nixpkgs/pkgs/os-specific/linux/util-linux/default.nix

{ lib, stdenv, fetchurl, pkgconfig, zlib, libseccomp, fetchpatch, autoreconfHook, ncurses ? null, perl ? null, pam, systemd, minimal ? false }:

stdenv.mkDerivation rec {
  name = "util-linux-${version}";
  version = lib.concatStringsSep "." ([ majorVersion ]
    ++ lib.optional (patchVersion != "") patchVersion);
  majorVersion = "2.28";
  patchVersion = "1";

  src = fetchurl {
    url = "mirror://kernel/linux/utils/util-linux/v${majorVersion}/${name}.tar.xz";
    sha256 = "03xnaw3c7pavxvvh1vnimcr44hlhhf25whawiyv8dxsflfj4xkiy";
  };

  patches = [
    ./rtcwake-search-PATH-for-shutdown.patch
    (fetchpatch {
      name = "CVE-2016-2779.diff";
      url = https://github.com/karelzak/util-linux/commit/8e4925016875c6a4f2ab4f833ba66f0fc57396a2.patch;
      sha256 = "0kmigkq4s1b1ijrq8vcg2a5cw4qnm065m7cb1jn1q1f4x99ycy60";
  })];

  outputs = [ "bin" "dev" "out" "man" ];

  #FIXME: make it also work on non-nixos?
  postPatch = ''
    # Substituting store paths would create a circular dependency on systemd
    substituteInPlace include/pathnames.h \
      --replace "/bin/login" "/run/current-system/sw/bin/login" \
      --replace "/sbin/shutdown" "/run/current-system/sw/bin/shutdown"
  '';

  crossAttrs = {
    # Work around use of `AC_RUN_IFELSE'.
    preConfigure = "export scanf_cv_type_modifier=ms";
  };

  # !!! It would be better to obtain the path to the mount helpers
  # (/sbin/mount.*) through an environment variable, but that's
  # somewhat risky because we have to consider that mount can setuid
  # root...
  configureFlags = ''
    --enable-write
    --enable-last
    --enable-mesg
    --disable-use-tty-group
    --enable-fs-paths-default=/var/setuid-wrappers:/var/run/current-system/sw/bin:/sbin
    ${if ncurses == null then "--without-ncurses" else ""}
    ${if systemd == null then "" else ''
      --with-systemd
      --with-systemdsystemunitdir=$out/lib/systemd/system/
    ''}
  '';

  makeFlags = "usrbin_execdir=$(bin)/bin usrsbin_execdir=$(bin)/sbin";

  # autoreconfHook is required for CVE-2016-2779
  nativeBuildInputs = [ pkgconfig autoreconfHook ];
  # libseccomp is required for CVE-2016-2779
  buildInputs =
    [ zlib pam libseccomp ]
    ++ lib.optional (ncurses != null) ncurses
    ++ lib.optional (systemd != null) systemd
    ++ lib.optional (perl != null) perl;

  postInstall = ''
    rm "$bin/bin/su" # su should be supplied by the su package (shadow)
  '' + lib.optionalString minimal ''
    rm -rf $out/share/{locale,doc,bash-completion}
  '';

  enableParallelBuilding = true;

  meta = with lib; {
    homepage = https://www.kernel.org/pub/linux/utils/util-linux/;
    description = "A set of system utilities for Linux";
    license = licenses.gpl2; # also contains parts under more permissive licenses
    platforms = platforms.linux;
    priority = 6; # lower priority than coreutils ("kill") and shadow ("login" etc.) packages
  };
}
util-linux: workaround CVE-2016-2779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2779 2016-10-02 23:13:24 +02:00			`{ lib, stdenv, fetchurl, pkgconfig, zlib, libseccomp, fetchpatch, autoreconfHook, ncurses ? null, perl ? null, pam, systemd, minimal ? false }:`
* Added util-linux-ng, a fork of util-linux (which seems unmaintained). svn path=/nixpkgs/trunk/; revision=13712 2009-01-06 10:28:45 +01:00
* util-linux-ng: updated to 2.16. Don't build a separate mount anymore since the build process was very hacky. Instead mount/umount looks for mount helpers in /var/run/current-system/sw/sbin. It would be better to use an environment variable, but that would be risky if mount is setuid root. * e2fsprogs: updated to 1.41.8. Don't build libuuid, libblkid etc. anymore, since they have been moved to util-linux-ng. * nfs-utils: updated to 1.2.0. svn path=/nixpkgs/trunk/; revision=16682 2009-08-11 22:57:29 +02:00			`stdenv.mkDerivation rec {`
util-linux: 2.27.1 -> 2.28 2016-04-28 05:19:02 +02:00			`name = "util-linux-${version}";`
utillinuxMinimal: Make more minimal This removes locales, bash completion and crap like that. This cuts 6.5 MiB from the NixOS system closure (which unfortunately contains two copies of util-linux, because of the need to break a dependency cycle with systemd). 2016-09-05 12:13:31 +02:00			`version = lib.concatStringsSep "." ([ majorVersion ]`
			`++ lib.optional (patchVersion != "") patchVersion);`
utillinux: 2.28 -> 2.28.1 2016-08-25 01:02:50 +02:00			`majorVersion = "2.28";`
			`patchVersion = "1";`
* Added util-linux-ng, a fork of util-linux (which seems unmaintained). svn path=/nixpkgs/trunk/; revision=13712 2009-01-06 10:28:45 +01:00
			`src = fetchurl {`
utillinux: 2.28 -> 2.28.1 2016-08-25 01:02:50 +02:00			`url = "mirror://kernel/linux/utils/util-linux/v${majorVersion}/${name}.tar.xz";`
			`sha256 = "03xnaw3c7pavxvvh1vnimcr44hlhhf25whawiyv8dxsflfj4xkiy";`
* Added util-linux-ng, a fork of util-linux (which seems unmaintained). svn path=/nixpkgs/trunk/; revision=13712 2009-01-06 10:28:45 +01:00			`};`

util-linux: 2.26.1 -> 2.26.2 2015-05-28 11:19:46 +02:00			`patches = [`
			`./rtcwake-search-PATH-for-shutdown.patch`
util-linux: workaround CVE-2016-2779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2779 2016-10-02 23:13:24 +02:00			`(fetchpatch {`
util-linux: fixup patch hash from grandparent merge And name the file, too. 2016-10-03 23:04:39 +02:00			`name = "CVE-2016-2779.diff";`
util-linux: workaround CVE-2016-2779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2779 2016-10-02 23:13:24 +02:00			`url = https://github.com/karelzak/util-linux/commit/8e4925016875c6a4f2ab4f833ba66f0fc57396a2.patch;`
util-linux: fixup patch hash from grandparent merge And name the file, too. 2016-10-03 23:04:39 +02:00			`sha256 = "0kmigkq4s1b1ijrq8vcg2a5cw4qnm065m7cb1jn1q1f4x99ycy60";`
util-linux: workaround CVE-2016-2779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2779 2016-10-02 23:13:24 +02:00			`})];`
util-linux, e2fsprogs: fixup multiple outputs Also revert back to using util-linux as the default libuuid provider, and make e2fsprogs use shared libs from util-linux. 2015-04-19 13:29:53 +02:00
util-linux: Split 'dev' 2016-09-09 00:34:09 +02:00			`outputs = [ "bin" "dev" "out" "man" ];`
Split some GTK/X11-related packages The closure of the Pan newsreader is now down from 344 MiB to 195 MiB. 2012-08-27 04:53:19 +02:00
Re-Revert merge #5505: util-linux: use /run/current-system/sw/bin/* This reverts commit 6222093eecf1f314f82deafa3162c2ad923e66d3. 2014-12-30 10:53:41 +01:00			`#FIXME: make it also work on non-nixos?`
			`postPatch = ''`
			`# Substituting store paths would create a circular dependency on systemd`
			`substituteInPlace include/pathnames.h \`
			`--replace "/bin/login" "/run/current-system/sw/bin/login" \`
			`--replace "/sbin/shutdown" "/run/current-system/sw/bin/shutdown"`
			`'';`

util-linux: Allow cross-compilation. svn path=/nixpkgs/trunk/; revision=32851 2012-03-07 14:45:06 +01:00			`crossAttrs = {`
			# Work around use of `AC_RUN_IFELSE'.
			`preConfigure = "export scanf_cv_type_modifier=ms";`
			`};`

The way how to build util-linux-ng for 'mount' to work on nixos changed. I make it work so it finds mount.nfs and similar tools in nixos, and now it may even work in non-nixos, as it is going to try /sbin after /var/run/current-system/sw/sbin. svn path=/nixpkgs/branches/stdenv-updates/; revision=24621 2010-11-08 23:40:05 +01:00			`# !!! It would be better to obtain the path to the mount helpers`
			`# (/sbin/mount.*) through an environment variable, but that's`
			`# somewhat risky because we have to consider that mount can setuid`
			`# root...`
* Added util-linux-ng, a fork of util-linux (which seems unmaintained). svn path=/nixpkgs/trunk/; revision=13712 2009-01-06 10:28:45 +01:00			`configureFlags = ''`
Making utillinux build also 'write'. (Thank you, niksnut) svn path=/nixpkgs/trunk/; revision=21219 2010-04-21 22:47:15 +02:00			`--enable-write`
util-linux: Update to 2.22.2 This update is essential because coreutils no longer provides ‘su’. Also enable ‘last’ and some other commands so that we can get rid of sysvtools. 2013-01-28 16:55:12 +01:00			`--enable-last`
			`--enable-mesg`
			`--disable-use-tty-group`
Fix references to current-system/sw/sbin 2015-04-01 22:57:06 +02:00			`--enable-fs-paths-default=/var/setuid-wrappers:/var/run/current-system/sw/bin:/sbin`
* Added util-linux-ng, a fork of util-linux (which seems unmaintained). svn path=/nixpkgs/trunk/; revision=13712 2009-01-06 10:28:45 +01:00			`${if ncurses == null then "--without-ncurses" else ""}`
util-linux: create -Minimal and utillinux (full) Close #12952. Now the full version is used by default, supporting systemd and curses. 2016-02-12 14:26:46 +01:00			`${if systemd == null then "" else ''`
			`--with-systemd`
			`--with-systemdsystemunitdir=$out/lib/systemd/system/`
			`''}`
* Added util-linux-ng, a fork of util-linux (which seems unmaintained). svn path=/nixpkgs/trunk/; revision=13712 2009-01-06 10:28:45 +01:00			`'';`

util-linux: Install all binaries in $bin 2013-06-12 17:12:30 +02:00			`makeFlags = "usrbin_execdir=$(bin)/bin usrsbin_execdir=$(bin)/sbin";`

util-linux: workaround CVE-2016-2779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2779 2016-10-02 23:13:24 +02:00			`# autoreconfHook is required for CVE-2016-2779`
			`nativeBuildInputs = [ pkgconfig autoreconfHook ];`
			`# libseccomp is required for CVE-2016-2779`
util-linux: Update to 2.22.2 This update is essential because coreutils no longer provides ‘su’. Also enable ‘last’ and some other commands so that we can get rid of sysvtools. 2013-01-28 16:55:12 +01:00			`buildInputs =`
util-linux: workaround CVE-2016-2779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2779 2016-10-02 23:13:24 +02:00			`[ zlib pam libseccomp ]`
utillinuxMinimal: Make more minimal This removes locales, bash completion and crap like that. This cuts 6.5 MiB from the NixOS system closure (which unfortunately contains two copies of util-linux, because of the need to break a dependency cycle with systemd). 2016-09-05 12:13:31 +02:00			`++ lib.optional (ncurses != null) ncurses`
systemd: Separate lib output This moves libsystemd.so and libudev.so into systemd.lib, and gets rid of libudev (which just contained a copy of libudev.so and the udev headers). It thus reduces the closure size of all packages that (indirectly) depend on libsystemd, of which there are quite a few (for instance, PulseAudio and dbus). For example, it reduces the closure of Blender from 430.8 to 400.8 MiB. 2016-09-05 18:59:00 +02:00			`++ lib.optional (systemd != null) systemd`
utillinuxMinimal: Make more minimal This removes locales, bash completion and crap like that. This cuts 6.5 MiB from the NixOS system closure (which unfortunately contains two copies of util-linux, because of the need to break a dependency cycle with systemd). 2016-09-05 12:13:31 +02:00			`++ lib.optional (perl != null) perl;`
util-linux: Update to 2.22.2 This update is essential because coreutils no longer provides ‘su’. Also enable ‘last’ and some other commands so that we can get rid of sysvtools. 2013-01-28 16:55:12 +01:00
su: Make the su package a provider of only the su binary Additionally, provide su with the base system and remove su from the util-linux package as it is now provided by shadow. 2014-04-05 20:41:23 +02:00			`postInstall = ''`
WIP: getting better 2014-08-30 19:11:52 +02:00			`rm "$bin/bin/su" # su should be supplied by the su package (shadow)`
utillinuxMinimal: Make more minimal This removes locales, bash completion and crap like that. This cuts 6.5 MiB from the NixOS system closure (which unfortunately contains two copies of util-linux, because of the need to break a dependency cycle with systemd). 2016-09-05 12:13:31 +02:00			`'' + lib.optionalString minimal ''`
			`rm -rf $out/share/{locale,doc,bash-completion}`
su: Make the su package a provider of only the su binary Additionally, provide su with the base system and remove su from the util-linux package as it is now provided by shadow. 2014-04-05 20:41:23 +02:00			`'';`

util-linux: Update to 2.22.2 This update is essential because coreutils no longer provides ‘su’. Also enable ‘last’ and some other commands so that we can get rid of sysvtools. 2013-01-28 16:55:12 +01:00			`enableParallelBuilding = true;`

utillinuxMinimal: Make more minimal This removes locales, bash completion and crap like that. This cuts 6.5 MiB from the NixOS system closure (which unfortunately contains two copies of util-linux, because of the need to break a dependency cycle with systemd). 2016-09-05 12:13:31 +02:00			`meta = with lib; {`
util-linux: 2.27.1 -> 2.28 2016-04-28 05:19:02 +02:00			`homepage = https://www.kernel.org/pub/linux/utils/util-linux/;`
util-linux: Update to 2.22.2 This update is essential because coreutils no longer provides ‘su’. Also enable ‘last’ and some other commands so that we can get rid of sysvtools. 2013-01-28 16:55:12 +01:00			`description = "A set of system utilities for Linux";`
WIP: getting better 2014-08-30 19:11:52 +02:00			`license = licenses.gpl2; # also contains parts under more permissive licenses`
Merge 'staging' into closure-size - there were many easy merge conflicts - cc-wrapper needed nontrivial changes Many other problems might've been created by interaction of the branches, but stdenv and a few other packages build fine now. 2015-04-18 11:00:58 +02:00			`platforms = platforms.linux;`
buildEnv: Support package priorities like nix-env This gets rid of a bunch of collision warnings. 2015-08-25 00:37:54 +02:00			`priority = 6; # lower priority than coreutils ("kill") and shadow ("login" etc.) packages`
util-linux: Update to 2.22.2 This update is essential because coreutils no longer provides ‘su’. Also enable ‘last’ and some other commands so that we can get rid of sysvtools. 2013-01-28 16:55:12 +01:00			`};`
* Added util-linux-ng, a fork of util-linux (which seems unmaintained). svn path=/nixpkgs/trunk/; revision=13712 2009-01-06 10:28:45 +01:00			`}`