2013-05-08 14:35:34 +00:00
|
|
|
|
;;; GNU Guix --- Functional package management for GNU
|
|
|
|
|
;;; Copyright © 2013 Andreas Enge <andreas@enge.fr>
|
2016-11-22 21:40:49 +00:00
|
|
|
|
;;; Copyright © 2016 Ludovic Courtès <ludo@gnu.org>
|
2021-03-27 14:20:50 +00:00
|
|
|
|
;;; Copyright © 2019–2021 Tobias Geerinckx-Rice <me@tobias.gr>
|
2013-05-08 14:35:34 +00:00
|
|
|
|
;;;
|
|
|
|
|
;;; This file is part of GNU Guix.
|
|
|
|
|
;;;
|
|
|
|
|
;;; GNU Guix is free software; you can redistribute it and/or modify it
|
|
|
|
|
;;; under the terms of the GNU General Public License as published by
|
|
|
|
|
;;; the Free Software Foundation; either version 3 of the License, or (at
|
|
|
|
|
;;; your option) any later version.
|
|
|
|
|
;;;
|
|
|
|
|
;;; GNU Guix is distributed in the hope that it will be useful, but
|
|
|
|
|
;;; WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
;;; GNU General Public License for more details.
|
|
|
|
|
;;;
|
|
|
|
|
;;; You should have received a copy of the GNU General Public License
|
|
|
|
|
;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
|
|
|
|
|
(define-module (gnu packages cryptsetup)
|
Use #:prefix instead of #:renamer with 'symbol-prefix-proc'.
* gnu/packages/abiword.scm, gnu/packages/admin.scm, gnu/packages/aidc.scm,
gnu/packages/backup.scm, gnu/packages/bittorrent.scm,
gnu/packages/boost.scm, gnu/packages/compression.scm,
gnu/packages/cryptsetup.scm, gnu/packages/curl.scm,
gnu/packages/cyrus-sasl.scm, gnu/packages/dc.scm, gnu/packages/emacs.scm,
gnu/packages/fonts.scm, gnu/packages/fontutils.scm, gnu/packages/geeqie.scm,
gnu/packages/ghostscript.scm, gnu/packages/gimp.scm,
gnu/packages/gkrellm.scm, gnu/packages/gl.scm, gnu/packages/glib.scm,
gnu/packages/gnome.scm, gnu/packages/gnunet.scm, gnu/packages/gnupg.scm,
gnu/packages/gnutls.scm, gnu/packages/gnuzilla.scm, gnu/packages/gsasl.scm,
gnu/packages/gtk.scm, gnu/packages/gv.scm, gnu/packages/image.scm,
gnu/packages/indent.scm, gnu/packages/inkscape.scm,
gnu/packages/lesstif.scm, gnu/packages/links.scm, gnu/packages/lisp.scm,
gnu/packages/lsh.scm, gnu/packages/lsof.scm, gnu/packages/maths.scm,
gnu/packages/mp3.scm, gnu/packages/openssl.scm, gnu/packages/ots.scm,
gnu/packages/pciutils.scm, gnu/packages/pcre.scm, gnu/packages/pdf.scm,
gnu/packages/pulseaudio.scm, gnu/packages/python.scm, gnu/packages/slim.scm,
gnu/packages/ssh.scm, gnu/packages/texlive.scm, gnu/packages/vim.scm,
gnu/packages/vpn.scm, gnu/packages/web.scm, gnu/packages/wv.scm,
gnu/packages/xiph.scm, gnu/packages/xml.scm, gnu/packages/xorg.scm,
gnu/packages/yasm.scm, gnu/packages/zip.scm,
guix/build/cmake-build-system.scm, guix/build/perl-build-system.scm,
guix/build/python-build-system.scm, guix/download.scm: Replaces uses of
#:renamer and 'symbol-prefix-proc' with #:prefix.
2014-09-23 20:44:22 +00:00
|
|
|
|
#:use-module ((guix licenses) #:prefix license:)
|
2013-05-08 14:35:34 +00:00
|
|
|
|
#:use-module (guix packages)
|
|
|
|
|
#:use-module (guix download)
|
|
|
|
|
#:use-module (guix build-system gnu)
|
2016-10-03 05:44:27 +00:00
|
|
|
|
#:use-module (guix utils)
|
2013-05-08 14:35:34 +00:00
|
|
|
|
#:use-module (gnu packages)
|
|
|
|
|
#:use-module (gnu packages gnupg)
|
2019-10-04 10:31:30 +00:00
|
|
|
|
#:use-module (gnu packages password-utils)
|
|
|
|
|
#:use-module (gnu packages pkg-config)
|
2013-05-08 14:35:34 +00:00
|
|
|
|
#:use-module (gnu packages popt)
|
2019-10-04 10:31:30 +00:00
|
|
|
|
#:use-module (gnu packages linux)
|
|
|
|
|
#:use-module (gnu packages web))
|
2013-05-08 14:35:34 +00:00
|
|
|
|
|
|
|
|
|
(define-public cryptsetup
|
|
|
|
|
(package
|
|
|
|
|
(name "cryptsetup")
|
2021-05-30 12:32:22 +00:00
|
|
|
|
(version "2.3.6")
|
2013-05-08 14:35:34 +00:00
|
|
|
|
(source (origin
|
|
|
|
|
(method url-fetch)
|
2016-10-03 05:44:27 +00:00
|
|
|
|
(uri (string-append "mirror://kernel.org/linux/utils/cryptsetup/v"
|
|
|
|
|
(version-major+minor version)
|
2019-10-04 10:28:35 +00:00
|
|
|
|
"/cryptsetup-" version ".tar.xz"))
|
2013-05-08 14:35:34 +00:00
|
|
|
|
(sha256
|
|
|
|
|
(base32
|
2021-05-30 12:32:22 +00:00
|
|
|
|
"0pv34l6230ba1i5p0z6zmvfqvv3as0cwn731h2qw4xm53sibg5mj"))))
|
2013-05-08 14:35:34 +00:00
|
|
|
|
(build-system gnu-build-system)
|
2019-10-04 10:31:30 +00:00
|
|
|
|
(arguments
|
|
|
|
|
`(#:configure-flags
|
|
|
|
|
(list
|
|
|
|
|
;; Argon2 is always enabled, this just selects the (faster) full version.
|
|
|
|
|
"--enable-libargon2"
|
|
|
|
|
;; The default is OpenSSL which provides better PBKDF performance.
|
|
|
|
|
"--with-crypto_backend=gcrypt"
|
2021-06-16 09:02:39 +00:00
|
|
|
|
;; GRUB 2.06 supports LUKS2, but does it reliably support all set-ups…?
|
2019-10-04 10:31:30 +00:00
|
|
|
|
"--with-default-luks-format=LUKS1")))
|
gnu: Move numerous "inputs" which should be "native-inputs".
* gnu/packages/avahi.scm, gnu/packages/cdrom.scm, gnu/packages/cryptsetup.scm,
gnu/packages/curl.scm, gnu/packages/emacs.scm, gnu/packages/fontutils.scm,
gnu/packages/gdb.scm, gnu/packages/geeqie.scm, gnu/packages/ghostscript.scm,
gnu/packages/glib.scm, gnu/packages/gnome.scm, gnu/packages/gnunet.scm,
gnu/packages/gnupg.scm, gnu/packages/gnuzilla.scm, gnu/packages/graphviz.scm,
gnu/packages/groff.scm, gnu/packages/gstreamer.scm, gnu/packages/gtk.scm,
gnu/packages/gv.scm, gnu/packages/imagemagick.scm, gnu/packages/irssi.scm,
gnu/packages/kde.scm, gnu/packages/libcanberra.scm, gnu/packages/libtiff.scm,
gnu/packages/linux.scm, gnu/packages/lvm.scm, gnu/packages/mp3.scm,
gnu/packages/netpbm.scm, gnu/packages/parted.scm, gnu/packages/pdf.scm,
gnu/packages/pulseaudio.scm, gnu/packages/qemu.scm, gnu/packages/qt.scm,
gnu/packages/ratpoison.scm, gnu/packages/rdf.scm, gnu/packages/slim.scm,
gnu/packages/texlive.scm, gnu/packages/version-control.scm,
gnu/packages/video.scm, gnu/packages/vpn.scm, gnu/packages/w3m.scm,
gnu/packages/xml.scm, gnu/packages/xnee.scm, gnu/packages/xorg.scm,
gnu/packages/zip.scm: Move some build-time dependencies from `inputs' to
`native-inputs'.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2013-12-15 11:01:56 +00:00
|
|
|
|
(native-inputs
|
2021-12-13 16:18:24 +00:00
|
|
|
|
(list pkg-config))
|
2019-10-04 10:31:30 +00:00
|
|
|
|
(inputs
|
2021-12-13 16:18:24 +00:00
|
|
|
|
(list argon2
|
|
|
|
|
json-c
|
|
|
|
|
libgcrypt
|
|
|
|
|
lvm2 ; device-mapper
|
|
|
|
|
popt
|
|
|
|
|
`(,util-linux "lib"))) ;libuuid
|
2021-05-30 12:39:15 +00:00
|
|
|
|
(synopsis "Set up transparent encryption of block devices using dm-crypt")
|
2013-05-08 14:35:34 +00:00
|
|
|
|
(description
|
2021-05-30 12:39:15 +00:00
|
|
|
|
"Cryptsetup is a utility used to conveniently set up disk encryption based
|
|
|
|
|
on the @code{dm-crypt} Linux kernel module. It is most often used to manage
|
|
|
|
|
LUKS volumes but also supports plain dm-crypt volumes and loop-AES, TrueCrypt
|
|
|
|
|
(including VeraCrypt extension), and BitLocker formats.
|
|
|
|
|
|
|
|
|
|
@acronym{LUKS, Linux Unified Key Setup} is the standard for hard disk encryption
|
|
|
|
|
with the kernel Linux. It provides a standard on-disk-format compatible amongst
|
|
|
|
|
distributions as well as secure management of multiple user passwords. LUKS
|
|
|
|
|
stores all necessary setup information in the partition header to facilitate
|
|
|
|
|
data transport and migration.
|
|
|
|
|
|
|
|
|
|
The package also includes the @command{veritysetup} and @command{integritysetup}
|
|
|
|
|
utilities to conveniently configure the @code{dm-verity} and @code{dm-integrity}
|
|
|
|
|
block integrity kernel modules.")
|
2013-05-08 14:35:34 +00:00
|
|
|
|
(license license:gpl2)
|
2016-10-03 05:44:27 +00:00
|
|
|
|
(home-page "https://gitlab.com/cryptsetup/cryptsetup")))
|
2016-11-22 21:40:49 +00:00
|
|
|
|
|
|
|
|
|
(define (static-library library)
|
|
|
|
|
"Return a variant of package LIBRARY that provides static libraries ('.a'
|
|
|
|
|
files). This assumes LIBRARY uses Libtool."
|
|
|
|
|
(package
|
|
|
|
|
(inherit library)
|
|
|
|
|
(name (string-append (package-name library) "-static"))
|
|
|
|
|
(arguments
|
|
|
|
|
(substitute-keyword-arguments (package-arguments library)
|
|
|
|
|
((#:configure-flags flags ''())
|
|
|
|
|
`(append '("--disable-shared" "--enable-static")
|
|
|
|
|
,flags))))))
|
|
|
|
|
|
|
|
|
|
(define-public cryptsetup-static
|
|
|
|
|
;; Stripped-down statically-linked 'cryptsetup' command for use in initrds.
|
|
|
|
|
(package
|
|
|
|
|
(inherit cryptsetup)
|
|
|
|
|
(name "cryptsetup-static")
|
|
|
|
|
(arguments
|
|
|
|
|
'(#:configure-flags '("--disable-shared"
|
|
|
|
|
"--enable-static-cryptsetup"
|
|
|
|
|
|
2019-10-04 10:30:47 +00:00
|
|
|
|
"--disable-veritysetup"
|
2019-10-04 10:31:30 +00:00
|
|
|
|
"--disable-cryptsetup-reencrypt"
|
|
|
|
|
"--disable-integritysetup"
|
|
|
|
|
|
|
|
|
|
;; The default is OpenSSL which provides better PBKDF performance.
|
|
|
|
|
"--with-crypto_backend=gcrypt"
|
2019-10-04 10:30:47 +00:00
|
|
|
|
|
2019-10-04 10:31:30 +00:00
|
|
|
|
"--disable-blkid"
|
2017-05-11 21:46:46 +00:00
|
|
|
|
;; 'libdevmapper.a' pulls in libpthread, libudev and libm.
|
|
|
|
|
"LIBS=-ludev -pthread -lm")
|
2016-11-22 21:40:49 +00:00
|
|
|
|
|
|
|
|
|
#:allowed-references () ;this should be self-contained
|
|
|
|
|
|
|
|
|
|
#:modules ((ice-9 ftw)
|
|
|
|
|
(ice-9 match)
|
|
|
|
|
(guix build utils)
|
|
|
|
|
(guix build gnu-build-system))
|
|
|
|
|
|
|
|
|
|
#:phases (modify-phases %standard-phases
|
|
|
|
|
(add-after 'install 'remove-cruft
|
|
|
|
|
(lambda* (#:key outputs #:allow-other-keys)
|
2019-10-04 10:30:47 +00:00
|
|
|
|
;; Remove everything except the 'cryptsetup' command.
|
2016-11-22 21:40:49 +00:00
|
|
|
|
(let ((out (assoc-ref outputs "out")))
|
|
|
|
|
(with-directory-excursion out
|
|
|
|
|
(let ((dirs (scandir "."
|
|
|
|
|
(match-lambda
|
|
|
|
|
((or "." "..") #f)
|
|
|
|
|
(_ #t)))))
|
|
|
|
|
(for-each delete-file-recursively
|
|
|
|
|
(delete "sbin" dirs))
|
|
|
|
|
(for-each (lambda (file)
|
|
|
|
|
(rename-file (string-append file
|
|
|
|
|
".static")
|
|
|
|
|
file)
|
|
|
|
|
(remove-store-references file))
|
2019-10-04 10:30:47 +00:00
|
|
|
|
'("sbin/cryptsetup"))
|
2016-11-22 21:40:49 +00:00
|
|
|
|
#t))))))))
|
|
|
|
|
(inputs
|
|
|
|
|
(let ((libgcrypt-static
|
|
|
|
|
(package
|
|
|
|
|
(inherit (static-library libgcrypt))
|
|
|
|
|
(propagated-inputs
|
|
|
|
|
`(("libgpg-error-host" ,(static-library libgpg-error)))))))
|
2020-05-14 20:54:27 +00:00
|
|
|
|
`(("json-c" ,json-c-0.13)
|
2019-10-04 10:31:30 +00:00
|
|
|
|
("libgcrypt" ,libgcrypt-static)
|
2016-11-22 21:40:49 +00:00
|
|
|
|
("lvm2" ,lvm2-static)
|
|
|
|
|
("util-linux" ,util-linux "static")
|
gnu: util-linux: Move libraries to separate output.
Fixes <https://bugs.gnu.org/37732>.
Reported by Diego Nicola Barbato <dnbarbato@posteo.de>.
* gnu/packages/linux.scm (util-linux)[outputs]: Add "lib".
[arguments]: Update #:configure-flags and the "move-static-libraries" phase
accordingly. Add phases "patch-build-scripts" and "adjust-pkg-config-files".
(e2fsprogs, psm, mtd-utils, f2fs-tools, f2fs-tools-1.7, eudev,
xfsprogs)[inputs]: Change to the "lib" output of UTIL-LINUX.
(btrfs-progs)[inputs]: Remove duplicate UTIL-LINUX inputs and change to use
the "lib" output.
* gnu/packages/admin.scm (pam-mount)[inputs]: Add UTIL-LINUX:LIB.
(testdisk)[inputs]: Change to the "lib" output of UTIL-LINUX.
* gnu/packages/android.scm (abootimg)[inputs]: Likewise.
* gnu/packages/audio.scm (jack-1)[propagated-inputs]: Likewise.
* gnu/packages/bootloaders.scm (syslinux, vboot-utils)[inputs]: Likewise.
* gnu/packages/chez.scm (chez-scheme)[inputs]: Likewise.
* gnu/packages/cryptsetup.scm (cryptsetup, cryptsetup-static)[inputs]: Likewise.
* gnu/packages/databases.scm (postgresql, 4store)[inputs]: Likewise.
* gnu/packages/disk.scm (ndctl, gptfdisk, fdisk, gparted, rmlint,
volume-key)[inputs]: Likewise.
(parted)[inputs]: Likewise.
[native-inputs]: Add UTIL-LINUX.
* gnu/packages/efi.scm (sbsigntools)[inputs]: Add UTIL-LINUX:LIB.
* gnu/packages/engineering.scm (lib3mf)[inputs]: Change to the "lib" output of
UTIL-LINUX.
* gnu/packages/enlightenment.scm (efl)[propagated-inputs]: Likewise.
* gnu/packages/file-systems.scm (glusterfs, jfsutils, zfs)[inputs]: Likewise.
* gnu/packages/firmware.scm (ovmf)[inputs]: Likewise.
* gnu/packages/fontutils.scm (fontconfig)[propagated-inputs]: Likewise.
* gnu/packages/freedesktop.scm (localed)[inputs]: Likewise.
* gnu/packages/glib.scm (glib, appstream-glib)[propagated-inputs]: Likewise.
* gnu/packages/gnome.scm (tracker, gnome-terminal)[inputs]: Likewise.
* gnu/packages/jupyter.scm (xeus)[inputs]: Likewise.
* gnu/packages/kde.scm (kpmcore)[inputs]: Likewise.
* gnu/packages/kodi.scm (crossguid)[inputs]: Likewise.
* gnu/packages/lighting.scm (ola)[inputs]: Likewise.
* gnu/packages/music.scm (libgig)[inputs]: Likewise.
* gnu/packages/nfs.scm (nfs-utils)[inputs]: Likewise.
* gnu/packages/opencog.scm (opencog)[inputs]: Likewise.
* gnu/packages/package-management.scm (msitools)[inputs]: Change to the "lib"
output of UTIL-LINUX.
* gnu/packages/password-utils.scm (pwsafe)[inputs]: Likewise.
* gnu/packages/telephony.scm (pjproject)[propagated-inputs]: Likewise.
* gnu/packages/rdf.scm (rasqal)[inputs]: Likewise.
* gnu/packages/search.scm (xapian)[inputs]: Likewise.
* gnu/packages/sssd.scm (sssd)[native-inputs]: Likewise.
* gnu/packages/storage.scm (ceph)[inputs]: Add UTIL-LINUX:LIB.
* gnu/packages/task-management.scm (taskwarrior)[inputs]: Change to the "lib"
output of UTIL-LINUX.
* gnu/packages/virtualization.scm (libvirt, xen)[inputs]: Likewise.
* gnu/packages/xorg.scm (libsm)[inputs]: Likewise.
2020-01-14 23:24:28 +00:00
|
|
|
|
("util-linux" ,util-linux "lib")
|
2016-11-22 21:40:49 +00:00
|
|
|
|
("popt" ,popt))))
|
|
|
|
|
(synopsis "Hard disk encryption tool (statically linked)")))
|