blob: f1f6126c69df3d99a529f1de21e33688b384c5fa (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
|
{ lib, buildPythonPackage, fetchFromGitHub
, asn1crypto, oscrypto
, cacert
}:
buildPythonPackage rec {
pname = "certvalidator";
version = "0.11.1";
format = "setuptools";
src = fetchFromGitHub {
owner = "wbond";
repo = pname;
rev = version;
hash = "sha256-yVF7t4FuU3C9fDg67JeM7LWZZh/mv5F4EKmjlO4AuBY=";
};
propagatedBuildInputs = [ asn1crypto oscrypto ];
nativeCheckInputs = [ cacert ];
checkPhase = ''
# Tests are run with a custom executor/loader
# The regex to skip specific tests relies on negative lookahead of regular expressions
# We're skipping the few tests that rely on the network, fetching CRLs, OCSP or remote certificates
python -c 'import dev.tests; dev.tests.run("^(?!.*test_(basic_certificate_validator_tls|fetch|revocation|build_path)).*$")'
'';
pythonImportsCheck = [ "certvalidator" ];
meta = with lib; {
homepage = "https://github.com/wbond/certvalidator";
description = "Validates X.509 certificates and paths";
license = licenses.mit;
maintainers = with maintainers; [ baloo ];
};
}
|