Use libsodium instead of OpenSSL for binary cache signing

Sodium's Ed25519 signatures are much shorter than OpenSSL's RSA signatures. Public keys are also much shorter, so they're now specified directly in the nix.conf option ‘binary-cache-public-keys’. The new command ‘nix-store --generate-binary-cache-key’ generates and prints a public and secret key.
author: Eelco Dolstra <eelco.dolstra@logicblox.com> 2015-02-04T15·43+0100
committer: Eelco Dolstra <eelco.dolstra@logicblox.com> 2015-02-04T16·10+0100
commit: e0def5bc4b41ad09ce3f188bf522814ef3389e1f (patch)
tree: 70b894e41d8b682a166872d28d720e438aea8dda /release.nix
parent: 0d1dafa0c4ef8adc27315653df8a170c0cf33985 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/release.nix b/release.nix
index a08cf7a96c..5b6ff22844 100644
--- a/release.nix
+++ b/release.nix
@@ -24,7 +24,7 @@ let
 
         buildInputs =
           [ curl bison flex perl libxml2 libxslt bzip2
-            tetex dblatex nukeReferences pkgconfig sqlite
+            tetex dblatex nukeReferences pkgconfig sqlite libsodium
             docbook5 docbook5_xsl
           ] ++ lib.optional (!lib.inNixShell) git;
 
@@ -80,7 +80,7 @@ let
         name = "nix";
         src = tarball;
 
-        buildInputs = [ curl perl bzip2 openssl pkgconfig sqlite boehmgc ];
+        buildInputs = [ curl perl bzip2 openssl pkgconfig sqlite boehmgc libsodium ];
 
         configureFlags = ''
           --disable-init-state
author	Eelco Dolstra <eelco.dolstra@logicblox.com>	2015-02-04T15·43+0100
committer	Eelco Dolstra <eelco.dolstra@logicblox.com>	2015-02-04T16·10+0100
commit	e0def5bc4b41ad09ce3f188bf522814ef3389e1f (patch)
tree	70b894e41d8b682a166872d28d720e438aea8dda /release.nix
parent	0d1dafa0c4ef8adc27315653df8a170c0cf33985 (diff)