python3: pin to openssl_1_1
This commit is contained in:
ajs124
parent
0a90c5d160
commit
8dfc998207
1 changed files with 9 additions and 4 deletions
|
|
@ -7,6 +7,7 @@
|
||||||
, mailcap, mimetypesSupport ? true
|
, mailcap, mimetypesSupport ? true
|
||||||
, ncurses
|
, ncurses
|
||||||
, openssl
|
, openssl
|
||||||
|
, openssl_1_1
|
||||||
, readline
|
, readline
|
||||||
, sqlite
|
, sqlite
|
||||||
, tcl ? null, tk ? null, tix ? null, libX11 ? null, xorgproto ? null, x11Support ? false
|
, tcl ? null, tk ? null, tix ? null, libX11 ? null, xorgproto ? null, x11Support ? false
|
||||||
|
|
@ -75,6 +76,10 @@ assert lib.assertMsg (reproducibleBuild -> (!rebuildBytecode))
|
||||||
with lib;
|
with lib;
|
||||||
|
|
||||||
let
|
let
|
||||||
|
# cpython does support/build with openssl 3.0, but some libraries using the ssl module seem to have issues with it
|
||||||
|
# null check for Minimal
|
||||||
|
openssl' = if openssl != null then openssl_1_1 else null;
|
||||||
|
|
||||||
buildPackages = pkgsBuildHost;
|
buildPackages = pkgsBuildHost;
|
||||||
inherit (passthru) pythonForBuild;
|
inherit (passthru) pythonForBuild;
|
||||||
|
|
||||||
|
|
@ -115,7 +120,7 @@ let
|
||||||
];
|
];
|
||||||
|
|
||||||
buildInputs = filter (p: p != null) ([
|
buildInputs = filter (p: p != null) ([
|
||||||
zlib bzip2 expat xz libffi gdbm sqlite readline ncurses openssl ]
|
zlib bzip2 expat xz libffi gdbm sqlite readline ncurses openssl' ]
|
||||||
++ optionals x11Support [ tcl tk libX11 xorgproto ]
|
++ optionals x11Support [ tcl tk libX11 xorgproto ]
|
||||||
++ optionals (bluezSupport && stdenv.isLinux) [ bluez ]
|
++ optionals (bluezSupport && stdenv.isLinux) [ bluez ]
|
||||||
++ optionals stdenv.isDarwin [ configd ])
|
++ optionals stdenv.isDarwin [ configd ])
|
||||||
|
|
@ -321,8 +326,8 @@ in with passthru; stdenv.mkDerivation {
|
||||||
"--with-threads"
|
"--with-threads"
|
||||||
] ++ optionals (sqlite != null && isPy3k) [
|
] ++ optionals (sqlite != null && isPy3k) [
|
||||||
"--enable-loadable-sqlite-extensions"
|
"--enable-loadable-sqlite-extensions"
|
||||||
] ++ optionals (openssl != null) [
|
] ++ optionals (openssl' != null) [
|
||||||
"--with-openssl=${openssl.dev}"
|
"--with-openssl=${openssl'.dev}"
|
||||||
] ++ optionals (stdenv.hostPlatform != stdenv.buildPlatform) [
|
] ++ optionals (stdenv.hostPlatform != stdenv.buildPlatform) [
|
||||||
"ac_cv_buggy_getaddrinfo=no"
|
"ac_cv_buggy_getaddrinfo=no"
|
||||||
# Assume little-endian IEEE 754 floating point when cross compiling
|
# Assume little-endian IEEE 754 floating point when cross compiling
|
||||||
|
|
@ -484,7 +489,7 @@ in with passthru; stdenv.mkDerivation {
|
||||||
# Enforce that we don't have references to the OpenSSL -dev package, which we
|
# Enforce that we don't have references to the OpenSSL -dev package, which we
|
||||||
# explicitly specify in our configure flags above.
|
# explicitly specify in our configure flags above.
|
||||||
disallowedReferences =
|
disallowedReferences =
|
||||||
lib.optionals (openssl != null && !static) [ openssl.dev ]
|
lib.optionals (openssl' != null && !static) [ openssl'.dev ]
|
||||||
++ lib.optionals (stdenv.hostPlatform != stdenv.buildPlatform) [
|
++ lib.optionals (stdenv.hostPlatform != stdenv.buildPlatform) [
|
||||||
# Ensure we don't have references to build-time packages.
|
# Ensure we don't have references to build-time packages.
|
||||||
# These typically end up in shebangs.
|
# These typically end up in shebangs.
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue