depot/third_party/nixpkgs/pkgs/tools/security/onlykey-agent/default.nix

75 lines
2 KiB
Nix
Raw Normal View History

{ lib
, python3Packages
, fetchPypi
, onlykey-cli
}:
let
bech32 = with python3Packages; buildPythonPackage rec {
pname = "bech32";
version = "1.2.0";
src = fetchPypi {
inherit pname version;
sha256 = "sha256-fW24IUYDvXhx/PpsCCbvaLhbCr2Q+iHChanF4h0r2Jk=";
};
};
# onlykey requires a patched version of libagent
lib-agent = with python3Packages; libagent.overridePythonAttrs (oa: rec{
version = "1.0.6";
src = fetchPypi {
inherit version;
pname = "lib-agent";
sha256 = "sha256-IrJizIHDIPHo4tVduUat7u31zHo3Nt8gcMOyUUqkNu0=";
};
propagatedBuildInputs = oa.propagatedBuildInputs or [ ] ++ [
bech32
cryptography
docutils
pycryptodome
pynacl
wheel
];
# turn off testing because I can't get it to work
doCheck = false;
pythonImportsCheck = [ "libagent" ];
meta = oa.meta // {
description = "Using OnlyKey as hardware SSH and GPG agent";
homepage = "https://github.com/trustcrypto/onlykey-agent/tree/ledger";
maintainers = with lib.maintainers; [ kalbasit ];
};
});
in
python3Packages.buildPythonApplication rec {
pname = "onlykey-agent";
version = "1.1.15";
src = fetchPypi {
inherit pname version;
sha256 = "sha256-SbGb7CjcD7cFPvASZtip56B4uxRiFKZBvbsf6sb8fds=";
};
propagatedBuildInputs = with python3Packages; [ lib-agent onlykey-cli setuptools ];
# move the python library into the sitePackages.
postInstall = ''
mkdir $out/${python3Packages.python.sitePackages}/onlykey_agent
mv $out/bin/onlykey_agent.py $out/${python3Packages.python.sitePackages}/onlykey_agent/__init__.py
chmod a-x $out/${python3Packages.python.sitePackages}/onlykey_agent/__init__.py
'';
# no tests
doCheck = false;
pythonImportsCheck = [ "onlykey_agent" ];
meta = with lib; {
description = "Middleware that lets you use OnlyKey as a hardware SSH/GPG device";
homepage = "https://github.com/trustcrypto/onlykey-agent";
license = licenses.lgpl3Only;
maintainers = with maintainers; [ kalbasit ];
};
}