blob: 58f63b7a74baabc3561fa0780e14e96eae3fd54a (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
|
{ lib
, stdenv
, fetchzip
, nixosTests
, iptables
, iproute2
, makeWrapper
, openresolv
, procps
, bash
}:
stdenv.mkDerivation rec {
pname = "wireguard-tools";
version = "1.0.20210914";
src = fetchzip {
url = "https://git.zx2c4.com/wireguard-tools/snapshot/wireguard-tools-${version}.tar.xz";
sha256 = "sha256-eGGkTVdPPTWK6iEyowW11F4ywRhd+0IXJTZCqY3OZws=";
};
outputs = [ "out" "man" ];
sourceRoot = "${src.name}/src";
nativeBuildInputs = [ makeWrapper ];
buildInputs = [ bash ];
makeFlags = [
"DESTDIR=$(out)"
"PREFIX=/"
"WITH_BASHCOMPLETION=yes"
"WITH_SYSTEMDUNITS=yes"
"WITH_WGQUICK=yes"
];
postFixup = ''
substituteInPlace $out/lib/systemd/system/wg-quick@.service \
--replace /usr/bin $out/bin
'' + lib.optionalString stdenv.isLinux ''
for f in $out/bin/*; do
# Which firewall and resolvconf implementations to use should be determined by the
# environment, we provide the "default" ones as fallback.
wrapProgram $f \
--prefix PATH : ${lib.makeBinPath [ procps iproute2 ]} \
--suffix PATH : ${lib.makeBinPath [ iptables openresolv ]}
done
'';
passthru = {
updateScript = ./update.sh;
tests = nixosTests.wireguard;
};
meta = with lib; {
description = "Tools for the WireGuard secure network tunnel";
longDescription = ''
Supplies the main userspace tooling for using and configuring WireGuard tunnels, including the wg(8) and wg-quick(8) utilities.
- wg : the configuration utility for getting and setting the configuration of WireGuard tunnel interfaces. The interfaces
themselves can be added and removed using ip-link(8) and their IP addresses and routing tables can be set using ip-address(8)
and ip-route(8). The wg utility provides a series of sub-commands for changing WireGuard-specific aspects of WireGuard interfaces.
- wg-quick : an extremely simple script for easily bringing up a WireGuard interface, suitable for a few common use cases.
'';
downloadPage = "https://git.zx2c4.com/wireguard-tools/refs/";
homepage = "https://www.wireguard.com/";
license = licenses.gpl2;
maintainers = with maintainers; [ ericsagnes zx2c4 globin ma27 d-xo ];
mainProgram = "wg";
platforms = platforms.unix;
};
}
|