input-output-hk
diff --git a/‎CHANGELOG.md‎
Lines changed: 3 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎pkgs/default.nix‎
Lines changed: 66 additions & 20 deletions b/‎pkgs/default.nix‎
Lines changed: 66 additions & 20 deletions
diff --git a/‎stack.yaml‎
Lines changed: 2 additions & 0 deletions b/‎stack.yaml‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎tools/cardano-sl-tools.cabal‎
Lines changed: 1 addition & 18 deletions b/‎tools/cardano-sl-tools.cabal‎
Lines changed: 1 addition & 18 deletions
@@ -24,6 +24,9 @@
 - The API provides an endpoint to retrieve basic statistics on the UTxO distribution of a wallet 
   (`/api/v1/wallets/{walletId}/statistics`). (CO-325)
 
+- cardano-sl exposes a new package `x509` with tooling for defining a PKI infrastructure from 
+  pure Haskell. This is basically an export of the internals of the tool `cardano-sl-x509-generate` (CO-387)
+
 
 ### Fixes
 
 
@@ -17207,12 +17207,9 @@ license = stdenv.lib.licenses.mit;
 , aeson-options
 , ansi-terminal
 , ansi-wl-pprint
-, asn1-encoding
-, asn1-types
 , async
 , base
 , base58-bytestring
-, base64-bytestring
 , bytestring
 , canonical-json
 , cardano-report-server
@@ -17231,24 +17228,21 @@ license = stdenv.lib.licenses.mit;
 , cardano-sl-util
 , cardano-sl-util-test
 , cardano-sl-wallet
+, cardano-sl-x509
 , containers
 , cpphs
 , cryptonite
 , data-default
-, data-default-class
 , directory
 , filepath
 , formatting
 , Glob
 , hedgehog
-, hourglass
 , hspec
-, ip
 , lens
 , lifted-async
 , mtl
 , neat-interpolation
-, network-transport
 , network-transport-tcp
 , optparse-applicative
 , optparse-generic
@@ -17272,9 +17266,6 @@ license = stdenv.lib.licenses.mit;
 , unix
 , unix-compat
 , unordered-containers
-, x509
-, x509-store
-, x509-validation
 , yaml
 }:
 mkDerivation {
@@ -17330,12 +17321,9 @@ acid-state-exts
 aeson
 aeson-options
 ansi-wl-pprint
-asn1-encoding
-asn1-types
 async
 base
 base58-bytestring
-base64-bytestring
 bytestring
 canonical-json
 cardano-report-server
@@ -17352,21 +17340,18 @@ cardano-sl-infra
 cardano-sl-networking
 cardano-sl-util
 cardano-sl-wallet
+cardano-sl-x509
 containers
 cryptonite
 data-default
-data-default-class
 directory
 filepath
 formatting
 Glob
-hourglass
-ip
 lens
 lifted-async
 mtl
 neat-interpolation
-network-transport
 network-transport-tcp
 optparse-applicative
 optparse-generic
@@ -17384,9 +17369,6 @@ universum
 unix
 unix-compat
 unordered-containers
-x509
-x509-store
-x509-validation
 yaml
 ];
 executableToolDepends = [
@@ -18201,6 +18183,70 @@ doHaddock = false;
 description = "Cardano SL - wallet (Arbitrary instances)";
 license = stdenv.lib.licenses.mit;
 
+}) {};
+"cardano-sl-x509" = callPackage
+({
+  mkDerivation
+, aeson
+, asn1-encoding
+, asn1-types
+, base
+, base64-bytestring
+, bytestring
+, cryptonite
+, data-default-class
+, filepath
+, hourglass
+, ip
+, network-transport
+, optparse-applicative
+, stdenv
+, text
+, universum
+, unordered-containers
+, x509
+, x509-store
+, x509-validation
+, yaml
+}:
+mkDerivation {
+
+pname = "cardano-sl-x509";
+version = "1.0.0";
+src = ./../x509;
+configureFlags = [
+"--ghc-option=-fwarn-redundant-constraints"
+"--ghc-option=-Wall"
+"--ghc-option=-Wcompat"
+"--ghc-option=-Werror"
+];
+libraryHaskellDepends = [
+aeson
+asn1-encoding
+asn1-types
+base
+base64-bytestring
+bytestring
+cryptonite
+data-default-class
+filepath
+hourglass
+ip
+network-transport
+optparse-applicative
+text
+universum
+unordered-containers
+x509
+x509-store
+x509-validation
+yaml
+];
+doHaddock = false;
+homepage = "https://github.com/input-output-hk/cardano-sl/x509/README.md";
+description = "Tool-suite for generating x509 certificates specialized for RSA with SHA-256";
+license = stdenv.lib.licenses.mit;
+
 }) {};
 "carray" = callPackage
 ({
 
@@ -39,6 +39,7 @@ packages:
 - node-ipc
 - faucet
 - acid-state-exts
+- x509
 
 # IOHK projects:
 
@@ -321,3 +322,4 @@ ghc-options:
   cardano-sl-wallet:      -Wall -Werror -Wcompat -fwarn-redundant-constraints
   cardano-sl-wallet-new:  -Wall -Werror -Wcompat -fwarn-redundant-constraints
   cardano-sl-node-ipc:    -Wall -Werror -Wcompat -fwarn-redundant-constraints
+  cardano-sl-x509:        -Wall -Werror -Wcompat -fwarn-redundant-constraints
@@ -465,29 +465,12 @@ executable cardano-blockchain-analyser
 executable cardano-x509-certificates
   hs-source-dirs: src/gencerts
   main-is: Main.hs
-  other-modules: Data.X509.Extra
-               , Configuration
 
   build-depends: base >=4.7 && <5
-               , aeson
-               , asn1-encoding
-               , asn1-types
-               , base64-bytestring
-               , bytestring
-               , cryptonite
-               , data-default-class
+               , cardano-sl-x509
                , filepath
-               , hourglass
-               , ip
-               , network-transport
                , optparse-applicative
-               , text
                , universum
-               , unordered-containers
-               , x509
-               , x509-store
-               , x509-validation
-               , yaml
 
   default-extensions:   DeriveGeneric
                         NoImplicitPrelude