blob: 8f53bd9805ba6bad71a1c69c4dc529ef72969b36 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
{ lib, buildPythonPackage, fetchFromGitHub
, asn1crypto, oscrypto
, cacert
}:
buildPythonPackage rec {
pname = "certvalidator";
version = "0.11.1";
src = fetchFromGitHub {
owner = "wbond";
repo = pname;
rev = version;
sha256 = "sha256-yVF7t4FuU3C9fDg67JeM7LWZZh/mv5F4EKmjlO4AuBY=";
};
propagatedBuildInputs = [ asn1crypto oscrypto ];
checkInputs = [ cacert ];
checkPhase = ''
# Tests are run with a custom executor/loader
# The regex to skip specific tests relies on negative lookahead of regular expressions
# We're skipping the few tests that rely on the network, fetching CRLs, OCSP or remote certificates
python -c 'import dev.tests; dev.tests.run("^(?!.*test_(basic_certificate_validator_tls|fetch|revocation|build_path)).*$")'
'';
pythonImportsCheck = [ "certvalidator" ];
meta = with lib; {
homepage = "https://github.com/wbond/certvalidator";
description = "Validates X.509 certificates and paths";
license = licenses.mit;
maintainers = with maintainers; [ baloo ];
};
}
|