depot/third_party/nixpkgs/pkgs/applications/networking/testssl/default.nix
Default email 504525a148 Project import generated by Copybara.
GitOrigin-RevId: bd645e8668ec6612439a9ee7e71f7eac4099d4f6
2024-01-02 12:29:13 +01:00

49 lines
1.4 KiB
Nix

{ stdenv, fetchFromGitHub, makeWrapper, lib
, dnsutils, coreutils, openssl, nettools, util-linux, procps }:
stdenv.mkDerivation rec {
pname = "testssl.sh";
version = "3.0.8";
src = fetchFromGitHub {
owner = "drwetter";
repo = pname;
rev = "v${version}";
sha256 = "sha256-gkDtJlAC7woM2HyYDXntD1+bEuqHTEipqrn2EZjxnH8=";
};
nativeBuildInputs = [ makeWrapper ];
buildInputs = [
coreutils # for printf
dnsutils # for dig
nettools # for hostname
openssl # for openssl
procps # for ps
util-linux # for hexdump
];
postPatch = ''
substituteInPlace testssl.sh \
--replace TESTSSL_INSTALL_DIR:-\"\" TESTSSL_INSTALL_DIR:-\"$out\" \
--replace PROG_NAME=\"\$\(basename\ \"\$0\"\)\" PROG_NAME=\"testssl.sh\"
'';
installPhase = ''
install -D testssl.sh $out/bin/testssl.sh
cp -r etc $out
wrapProgram $out/bin/testssl.sh --prefix PATH ':' ${lib.makeBinPath buildInputs}
'';
meta = with lib; {
description = "CLI tool to check a server's TLS/SSL capabilities";
longDescription = ''
CLI tool which checks a server's service on any port for the support of
TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more.
'';
homepage = "https://testssl.sh/";
license = licenses.gpl2Only;
maintainers = with maintainers; [ etu ];
mainProgram = "testssl.sh";
};
}