summaryrefslogtreecommitdiffstats
path: root/krebs/5pkgs/fortclientsslvpn
diff options
context:
space:
mode:
authortv <tv@krebsco.de>2017-05-24 01:43:50 +0200
committertv <tv@krebsco.de>2017-05-24 01:43:50 +0200
commitf0b98bd0114df1e1ebb82ff300f9532d86b3eb18 (patch)
tree58a39173f7d6d7caa10a7b8fec1b5a1e54f0c08c /krebs/5pkgs/fortclientsslvpn
parent46d6506916f699e3b707dc41cd68c92b98e50e5a (diff)
krebs/5pkgs: move simple pkgs to a subdir
Diffstat (limited to 'krebs/5pkgs/fortclientsslvpn')
-rw-r--r--krebs/5pkgs/fortclientsslvpn/default.nix92
1 files changed, 0 insertions, 92 deletions
diff --git a/krebs/5pkgs/fortclientsslvpn/default.nix b/krebs/5pkgs/fortclientsslvpn/default.nix
deleted file mode 100644
index cbcfab05f..000000000
--- a/krebs/5pkgs/fortclientsslvpn/default.nix
+++ /dev/null
@@ -1,92 +0,0 @@
-{ stdenv, lib, fetchurl, gnome3, glib, libSM, gdk_pixbuf, libX11, libXinerama, iproute,
- makeWrapper, libredirect, ppp, coreutils, gawk, pango }:
-stdenv.mkDerivation rec {
- name = "forticlientsslvpn";
- # forticlient will be copied into /tmp before execution. this is necessary as
- # the software demands $base to be writeable
-
- # TODO: chroot and create the following files instead of copying files manually
- # mkdir /etc/ppp ; touch /etc/ppp/options
- # ln -s /run/current-system/sw/bin/tail /usr/bin/tail
- # ln -s /run/current-system/sw/bin/pppd /usr/sbin/pppd
-
- src = fetchurl {
- # archive.org mirror:
- # https://archive.org/download/ForticlientsslvpnLinux4.4.23171.tar/forticlientsslvpn_linux_4.4.2317.tar.gz
- url = http://www.zen.co.uk/userfiles/knowledgebase/FortigateSSLVPNClient/forticlientsslvpn_linux_4.4.2317.tar.gz;
- sha256 = "19clnf9rgrnwazlpah8zz5kvz6kc8lxawrgmksx25k5ywflmbcrr";
- };
- phases = [ "unpackPhase" "buildPhase" "installPhase" "fixupPhase" ];
-
- buildInputs = [ makeWrapper ];
-
- binPath = lib.makeBinPath [
- coreutils
- gawk
- ];
-
-
- libPath = lib.makeLibraryPath [
- stdenv.cc.cc
- ];
-
- guiLibPath = lib.makeLibraryPath [
- gnome3.gtk
- glib
- libSM
- gdk_pixbuf
- libX11
- libXinerama
- pango
- ];
-
- buildPhase = ''
- # TODO: 32bit, use the 32bit folder
- patchelf --set-interpreter $(cat $NIX_CC/nix-support/dynamic-linker) \
- --set-rpath "$libPath" \
- 64bit/forticlientsslvpn_cli
-
- patchelf --set-interpreter $(cat $NIX_CC/nix-support/dynamic-linker) \
- --set-rpath "$libPath:$guiLibPath" \
- 64bit/forticlientsslvpn
-
- patchelf --set-interpreter $(cat $NIX_CC/nix-support/dynamic-linker) \
- --set-rpath "$libPath" \
- 64bit/helper/subproc
-
- sed -i 's#\(export PATH=\).*#\1"${binPath}"#' 64bit/helper/waitppp.sh
- '';
-
- installPhase = ''
- mkdir -p "$out/opt/fortinet"
-
- cp -r 64bit/. "$out/opt/fortinet"
- wrapProgram $out/opt/fortinet/forticlientsslvpn \
- --set LD_PRELOAD "${libredirect}/lib/libredirect.so" \
- --set NIX_REDIRECTS /usr/bin/tail=${coreutils}/bin/tail:/usr/sbin/ip=${iproute}/bin/ip:/usr/sbin/pppd=${ppp}/bin/pppd
-
- mkdir -p "$out/bin/"
-
- cat > $out/bin/forticlientsslvpn <<EOF
- #!/bin/sh
- # prepare suid bit in tmp
- # TODO maybe tmp does not support suid
- set -euf
- tmpforti=\$(${coreutils}/bin/mktemp -d)
- trap "rm -rf \$tmpforti;" INT TERM EXIT
- cp -r $out/opt/fortinet/. \$tmpforti
- chmod +s \$tmpforti/helper/subproc
- cd \$tmpforti
- "./forticlientsslvpn" "\$@"
- EOF
-
- chmod +x $out/bin/forticlientsslvpn
- chmod -x $out/opt/fortinet/helper/showlicense
- '';
- meta = {
- homepage = http://www.fortinet.com;
- description = "Forticlient SSL-VPN client";
- license = lib.licenses.unfree;
- maintainers = [ lib.maintainers.makefu ];
- };
-}