diff options
Diffstat (limited to 'nixpkgs/pkgs/tools/security/certmgr/default.nix')
-rw-r--r-- | nixpkgs/pkgs/tools/security/certmgr/default.nix | 43 |
1 files changed, 43 insertions, 0 deletions
diff --git a/nixpkgs/pkgs/tools/security/certmgr/default.nix b/nixpkgs/pkgs/tools/security/certmgr/default.nix new file mode 100644 index 000000000000..a025c69b7381 --- /dev/null +++ b/nixpkgs/pkgs/tools/security/certmgr/default.nix @@ -0,0 +1,43 @@ +{ stdenv, buildGoPackage, fetchFromGitHub, fetchpatch }: + +let + generic = { patches ? [] }: + buildGoPackage rec { + version = "1.6.4"; + name = "certmgr-${version}"; + + goPackagePath = "github.com/cloudflare/certmgr/"; + + src = fetchFromGitHub { + owner = "cloudflare"; + repo = "certmgr"; + rev = "v${version}"; + sha256 = "0glvyp61ya21pdm2bsvq3vfhmmxc2998vxc6hiyc79ijsv9n6jqi"; + }; + + inherit patches; + + meta = with stdenv.lib; { + homepage = https://cfssl.org/; + description = "Cloudflare's certificate manager"; + platforms = platforms.linux; + license = licenses.bsd2; + maintainers = with maintainers; [ johanot srhb ]; + }; + }; +in +{ + certmgr = generic {}; + + certmgr-selfsigned = generic { + # The following patch makes it possible to use a self-signed x509 cert + # for the cfssl apiserver. + # TODO: remove patch when PR is merged. + patches = [ + (fetchpatch { + url = "https://github.com/cloudflare/certmgr/pull/51.patch"; + sha256 = "0jhsw159d2mgybvbbn6pmvj4yqr5cwcal5fjwkcn9m4f4zlb6qrs"; + }) + ]; + }; +} |