initial systemd-cryptsetup testing for fido2 unlocking

author: Ryan Schanzenbacher <ryan@rschanz.org> 2025-12-24 13:09:11 -0500
committer: Ryan Schanzenbacher <ryan@rschanz.org> 2025-12-24 13:09:11 -0500
commit: 756a6f617319b69a8ed5cfc1e7abef9f8cadfcd6 (patch)
tree: 1863f4e81155d7659b9e01e31381c54297dd4018 /modules/ryan-packages
parent: e04163afd671bbe67b4622ebaca8f4621f7a0207 (diff)
1 files changed, 38 insertions, 0 deletions
diff --git a/modules/ryan-packages/bootloaders.scm b/modules/ryan-packages/bootloaders.scm
index 4cbb8da..dad3743 100644
--- a/modules/ryan-packages/bootloaders.scm
+++ b/modules/ryan-packages/bootloaders.scm
@@ -9,6 +9,13 @@
  #:use-module (gnu packages python-xyz)
  #:use-module (gnu packages python-crypto)
  #:use-module (gnu packages pkg-config)
+  ;below for cryptsetup
+  #:use-module (gnu packages password-utils)
+  #:use-module (gnu packages cryptsetup)
+  #:use-module (gnu packages security-token)
+  #:use-module (gnu packages web)
+  #:use-module (gnu packages gnupg)
+  #:use-module (gnu packages tls)
  #:use-module (guix gexp)
  #:use-module (guix utils)
  #:use-module (guix modules)
@@ -108,3 +115,34 @@ kernel arguments, and optional secure boot signatures into a single, UEFI-bootab
 image.")
    (license license:lgpl2.1+)))
+(define-public systemd-cryptsetup
+  (package
+    (name "systemd-cryptsetup")
+    (version systemd-version)
+    (source systemd-source)
+    (build-system meson-build-system)
+    (arguments
+      (list
+        #:build-type "release"
+        #:configure-flags
+        `(list "-Dlibcryptsetup=true" "-Dlibfido2=true"
+               "-Dopenssl=true")
+        #:phases
+        #~(modify-phases %standard-phases
+            (replace 'build
+              (lambda* (#:key parallel-build? #:allow-other-keys)
+                       (invoke "ninja" "systemd-cryptsetup"
+                       "-j" (if parallel-build?
+                              (number->string (parallel-job-count)) "1"))))
+            (replace 'install
+              (lambda _
+                (install-file "systemd-cryptsetup" (string-append #$output "/libexec"))
+                (install-file "src/shared/libsystemd-shared-258.so" (string-append #$output "/lib"))))
+            (delete 'check))))
+    (native-inputs (list `(,util-linux "lib") eudev lvm2 cryptsetup libfido2 libxcrypt gperf pkg-config python-3 python-jinja2 libcap argon2 json-c libgcrypt openssl))
+    (home-page "test")
+    (synopsis "test")
+    (description "test")
+    (license license:lgpl2.1+)))
+systemd-cryptsetup
author	Ryan Schanzenbacher <ryan@rschanz.org>	2025-12-24 13:09:11 -0500
committer	Ryan Schanzenbacher <ryan@rschanz.org>	2025-12-24 13:09:11 -0500
commit	756a6f617319b69a8ed5cfc1e7abef9f8cadfcd6 (patch)
tree	1863f4e81155d7659b9e01e31381c54297dd4018 /modules/ryan-packages
parent	e04163afd671bbe67b4622ebaca8f4621f7a0207 (diff)

diff --git a/modules/ryan-packages/bootloaders.scm b/modules/ryan-packages/bootloaders.scm index 4cbb8da..dad3743 100644 --- a/modules/ryan-packages/bootloaders.scm +++ b/modules/ryan-packages/bootloaders.scm
@@ -9,6 +9,13 @@
9	#:use-module (gnu packages python-xyz)	9	#:use-module (gnu packages python-xyz)
10	#:use-module (gnu packages python-crypto)	10	#:use-module (gnu packages python-crypto)
11	#:use-module (gnu packages pkg-config)	11	#:use-module (gnu packages pkg-config)
		12	;below for cryptsetup
		13	#:use-module (gnu packages password-utils)
		14	#:use-module (gnu packages cryptsetup)
		15	#:use-module (gnu packages security-token)
		16	#:use-module (gnu packages web)
		17	#:use-module (gnu packages gnupg)
		18	#:use-module (gnu packages tls)
12	#:use-module (guix gexp)	19	#:use-module (guix gexp)
13	#:use-module (guix utils)	20	#:use-module (guix utils)
14	#:use-module (guix modules)	21	#:use-module (guix modules)
@@ -108,3 +115,34 @@ kernel arguments, and optional secure boot signatures into a single, UEFI-bootab
108	image.")	115	image.")
109	(license license:lgpl2.1+)))	116	(license license:lgpl2.1+)))
110		117
		118	(define-public systemd-cryptsetup
		119	(package
		120	(name "systemd-cryptsetup")
		121	(version systemd-version)
		122	(source systemd-source)
		123	(build-system meson-build-system)
		124	(arguments
		125	(list
		126	#:build-type "release"
		127	#:configure-flags
		128	`(list "-Dlibcryptsetup=true" "-Dlibfido2=true"
		129	"-Dopenssl=true")
		130	#:phases
		131	#~(modify-phases %standard-phases
		132	(replace 'build
		133	(lambda* (#:key parallel-build? #:allow-other-keys)
		134	(invoke "ninja" "systemd-cryptsetup"
		135	"-j" (if parallel-build?
		136	(number->string (parallel-job-count)) "1"))))
		137	(replace 'install
		138	(lambda _
		139	(install-file "systemd-cryptsetup" (string-append #$output "/libexec"))
		140	(install-file "src/shared/libsystemd-shared-258.so" (string-append #$output "/lib"))))
		141	(delete 'check))))
		142	(native-inputs (list `(,util-linux "lib") eudev lvm2 cryptsetup libfido2 libxcrypt gperf pkg-config python-3 python-jinja2 libcap argon2 json-c libgcrypt openssl))
		143	(home-page "test")
		144	(synopsis "test")
		145	(description "test")
		146	(license license:lgpl2.1+)))
		147
		148	systemd-cryptsetup