summary refs log tree commit diff
path: root/pkgs/data/misc/cacert
diff options
context:
space:
mode:
authorWilliam A. Kennington III <william@wkennington.com>2015-05-29 13:51:55 -0700
committerWilliam A. Kennington III <william@wkennington.com>2015-05-29 13:52:07 -0700
commitd6cbb061e3bb5d2a93196a4543cfbd7c2359bd84 (patch)
tree8e8b90fba3c24a27474d1729324b343a2bb1331b /pkgs/data/misc/cacert
parent02895e82111c87f3e22703be4eb6b9469eb0e092 (diff)
downloadnixlib-d6cbb061e3bb5d2a93196a4543cfbd7c2359bd84.tar
nixlib-d6cbb061e3bb5d2a93196a4543cfbd7c2359bd84.tar.gz
nixlib-d6cbb061e3bb5d2a93196a4543cfbd7c2359bd84.tar.bz2
nixlib-d6cbb061e3bb5d2a93196a4543cfbd7c2359bd84.tar.lz
nixlib-d6cbb061e3bb5d2a93196a4543cfbd7c2359bd84.tar.xz
nixlib-d6cbb061e3bb5d2a93196a4543cfbd7c2359bd84.tar.zst
nixlib-d6cbb061e3bb5d2a93196a4543cfbd7c2359bd84.zip
cacert: Build directly from nss instead of our own tarball
Diffstat (limited to 'pkgs/data/misc/cacert')
-rw-r--r--pkgs/data/misc/cacert/default.nix32


1 files changed, 19 insertions, 13 deletions
diff --git a/pkgs/data/misc/cacert/default.nix b/pkgs/data/misc/cacert/default.nix
index 0a2c43fc5812..205d051ddb29 100644
--- a/pkgs/data/misc/cacert/default.nix
+++ b/pkgs/data/misc/cacert/default.nix
@@ -1,23 +1,29 @@
-{ stdenv, fetchurl }:
+{ stdenv, nss, curl-full, perl, perlPackages }:
 
 stdenv.mkDerivation rec {
-  name = "cacert-20140715";
+  name = "nss-cacert-${nss.version}";
 
-  src = fetchurl {
-    url = "http://tarballs.nixos.org/${name}.pem.bz2";
-    sha256 = "1l4j7z6ysnllx99isjzlc8zc34rbbgj4kzlg1y5sy9bgphc8cssl";
-  };
+  src = nss.src;
+
+  postPatch = ''
+    unpackFile ${curl-full.src};
+  '';
+
+  nativeBuildInputs = [ perl ] ++ (with perlPackages; [ LWP ]);
 
-  unpackPhase = "true";
+  buildPhase = ''
+    perl curl-*/lib/mk-ca-bundle.pl -d "file://$(pwd)/nss/lib/ckfw/builtins/certdata.txt" ca-bundle.crt
+  '';
 
-  installPhase =
-    ''
-      mkdir -p $out/etc
-      bunzip2 < $src > $out/etc/ca-bundle.crt
-    '';
+  installPhase = ''
+    mkdir -pv $out
+    cp -v ca-bundle.crt $out
+  '';
 
-  meta = {
+  meta = with stdenv.lib; {
     homepage = http://curl.haxx.se/docs/caextract.html;
     description = "A bundle of X.509 certificates of public Certificate Authorities (CA)";
+    platforms = platforms.all;
+    maintainers = with maintainers; [ wkennington ];
   };
 }

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-15 02:28:04 +0000