Skip to content

openconnect-globalprotect: init at 7.08 #49927

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

openconnect-globalprotect: init at 7.08 #49927

wants to merge 1 commit into from
+46 −0

Conversation

kimat
Copy link
Contributor

@kimat kimat commented Nov 8, 2018

Motivation for this change

openconnect doesn't support GlobalProtect out of the box, the fork of dlenski does.

Note that AUR also has this package, under the name openconnect-palo.

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS)
  • Built on platform(s)
    • [ x ] NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nox --run "nox-review wip"
  • [ x ] Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Fits CONTRIBUTING.md.

Sorry, something went wrong.

srhb
srhb requested changes Nov 13, 2018
View reviewed changes
pkgs/tools/networking/openconnect-globalprotect/default.nix
description = "VPN Client for Cisco's AnyConnect SSL VPN";
homepage = http://www.infradead.org/openconnect/;
license = stdenv.lib.licenses.lgpl21;
maintainers = with stdenv.lib.maintainers; [ pradeepchhetri ];
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this you, or did you agree with this person to add them as a maintainer? :)

pkgs/tools/networking/openconnect-globalprotect/default.nix
stdenv.mkDerivation rec {
name = "openconnect-globalprotect-7.08";

src = fetchGit {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please use fetchFromGitHub here :)

pkgs/tools/networking/openconnect-globalprotect/default.nix
ref = "globalprotect";
};

outputs = [ "out" "dev" ];
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does this really create a meaningful dev output? What does it include?

pkgs/tools/networking/openconnect-globalprotect/default.nix
];

nativeBuildInputs = [ autoconf automake pkgconfig libtool ];
propagatedBuildInputs = [ vpnc openssl gnutls gmp libxml2 stoken zlib ];
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some of these seem very surprising to me. Why is zlib propagated for example? What's it needed by?

pkgs/top-level/all-packages.nix
@@ -5980,6 +5980,16 @@ with pkgs;
openssl = null;
};

openconnect-globalprotect = openconnect-globalprotect_gnutls;
Copy link
Contributor

@srhb srhb Nov 13, 2018
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this attribute will be enough for the top level, and leave the rest of the configuration to overrides. Three versions seems a bit much.

Mic92
Mic92 reviewed Nov 13, 2018
View reviewed changes
pkgs/top-level/all-packages.nix
gnutls = null;
};

openconnect-globalprotect_gnutls = callPackage ../tools/networking/openconnect-globalprotect {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why would we need both openssl and gnutls?

@costrouc
Copy link
Member

costrouc commented Feb 27, 2019
edited
Loading

Note that latest release 8.0+ of openconnect includes the globalprotect protocol so this should not be needed. http://www.infradead.org/openconnect/changelog.html. That said we still need openconnect to be updated to the latest release.

@kimat
Copy link
Contributor Author

kimat commented Mar 4, 2019

8.02 was merged in master with #54060

@kimat kimat closed this Mar 4, 2019
@Janik-Haag Janik-Haag added the 12. first-time contribution This PR is the author's first one; please be gentle! label Jun 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mic92 Mic92

@srhb srhb

Assignees
No one assigned
Labels
12. first-time contribution This PR is the author's first one; please be gentle!
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@kimat @costrouc @Mic92 @srhb @Janik-Haag