nixpkgs/pkgs/tools/admin/boulder/default.nix

{ lib
, fetchFromGitHub
, buildGoModule
, testers
, boulder
}:

buildGoModule rec {
  pname = "boulder";
  version = "2022-09-29";

  src = fetchFromGitHub {
    owner = "letsencrypt";
    repo = "boulder";
    rev = "release-${version}";
    leaveDotGit = true;
    postFetch = ''
      cd $out
      git rev-parse --short=8 HEAD 2>/dev/null >$out/COMMIT
      find "$out" -name .git -print0 | xargs -0 rm -rf
    '';
    hash = "sha256-MyJHTkt4qEHwD1UOkOfDNhNddcyFHPJvDzoT7kJ2qi4=";
  };

  vendorHash = null;

  subPackages = [ "cmd/boulder" ];

  patches = [ ./no-build-id-test.patch ];

  ldflags = [
    "-s"
    "-w"
    "-X github.com/letsencrypt/boulder/core.BuildHost=nixbld@localhost"
  ];

  preBuild = ''
    ldflags+=" -X \"github.com/letsencrypt/boulder/core.BuildID=${src.rev} +$(cat COMMIT)\""
    ldflags+=" -X \"github.com/letsencrypt/boulder/core.BuildTime=$(date -u -d @0)\""
  '';

  preCheck = ''
    # Test all targets.
    unset subPackages

    # Disable tests that require additional services.
    rm -rf \
      cmd/admin-revoker/main_test.go \
      cmd/bad-key-revoker/main_test.go \
      cmd/cert-checker/main_test.go \
      cmd/contact-auditor/main_test.go \
      cmd/expiration-mailer/main_test.go \
      cmd/expiration-mailer/send_test.go \
      cmd/id-exporter/main_test.go \
      cmd/rocsp-tool/client_test.go \
      db/map_test.go \
      db/multi_test.go \
      db/rollback_test.go \
      log/log_test.go \
      ocsp/updater/updater_test.go \
      ra/ra_test.go \
      rocsp/rocsp_test.go \
      sa/database_test.go \
      sa/model_test.go \
      sa/precertificates_test.go \
      sa/rate_limits_test.go \
      sa/sa_test.go \
      test/load-generator/acme/directory_test.go \
      va/caa_test.go \
      va/dns_test.go \
      va/http_test.go \
      va/tlsalpn_test.go \
      va/va_test.go
  '';

  postInstall = ''
    for i in $($out/bin/boulder --list); do
      ln -s $out/bin/boulder $out/bin/$i
    done
  '';

  passthru.tests.version = testers.testVersion {
    package = boulder;
    command = "boulder --version";
    inherit version;
  };

  meta = with lib; {
    homepage = "https://github.com/letsencrypt/boulder";
    description = "An ACME-based certificate authority, written in Go";
    longDescription = ''
      This is an implementation of an ACME-based CA. The ACME protocol allows
      the CA to automatically verify that an applicant for a certificate
      actually controls an identifier, and allows domain holders to issue and
      revoke certificates for their domains. Boulder is the software that runs
      Let's Encrypt.
    '';
    license = licenses.mpl20;
    maintainers = with maintainers; [ azahi ];
  };
}
boulder: 2022-06-21 -> 2022-07-05 2022-07-11 00:27:02 +02:00			`{ lib`
boulder: init at release-2019-10-13 2019-10-18 12:21:50 +02:00			`, fetchFromGitHub`
boulder: 2022-06-21 -> 2022-07-05 2022-07-11 00:27:02 +02:00			`, buildGoModule`
boulder: 2022-07-11 -> 2022-08-29 2022-09-03 01:44:02 +02:00			`, testers`
			`, boulder`
boulder: init at release-2019-10-13 2019-10-18 12:21:50 +02:00			`}:`

boulder: release-2019-10-13 -> release-2022-05-31 2022-06-12 14:09:56 +02:00			`buildGoModule rec {`
boulder: init at release-2019-10-13 2019-10-18 12:21:50 +02:00			`pname = "boulder";`
boulder: 2022-09-26 -> 2022-09-29 2022-09-30 11:33:15 +02:00			`version = "2022-09-29";`
boulder: init at release-2019-10-13 2019-10-18 12:21:50 +02:00
			`src = fetchFromGitHub {`
			`owner = "letsencrypt";`
			`repo = "boulder";`
boulder: release-2022-05-31 -> release-2022-06-21 2022-06-26 09:52:05 +02:00			`rev = "release-${version}";`
boulder: 2022-06-21 -> 2022-07-05 2022-07-11 00:27:02 +02:00			`leaveDotGit = true;`
			`postFetch = ''`
			`cd $out`
boulder: 2022-07-11 -> 2022-08-29 2022-09-03 01:44:02 +02:00			`git rev-parse --short=8 HEAD 2>/dev/null >$out/COMMIT`
boulder: 2022-06-21 -> 2022-07-05 2022-07-11 00:27:02 +02:00			`find "$out" -name .git -print0 \| xargs -0 rm -rf`
			`'';`
boulder: 2022-09-26 -> 2022-09-29 2022-09-30 11:33:15 +02:00			`hash = "sha256-MyJHTkt4qEHwD1UOkOfDNhNddcyFHPJvDzoT7kJ2qi4=";`
boulder: init at release-2019-10-13 2019-10-18 12:21:50 +02:00			`};`

boulder: 2022-07-11 -> 2022-08-29 2022-09-03 01:44:02 +02:00			`vendorHash = null;`
boulder: release-2019-10-13 -> release-2022-05-31 2022-06-12 14:09:56 +02:00
			`subPackages = [ "cmd/boulder" ];`

boulder: 2022-07-11 -> 2022-08-29 2022-09-03 01:44:02 +02:00			`patches = [ ./no-build-id-test.patch ];`

boulder: 2022-06-21 -> 2022-07-05 2022-07-11 00:27:02 +02:00			`ldflags = [`
			`"-s"`
			`"-w"`
			`"-X github.com/letsencrypt/boulder/core.BuildHost=nixbld@localhost"`
			`];`

			`preBuild = ''`
boulder: 2022-07-11 -> 2022-08-29 2022-09-03 01:44:02 +02:00			`ldflags+=" -X \"github.com/letsencrypt/boulder/core.BuildID=${src.rev} +$(cat COMMIT)\""`
boulder: 2022-06-21 -> 2022-07-05 2022-07-11 00:27:02 +02:00			`ldflags+=" -X \"github.com/letsencrypt/boulder/core.BuildTime=$(date -u -d @0)\""`
			`'';`
boulder: release-2019-10-13 -> release-2022-05-31 2022-06-12 14:09:56 +02:00
boulder: 2022-07-11 -> 2022-08-29 2022-09-03 01:44:02 +02:00			`preCheck = ''`
			`# Test all targets.`
			`unset subPackages`

			`# Disable tests that require additional services.`
			`rm -rf \`
			`cmd/admin-revoker/main_test.go \`
			`cmd/bad-key-revoker/main_test.go \`
			`cmd/cert-checker/main_test.go \`
			`cmd/contact-auditor/main_test.go \`
			`cmd/expiration-mailer/main_test.go \`
			`cmd/expiration-mailer/send_test.go \`
			`cmd/id-exporter/main_test.go \`
			`cmd/rocsp-tool/client_test.go \`
			`db/map_test.go \`
			`db/multi_test.go \`
			`db/rollback_test.go \`
			`log/log_test.go \`
			`ocsp/updater/updater_test.go \`
			`ra/ra_test.go \`
			`rocsp/rocsp_test.go \`
			`sa/database_test.go \`
			`sa/model_test.go \`
			`sa/precertificates_test.go \`
			`sa/rate_limits_test.go \`
			`sa/sa_test.go \`
			`test/load-generator/acme/directory_test.go \`
			`va/caa_test.go \`
			`va/dns_test.go \`
			`va/http_test.go \`
			`va/tlsalpn_test.go \`
			`va/va_test.go`
			`'';`

boulder: release-2019-10-13 -> release-2022-05-31 2022-06-12 14:09:56 +02:00			`postInstall = ''`
			`for i in $($out/bin/boulder --list); do`
			`ln -s $out/bin/boulder $out/bin/$i`
			`done`
			`'';`

boulder: 2022-07-11 -> 2022-08-29 2022-09-03 01:44:02 +02:00			`passthru.tests.version = testers.testVersion {`
			`package = boulder;`
			`command = "boulder --version";`
			`inherit version;`
boulder: 2022-06-21 -> 2022-07-05 2022-07-11 00:27:02 +02:00			`};`

boulder: release-2019-10-13 -> release-2022-05-31 2022-06-12 14:09:56 +02:00			`meta = with lib; {`
boulder: init at release-2019-10-13 2019-10-18 12:21:50 +02:00			`homepage = "https://github.com/letsencrypt/boulder";`
boulder: release-2019-10-13 -> release-2022-05-31 2022-06-12 14:09:56 +02:00			`description = "An ACME-based certificate authority, written in Go";`
			`longDescription = ''`
			`This is an implementation of an ACME-based CA. The ACME protocol allows`
			`the CA to automatically verify that an applicant for a certificate`
			`actually controls an identifier, and allows domain holders to issue and`
			`revoke certificates for their domains. Boulder is the software that runs`
			`Let's Encrypt.`
			`'';`
			`license = licenses.mpl20;`
			`maintainers = with maintainers; [ azahi ];`
boulder: init at release-2019-10-13 2019-10-18 12:21:50 +02:00			`};`
			`}`