Commit 4ef36d71 authored by Markus Theil's avatar Markus Theil
Browse files

tpm-trust: init at 0.4.1 



tpm-trust is a tool which can be used
to check verify if a TPM from the major
vendors present a valid endorsement certificate.

Signed-off-by: default avatarMarkus Theil <theil.markus@gmail.com>
parent e584fa67

pkgs/by-name/tp/tpm-trust/package.nix

0 → 100644
+48 −0
Original line number Diff line number Diff line 
{

  lib,

  stdenv,

  buildGo125Module,

  fetchFromGitHub,

  installShellFiles,

}:



buildGo125Module (finalAttrs: {

  pname = "tpm-trust";

  version = "0.4.1";



  __structuredAttrs = true;



  src = fetchFromGitHub {

    owner = "loicsikidi";

    repo = "tpm-trust";

    tag = "v${finalAttrs.version}";

    hash = "sha256-hhcIO+Od5Hhzm9evRlBHIicj+rivFn1H647mCKMq048=";

  };



  vendorHash = "sha256-MKUZ87Ketw29cyCa/7fVcQmlsJa8shwz4gHT3mhRaco=";



  ldflags = [

    "-s"

    "-w"

    "-X main.version=${finalAttrs.version}"

    "-X main.builtBy=nix"

  ];



  nativeBuildInputs = [ installShellFiles ];



  postInstall = lib.optionalString (stdenv.buildPlatform.canExecute stdenv.hostPlatform) ''

    installShellCompletion --cmd tpm-trust \

      --bash <($out/bin/tpm-trust completion bash) \

      --zsh <($out/bin/tpm-trust completion zsh) \

      --fish <($out/bin/tpm-trust completion fish)

  '';



  meta = {

    description = "Validate TPM authenticity by checking its Endorsement Key certificate against manufacturer root certificates";

    homepage = "https://github.com/loicsikidi/tpm-trust";

    license = lib.licenses.bsd3;

    maintainers = with lib.maintainers; [ thillux ];

    mainProgram = "tpm-trust";

    platforms = lib.platforms.linux;

  };

})