forked from mirrors/nixpkgs
db66a95e5b
Includes fixes for 10 CVEs and contains other fixes. See http://support.ntp.org/bin/view/Main/SecurityNotice#November_2016_ntp_4_2_8p9_NTP_Se.
37 lines
990 B
Nix
37 lines
990 B
Nix
{ stdenv, fetchurl, autoreconfHook, libcap ? null, openssl ? null }:
|
|
|
|
assert stdenv.isLinux -> libcap != null;
|
|
|
|
stdenv.mkDerivation rec {
|
|
name = "ntp-4.2.8p9";
|
|
|
|
src = fetchurl {
|
|
url = "http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-4.2/${name}.tar.gz";
|
|
sha256 = "0whbyf82lrczbri4adbsa4hg1ppfa6c7qcj7nhjwdfp1g1vjh95p";
|
|
};
|
|
|
|
configureFlags = [
|
|
"--sysconfdir=/etc"
|
|
"--localstatedir=/var"
|
|
"--with-openssl-libdir=${openssl.out}/lib"
|
|
"--with-openssl-incdir=${openssl.dev}/include"
|
|
"--enable-ignore-dns-errors"
|
|
] ++ stdenv.lib.optional (libcap != null) "--enable-linuxcaps";
|
|
|
|
nativeBuildInputs = [ autoreconfHook ];
|
|
buildInputs = [ libcap openssl ];
|
|
|
|
hardeningEnable = [ "pie" ];
|
|
|
|
postInstall = ''
|
|
rm -rf $out/share/doc
|
|
'';
|
|
|
|
meta = {
|
|
homepage = http://www.ntp.org/;
|
|
description = "An implementation of the Network Time Protocol";
|
|
maintainers = [ stdenv.lib.maintainers.eelco ];
|
|
platforms = stdenv.lib.platforms.linux;
|
|
};
|
|
}
|