8e40703f6c
CVE-2014-0118, CVE-2014-0231, CVE-2014-0226, CVE-2013-5704.
64 lines
1.9 KiB
Nix
64 lines
1.9 KiB
Nix
{ stdenv, fetchurl, openssl, perl, zlib
|
||
, sslSupport, proxySupport ? true
|
||
, apr, aprutil, pcre
|
||
, ldapSupport ? true, openldap
|
||
, # Multi-processing module to use. This is built into the server and
|
||
# cannot be selected at runtime.
|
||
mpm ? "prefork"
|
||
}:
|
||
|
||
assert sslSupport -> openssl != null;
|
||
assert ldapSupport -> aprutil.ldapSupport && openldap != null;
|
||
assert mpm == "prefork" || mpm == "worker" || mpm == "event";
|
||
|
||
stdenv.mkDerivation rec {
|
||
version = "2.2.29";
|
||
name = "apache-httpd-${version}";
|
||
|
||
src = fetchurl {
|
||
url = "mirror://apache/httpd/httpd-${version}.tar.bz2";
|
||
sha1 = "1d6a8fbc1391d358cc6fe430edc16222b97258d5";
|
||
};
|
||
|
||
buildInputs = [perl apr aprutil pcre] ++
|
||
stdenv.lib.optional sslSupport openssl;
|
||
|
||
# An apr-util header file includes an apr header file
|
||
# through #include "" (quotes)
|
||
# passing simply CFLAGS did not help, then I go by NIX_CFLAGS_COMPILE
|
||
NIX_CFLAGS_COMPILE = "-iquote ${apr}/include/apr-1";
|
||
|
||
# Required for ‘pthread_cancel’.
|
||
NIX_LDFLAGS = (if stdenv.isDarwin then "" else "-lgcc_s");
|
||
|
||
configureFlags = ''
|
||
--with-z=${zlib}
|
||
--with-pcre=${pcre}
|
||
--enable-mods-shared=all
|
||
--enable-authn-alias
|
||
${if proxySupport then "--enable-proxy" else ""}
|
||
${if sslSupport then "--enable-ssl --with-ssl=${openssl}" else ""}
|
||
${if ldapSupport then "--enable-ldap --enable-authnz-ldap" else ""}
|
||
--with-mpm=${mpm}
|
||
'';
|
||
|
||
enableParallelBuilding = true;
|
||
|
||
postInstall = ''
|
||
echo "removing manual"
|
||
rm -rf $out/manual
|
||
'';
|
||
|
||
passthru = {
|
||
inherit apr aprutil sslSupport proxySupport;
|
||
};
|
||
|
||
meta = {
|
||
description = "Apache HTTPD, the world's most popular web server";
|
||
branch = "2.2";
|
||
homepage = http://httpd.apache.org/;
|
||
license = stdenv.lib.licenses.asl20;
|
||
platforms = stdenv.lib.platforms.linux ++ stdenv.lib.platforms.darwin;
|
||
maintainers = with stdenv.lib.maintainers; [ eelco simons lovek323 ];
|
||
};
|
||
}
|