2021-01-15 22:18:51 +00:00
|
|
|
{ lib, stdenv, fetchurl, perl, openldap, pam, db, cyrus_sasl, libcap
|
2022-03-30 09:31:56 +00:00
|
|
|
, expat, libxml2, openssl, pkg-config, systemd
|
2022-10-06 18:32:54 +00:00
|
|
|
, cppunit
|
2020-04-24 23:36:52 +00:00
|
|
|
}:
|
|
|
|
|
2024-01-02 11:29:13 +00:00
|
|
|
stdenv.mkDerivation (finalAttrs: {
|
2020-05-15 21:57:56 +00:00
|
|
|
pname = "squid";
|
2024-09-19 14:19:46 +00:00
|
|
|
version = "6.10";
|
2020-04-24 23:36:52 +00:00
|
|
|
|
|
|
|
src = fetchurl {
|
2024-07-27 06:49:29 +00:00
|
|
|
url = "http://www.squid-cache.org/Versions/v6/squid-${finalAttrs.version}.tar.xz";
|
2024-09-19 14:19:46 +00:00
|
|
|
hash = "sha256-Cwexh+cj8Edw3SW+uJrsEgMKFYaWqoiS2HyLJoU0CKc=";
|
2020-04-24 23:36:52 +00:00
|
|
|
};
|
|
|
|
|
2021-02-05 17:12:51 +00:00
|
|
|
nativeBuildInputs = [ pkg-config ];
|
2020-04-24 23:36:52 +00:00
|
|
|
buildInputs = [
|
|
|
|
perl openldap db cyrus_sasl expat libxml2 openssl
|
2024-09-26 11:04:55 +00:00
|
|
|
] ++ lib.optionals stdenv.hostPlatform.isLinux [ libcap pam systemd ];
|
2020-04-24 23:36:52 +00:00
|
|
|
|
2022-10-06 18:32:54 +00:00
|
|
|
enableParallelBuilding = true;
|
|
|
|
|
2020-04-24 23:36:52 +00:00
|
|
|
configureFlags = [
|
|
|
|
"--enable-ipv6"
|
|
|
|
"--disable-strict-error-checking"
|
|
|
|
"--disable-arch-native"
|
|
|
|
"--with-openssl"
|
|
|
|
"--enable-ssl-crtd"
|
|
|
|
"--enable-storeio=ufs,aufs,diskd,rock"
|
|
|
|
"--enable-removal-policies=lru,heap"
|
|
|
|
"--enable-delay-pools"
|
|
|
|
"--enable-x-accelerator-vary"
|
2022-03-30 09:31:56 +00:00
|
|
|
"--enable-htcp"
|
2024-09-26 11:04:55 +00:00
|
|
|
] ++ lib.optional (stdenv.hostPlatform.isLinux && !stdenv.hostPlatform.isMusl)
|
2022-03-30 09:31:56 +00:00
|
|
|
"--enable-linux-netfilter";
|
2020-04-24 23:36:52 +00:00
|
|
|
|
2022-10-06 18:32:54 +00:00
|
|
|
doCheck = true;
|
2023-02-02 18:25:31 +00:00
|
|
|
nativeCheckInputs = [ cppunit ];
|
2022-10-06 18:32:54 +00:00
|
|
|
preCheck = ''
|
|
|
|
# tests attempt to copy around "/bin/true" to make some things
|
|
|
|
# no-ops but this doesn't work if our "true" is a multi-call
|
|
|
|
# binary, so make our own fake "true" which will work when used
|
|
|
|
# this way
|
|
|
|
echo "#!$SHELL" > fake-true
|
|
|
|
chmod +x fake-true
|
|
|
|
grep -rlF '/bin/true' test-suite/ | while read -r filename ; do
|
|
|
|
substituteInPlace "$filename" \
|
|
|
|
--replace "$(type -P true)" "$(realpath fake-true)" \
|
|
|
|
--replace "/bin/true" "$(realpath fake-true)"
|
|
|
|
done
|
|
|
|
'';
|
|
|
|
|
2021-01-15 22:18:51 +00:00
|
|
|
meta = with lib; {
|
2024-06-20 14:57:18 +00:00
|
|
|
description = "Caching proxy for the Web supporting HTTP, HTTPS, FTP, and more";
|
2020-04-24 23:36:52 +00:00
|
|
|
homepage = "http://www.squid-cache.org";
|
2021-05-20 23:08:51 +00:00
|
|
|
license = licenses.gpl2Plus;
|
2020-04-24 23:36:52 +00:00
|
|
|
platforms = platforms.linux;
|
2022-08-12 12:06:08 +00:00
|
|
|
maintainers = with maintainers; [ raskin ];
|
2023-10-19 13:55:26 +00:00
|
|
|
knownVulnerabilities = [ "Squid has multiple unresolved security vulnerabilities, for more information see https://megamansec.github.io/Squid-Security-Audit/" ];
|
2020-04-24 23:36:52 +00:00
|
|
|
};
|
2024-01-02 11:29:13 +00:00
|
|
|
})
|