diff options
Diffstat (limited to 'px/packages/device.scm')
| -rw-r--r-- | px/packages/device.scm | 487 |
1 files changed, 487 insertions, 0 deletions
diff --git a/px/packages/device.scm b/px/packages/device.scm new file mode 100644 index 0000000..abcd31a --- /dev/null +++ b/px/packages/device.scm @@ -0,0 +1,487 @@ +(define-module (px packages device) + #:use-module (guix build-system cmake) + #:use-module (guix download) + #:use-module ((guix licenses) #:prefix license:) + #:use-module (guix packages) + #:use-module (gnu packages lxqt) + #:use-module (gnu packages qt) + #:use-module (guix build-system cargo) + #:use-module (guix build-system trivial) + #:use-module (guix download) + #:use-module (gnu packages aidc) + #:use-module (gnu packages base) + #:use-module (gnu packages bash) + #:use-module (gnu packages crates-io) + #:use-module (gnu packages compression) + #:use-module (gnu packages databases) + #:use-module (gnu packages hardware) + #:use-module (gnu packages image) + #:use-module (gnu packages kde-frameworks) + #:use-module (gnu packages linux) + #:use-module (gnu packages maths) + #:use-module (gnu packages pkg-config) + #:use-module (guix build-system python) + #:use-module (gnu packages python) + #:use-module (gnu packages python-build) + #:use-module (gnu packages python-xyz) + #:use-module (gnu packages python-web) + #:use-module (gnu packages python-crypto) + #:use-module (gnu packages curl) + #:use-module (gnu packages security-token) + #:use-module (gnu packages serialization) + #:use-module (gnu packages tls) + #:use-module (gnu packages xorg) + #:use-module (gnu packages web) + #:use-module (px packages crates-io) + #:use-module (px packages common) + #:use-module (px packages kde-frameworks) + #:use-module (px packages python-xyz) + #:use-module (px packages tpm) + #:use-module (px packages library)) + +(define-public px-device-identity + (package + (name "px-device-identity") + (version "0.10.9") + (source + (origin + (method url-fetch) + (uri (string-append "https://source.pantherx.org/" name "_v" version ".tgz")) + (sha256 (base32 "10qpj1s1z5crcs6fxngp13lgn296m76x4fckgidaikr9i6mckkd1")))) + (build-system python-build-system) + (arguments + `(#:tests? #f + #:phases + (modify-phases %standard-phases + (add-after 'install 'wrap-for-openssl-tss2-conf + (lambda* (#:key outputs #:allow-other-keys) + (let ((out (assoc-ref outputs "out")) + (openssl (assoc-ref %build-inputs "openssl")) + (tpm2-tss (assoc-ref %build-inputs "tpm2-tss")) + (tpm2-tss-engine (assoc-ref %build-inputs "tpm2-tss-engine"))) + (wrap-program (string-append out "/bin/px-device-identity") + `("OPENSSL_CONF" ":" prefix (,(string-append tpm2-tss-engine "/etc/openssl-tss2.conf")))) + (wrap-program (string-append out "/bin/px-device-identity") + `("PATH" ":" prefix (,(string-append tpm2-tss-engine "/bin/")))) + (wrap-program (string-append out "/bin/px-device-identity") + `("PATH" ":" prefix (,(string-append openssl "/bin/")))) + (wrap-program (string-append out "/bin/px-device-identity") + `("TPM2TSSENGINE_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) + (wrap-program (string-append out "/bin/px-device-identity") + `("TPM2TOOLS_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) + #t))) + (delete 'sanity-check)))) + (inputs + `(("openssl" ,openssl) + ("python-idna" ,python-idna) + ("python-requests" ,python-requests) + ("python-authlib-0.14.3" ,python-authlib-0.14.3) + ("python-pycryptodomex" ,python-pycryptodomex) + ("python-jose" ,python-jose) + ("python-pyyaml" ,python-pyyaml) + ("python-shortuuid" ,python-shortuuid-v1) + ("python-appdirs" ,python-appdirs) + ("python-psutil" ,python-psutil) + ("tpm2-tss" ,tpm2-tss-openssl-1.1) + ("tpm2-tss-engine" ,tpm2-tss-engine) + ("bash-minimal" ,bash-minimal))) + (native-inputs + `(("pkg-config" ,pkg-config) + ("python-requests" ,python-requests))) + (home-page "https://www.pantherx.org/") + (synopsis "PantherX Device Identity Manager") + (description "Initiates device identity based on RSA or ECC key pair and optionally registers with Central Management.") + (license license:expat))) + + +(define-public px-device-identity-service + (package + (name "px-device-identity-service") + (version "0.11.0") + (source + (origin + (method url-fetch) + (uri (string-append "https://source.pantherx.org/" name "_v" version ".tgz")) + (sha256 (base32 "1jhzg5jqhja8pbr47waxsfhlqqff84vvj8m8kipmy9jq1sn7s0i3")))) + (build-system python-build-system) + (arguments + `(#:tests? #f + #:phases + (modify-phases %standard-phases + (add-after 'install 'wrap-for-openssl-tss2-conf + (lambda* (#:key outputs #:allow-other-keys) + (let ((out (assoc-ref outputs "out")) + (openssl (assoc-ref %build-inputs "openssl")) + (tpm2-tss (assoc-ref %build-inputs "tpm2-tss")) + (tpm2-tss-engine (assoc-ref %build-inputs "tpm2-tss-engine"))) + (wrap-program (string-append out "/bin/px-device-identity-service") + `("OPENSSL_CONF" ":" prefix (,(string-append tpm2-tss-engine "/etc/openssl-tss2.conf")))) + (wrap-program (string-append out "/bin/px-device-identity-service") + `("PATH" ":" prefix (,(string-append tpm2-tss-engine "/bin/")))) + (wrap-program (string-append out "/bin/px-device-identity-service") + `("PATH" ":" prefix (,(string-append openssl "/bin/")))) + (wrap-program (string-append out "/bin/px-device-identity-service") + `("TPM2TSSENGINE_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) + (wrap-program (string-append out "/bin/px-device-identity-service") + `("TPM2TOOLS_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) + #t))) + (delete 'sanity-check)))) + (inputs + `(("python-waitress" ,python-waitress) + ("openssl" ,openssl) + ("python-idna" ,python-idna) + ("python-requests" ,python-requests) + ("python-flask" ,python-flask) + ("python-werkzeug" ,python-werkzeug) + ("python-authlib-0.14.3" ,python-authlib-0.14.3) + ("python-exitstatus-2.0.1" ,python-exitstatus-2.0.1) + ("python-pycryptodomex" ,python-pycryptodomex) + ("python-jose" ,python-jose) + ("python-pyyaml" ,python-pyyaml) + ("python-shortuuid" ,python-shortuuid-v1) + ("python-appdirs" ,python-appdirs) + ("python-psutil" ,python-psutil) + ("tpm2-tss" ,tpm2-tss-openssl-1.1) + ("tpm2-tss-engine" ,tpm2-tss-engine) + ("bash-minimal" ,bash-minimal))) + (native-inputs + `(("pkg-config" ,pkg-config) + ("python-requests" ,python-requests))) + (propagated-inputs + `(("px-device-identity" ,px-device-identity))) + (home-page "https://www.pantherx.org/") + (synopsis "PantherX Device Identity Service") + (description "Makes device signing capabilities available to other applications, without root priviliges.") + (license license:expat))) + + +(define-public px-device-runner + (package + (name "px-device-runner") + (version "0.0.14") + (source + (origin + (method url-fetch) + (uri (string-append "https://source.pantherx.org/" name "_v" version ".tgz")) + (sha256 (base32 "0sdyz81z8l0q99r09fymw2v6r9ylc7rkxxdwkbnm6lgch5pib36r")))) + (build-system python-build-system) + (arguments + `(#:tests? #f + #:phases + (modify-phases %standard-phases + (add-after 'install 'wrap-for-openssl-tss2-conf + (lambda* (#:key outputs #:allow-other-keys) + (let ((out (assoc-ref outputs "out")) + (openssl (assoc-ref %build-inputs "openssl")) + (tpm2-tss (assoc-ref %build-inputs "tpm2-tss")) + (tpm2-tss-engine (assoc-ref %build-inputs "tpm2-tss-engine"))) + (wrap-program (string-append out "/bin/px-device-runner") + `("OPENSSL_CONF" ":" prefix (,(string-append tpm2-tss-engine "/etc/openssl-tss2.conf"))) + `("PATH" ":" prefix (,(string-append tpm2-tss-engine "/bin/") + ,(string-append openssl "/bin/"))) + `("TPM2TSSENGINE_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0"))) + `("TPM2TOOLS_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) + #t))) + (delete 'sanity-check)))) + (inputs + `(("openssl" ,openssl) + ("python-idna" ,python-idna) + ("python-requests" ,python-requests) + ("python-authlib-0.14.3" ,python-authlib-0.14.3) + ("python-exitstatus-2.0.1" ,python-exitstatus-2.0.1) + ("python-pycryptodomex" ,python-pycryptodomex) + ("python-jose" ,python-jose) + ("python-pyyaml-v5.3.1" ,python-pyyaml-v5.3.1) + ("python-shortuuid" ,python-shortuuid-v1) + ("python-appdirs" ,python-appdirs) + ("python-psutil" ,python-psutil) + ("tpm2-tss" ,tpm2-tss-openssl-1.1) + ("tpm2-tss-engine" ,tpm2-tss-engine) + ("bash-minimal" ,bash-minimal))) + (native-inputs + `(("pkg-config" ,pkg-config) + ("python-requests" ,python-requests))) + (propagated-inputs + `(("px-device-identity" ,px-device-identity))) + (home-page "https://www.pantherx.org/") + (synopsis "PantherX Device Runner") + (description "Downloads administrative jobs from Central Management to run on local device.") + (license license:expat))) + + +(define-public px-user-identity-service + (package + (name "px-user-identity-service") + (version "0.1.0") + (source + (origin + (method url-fetch) + (uri (string-append "https://source.pantherx.org/" name "_v" version ".tgz")) + (sha256 (base32 "0vhb5f4klvbdf802b3i4mli3926ny4pxcnbhif8mn56dnj8lgf84")))) + (build-system python-build-system) + (arguments + `(#:tests? #f + #:phases + (modify-phases %standard-phases + (add-after 'install 'wrap-for-openssl-tss2-conf + (lambda* (#:key outputs #:allow-other-keys) + (let ((out (assoc-ref outputs "out")) + (openssl (assoc-ref %build-inputs "openssl")) + (tpm2-tss (assoc-ref %build-inputs "tpm2-tss")) + (tpm2-tss-engine (assoc-ref %build-inputs "tpm2-tss-engine"))) + (wrap-program (string-append out "/bin/px-user-identity-service") + `("OPENSSL_CONF" ":" prefix (,(string-append tpm2-tss-engine "/etc/openssl-tss2.conf"))) + `("PATH" ":" prefix (,(string-append tpm2-tss-engine "/bin/") + ,(string-append openssl "/bin/"))) + `("TPM2TSSENGINE_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0"))) + `("TPM2TOOLS_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) + #t))) + (delete 'sanity-check)))) + (inputs + `(("python-waitress" ,python-waitress) + ("openssl" ,openssl) + ("python-idna" ,python-idna) + ("python-requests" ,python-requests) + ("python-flask" ,python-flask) + ("python-werkzeug" ,python-werkzeug) + ("python-authlib-0.14.3" ,python-authlib-0.14.3) + ("python-exitstatus-2.0.1" ,python-exitstatus-2.0.1) + ("python-pycryptodomex" ,python-pycryptodomex) + ("python-jose" ,python-jose) + ("python-pyyaml-v5.3.1" ,python-pyyaml-v5.3.1) + ("python-shortuuid" ,python-shortuuid-v1) + ("python-appdirs" ,python-appdirs) + ("python-psutil" ,python-psutil) + ("tpm2-tss" ,tpm2-tss-openssl-1.1) + ("tpm2-tss-engine" ,tpm2-tss-engine) + ("bash-minimal" ,bash-minimal))) + (native-inputs + `(("pkg-config" ,pkg-config) + ("python-requests" ,python-requests))) + (propagated-inputs + `(("px-device-identity" ,px-device-identity))) + (home-page "https://www.pantherx.org/") + (synopsis "PantherX User Identity Service REST API") + (description "User Identity API to support QR and BC login with device signature.") + (license license:expat))) + + +(define-public px-file-upload-cli + (package + (name "px-file-upload-cli") + (version "0.0.6") + (source + (origin + (method url-fetch) + (uri (string-append "https://source.pantherx.org/" name "-" version ".crate")) + (file-name (string-append name "-" version ".tar.gz")) + (sha256 (base32 "10p0zxf576v28hgzbby45q9xlj3bd0314h9zaikallc1l30qb2l9")))) + (build-system cargo-build-system) + (arguments + `(#:tests? #f + #:cargo-inputs + (("rust-chrono" ,rust-chrono-0.4) + ("rust-clap" ,rust-clap-2) + ("rust-configparser" ,rust-configparser-2) + ("rust-fern" ,rust-fern-0.6) + ("rust-log" ,rust-log-0.4) + ("rust-mime-guess" ,rust-mime-guess-2) + ("rust-reqwest" ,rust-reqwest-0.11) + ("rust-serde" ,rust-serde-1) + ("rust-serde-json" ,rust-serde-json-1) + ("rust-serde-yaml" ,rust-serde-yaml-0.8) + ("rust-syslog" ,rust-syslog-4) + ;; TODO: restore back to upstream version once the following patch is merged upstream: + ;; https://debbugs.gnu.org/cgi/bugreport.cgi?bug=60174 + ("rust-tokio" ,rust-tokio-1-patched) + ("rust-tokio-util" ,rust-tokio-util-0.6) + ("rust-uuid" ,rust-uuid-0.8)) + #:phases + (modify-phases %standard-phases + (add-after 'install 'wrap-for-openssl-tss2-conf + (lambda* (#:key outputs inputs #:allow-other-keys) + (let ((out (assoc-ref outputs "out")) + (openssl (assoc-ref inputs "openssl")) + (tpm2-tss (assoc-ref inputs "tpm2-tss")) + (tpm2-tss-engine (assoc-ref inputs "tpm2-tss-engine"))) + (wrap-program (string-append out "/bin/px-file-upload-cli") + `("OPENSSL_CONF" ":" prefix (,(string-append tpm2-tss-engine "/etc/openssl-tss2.conf"))) + `("PATH" ":" prefix (,(string-append tpm2-tss-engine "/bin/") + ,(string-append openssl "/bin/"))) + `("TPM2TSSENGINE_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0"))) + `("TPM2TOOLS_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) + #t)))))) + (inputs + `(("openssl" ,openssl) + ("tpm2-tss" ,tpm2-tss-openssl-1.1) + ("tpm2-tss-engine" ,tpm2-tss-engine) + ("bash-minimal" ,bash-minimal))) + (native-inputs + `(("pkg-config" ,pkg-config))) + (propagated-inputs + `(("px-device-identity" ,px-device-identity))) + (home-page "https://pantherx.org") + (synopsis "PantherX Uploader Utility") + (description "Uploader cli application which reads a +configuration file from commandline args and upload results to the server") + (license license:expat))) + + +(define-public px-device-backup + (package + (name "px-device-backup") + (version "0.0.5") + (source + (origin + (method url-fetch) + (uri (string-append "https://source.pantherx.org/" name "_v" version ".tgz")) + (sha256 (base32 "1wcqvwwcv5x98haj956gmwgv977h41pwh42qvhp6z0v3sfn21cby")))) + (build-system python-build-system) + (arguments + `(#:tests? #f + #:phases + (modify-phases %standard-phases + (add-after 'install 'wrap-for-openssl-tss2-conf + (lambda* (#:key outputs #:allow-other-keys) + (let ((out (assoc-ref outputs "out")) + (openssl (assoc-ref %build-inputs "openssl")) + (tpm2-tss (assoc-ref %build-inputs "tpm2-tss")) + (tpm2-tss-engine (assoc-ref %build-inputs "tpm2-tss-engine"))) + (wrap-program (string-append out "/bin/px-device-backup") + `("OPENSSL_CONF" ":" prefix (,(string-append tpm2-tss-engine "/etc/openssl-tss2.conf"))) + `("PATH" ":" prefix (,(string-append tpm2-tss-engine "/bin/") + ,(string-append openssl "/bin/"))) + `("TPM2TSSENGINE_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0"))) + `("TPM2TOOLS_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) + #t))) + (delete 'sanity-check)))) + (inputs + `(("python-waitress" ,python-waitress) + ("openssl" ,openssl) + ("python-idna" ,python-idna) + ("python-requests" ,python-requests) + ("python-authlib-0.14.3" ,python-authlib-0.14.3) + ("python-exitstatus-2.0.1" ,python-exitstatus-2.0.1) + ("python-pycryptodomex" ,python-pycryptodomex) + ("python-jose" ,python-jose) + ("python-pyyaml-v5.3.1" ,python-pyyaml-v5.3.1) + ("python-shortuuid" ,python-shortuuid-v1) + ("python-appdirs" ,python-appdirs) + ("python-psutil" ,python-psutil) + ("tpm2-tss" ,tpm2-tss-openssl-1.1) + ("tpm2-tss-engine" ,tpm2-tss-engine) + ("python-boto3" ,python-boto3) + ("bash-minimal" ,bash-minimal))) + (native-inputs + `(("pkg-config" ,pkg-config) + ("python-requests" ,python-requests))) + (propagated-inputs + `(("px-device-identity" ,px-device-identity))) + (home-page "https://www.pantherx.org/") + (synopsis "PantherX Device Backup") + (description "Pulls device backup config from Central Management and runs the backup.") + (license license:expat))) + +; (define-public px-remote-access +; (package +; (name "px-remote-access") +; (version "0.0.4") +; (source +; (origin +; (method url-fetch) +; (uri (string-append "https://source.pantherx.org/" name "_v" version ".tgz")) +; (sha256 (base32 "05c01ir1yd0mxf0x4x35khfh805y03b7x4qrmcczkcwjf53mk9d3")))) +; (build-system python-build-system) +; (arguments +; `(#:tests? #f +; #:phases +; (modify-phases %standard-phases +; (add-after 'install 'wrap-for-openssl-tss2-conf +; (lambda* (#:key outputs #:allow-other-keys) +; (let ((out (assoc-ref outputs "out")) +; (openssl (assoc-ref %build-inputs "openssl")) +; (tpm2-tss (assoc-ref %build-inputs "tpm2-tss")) +; (tpm2-tss-engine (assoc-ref %build-inputs "tpm2-tss-engine"))) +; (wrap-program (string-append out "/bin/px-remote-access") +; `("OPENSSL_CONF" ":" prefix (,(string-append tpm2-tss-engine "/etc/openssl-tss2.conf"))) +; `("PATH" ":" prefix (,(string-append tpm2-tss-engine "/bin/") +; ,(string-append openssl "/bin/"))) +; `("TPM2TSSENGINE_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0"))) +; `("TPM2TOOLS_TCTI" ":" prefix (,(string-append tpm2-tss "/lib/libtss2-tcti-device.so:/dev/tpm0")))) +; #t))) +; (delete 'sanity-check)))) +; (inputs +; `(("openssl" ,openssl) +; ("python-idna" ,python-idna) +; ("python-requests" ,python-requests) +; ("python-falcon" ,python-falcon) +; ("gunicorn" ,gunicorn) +; ("python-sqlalchemy" ,python-sqlalchemy) +; ("python-authlib-0.14.3" ,python-authlib-0.14.3) +; ("python-exitstatus-2.0.1" ,python-exitstatus-2.0.1) +; ("python-pycryptodomex" ,python-pycryptodomex) +; ("python-pyyaml-v5.3.1" ,python-pyyaml-v5.3.1) +; ("python-shortuuid-v1.0.1" ,python-shortuuid-v1.0.1) +; ("python-appdirs" ,python-appdirs) +; ("python-psutil" ,python-psutil) +; ("tpm2-tss" ,tpm2-tss) +; ("tpm2-tss-engine" ,tpm2-tss-engine))) +; (native-inputs +; `(("python-setuptools" ,python-setuptools) +; ("pkg-config" ,pkg-config) +; ("python-requests" ,python-requests))) +; (propagated-inputs +; `(("px-device-identity" ,px-device-identity))) +; (home-page "https://www.pantherx.org/") +; (synopsis "PantherX Remote Access") +; (description "Enables SSH remote access via tunnel.") +; (license license:expat))) + + +;; (define-public px-org-activitywatch-service +;; (package +;; (name "px-org-activitywatch-service") +;; (version "0.0.2") +;; (source +;; (origin +;; (method url-fetch) +;; (uri (string-append "https://source.pantherx.org/" name "_v" version ".tgz")) +;; (sha256 (base32 "0wpnp9vkkr0a4wpmsn5al6ydd6pdvsx3jc7j7j1836c97jg78rw2")))) +;; (build-system python-build-system) +;; (native-inputs `(("python-setuptools", python-setuptools))) +;; (propagated-inputs +;; `(("python-pyyaml", python-pyyaml) +;; ("python-requests" ,python-requests) +;; ;; TODO: Should probably include activity watch +;; ("px-secret-library-python", px-secret-library-python) +;; ("px-accounts-library-python", px-accounts-library-python))) +;; (home-page "https://www.pantherx.org/") +;; (synopsis "Submit ActivityWatch events to Central Management") +;; (description "Queries local ActivityWatch server and submits events +;; to Central Management") +;; (license license:expat))) + + +(define-public bluetooth-client-manager-service + (package + (name "bluetooth-client-manager-service") + (version "0.1.9") + (source + (origin + (method url-fetch) + (uri (string-append "https://source.pantherx.org/" name "_v" version ".tgz")) + (sha256 + (base32 "03j5ipswkj32hda6wwpsj3f3z3sp4dgi0a5val7g5q98nnpcqgqr")))) + (build-system cmake-build-system) + (native-inputs `(("pkg-config" ,pkg-config))) + (inputs `(("bluez-qt" ,bluez-qt) + ("capnproto" ,capnproto-0.9) + ("openssl" ,openssl) + ("qtbase", qtbase-5) + ("util-linux" ,util-linux "lib") + ("yaml-cpp" ,yaml-cpp))) + (arguments `(#:tests? #f)) + (home-page "https://pantherx.org") + (synopsis "Bluetooth Client Manager Service") + (description "Background service for Bluetooth device discovery, data retrieval and submission") + (license license:expat))) |