[Nix-dev] How to add (self-signed) SSL certificate to NixOS?
Nicolas Pierron
nicolas.b.pierron at gmail.com
Thu Feb 5 00:02:29 CET 2015
Ok, it should have, can you open a bug and cc me, I will try to look
at it during the week-end.
I guess this might be a side-effect of the attrsOf.merge function
which is used by loaOf.
On Wed, Feb 4, 2015 at 11:18 PM, Bjørn Forsman <bjorn.forsman at gmail.com> wrote:
> On 4 February 2015 at 21:56, Nicolas Pierron
> <nicolas.b.pierron at gmail.com> wrote:
>> On Wed, Feb 4, 2015 at 10:26 AM, Bjørn Forsman <bjorn.forsman at gmail.com> wrote:
>>> [...]
>>> Apparently, that was only half the problem. I also need to _override_
>>> this entry, because the ca.nix module already provides
>>> environment.etc."ssl/certs/ca-bundle.crt". My attempts so far have
>>> failed:
>>>
>>> (1) Plain setting. Causes "mismatched duplicate entry
>>> /nix/store/HASH1-my-ca-bundle.crt <->
>>> /nix/store/HASH2-cacert-2014-0715/etc/ca-bundle.crt":
>>>
>>> environment.etc."ssl/certs/ca-bundle.crt".source = ...
>>>
>>> (2) "Inner mkForce". Also causes "mismatched duplicate entry ...":
>>>
>>> environment.etc."ssl/certs/ca-bundle.crt" = lib.mkForce { source = ...; };
>>
>> The following should work:
>>
>> environment.etc."ssl/certs/ca-bundle.crt".source = lib.mkForce ...;
>
> Unfortunately it does not. That also results in "mismatched duplicate
> entry ..." error.
>
> - Bjørn
--
Nicolas Pierron
http://www.linkedin.com/in/nicolasbpierron - http://nbp.name/
More information about the nix-dev
mailing list