search

nix-community / nix-on-droid

Nix-enabled environment for your Android device. [maintainers=@t184256,@Gerschtli]
https://nix-on-droid.unboiled.info
MIT License
1.25k stars 69 forks source link

root certificates missing? #69

Closed bbigras closed 3 years ago

bbigras commented 4 years ago

I got this message when I try to use niv:

image

I have cacert installed.

I also have a similar message when I try to push stuff to cachix.

Any ideas?

t184256 commented 4 years ago

Wild guess: https://knowledge.digicert.com/alerts/DigiCert-ICA-Replacement

ahdyt commented 3 years ago

Hi I have workaround for this issue

First install curl

Then mkdir at /etc/ssl/certs

cd there and run

curl --remote-name --time-cond cacert.pem https://curl.se/ca/cacert.pem

Perhaps there's one who like to make automated script, that would be useful.

Gerschtli commented 3 years ago

A more robust solution would be to add

{
  environment.etc."ssl/certs/ca-certificates.crt".source = "${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt";
}

Or a modified version of https://github.com/NixOS/nixpkgs/blob/master/nixos/modules/security/ca.nix.

Maybe anyone has the time to add such a module to nix-on-droid to fix it for all users :)

ahdyt commented 3 years ago

Maybe anyone has the time to add such a module to nix-on-droid to fix it for all users :)

the module still foreign for me