[Nix-dev] How to add (self-signed) SSL certificate to NixOS?
Bjørn Forsman
bjorn.forsman at gmail.com
Wed Feb 4 23:18:37 CET 2015
On 4 February 2015 at 21:56, Nicolas Pierron
<nicolas.b.pierron at gmail.com> wrote:
> On Wed, Feb 4, 2015 at 10:26 AM, Bjørn Forsman <bjorn.forsman at gmail.com> wrote:
>> [...]
>> Apparently, that was only half the problem. I also need to _override_
>> this entry, because the ca.nix module already provides
>> environment.etc."ssl/certs/ca-bundle.crt". My attempts so far have
>> failed:
>>
>> (1) Plain setting. Causes "mismatched duplicate entry
>> /nix/store/HASH1-my-ca-bundle.crt <->
>> /nix/store/HASH2-cacert-2014-0715/etc/ca-bundle.crt":
>>
>> environment.etc."ssl/certs/ca-bundle.crt".source = ...
>>
>> (2) "Inner mkForce". Also causes "mismatched duplicate entry ...":
>>
>> environment.etc."ssl/certs/ca-bundle.crt" = lib.mkForce { source = ...; };
>
> The following should work:
>
> environment.etc."ssl/certs/ca-bundle.crt".source = lib.mkForce ...;
Unfortunately it does not. That also results in "mismatched duplicate
entry ..." error.
- Bjørn
More information about the nix-dev
mailing list