public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

chrony: 2.4.1 -> 3.0, enable seccomp

Browse Source
This commit is contained in:
Franz Pletz 2017-01-26 01:25:28 +01:00
parent 9ac6297b79
commit 1d251e268c
No known key found for this signature in database
GPG Key ID: 846FDED7792617B4
1 changed files with 8 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
pkgs/tools/networking/chrony/default.nix
View File

@ -1,25 +1,26 @@
{ stdenv, fetchurl, pkgconfig, libcap, readline, texinfo, nss, nspr }: { stdenv, fetchurl, pkgconfig, libcap, readline, texinfo, nss, nspr
, libseccomp }:
assert stdenv.isLinux -> libcap != null; assert stdenv.isLinux -> libcap != null;
stdenv.mkDerivation rec { stdenv.mkDerivation rec {
name = "chrony-${version}"; name = "chrony-${version}";
version = "2.4.1"; version = "3.0";
src = fetchurl { src = fetchurl {
url = "http://download.tuxfamily.org/chrony/${name}.tar.gz"; url = "http://download.tuxfamily.org/chrony/${name}.tar.gz";
sha256 = "1q5nxl19fdppwpxancff5dc9crgma8f24zww7ag4bd15yq79xm8g"; sha256 = "0vfdsajz2w6b7c94rxrj7fsr234jryhl2rbdlmb7h10gla8pnf50";
}; };
buildInputs = [ readline texinfo nss nspr ] ++ stdenv.lib.optional stdenv.isLinux libcap; buildInputs = [ readline texinfo nss nspr ]
++ stdenv.lib.optionals stdenv.isLinux [ libcap libseccomp ];
nativeBuildInputs = [ pkgconfig ]; nativeBuildInputs = [ pkgconfig ];
hardeningEnable = [ "pie" ]; hardeningEnable = [ "pie" ];
configureFlags = [ configureFlags = [ "--chronyvardir=$(out)/var/lib/chrony" ]
"--chronyvardir=$(out)/var/lib/chrony" ++ stdenv.lib.optional stdenv.isLinux [ "--enable-scfilter" ];
];
meta = with stdenv.lib; { meta = with stdenv.lib; {
description = "Sets your computer's clock from time servers on the Net"; description = "Sets your computer's clock from time servers on the Net";