diff options
| author | Vincent Ambo <tazjin@tvl.su> | 2024-03-14T06·43+0300 |
|---|---|---|
| committer | clbot <clbot@tvl.fyi> | 2024-03-17T11·30+0000 |
| commit | fa8e706b9b66c1d5f0f64967939861fe00101a22 (patch) | |
| tree | 876d7f4627189932d7af199c89f12ebab160fd07 /third_party/overlays/patches/tpm2-pkcs11.nix | |
| parent | e220d807270e9967d7b76070b968981c2c3dda0c (diff) | |
fix(3p/overlays): upgrade tpm2-pkcs11, but add unmerged patch r/7718
Instead of pinning to an old version, move forward but with a fix for the critical bug that's been preventing me from upgrading. The project seems to be unmaintained upstream, but I took the fix from the open pull requests. Change-Id: I85c8f780b1e363bac4060dd89b1930a6e59ce2a3 Reviewed-on: https://cl.tvl.fyi/c/depot/+/11145 Tested-by: BuildkiteCI Autosubmit: tazjin <tazjin@tvl.su> Reviewed-by: flokli <flokli@flokli.de>
Diffstat (limited to 'third_party/overlays/patches/tpm2-pkcs11.nix')
| -rw-r--r-- | third_party/overlays/patches/tpm2-pkcs11.nix | 105 |
1 files changed, 0 insertions, 105 deletions
diff --git a/third_party/overlays/patches/tpm2-pkcs11.nix b/third_party/overlays/patches/tpm2-pkcs11.nix deleted file mode 100644 index 2e7db7aca3bb..000000000000 --- a/third_party/overlays/patches/tpm2-pkcs11.nix +++ /dev/null @@ -1,105 +0,0 @@ -{ stdenv -, lib -, fetchFromGitHub -, substituteAll -, pkg-config -, autoreconfHook -, autoconf-archive -, makeWrapper -, patchelf -, tpm2-tss -, tpm2-tools -, opensc -, openssl -, sqlite -, python3 -, glibc -, libyaml -, abrmdSupport ? true -, tpm2-abrmd ? null -}: - -stdenv.mkDerivation rec { - pname = "tpm2-pkcs11"; - version = "1.8.0"; - - src = fetchFromGitHub { - owner = "tpm2-software"; - repo = pname; - rev = version; - sha256 = "sha256-f5wi0nIM071yaQCwPkY1agKc7OEQa/IxHJc4V2i0Q9I="; - }; - - patches = lib.singleton ( - substituteAll { - src = ./0001-configure-ac-version.patch; - VERSION = version; - }); - - # The preConfigure phase doesn't seem to be working here - # ./bootstrap MUST be executed as the first step, before all - # of the autoreconfHook stuff - postPatch = '' - ./bootstrap - ''; - - nativeBuildInputs = [ - pkg-config - autoreconfHook - autoconf-archive - makeWrapper - patchelf - ]; - buildInputs = [ - tpm2-tss - tpm2-tools - opensc - openssl - sqlite - libyaml - (python3.withPackages (ps: with ps; [ packaging pyyaml cryptography pyasn1-modules tpm2-pytss ])) - ]; - - outputs = [ "out" "bin" "dev" ]; - - dontStrip = true; - dontPatchELF = true; - - # To be able to use the userspace resource manager, the RUNPATH must - # explicitly include the tpm2-abrmd shared libraries. - preFixup = - let - rpath = lib.makeLibraryPath ( - (lib.optional abrmdSupport tpm2-abrmd) - ++ [ - tpm2-tss - sqlite - openssl - glibc - libyaml - ] - ); - in - '' - patchelf \ - --set-rpath ${rpath} \ - ${lib.optionalString abrmdSupport "--add-needed ${lib.makeLibraryPath [tpm2-abrmd]}/libtss2-tcti-tabrmd.so"} \ - --add-needed ${lib.makeLibraryPath [tpm2-tss]}/libtss2-tcti-device.so \ - $out/lib/libtpm2_pkcs11.so.0.0.0 - ''; - - postInstall = '' - mkdir -p $bin/bin/ $bin/share/tpm2_pkcs11/ - mv ./tools/* $bin/share/tpm2_pkcs11/ - makeWrapper $bin/share/tpm2_pkcs11/tpm2_ptool.py $bin/bin/tpm2_ptool \ - --prefix PATH : ${lib.makeBinPath [ tpm2-tools ]} - ''; - - meta = with lib; { - description = "A PKCS#11 interface for TPM2 hardware"; - homepage = "https://github.com/tpm2-software/tpm2-pkcs11"; - license = licenses.bsd2; - platforms = platforms.linux; - maintainers = with maintainers; [ matthiasbeyer ]; - }; -} |