '("CC_FOR_BUILD=gcc")
217 '())
218 (string-append "--with-gpg-error-prefix="
219 (assoc-ref %build-inputs "libgpg-error")))))
220 (home-page "https://www.gnupg.org")
221 (synopsis "CMS and X.509 access library")
222 (description
223 "KSBA (pronounced Kasbah) is a library to make X.509 certificates
224 as well as the CMS easily accessible by other applications. Both
225 specifications are building blocks of S/MIME and TLS.")
226 (license license:gpl3+)
227 (properties '((ftp-server . "ftp.gnupg.org")
228 (ftp-directory . "/gcrypt/libksba")))))
229
230 (define-public npth
231 (package
232 (name "npth")
233 (version "1.6")
234 (source
235 (origin
236 (method url-fetch)
237 (uri (string-append "mirror://gnupg/npth/npth-" version ".tar.bz2"))
238 (sha256
239 (base32 "1lg2lkdd3z1s3rpyf88786l243adrzyk9p4q8z9n41ygmpcsp4qk"))))
240 (build-system gnu-build-system)
241 (home-page "https://www.gnupg.org")
242 (synopsis "Non-preemptive thread library")
243 (description
244 "Npth is a library to provide the GNU Pth API and thus a non-preemptive
245 threads implementation.
246
247 In contrast to GNU Pth is is based on the system's standard threads
248 implementation. This allows the use of libraries which are not
249 compatible to GNU Pth.")
250 (license (list license:lgpl3+ license:gpl2+)) ; dual license
251 (properties '((ftp-server . "ftp.gnupg.org")
252 (ftp-directory . "/gcrypt/npth")))))
253
254 (define-public gnupg
255 (package
256 (name "gnupg")
257 (version "2.2.20")
258 (source (origin
259 (method url-fetch)
260 (uri (string-append "mirror://gnupg/gnupg/gnupg-" version
261 ".tar.bz2"))
262 (patches (search-patches "gnupg-default-pinentry.patch"))
263 (sha256
264 (base32
265 "0c6a4v9p6qzhsw1pfcwc459bxpc8hma0w9z8iqb9khvligack9q4"))))
266 (build-system gnu-build-system)
267 (native-inputs
268 `(("pkg-config" ,pkg-config)))
269 (inputs
270 `(("gnutls" ,gnutls)
271 ("libassuan" ,libassuan)
272 ("libgcrypt" ,libgcrypt)
273 ("libgpg-error" ,libgpg-error)
274 ("libksba" ,libksba)
275 ("npth" ,npth)
276 ("openldap" ,openldap)
277 ("pcsc-lite" ,pcsc-lite)
278 ("readline" ,readline)
279 ("sqlite" ,sqlite)
280 ("zlib" ,zlib)))
281 (arguments
282 `(#:configure-flags '(;; Otherwise, the test suite looks for the `gpg`
283 ;; executable in its installation directory in
284 ;; /gnu/store before it has been installed.
285 "--enable-gnupg-builddir-envvar"
286 "--enable-all-tests")
287 #:phases
288 (modify-phases %standard-phases
289 (add-before 'configure 'patch-paths
290 (lambda* (#:key inputs #:allow-other-keys)
291 (substitute* "scd/scdaemon.c"
292 (("\"(libpcsclite\\.so[^\"]*)\"" _ name)
293 (string-append "\"" (assoc-ref inputs "pcsc-lite")
294 "/lib/" name "\"")))
295 #t))
296 (add-after 'build 'patch-scheme-tests
297 (lambda _
298 (substitute* (find-files "tests" ".\\.scm$")
299 (("/usr/bin/env gpgscm")
300 (string-append (getcwd) "/tests/gpgscm/gpgscm")))
301 #t))
302 (add-before 'build 'patch-test-paths
303 (lambda _
304 (substitute* '("tests/inittests"
305 "tests/pkits/inittests"
306 "tests/Makefile"
307 "tests/pkits/common.sh"
308 "tests/pkits/Makefile")
309 (("/bin/pwd") (which "pwd")))
310 (substitute* "common/t-exectool.c"
311 (("/bin/cat") (which "cat"))
312 (("/bin/true") (which "true"))
313 (("/bin/false") (which "false")))
314 #t)))))
315 (home-page "https://gnupg.org/")
316 (synopsis "GNU Privacy Guard")
317 (description
318 "The GNU Privacy Guard is a complete implementation of the OpenPGP
319 standard. It is used to encrypt and sign data and communication. It
320 features powerful key management and the ability to access public key
321 servers. It includes several libraries: libassuan (IPC between GnuPG
322 components), libgpg-error (centralized GnuPG error values), and
323 libskba (working with X.509 certificates and CMS data).")
324 (license license:gpl3+)
325 (properties '((ftp-server . "ftp.gnupg.org")
326 (ftp-directory . "/gcrypt/gnupg")))))
327
328 (define-public gnupg-2.0
329 (package (inherit gnupg)
330 (version "2.0.30")
331 (source (origin
332 (method url-fetch)
333 (uri (string-append "mirror://gnupg/gnupg/gnupg-" version
334 ".tar.bz2"))
335 (sha256
336 (base32
337 "0wax4cy14hh0h7kg9hj0hjn9424b71z8lrrc5kbsasrn9xd7hag3"))))
338 (native-inputs '())
339 (inputs
340 `(("adns" ,adns)
341 ("bzip2" ,bzip2)
342 ("curl" ,curl)
343 ("libassuan" ,libassuan)
344 ("libgcrypt" ,libgcrypt)
345 ("libgpg-error" ,libgpg-error)
346 ("libksba" ,libksba)
347 ("pth" ,pth)
348 ("openldap" ,openldap)
349 ("zlib" ,zlib)
350 ("readline" ,readline)))
351 (arguments
352 `(#:phases
353 (modify-phases %standard-phases
354 (add-before 'configure 'patch-config-files
355 (lambda _
356 (substitute* "tests/openpgp/Makefile.in"
357 (("/bin/sh") (which "sh")))
358 #t))
359 (add-after 'install 'rename-v2-commands
360 (lambda* (#:key outputs #:allow-other-keys)
361 ;; Upstream suggests removing the trailing '2' from command names:
362 ;; <http://debbugs.gnu.org/cgi/bugreport.cgi?bug=22883#58>.
363 (let ((out (assoc-ref outputs "out")))
364 (with-directory-excursion (string-append out "/bin")
365 (rename-file "gpgv2" "gpgv")
366 (rename-file "gpg2" "gpg")
367
368 ;; Keep the old name around to ease transition.
369 (symlink "gpgv" "gpgv2")
370 (symlink "gpg" "gpg2")
371 #t)))))))
372 (properties `((superseded . ,gnupg)))))
373
374 (define-public gnupg-1
375 (package (inherit gnupg)
376 (version "1.4.23")
377 (source (origin
378 (method url-fetch)
379 (uri (string-append "mirror://gnupg/gnupg/gnupg-" version
380 ".tar.bz2"))
381 (sha256
382 (base32
383 "1fkq4sqldvf6a25mm2qz95swv1qjg464736091w51djiwqbjyin9"))))
384 (native-inputs '())
385 (inputs
386 `(("zlib" ,zlib)
387 ("bzip2" ,bzip2)
388 ("curl" ,curl)
389 ("readline" ,readline)
390 ("libgpg-error" ,libgpg-error)))
391 (arguments
392 `(#:phases
393 (modify-phases %standard-phases
394 (add-after 'unpack 'patch-check-sh
395 (lambda _
396 (substitute* "checks/Makefile.in"
397 (("/bin/sh") (which "sh")))
398 #t)))))))
399
400 (define-public gpgme
401 (package
402 (name "gpgme")
403 (version "1.13.1")
404 (source
405 (origin
406 (method url-fetch)
407 (uri (string-append "mirror://gnupg/gpgme/gpgme-" version ".tar.bz2"))
408 (sha256
409 (base32 "0imyjfryvvjdbai454p70zcr95m94j9xnzywrlilqdw2fqi0pqy4"))))
410 (build-system gnu-build-system)
411 (arguments
412 `(#:phases
413 (modify-phases %standard-phases
414 (add-before 'check 'disable-failing-test
415 ;; XXX gnupg@2.2.20 breaks the expected JSON response for this test.
416 (lambda _
417 (substitute* "tests/json/t-json.c"
418 (("\"t-keylist-secret\", ") ""))
419 #t)))))
420 (native-inputs
421 `(("gnupg" ,gnupg)))
422 (propagated-inputs
423 ;; Needs to be propagated because gpgme.h includes gpg-error.h.
424 `(("libgpg-error" ,libgpg-error)))
425 (inputs
426 `(("libassuan" ,libassuan)))
427 (home-page "https://www.gnupg.org/related_software/gpgme/")
428 (synopsis "Library providing simplified access to GnuPG functionality")
429 (description
430 "GnuPG Made Easy (GPGME) is a library designed to make access to GnuPG
431 easier for applications. It provides a High-Level Crypto API for encryption,
432 decryption, signing, signature verification and key management. Currently
433 it uses GnuPG as its backend but the API isn't restricted to this engine.
434
435 Because the direct use of GnuPG from an application can be a complicated
436 programming task, it is suggested that all software should try to use GPGME
437 instead. This way bug fixes or improvements can be done at a central place
438 and every application benefits from this.")
439 (license license:lgpl2.1+)
440 (properties '((ftp-server . "ftp.gnupg.org")
441 (ftp-directory . "/gcrypt/gpgme")))))
442
443 (define-public qgpgme
444 (package
445 (inherit gpgme)
446 (name "qgpgme")
447 (arguments
448 `(#:phases
449 (modify-phases %standard-phases
450 (add-before 'build 'chdir-and-symlink
451 (lambda* (#:key inputs #:allow-other-keys)
452 (let ((gpgme (assoc-ref inputs "gpgme")))
453 (symlink (string-append gpgme "/lib/libgpgmepp.la")
454 "lang/cpp/src/libgpgmepp.la")
455 (symlink (string-append gpgme "/lib/libgpgme.la")
456 "src/libgpgme.la"))
457 (chdir "lang/qt")
458 #t)))))
459 (native-inputs
460 `(("pkg-config" ,pkg-config)
461 ,@(package-native-inputs gpgme)))
462 (inputs
463 `(("gpgme" ,gpgme)
464 ("qtbase" ,qtbase)
465 ,@(package-inputs gpgme)))
466 (synopsis "Qt API bindings for gpgme")
467 (description "QGpgme provides a very high level Qt API around GpgMEpp.
468
469 QGpgME was originally developed as part of libkleo and incorporated into
470 gpgpme starting with version 1.7.")
471 (license license:gpl2+))) ;; Note: this differs from gpgme
472
473 (define-public guile-gcrypt
474 (package
475 (name "guile-gcrypt")
476 (version "0.2.1")
477 (home-page "https://notabug.org/cwebber/guile-gcrypt")
478 (source (origin
479 (method git-fetch)
480 (uri (git-reference
481 (url (string-append home-page ".git"))
482 (commit (string-append "v" version))))
483 (sha256
484 (base32
485 "0n232iyayc46f7hywmjw0jr7pbmmz5h4b04jskhkzz9gxz0ci99c"))
486 (file-name (git-file-name name version))))
487 (build-system gnu-build-system)
488 (arguments
489 ;; When cross-compiling, the bash script libgcrypt-config provided by
490 ;; libgcrypt must be accessible during configure phase.
491 `(,@(if (%current-target-system)
492 '(#:phases
493 (modify-phases %standard-phases
494 (add-before 'configure 'add-libgrypt-config
495 (lambda _
496 (setenv "PATH" (string-append
497 (assoc-ref %build-inputs "libgcrypt")
498 "/bin:"
499 (getenv "PATH")))
500 #t))))
501 '())))
502 (native-inputs
503 `(("pkg-config" ,pkg-config)
504 ("autoconf" ,autoconf)
505 ("automake" ,automake)
506 ("texinfo" ,texinfo)
507 ("guile" ,guile-3.0)))
508 (inputs
509 `(("guile" ,guile-3.0)
510 ("libgcrypt" ,libgcrypt)))
511 (synopsis "Cryptography library for Guile using Libgcrypt")
512 (description
513 "Guile-Gcrypt provides a Guile 2.x interface to a subset of the
514 GNU Libgcrypt crytographic library. It provides modules for cryptographic
515 hash functions, message authentication codes (MAC), public-key cryptography,
516 strong randomness, and more. It is implemented using the foreign function
517 interface (FFI) of Guile.")
518 (license license:gpl3+)))
519
520 (define-public guile2.0-gcrypt
521 (package (inherit guile-gcrypt)
522 (name "guile2.0-gcrypt")
523 (native-inputs
524 `(("guile" ,guile-2.0)
525 ,@(alist-delete "guile" (package-native-inputs guile-gcrypt))))
526 (inputs
527 `(("guile" ,guile-2.0)
528 ,@(alist-delete "guile" (package-inputs guile-gcrypt))))))
529
530 (define-public guile2.2-gcrypt
531 (package
532 (inherit guile-gcrypt)
533 (name "guile2.2-gcrypt")
534 (native-inputs
535 `(("guile" ,guile-2.2)
536 ,@(alist-delete "guile" (package-native-inputs guile-gcrypt))))
537 (inputs
538 `(("guile" ,guile-2.2)
539 ,@(alist-delete "guile" (package-inputs guile-gcrypt))))))
540
541 (define-public guile3.0-gcrypt
542 (deprecated-package "guile3.0-gcrypt" guile-gcrypt))
543
544 (define-public python-gpg
545 (package
546 (name "python-gpg")
547 (version "1.10.0")
548 (source (origin
549 (method url-fetch)
550 (uri (pypi-uri "gpg" version))
551 (sha256
552 (base32
553 "1ji3ynhp36m1ccx7bmaq75dhij9frpn19v9mpi4aajn8csl194il"))))
554 (build-system python-build-system)
555 (arguments
556 '(#:phases
557 (modify-phases %standard-phases
558 (add-before 'build 'set-environment
559 (lambda _
560 (substitute* "setup.py"
561 (("cc") (which "gcc")))
562 #t)))
563 #:tests? #f)) ; No test suite.
564 (inputs
565 `(("gpgme" ,gpgme)))
566 (native-inputs
567 `(("swig" ,swig)))
568 (home-page (package-home-page gpgme))
569 (synopsis "Python bindings for GPGME GnuPG cryptography library")
570 (description "This package provides Python bindings to the GPGME GnuPG
571 cryptographic library. It is developed in the GPGME source code, and then
572 distributed separately.")
573 (license license:lgpl2.1+)))
574
575 (define-public python2-gpg
576 (package-with-python2 python-gpg))
577
578 (define-public python-pygpgme
579 (package
580 (name "python-pygpgme")
581 (version "0.3")
582 (source
583 (origin
584 (method url-fetch)
585 (uri (pypi-uri "pygpgme" version))
586 (sha256
587 (base32
588 "1q82p3gs6lwq8j8dxk4pvrwk3jpww1zqcjrzznl9clh10z28gn2z"))
589 ;; Unfortunately, we have to disable some tests due to some gpg-agent
590 ;; goofiness... see:
591 ;; https://bugs.launchpad.net/pygpgme/+bug/999949
592 (patches (search-patches "pygpgme-disable-problematic-tests.patch"
593 "python-pygpgme-fix-pinentry-tests.patch"))))
594 (arguments
595 `(#:phases
596 (modify-phases %standard-phases
597 (add-before 'build 'make-build
598 (lambda _ (invoke "make" "build")))
599 (replace 'check
600 (lambda _ (invoke "make" "check"))))))
601 (build-system python-build-system)
602 (native-inputs
603 `(("gnupg" ,gnupg-1)))
604 (inputs
605 `(("gpgme" ,gpgme)))
606 (home-page "https://launchpad.net/pygpgme")
607 (synopsis "Python module for working with OpenPGP messages")
608 (description
609 "PyGPGME is a Python module that lets you sign, verify, encrypt and
610 decrypt messages using the OpenPGP format by making use of GPGME.")
611 (license license:lgpl2.1+)))
612
613 (define-public python2-pygpgme
614 (package-with-python2 python-pygpgme))
615
616 (define-public python-gnupg
617 (package
618 (name "python-gnupg")
619 (version "0.4.4")
620 (source
621 (origin
622 (method url-fetch)
623 (uri (pypi-uri "python-gnupg" version))
624 (sha256
625 (base32
626 "03pvjyp6q9pr8qa22i38az06ddzhvzy5kj192hxa3gbhnchg1nj5"))))
627 (build-system python-build-system)
628 (arguments
629 `(#:phases
630 (modify-phases %standard-phases
631 (replace 'check
632 (lambda _
633 (substitute* "test_gnupg.py"
634 ;; Unsure why this test fails.
635 (("'test_search_keys'") "True")
636 (("def test_search_keys") "def disabled__search_keys"))
637 (setenv "USERNAME" "guixbuilder")
638 ;; The doctests are extremely slow and sometimes time out,
639 ;; so we disable them.
640 (invoke "python"
641 "test_gnupg.py" "--no-doctests"))))))
642 (native-inputs
643 `(("gnupg" ,gnupg-1)))
644 (home-page "https://packages.python.org/python-gnupg/index.html")
645 (synopsis "Wrapper for the GNU Privacy Guard")
646 (description
647 "This module allows easy access to GnuPG’s key management, encryption
648 and signature functionality from Python programs.")
649 (license license:bsd-3)))
650
651 (define-public python2-gnupg
652 (package-with-python2 python-gnupg))
653
654 (define-public perl-gnupg-interface
655 (package
656 (name "perl-gnupg-interface")
657 (version "0.52")
658 (source (origin
659 (method url-fetch)
660 (uri (string-append "mirror://cpan/authors/id/A/AL/ALEXMV/"
661 "GnuPG-Interface-" version ".tar.gz"))
662 (sha256
663 (base32
664 "0dgx8yhdsmhkazcrz14n4flrk1afv7azgl003hl4arxvi1d9yyi4"))))
665 (build-system perl-build-system)
666 (arguments
667 `(#:phases
668 (modify-phases %standard-phases
669 ;; FIXME: This test fails for unknown reasons
670 (add-after 'unpack 'delete-broken-test
671 (lambda _
672 (delete-file "t/encrypt_symmetrically.t")
673 #t)))))
674 (inputs
675 `(("gnupg" ,gnupg-1)))
676 (propagated-inputs
677 `(("perl-moo" ,perl-moo)
678 ("perl-moox-handlesvia" ,perl-moox-handlesvia)
679 ("perl-moox-late" ,perl-moox-late)))
680 (native-inputs
681 `(("which" ,which)
682 ("perl-module-install" ,perl-module-install)))
683 (home-page "https://metacpan.org/release/GnuPG-Interface")
684 (synopsis "Perl interface to GnuPG")
685 (description "@code{GnuPG::Interface} and its associated modules are
686 designed to provide an object-oriented method for interacting with GnuPG,
687 being able to perform functions such as but not limited to encrypting,
688 signing, decryption, verification, and key-listing parsing.")
689 (license license:perl-license)))
690
691 (define-public pius
692 (package
693 (name "pius")
694 (version "2.2.7")
695 (source (origin
696 (method url-fetch)
697 (uri (string-append
698 "https://github.com/jaymzh/pius/releases/download/v"
699 version "/pius-" version ".tar.bz2"))
700 (sha256
701 (base32
702 "1nsl7czicv95j0gfz4s82ys3g3h2mwr6cq3ilid8bpz3iy7z4ipy"))))
703 (build-system python-build-system)
704 (inputs `(("perl" ,perl) ; for 'pius-party-worksheet'
705 ("gpg" ,gnupg)
706 ("python-six" ,python2-six)))
707 (arguments
708 `(#:tests? #f
709 #:python ,python-2 ; uses the Python 2 'print' syntax
710 #:phases
711 (modify-phases %standard-phases
712 (add-before
713 'build 'set-gpg-file-name
714 (lambda* (#:key inputs outputs #:allow-other-keys)
715 (let* ((gpg (string-append (assoc-ref inputs "gpg")
716 "/bin/gpg")))
717 (substitute* "libpius/constants.py"
718 (("/usr/bin/gpg2") gpg))
719 #t))))))
720 (synopsis "Programs to simplify GnuPG key signing")
721 (description
722 "Pius (PGP Individual UID Signer) helps attendees of PGP keysigning
723 parties. It is the main utility and makes it possible to quickly and easily
724 sign each UID on a set of PGP keys. It is designed to take the pain out of
725 the sign-all-the-keys part of PGP Keysigning Party while adding security
726 to the process.
727
728 pius-keyring-mgr and pius-party-worksheet help organisers of
729 PGP keysigning parties.")
730 (license license:gpl2)
731 (home-page "https://www.phildev.net/pius/index.shtml")))
732
733 (define-public signing-party
734 (package
735 (name "signing-party")
736 (version "2.10")
737 (home-page "https://salsa.debian.org/signing-party-team/signing-party")
738 (source (origin
739 (method git-fetch)
740 (uri (git-reference
741 (url home-page)
742 (commit (string-append "v" version))))
743 (file-name (git-file-name name version))
744 (sha256
745 (base32
746 "0lq8nmwjmysry0n4jg6vb7bh0lagbyb9pa11ii3s41p1mhzchf2r"))))
747 (build-system gnu-build-system)
748 (native-inputs
749 `(("autoconf" ,autoconf-wrapper)
750 ("automake" ,automake)))
751 (inputs `(("perl" ,perl)
752 ("perl-text-template" ,perl-text-template)
753 ("perl-mime-tools" ,perl-mime-tools)
754 ("perl-gnupg-interface" ,perl-gnupg-interface)
755 ("perl-net-idn-encode" ,perl-net-idn-encode)
756 ("libmd" ,libmd)))
757 (arguments
758 `(#:tests? #f ; no test suite
759 #:phases
760 (modify-phases %standard-phases
761 (replace 'configure
762 (lambda* (#:key outputs #:allow-other-keys)
763 (let ((out (assoc-ref outputs "out")))
764 (substitute* "keyanalyze/Makefile"
765 (("LDLIBS") (string-append "CC=" (which "gcc") "\nLDLIBS")))
766 (substitute* "keyanalyze/Makefile"
767 (("\\./configure") (string-append "./configure --prefix=" out)))
768 (substitute* "gpgwrap/Makefile"
769 (("\\} clean")
770 (string-append "} clean\ninstall:\n\tinstall -D bin/gpgwrap "
771 out "/bin/gpgwrap\n")))
772 (substitute* '("gpgsigs/Makefile" "keyanalyze/Makefile"
773 "keylookup/Makefile" "sig2dot/Makefile"
774 "springgraph/Makefile")
775 (("/usr") out))
776 (setenv "CONFIG_SHELL" (which "sh")))
777 #t))
778 (replace 'install
779 (lambda* (#:key outputs #:allow-other-keys #:rest args)
780 (let ((out (assoc-ref outputs "out"))
781 (install (assoc-ref %standard-phases 'install)))
782 (apply install args)
783 (for-each
784 (lambda (dir file)
785 (copy-file (string-append dir "/" file)
786 (string-append out "/bin/" file)))
787 '("caff" "caff" "caff" "gpgdir" "gpg-key2ps"
788 "gpglist" "gpg-mailkeys" "gpgparticipants")
789 '("caff" "pgp-clean" "pgp-fixkey" "gpgdir" "gpg-key2ps"
790 "gpglist" "gpg-mailkeys" "gpgparticipants"))
791 (for-each
792 (lambda (dir file)
793 (copy-file (string-append dir "/" file)
794 (string-append out "/share/man/man1/" file)))
795 '("caff" "caff" "caff" "gpgdir"
796 "gpg-key2ps" "gpglist" "gpg-mailkeys"
797 "gpgparticipants" "gpgsigs" "gpgwrap/doc"
798 "keyanalyze" "keyanalyze/pgpring" "keyanalyze")
799 '("caff.1" "pgp-clean.1" "pgp-fixkey.1" "gpgdir.1"
800 "gpg-key2ps.1" "gpglist.1" "gpg-mailkeys.1"
801 "gpgparticipants.1" "gpgsigs.1" "gpgwrap.1"
802 "process_keys.1" "pgpring.1" "keyanalyze.1")))
803 #t))
804 (add-after 'install 'wrap-programs
805 (lambda* (#:key outputs #:allow-other-keys)
806 (let* ((out (assoc-ref outputs "out")))
807 (wrap-program
808 (string-append out "/bin/caff")
809 `("PERL5LIB" ":" prefix (,(getenv "PERL5LIB")))))
810 #t)))))
811 (synopsis "Collection of scripts for simplifying gnupg key signing")
812 (description
813 "Signing-party is a collection for all kinds of PGP/GnuPG related things,
814 including tools for signing keys, keyring analysis, and party preparation.
815 @enumerate
816 @item caff: CA - Fire and Forget signs and mails a key
817 @item pgp-clean: removes all non-self signatures from key
818 @item pgp-fixkey: removes broken packets from keys
819 @item gpg-mailkeys: simply mail out a signed key to its owner
820 @item gpg-key2ps: generate PostScript file with fingerprint paper strips
821 @item gpgdir: recursive directory encryption tool
822 @item gpglist: show who signed which of your UIDs
823 @item gpgsigs: annotates list of GnuPG keys with already done signatures
824 @item gpgparticipants: create list of party participants for the organiser
825 @item gpgwrap: a passphrase wrapper
826 @item keyanalyze: minimum signing distance (MSD) analysis on keyrings
827 @item keylookup: ncurses wrapper around gpg --search
828 @item sig2dot: converts a list of GnuPG signatures to a .dot file
829 @item springgraph: creates a graph from a .dot file
830 @end enumerate")
831 ;; gpl2+ for almost all programs, except for keyanalyze: gpl2
832 ;; and caff and gpgsigs: bsd-3, see
833 ;; http://packages.debian.org/changelogs/pool/main/s/signing-party/current/copyright
834 (license license:gpl2)))
835
836 (define-public pinentry-tty
837 (package
838 (name "pinentry-tty")
839 (version "1.1.0")
840 (source (origin
841 (method url-fetch)
842 (uri (string-append "mirror://gnupg/pinentry/pinentry-"
843 version ".tar.bz2"))
844 (sha256
845 (base32
846 "0w35ypl960pczg5kp6km3dyr000m1hf0vpwwlh72jjkjza36c1v8"))))
847 (build-system gnu-build-system)
848 (arguments
849 `(#:configure-flags '("--enable-pinentry-tty")))
850 (inputs
851 `(("ncurses" ,ncurses)
852 ("libassuan" ,libassuan)
853 ("libsecret" ,libsecret "out")))
854 (native-inputs
855 `(("pkg-config" ,pkg-config)))
856 (home-page "https://gnupg.org/aegypten2/")
857 (synopsis "GnuPG's interface to passphrase input")
858 (description
859 "Pinentry provides a console that allows users to enter a passphrase when
860 @code{gpg} is run and needs it.")
861 (license license:gpl2+)
862 (properties '((ftp-server . "ftp.gnupg.org")
863 (ftp-directory . "/gcrypt/pinentry")
864 (upstream-name . "pinentry")))))
865
866 (define-public pinentry-emacs
867 (package
868 (inherit pinentry-tty)
869 (name "pinentry-emacs")
870 (arguments
871 `(#:configure-flags '("--enable-pinentry-emacs")))
872 (description
873 "Pinentry provides a console and an Emacs interface that allows users to
874 enter a passphrase when required by @code{gpg} or other software.")))
875
876 (define-public pinentry-gtk2
877 (package
878 (inherit pinentry-tty)
879 (name "pinentry-gtk2")
880 (inputs
881 `(("gtk+" ,gtk+-2)
882 ("glib" ,glib)
883 ,@(package-inputs pinentry-tty)))
884 (description
885 "Pinentry provides a console and a GTK+ GUI that allows users to enter a
886 passphrase when @code{gpg} is run and needs it.")))
887
888 (define-public pinentry-gnome3
889 (package
890 (inherit pinentry-tty)
891 (name "pinentry-gnome3")
892 (inputs
893 `(("gtk+" ,gtk+-2)
894 ("gcr" ,gcr)
895 ("glib" ,glib)
896 ,@(package-inputs pinentry-tty)))
897 (arguments
898 `(#:configure-flags '("--enable-pinentry-gnome3")))
899 (description
900 "Pinentry provides a console and a GUI designed for use with GNOME@tie{}3
901 that allows users to enter a passphrase when required by @code{gpg} or other
902 software.")))
903
904 (define-public pinentry-qt
905 (package
906 (inherit pinentry-tty)
907 (name "pinentry-qt")
908 (inputs
909 `(("qtbase" ,qtbase)
910 ,@(package-inputs pinentry-tty)))
911 (description
912 "Pinentry provides a console and a Qt GUI that allows users to enter a
913 passphrase when @code{gpg} is run and needs it.")))
914
915 (define-public pinentry-efl
916 (package
917 (inherit pinentry-tty)
918 (name "pinentry-efl")
919 (source
920 (origin
921 (inherit (package-source pinentry-tty))
922 (patches (search-patches "pinentry-efl.patch"))))
923 (arguments
924 '(#:configure-flags '("--enable-pinentry-efl")
925 #:phases
926 (modify-phases %standard-phases
927 (replace 'bootstrap
928 (lambda _
929 (invoke "sh" "autogen.sh"))))))
930 (native-inputs
931 `(("autoconf" ,autoconf)
932 ("automake" ,automake)
933 ("gettext" ,gettext-minimal)
934 ,@(package-native-inputs pinentry-tty)))
935 (inputs
936 `(("efl" ,efl)
937 ,@(package-inputs pinentry-tty)))
938 (description
939 "Pinentry provides a console and a graphical interface for the
940 @dfn{Enlightenment Foundation Libraries} (EFL) that allows users to enter a
941 passphrase when @code{gpg} is run and needs it.")))
942
943 (define-public pinentry
944 (package (inherit pinentry-gtk2)
945 (name "pinentry")))
946
947 (define-public paperkey
948 (package
949 (name "paperkey")
950 (version "1.6")
951 (source (origin
952 (method url-fetch)
953 (uri (string-append "https://www.jabberwocky.com/"
954 "software/paperkey/paperkey-"
955 version ".tar.gz"))
956 (sha256
957 (base32
958 "1xq5gni6gksjkd5avg0zpd73vsr97appksfx0gx2m38s4w9zsid2"))))
959 (build-system gnu-build-system)
960 (arguments
961 `(#:phases
962 (modify-phases %standard-phases
963 (add-before 'check 'patch-check-scripts
964 (lambda _
965 (substitute* '("checks/roundtrip.sh"
966 "checks/roundtrip-raw.sh")
967 (("/bin/echo") "echo"))
968 #t)))))
969 (home-page "https://www.jabberwocky.com/software/paperkey/")
970 (synopsis "Backup OpenPGP keys to paper")
971 (description
972 "Paperkey extracts the secret bytes from an OpenPGP (GnuPG, PGP, etc) key
973 for printing with paper and ink, which have amazingly long retention
974 qualities. To reconstruct a secret key, you re-enter those
975 bytes (whether by hand, OCR, QR code, or the like) and paperkey can use
976 them to transform your existing public key into a secret key.")
977 (license license:gpl2+)))
978
979 (define-public pgpdump
980 (package
981 (name "pgpdump")
982 (version "0.33")
983 (source
984 (origin
985 (method url-fetch)
986 (uri (string-append "https://www.mew.org/~kazu/proj/pgpdump/pgpdump-"
987 version ".tar.gz"))
988 (sha256
989 (base32 "1j001jra2m89n6cys3n0hs574bipjdzfxhzpnd4jfyv95mqwl7n4"))))
990 (build-system gnu-build-system)
991 (arguments
992 `(#:tests? #f ; no make check
993 #:configure-flags (list "--prefix=/")
994 #:make-flags (list "CC=gcc"
995 (string-append "DESTDIR=" (assoc-ref %outputs "out")))))
996 (inputs
997 `(("zlib" ,zlib)))
998 (home-page "https://www.mew.org/~kazu/proj/pgpdump/en/")
999 (synopsis "PGP packet visualizer")
1000 (description "pgpdump displays the sequence of OpenPGP or PGP version 2
1001 packets from a file.
1002
1003 The output of this command is similar to GnuPG's list packets command,
1004 however, pgpdump produces more detailed and easier to understand output.")
1005 (license license:bsd-3)))
1006
1007 (define-public gpa
1008 (package
1009 (name "gpa")
1010 (version "0.10.0")
1011 (source (origin
1012 (method url-fetch)
1013 (uri (string-append "mirror://gnupg/gpa/"
1014 name "-" version ".tar.bz2"))
1015 (sha256
1016 (base32
1017 "1cbpc45f8qbdkd62p12s3q2rdq6fa5xdzwmcwd3xrj55bzkspnwm"))))
1018 (build-system gnu-build-system)
1019 (arguments
1020 `(#:phases
1021 (modify-phases %standard-phases
1022 (add-after 'install 'wrap-program
1023 (lambda* (#:key inputs outputs #:allow-other-keys)
1024 (let ((out (assoc-ref outputs "out"))
1025 (gnupg (assoc-ref inputs "gnupg")))
1026 (wrap-program (string-append out "/bin/gpa")
1027 `("PATH" ":" prefix (,(string-append gnupg "/bin"))))
1028 #t))))))
1029 (native-inputs
1030 `(("pkg-config" ,pkg-config)))
1031 (inputs
1032 `(("gnupg" ,gnupg)
1033 ("gpgme" ,gpgme)
1034 ("libassuan" ,libassuan)
1035 ("libgpg-error" ,libgpg-error)
1036 ("gtk+-2" ,gtk+-2)))
1037 (home-page "https://gnupg.org/software/gpa/")
1038 (synopsis "Graphical user interface for GnuPG")
1039 (description
1040 "GPA, the GNU Privacy Assistant, is a graphical user interface for
1041 @uref{https://gnupg.org, GnuPG}. It can be used to encrypt, decrypt, and sign
1042 files, to verify signatures, and to manage the private and public keys.")
1043 (license license:gpl3+)
1044 (properties '((ftp-server . "ftp.gnupg.org")
1045 (ftp-directory . "/gcrypt/gpa")))))
1046
1047 (define-public parcimonie
1048 (package
1049 (name "parcimonie")
1050 (version "0.11.0")
1051 (source (origin
1052 (method url-fetch)
1053 (uri (string-append "https://gaffer.boum.org/intrigeri/files/"
1054 "parcimonie/App-Parcimonie-"
1055 version ".tar.gz"))
1056 (sha256
1057 (base32
1058 "14pvapvzrxh1yh8zgcj1llmc2dd8g1fgzskxlja21gmw8c88aqdk"))))
1059 (build-system perl-build-system)
1060 (inputs
1061 `(("gnupg" ,gnupg)
1062 ("perl-config-general" ,perl-config-general)
1063 ("perl-clone" ,perl-clone)
1064 ("perl-data" ,perl-data)
1065 ("perl-exporter-tiny" ,perl-exporter-tiny)
1066 ("perl-file-homedir" ,perl-file-homedir)
1067 ("perl-file-sharedir" ,perl-file-sharedir)
1068 ("perl-file-which" ,perl-file-which)
1069 ("perl-getopt-long-descriptive" ,perl-getopt-long-descriptive)
1070 ("perl-gnupg-interface" ,perl-gnupg-interface)
1071 ("perl-ipc-system-simple" ,perl-ipc-system-simple)
1072 ("perl-list-moreutils" ,perl-list-moreutils)
1073 ("perl-libintl-perl" ,perl-libintl-perl) ; Locale::TextDomain
1074 ("perl-lwp-online" ,perl-lwp-online)
1075 ("perl-module-build" ,perl-module-build)
1076 ("perl-module-pluggable-object" ,perl-module-pluggable)
1077 ("perl-moo" ,perl-moo)
1078 ("perl-moox-handlesvia" ,perl-moox-handlesvia)
1079 ("perl-moox-late" ,perl-moox-late)
1080 ("perl-moox-options" ,perl-moox-options)
1081 ("perl-moox-strictconstructor" ,perl-moox-strictconstructor)
1082 ("perl-namespace-clean" ,perl-namespace-clean)
1083 ("perl-net-dbus" ,perl-net-dbus)
1084 ("perl-net-dbus-glib" ,perl-net-dbus-glib)
1085 ("perl-path-tiny" ,perl-path-tiny)
1086 ("perl-strictures" ,perl-strictures-2)
1087 ("perl-test-most" ,perl-test-most)
1088 ("perl-test-trap" ,perl-test-trap)
1089 ("perl-time-duration" ,perl-time-duration)
1090 ("perl-time-duration-parse" ,perl-time-duration-parse)
1091 ("perl-try-tiny" ,perl-try-tiny)
1092 ("perl-type-tiny" ,perl-type-tiny)
1093 ("perl-types-path-tiny" ,perl-types-path-tiny)
1094 ("perl-unicode-linebreak" ,perl-unicode-linebreak)
1095 ("perl-xml-parser" ,perl-xml-parser)
1096 ("perl-xml-twig" ,perl-xml-twig)
1097 ("torsocks" ,torsocks)))
1098 (native-inputs
1099 `(("xorg-server" ,xorg-server-for-tests)))
1100 (arguments
1101 `(#:phases
1102 (modify-phases %standard-phases
1103 ;; Needed for using gpg-connect-agent during tests.
1104 (add-before 'check 'prepare-for-tests
1105 (lambda* (#:key inputs #:allow-other-keys)
1106 (let ((xorg-server (assoc-ref inputs "xorg-server")))
1107 (system (string-append xorg-server "/bin/Xvfb :1 &"))
1108 (setenv "DISPLAY" ":1")
1109 (setenv "HOME" "/tmp")
1110 ;; These tests are known to fail
1111 (delete-file "t/32-keyserver_defined_on_command_line.t")
1112 (delete-file "t/33-checkGpgHasDefinedKeyserver.t")
1113 ;; The applet is deprecated upstream.
1114 (delete-file "t/00-load_all.t")
1115 #t)))
1116 (add-before 'install 'fix-references
1117 (lambda* (#:key inputs outputs #:allow-other-keys)
1118 (substitute* "lib/App/Parcimonie/GnuPG/Interface.pm"
1119 ;; Skip check whether dependencies are in the PATH
1120 (("defined which.*") ""))
1121 #t))
1122 (add-after 'install 'wrap-program
1123 (lambda* (#:key inputs outputs #:allow-other-keys)
1124 (let* ((out (assoc-ref outputs "out"))
1125 (perllib (string-append out "/lib/perl5/site_perl/"
1126 ,(package-version perl))))
1127 (wrap-program (string-append out "/bin/parcimonie")
1128 `("PERL5LIB" ":"
1129 prefix (,(string-append perllib ":" (getenv "PERL5LIB")))))
1130 #t))))))
1131 (home-page "https://gaffer.boum.org/intrigeri/code/parcimonie/")
1132 (synopsis "Incrementally refreshes a GnuPG keyring")
1133 (description "Parcimonie incrementaly refreshes a GnuPG keyring in a way
1134 that makes it hard to correlate the keyring content to an individual, and
1135 makes it hard to locate an individual based on an identifying subset of her
1136 keyring content. Parcimonie is a daemon that fetches one key at a time using
1137 the Tor network, waits a bit, changes the Tor circuit being used, and starts
1138 over.")
1139 (license license:gpl1+)))
1140
1141 (define-public jetring
1142 (package
1143 (name "jetring")
1144 (version "0.29")
1145 (source
1146 (origin
1147 (method git-fetch)
1148 (uri (git-reference
1149 (url "https://salsa.debian.org/debian/jetring")
1150 (commit (string-append "debian/" version))))
1151 (file-name (git-file-name name version))
1152 (sha256
1153 (base32
1154 "1acbx2vnbkms1c0wgcnh05d4g359sg5z0aiw541vx2qq9sgdhlv6"))))
1155 (build-system gnu-build-system)
1156 (arguments
1157 '(#:phases
1158 (modify-phases %standard-phases
1159 (delete 'configure) ; no configure script
1160 (add-before 'install 'hardlink-gnupg
1161 (lambda* (#:key inputs #:allow-other-keys)
1162 (let ((gpg (string-append (assoc-ref inputs "gnupg")
1163 "/bin/gpg")))
1164 (substitute* (find-files "." "jetring-[[:alpha:]]+$")
1165 (("gpg -") (string-append gpg " -"))
1166 (("\\\"gpg\\\"") (string-append "\"" gpg "\"")))
1167 #t)))
1168 (replace 'install
1169 (lambda* (#:key outputs #:allow-other-keys)
1170 (let* ((out (assoc-ref outputs "out"))
1171 (man (string-append out "/share/man")))
1172 (for-each (lambda (file)
1173 (install-file file (string-append out "/bin/")))
1174 (find-files "." "jetring-[[:alpha:]]+$"))
1175 (for-each (lambda (file)
1176 (install-file file (string-append man "/man1/")))
1177 (find-files "." ".*\\.1$"))
1178 (install-file "jetring.7" (string-append man "/man7/"))
1179 #t))))
1180 #:tests? #f)) ; no test phase
1181 (inputs
1182 `(("gnupg" ,gnupg)
1183 ("perl" ,perl)))
1184 (home-page "https://joeyh.name/code/jetring/")
1185 (synopsis "GnuPG keyring maintenance using changesets")
1186 (description
1187 "Jetring is a collection of tools that allow for gpg keyrings to be
1188 maintained using changesets. It was developed with the Debian keyring in mind,
1189 and aims to solve the problem that a gpg keyring is a binary blob that's hard
1190 for multiple people to collaboratively edit.
1191
1192 With jetring, changesets can be submitted, reviewed to see exactly what they
1193 will do, applied, and used to build a keyring. The origin of every change made
1194 to the keyring is available for auditing, and gpg signatures can be used for
1195 integrity guarantees.")
1196 (license license:gpl2+)))
jackhill's copy of GNU Guix: https://guix.gnu.org/