diff --git a/generic/pkgs/default.nix b/generic/pkgs/default.nix index f11c4b5..6ed272f 100644 --- a/generic/pkgs/default.nix +++ b/generic/pkgs/default.nix @@ -1,4 +1,5 @@ { pkgs ? import { } }: rec { libmodsecurity = pkgs.callPackage ./libmodsecurity { }; -} \ No newline at end of file + modsecurity-crs = pkgs.callPackage ./modsecurity-crs { }; +} diff --git a/generic/pkgs/modsecurity-crs/default.nix b/generic/pkgs/modsecurity-crs/default.nix new file mode 100644 index 0000000..124eca0 --- /dev/null +++ b/generic/pkgs/modsecurity-crs/default.nix @@ -0,0 +1,42 @@ +{ lib, stdenv, fetchFromGitHub }: + +stdenv.mkDerivation rec { + version = "3.3.2"; + pname = "modsecurity-crs"; + + src = fetchFromGitHub { + owner = "coreruleset"; + repo = "coreruleset"; + rev = "v${version}"; + sha256 = "sha256-m/iVLhk2y5BpYu8EwC2adrrDnbaVCQ0SE25ltvMokCw="; + }; + + installPhase = '' + install -D -m444 -t $out/rules ${src}/rules/*.conf + install -D -m444 -t $out/rules ${src}/rules/*.data + install -D -m444 -t $out/share/doc/modsecurity-crs ${src}/*.md + install -D -m444 -t $out/share/doc/modsecurity-crs ${src}/{CHANGES,INSTALL,LICENSE} + install -D -m444 -t $out/share/modsecurity-crs ${src}/rules/*.example + install -D -m444 -t $out/share/modsecurity-crs ${src}/crs-setup.conf.example + cat > $out/share/modsecurity-crs/modsecurity-crs.load.example <