nomicon/pkgs/tools/security/yara/default.nix

{ lib, stdenv
, fetchpatch
, fetchFromGitHub
, autoreconfHook
, pcre
, pkg-config
, protobufc
, withCrypto ? true, openssl
, enableMagic ? true, file
, enableCuckoo ? true, jansson
}:

stdenv.mkDerivation rec {
  version = "4.0.5";
  pname = "yara";

  src = fetchFromGitHub {
    owner = "VirusTotal";
    repo = "yara";
    rev = "v${version}";
    sha256 = "1gkdll2ygdlqy1f27a5b84gw2bq75ss7acsx06yhiss90qwdaalq";
  };

  nativeBuildInputs = [ autoreconfHook pkg-config ];

  buildInputs = [ pcre protobufc ]
    ++ lib.optionals withCrypto [ openssl ]
    ++ lib.optionals enableMagic [ file ]
    ++ lib.optionals enableCuckoo [ jansson ]
  ;

  preConfigure = "./bootstrap.sh";

  # If static builds are disabled, `make all-am` will fail to find libyara.a and
  # cause a build failure. It appears that somewhere between yara 4.0.1 and
  # 4.0.5, linking the yara binaries dynamically against libyara.so was broken.
  #
  # This was already fixed in yara master. Backport the patch to yara 4.0.5.
  patches = [
    (fetchpatch {
      name = "fix-build-with-no-static.patch";
      url = "https://github.com/VirusTotal/yara/commit/52e6866023b9aca26571c78fb8759bc3a51ba6dc.diff";
      sha256 = "074cf99j0rqiyacp60j1hkvjqxia7qwd11xjqgcr8jmfwihb38nr";
    })
  ];

  configureFlags = [
    (lib.withFeature withCrypto "crypto")
    (lib.enableFeature enableMagic "magic")
    (lib.enableFeature enableCuckoo "cuckoo")
  ];

  meta = with lib; {
    description = "The pattern matching swiss knife for malware researchers";
    homepage = "http://Virustotal.github.io/yara/";
    license = licenses.asl20;
    platforms = platforms.all;
  };
}
treewide: with stdenv.lib; in meta -> with lib; Part of: https://github.com/NixOS/nixpkgs/issues/108938 meta = with stdenv.lib; is a widely used pattern. We want to slowly remove the `stdenv.lib` indirection and encourage people to use `lib` directly. Thus let’s start with the meta field. This used a rewriting script to mostly automatically replace all occurances of this pattern, and add the `lib` argument to the package header if it doesn’t exist yet. The script in its current form is available at https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix 3 years ago			`{ lib, stdenv`
yara: 4.0.1 -> 4.0.5 3 years ago			`, fetchpatch`
yara: 3.11.0 -> 4.0.1 4 years ago			`, fetchFromGitHub`
			`, autoreconfHook`
			`, pcre`
			`, pkg-config`
			`, protobufc`
yara: init at 3.4.0 9 years ago			`, withCrypto ? true, openssl`
			`, enableMagic ? true, file`
			`, enableCuckoo ? true, jansson`
			`}:`

			`stdenv.mkDerivation rec {`
yara: 4.0.1 -> 4.0.5 3 years ago			`version = "4.0.5";`
treewide: name -> pname (easy cases) (#66585) treewide replacement of stdenv.mkDerivation rec { name = "-${version}"; version = ""; to pname 5 years ago			`pname = "yara";`
yara: init at 3.4.0 9 years ago
			`src = fetchFromGitHub {`
yara: 3.4.0 -> 3.5.0 7 years ago			`owner = "VirusTotal";`
yara: init at 3.4.0 9 years ago			`repo = "yara";`
			`rev = "v${version}";`
yara: 4.0.1 -> 4.0.5 3 years ago			`sha256 = "1gkdll2ygdlqy1f27a5b84gw2bq75ss7acsx06yhiss90qwdaalq";`
yara: init at 3.4.0 9 years ago			`};`

yara: 3.11.0 -> 4.0.1 4 years ago			`nativeBuildInputs = [ autoreconfHook pkg-config ];`
yara: 3.10.0 -> 3.11.0, fix build 5 years ago
yara: 3.11.0 -> 4.0.1 4 years ago			`buildInputs = [ pcre protobufc ]`
pkgs/tools: stdenv.lib -> lib 3 years ago			`++ lib.optionals withCrypto [ openssl ]`
			`++ lib.optionals enableMagic [ file ]`
			`++ lib.optionals enableCuckoo [ jansson ]`
yara: init at 3.4.0 9 years ago			`;`

			`preConfigure = "./bootstrap.sh";`

yara: 4.0.1 -> 4.0.5 3 years ago			# If static builds are disabled, `make all-am` will fail to find libyara.a and
			`# cause a build failure. It appears that somewhere between yara 4.0.1 and`
			`# 4.0.5, linking the yara binaries dynamically against libyara.so was broken.`
			`#`
			`# This was already fixed in yara master. Backport the patch to yara 4.0.5.`
			`patches = [`
			`(fetchpatch {`
			`name = "fix-build-with-no-static.patch";`
			`url = "https://github.com/VirusTotal/yara/commit/52e6866023b9aca26571c78fb8759bc3a51ba6dc.diff";`
			`sha256 = "074cf99j0rqiyacp60j1hkvjqxia7qwd11xjqgcr8jmfwihb38nr";`
			`})`
			`];`

treewide: Make configureFlags lists 6 years ago			`configureFlags = [`
pkgs/tools: stdenv.lib -> lib 3 years ago			`(lib.withFeature withCrypto "crypto")`
			`(lib.enableFeature enableMagic "magic")`
			`(lib.enableFeature enableCuckoo "cuckoo")`
treewide: Make configureFlags lists 6 years ago			`];`
yara: init at 3.4.0 9 years ago
treewide: with stdenv.lib; in meta -> with lib; Part of: https://github.com/NixOS/nixpkgs/issues/108938 meta = with stdenv.lib; is a widely used pattern. We want to slowly remove the `stdenv.lib` indirection and encourage people to use `lib` directly. Thus let’s start with the meta field. This used a rewriting script to mostly automatically replace all occurances of this pattern, and add the `lib` argument to the package header if it doesn’t exist yet. The script in its current form is available at https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix 3 years ago			`meta = with lib; {`
yara: init at 3.4.0 9 years ago			`description = "The pattern matching swiss knife for malware researchers";`
yara: 3.11.0 -> 4.0.1 4 years ago			`homepage = "http://Virustotal.github.io/yara/";`
			`license = licenses.asl20;`
			`platforms = platforms.all;`
yara: init at 3.4.0 9 years ago			`};`
			`}`