nomicon/pkgs/tools/security/chipsec/default.nix

{ lib
, stdenv
, fetchFromGitHub
, kernel ? null
, libelf
, nasm
, python3
, withDriver ? false
}:

python3.pkgs.buildPythonApplication rec {
  pname = "chipsec";
  version = "1.6.1";
  disabled = !stdenv.isLinux;

  src = fetchFromGitHub {
    owner = "chipsec";
    repo = "chipsec";
    rev = version;
    sha256 = "01sp24z63r3nqxx57zc4873b8i5dqipy7yrxzrwjns531vznhiy2";
  };

  KERNEL_SRC_DIR = lib.optionalString withDriver "${kernel.dev}/lib/modules/${kernel.modDirVersion}/build";

  nativeBuildInputs = [
    libelf
    nasm
  ];

  checkInputs = [
    python3.pkgs.distro
    python3.pkgs.pytestCheckHook
  ];

  setupPyBuildFlags = lib.optional (!withDriver) "--skip-driver";

  pythonImportsCheck = [ "chipsec" ];

  meta = with lib; {
    description = "Platform Security Assessment Framework";
    longDescription = ''
      CHIPSEC is a framework for analyzing the security of PC platforms
      including hardware, system firmware (BIOS/UEFI), and platform components.
      It includes a security test suite, tools for accessing various low level
      interfaces, and forensic capabilities. It can be run on Windows, Linux,
      Mac OS X and UEFI shell.
    '';
    license = licenses.gpl2Only;
    homepage = "https://github.com/chipsec/chipsec";
    maintainers = with maintainers; [ johnazoidberg ];
    platforms = if withDriver then [ "x86_64-linux" ] else platforms.all;
  };
}
chipsec: 1.5.1 -> 1.5.10 3 years ago			`{ lib`
			`, stdenv`
			`, fetchFromGitHub`
			`, kernel ? null`
			`, libelf`
			`, nasm`
			`, python3`
			`, withDriver ? false`
			`}:`

			`python3.pkgs.buildPythonApplication rec {`
buildPython*: use pname 4 years ago			`pname = "chipsec";`
chipsec: 1.5.10 -> 1.6.1 3 years ago			`version = "1.6.1";`
chipsec: 1.5.1 -> 1.5.10 3 years ago			`disabled = !stdenv.isLinux;`
chipsec: init at 1.3.6 6 years ago
			`src = fetchFromGitHub {`
			`owner = "chipsec";`
			`repo = "chipsec";`
chipsec: Kernel driver only works on x86_64-linux See: https://github.com/chipsec/chipsec/issues/461 Noticed that when ofBorg failed to build the kernel driver on ARM. 5 years ago			`rev = version;`
chipsec: 1.5.10 -> 1.6.1 3 years ago			`sha256 = "01sp24z63r3nqxx57zc4873b8i5dqipy7yrxzrwjns531vznhiy2";`
chipsec: init at 1.3.6 6 years ago			`};`

chipsec: 1.5.1 -> 1.5.10 3 years ago			`KERNEL_SRC_DIR = lib.optionalString withDriver "${kernel.dev}/lib/modules/${kernel.modDirVersion}/build";`
chipsec: disable on non-Linux 4 years ago
chipsec: 1.3.6 -> 1.3.7 5 years ago			`nativeBuildInputs = [`
chipsec: 1.5.1 -> 1.5.10 3 years ago			`libelf`
			`nasm`
chipsec: init at 1.3.6 6 years ago			`];`

chipsec: 1.5.1 -> 1.5.10 3 years ago			`checkInputs = [`
			`python3.pkgs.distro`
			`python3.pkgs.pytestCheckHook`
			`];`
chipsec: init at 1.3.6 6 years ago
chipsec: 1.5.1 -> 1.5.10 3 years ago			`setupPyBuildFlags = lib.optional (!withDriver) "--skip-driver";`
chipsec: init at 1.3.6 6 years ago
chipsec: 1.5.1 -> 1.5.10 3 years ago			`pythonImportsCheck = [ "chipsec" ];`
chipsec: init at 1.3.6 6 years ago
treewide: with stdenv.lib; in meta -> with lib; Part of: https://github.com/NixOS/nixpkgs/issues/108938 meta = with stdenv.lib; is a widely used pattern. We want to slowly remove the `stdenv.lib` indirection and encourage people to use `lib` directly. Thus let’s start with the meta field. This used a rewriting script to mostly automatically replace all occurances of this pattern, and add the `lib` argument to the package header if it doesn’t exist yet. The script in its current form is available at https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix 3 years ago			`meta = with lib; {`
chipsec: init at 1.3.6 6 years ago			`description = "Platform Security Assessment Framework";`
			`longDescription = ''`
			`CHIPSEC is a framework for analyzing the security of PC platforms`
			`including hardware, system firmware (BIOS/UEFI), and platform components.`
			`It includes a security test suite, tools for accessing various low level`
			`interfaces, and forensic capabilities. It can be run on Windows, Linux,`
			`Mac OS X and UEFI shell.`
			`'';`
chipsec: 1.5.1 -> 1.5.10 3 years ago			`license = licenses.gpl2Only;`
linuxPackages_hardened.chipsec: 1.4.7 -> 1.4.9 4 years ago			`homepage = "https://github.com/chipsec/chipsec";`
chipsec: init at 1.3.6 6 years ago			`maintainers = with maintainers; [ johnazoidberg ];`
chipsec: Kernel driver only works on x86_64-linux See: https://github.com/chipsec/chipsec/issues/461 Noticed that when ofBorg failed to build the kernel driver on ARM. 5 years ago			`platforms = if withDriver then [ "x86_64-linux" ] else platforms.all;`
chipsec: init at 1.3.6 6 years ago			`};`
			`}`