Retropex/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ec015518a5
nixpkgs/pkgs/tools/security/qdigidoc/default.nix
Florian Klink ec015518a5 qdigidoc: 4.6.0 -> 4.7.0 
This updates qdigidoc to the latest version, and switches from vendoring
a (outdated) patch from Fedora to passing in the files directly.

Instead of copying them at well-known locations, we set CONFIG_URL and
TSL_URL directly.

This now also includes introductions on how to refresh them.
2025-03-30 17:55:16 +01:00

80 lines
2.1 KiB
Nix
Raw Blame History

{
lib,
mkDerivation,
fetchurl,
cmake,
flatbuffers,
gettext,
pkg-config,
libdigidocpp,
opensc,
openldap,
openssl,
pcsclite,
qtbase,
qtsvg,
qttools,
}:
mkDerivation rec {
pname = "qdigidoc";
version = "4.7.0";
src = fetchurl {
url = "https://github.com/open-eid/DigiDoc4-Client/releases/download/v${version}/qdigidoc4-${version}.tar.gz";
hash = "sha256-XP7KqhIYriHQzQrw77zUp/I9nnh9EqK0m9+N+69Lh5c=";
};
nativeBuildInputs = [
cmake
gettext
pkg-config
qttools
];
buildInputs = [
flatbuffers
libdigidocpp
opensc
openldap
openssl
pcsclite
qtbase
qtsvg
];
# qdigidoc needs a (somewhat recent) config, as well as a TSL list for signing to work.
# To refresh, re-fetch and update what's in the vendor/ directory.
cmakeFlags = [
# If not provided before the build, qdigidoc tries to download a TSL list during the build.
# We pass it in via TSL_URL, fetched from https://ec.europa.eu/tools/lotl/eu-lotl.xml.
"-DTSL_URL=file://${./vendor/eu-lotl.xml}"
# `config.{json,pub,rsa}`, from https://id.eesti.ee/config.{json,pub,rsa}.
# The build system also looks for `config.{pub,rsa}` in the same directory,
# all three files need to be present.
"-DCONFIG_URL=file://${./vendor}/config.json"
];
# qdigidoc4's `QPKCS11::reload()` dlopen()s "opensc-pkcs11.so" in QLibrary,
# i.e. OpenSC's module is searched for in libQt5Core's DT_RUNPATH and fixing
# qdigidoc4's DT_RUNPATH has no effect on Linux (at least OpenBSD's ld.so(1)
# searches the program's runtime path as well).
# LD_LIBRARY_PATH takes precedence for all calling objects, see dlopen(3).
# https://github.com/open-eid/cmake/pull/35 might be an alternative.
qtWrapperArgs = [
"--prefix LD_LIBRARY_PATH : ${opensc}/lib/pkcs11/"
];
meta = with lib; {
description = "Qt-based UI for signing and verifying DigiDoc documents";
mainProgram = "qdigidoc4";
homepage = "https://www.id.ee/";
license = licenses.lgpl21Plus;
platforms = platforms.linux;
maintainers = with maintainers; [
flokli
mmahut
];
};
}
Reference in New Issue View Git Blame Copy Permalink