blob: 9fbed50f3b9a8975d11e56afb46ef9c5326c2cee (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
|
{ stdenv, fetchurl, bison, flex, libsepol }:
stdenv.mkDerivation rec {
name = "checkpolicy-${version}";
version = "2.4";
inherit (libsepol) se_release se_url;
src = fetchurl {
url = "${se_url}/${se_release}/checkpolicy-${version}.tar.gz";
sha256 = "1m5wjm43lzp6bld8higsvdm2dkddydihhwv9qw2w9r4dm0largcv";
};
nativeBuildInputs = [ bison flex ];
buildInputs = [ libsepol ];
NIX_CFLAGS_COMPILE = "-fstack-protector-all";
# Don't build tests
postPatch = ''
sed -i '/-C test/d' Makefile
'';
preBuild = ''
makeFlagsArray+=("LEX=flex")
makeFlagsArray+=("LIBDIR=${libsepol}/lib")
makeFlagsArray+=("PREFIX=$out")
'';
meta = libsepol.meta // {
description = "SELinux policy compiler";
};
}
|