nixpkgs/pkgs/servers/frr/default.nix

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

141 lines
3.1 KiB
Nix
Raw Normal View History

{ lib
, stdenv
, fetchFromGitHub
2022-09-21 00:25:24 +02:00
, fetchpatch
# build time
, autoreconfHook
, flex
, bison
, perl
, pkg-config
, texinfo
# runtime
, c-ares
, json_c
, libcap
, libelf
, libunwind
, libyang
, net-snmp
, openssl
, pam
, pcre2
, python3
, readline
2022-05-09 04:27:22 +02:00
, rtrlib
# tests
, nettools
, nixosTests
}:
stdenv.mkDerivation rec {
pname = "frr";
2022-09-03 12:58:53 +02:00
version = "8.3.1";
src = fetchFromGitHub {
owner = "FRRouting";
repo = pname;
rev = "${pname}-${version}";
2022-09-03 12:58:53 +02:00
hash = "sha256-+M4xTdjCp5TJh0U8ZfUmw84Y7O0TZ9mmUXhh2J/QOE0=";
};
2022-09-21 00:25:24 +02:00
patches = [
(fetchpatch {
name = "CVE-2022-37032.patch";
url = "https://github.com/FRRouting/frr/commit/ff6db1027f8f36df657ff2e5ea167773752537ed.patch";
sha256 = "sha256-b3nT6xco620hMSqlj/nTWTJCegf3ARAGaQbii4Yq6Ag=";
})
];
nativeBuildInputs = [
autoreconfHook
bison
flex
perl
pkg-config
2022-05-15 15:50:30 +02:00
python3.pkgs.sphinx
texinfo
];
buildInputs = [
c-ares
json_c
libelf
libunwind
libyang
net-snmp
openssl
pam
pcre2
python3
readline
2022-05-09 04:27:22 +02:00
rtrlib
] ++ lib.optionals stdenv.isLinux [
libcap
];
configureFlags = [
"--disable-exampledir"
"--enable-configfile-mask=0640"
2022-05-15 15:50:30 +02:00
"--enable-group=frr"
"--enable-logfile-mask=0640"
"--enable-multipath=64"
2022-05-15 15:50:30 +02:00
"--enable-snmp"
"--enable-user=frr"
"--enable-vty-group=frrvty"
"--localstatedir=/run/frr"
"--sbindir=$(out)/libexec/frr"
"--sysconfdir=/etc/frr"
2022-05-09 04:27:22 +02:00
"--enable-rpki"
];
postPatch = ''
2022-05-15 15:50:30 +02:00
substituteInPlace tools/frr-reload \
--replace /usr/lib/frr/ $out/libexec/frr/
'';
doCheck = true;
2022-05-15 15:50:30 +02:00
checkInputs = [
nettools
2022-05-15 15:50:30 +02:00
python3.pkgs.pytest
];
enableParallelBuilding = true;
meta = with lib; {
2022-05-15 15:50:30 +02:00
homepage = "https://frrouting.org/";
description = "FRR BGP/OSPF/ISIS/RIP/RIPNG routing daemon suite";
longDescription = ''
FRRouting (FRR) is a free and open source Internet routing protocol suite
for Linux and Unix platforms. It implements BGP, OSPF, RIP, IS-IS, PIM,
LDP, BFD, Babel, PBR, OpenFabric and VRRP, with alpha support for EIGRP
and NHRP.
FRRs seamless integration with native Linux/Unix IP networking stacks
makes it a general purpose routing stack applicable to a wide variety of
use cases including connecting hosts/VMs/containers to the network,
advertising network services, LAN switching and routing, Internet access
routers, and Internet peering.
FRR has its roots in the Quagga project. In fact, it was started by many
long-time Quagga developers who combined their efforts to improve on
Quaggas well-established foundation in order to create the best routing
protocol stack available. We invite you to participate in the FRRouting
community and help shape the future of networking.
Join the ranks of network architects using FRR for ISPs, SaaS
infrastructure, web 2.0 businesses, hyperscale services, and Fortune 500
private clouds.
'';
license = with licenses; [ gpl2Plus lgpl21Plus ];
maintainers = with maintainers; [ woffs ];
2022-05-15 15:50:30 +02:00
platforms = platforms.unix;
};
2022-05-15 15:50:30 +02:00
passthru.tests = { inherit (nixosTests) frr; };
}