summary refs log tree commit diff
path: root/pkgs/tools/security/cfssl
diff options
context:
space:
mode:
authorDavid Arnold <dar@xoe.solutions>2020-07-28 21:39:00 -0500
committer"David Arnold" <"dar@xoe.solutions">2020-07-29 14:14:05 -0500
commitc2618fc055b2ab28fb465fb43af31a3e8fee7cb8 (patch)
tree298086a64d26b143a66eff7d5da7df755bbc369e /pkgs/tools/security/cfssl
parent7fd5059f58dd5c50975579e2e87ca1294bbc845a (diff)
downloadnixpkgs-c2618fc055b2ab28fb465fb43af31a3e8fee7cb8.tar
nixpkgs-c2618fc055b2ab28fb465fb43af31a3e8fee7cb8.tar.gz
nixpkgs-c2618fc055b2ab28fb465fb43af31a3e8fee7cb8.tar.bz2
nixpkgs-c2618fc055b2ab28fb465fb43af31a3e8fee7cb8.tar.lz
nixpkgs-c2618fc055b2ab28fb465fb43af31a3e8fee7cb8.tar.xz
nixpkgs-c2618fc055b2ab28fb465fb43af31a3e8fee7cb8.tar.zst
nixpkgs-c2618fc055b2ab28fb465fb43af31a3e8fee7cb8.zip
cfssl: 1.3.2 -> 1.4.1
Diffstat (limited to 'pkgs/tools/security/cfssl')
-rw-r--r--pkgs/tools/security/cfssl/default.nix59


1 files changed, 42 insertions, 17 deletions
diff --git a/pkgs/tools/security/cfssl/default.nix b/pkgs/tools/security/cfssl/default.nix
index 6d4238de700..eabb38406da 100644
--- a/pkgs/tools/security/cfssl/default.nix
+++ b/pkgs/tools/security/cfssl/default.nix
@@ -1,34 +1,59 @@
-{ stdenv, buildGoPackage, fetchFromGitHub, fetchpatch }:
+{ stdenv, buildGoModule, fetchFromGitHub }:
 
-buildGoPackage rec {
+let
+  # Embed static files in the built-in webserver
+  rice = buildGoModule rec {
+    name = "rice";
+    src = fetchFromGitHub {
+      owner = "GeertJohan";
+      repo = "go.rice";
+      rev = "v1.0.0";
+      sha256 = "0m1pkqnx9glf3mlx5jdaby9yxccbl02jpjgpi4m7x1hb4s2gn6vx";
+    };
+    vendorSha256 = "0cb5phyl2zm1xnkhvisv0lzgknsi93yzmpayg30w7jc6z4icwnw7";
+    subPackages = [ "rice" ];
+  };
+in
+buildGoModule rec {
   pname = "cfssl";
-  version = "1.3.2";
-
-  goPackagePath = "github.com/cloudflare/cfssl";
+  version = "1.4.1";
 
   src = fetchFromGitHub {
     owner = "cloudflare";
     repo = "cfssl";
-    rev = version;
-    sha256 = "0j2gz2vl2pf7ir7sc7jrwmjnr67hk4qhxw09cjx132jbk337jc9x";
+    rev = "v${version}";
+    sha256 = "07qacg95mbh94fv64y577zyr4vk986syf8h5l8lbcmpr0zcfk0pd";
   };
 
-  # The following patch ensures that the auth-key decoder doesn't break,
-  # if the auth-key file contains leading or trailing whitespaces.
-  # https://github.com/cloudflare/cfssl/pull/923 is merged
-  # remove patch when it becomes part of a release.
-  patches = [
-    (fetchpatch {
-      url    = "https://github.com/cloudflare/cfssl/commit/7e13f60773c96644db9dd8d342d42fe3a4d26f36.patch";
-      sha256 = "1z2v2i8yj7qpj8zj5f2q739nhrr9s59jwzfzk52wfgssl4vv5mn5";
-    })
+  subPackages = [
+    "cmd/cfssl"
+    "cmd/cfssljson"
+    "cmd/cfssl-bundle"
+    "cmd/cfssl-certinfo"
+    "cmd/cfssl-newkey"
+    "cmd/cfssl-scan"
+    "cmd/multirootca"
+    "cmd/mkbundle"
   ];
 
+  vendorSha256 = null;
+
+  preBuild = ''
+    pushd cli/serve
+    ${rice}/bin/rice embed-go
+    popd
+  '';
+
+  buildFlagsArray = ''
+    -ldflags=
+      -s -w
+      -X github.com/cloudflare/cfssl/cli/version.version=v${version}
+  '';
+
   meta = with stdenv.lib; {
     homepage = "https://cfssl.org/";
     description = "Cloudflare's PKI and TLS toolkit";
     license = licenses.bsd2;
     maintainers = with maintainers; [ mbrgm ];
-    platforms = platforms.all;
   };
 }

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-26 15:09:28 +0000