summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authortv <tv@shackspace.de>2015-10-21 13:13:49 +0200
committertv <tv@shackspace.de>2015-10-21 13:13:49 +0200
commitdf04a82426ad36726da7becae5ec4b6c33d8d14b (patch)
tree21d1420994bedd1efa2a6a541e35f5b170421319
parent48abef60c172bdd5d15e574138824a89b23fa86d (diff)
krebs.nixos-infest: set SSL_CERT_FILE properly
-rw-r--r--krebs/default.nix20
1 files changed, 14 insertions, 6 deletions
diff --git a/krebs/default.nix b/krebs/default.nix
index 24d9e843b..0b055cd24 100644
--- a/krebs/default.nix
+++ b/krebs/default.nix
@@ -130,16 +130,24 @@ let out = {
nix_env=$(cat_src | sed -n '
s:.*\(/nix/store/[a-z0-9]*-nix-[0-9.]\+/bin/nix-env\).*:\1:p;T;q
')
- coreutils=$(find /mnt/nix/store \
- -mindepth 1 -maxdepth 1 -type d -name '*-coreutils-*' \
- | head -n 1 | sed s:^/mnt::)
- echo nix-env is $nix_env
+ echo "nix-env is $nix_env" >&2
+ getchrootpath() {(
+ name=$1
+ path=$(find /mnt/nix/store \
+ -mindepth 1 -maxdepth 1 -type d -name '*-'"$name"'-*' \
+ | head -n 1 | sed s:^/mnt::)
+ echo "$name is $path" >&2
+ echo "$path"
+ )}
+ cacert=$(getchrootpath cacert)
+ coreutils=$(getchrootpath coreutils)
+ env="$coreutils/bin/env \
+ SSL_CERT_FILE=$cacert/etc/ssl/certs/ca-bundle.crt"
sed -i '
- s:^NIX_PATH=:chroot $mountPoint '"$coreutils"'/bin/env &:
+ s:^NIX_PATH=:chroot $mountPoint '"$env"' &:
s:^nix-env:'"$nix_env"':
' nixos-install
- unset SSL_CERT_FILE
./nixos-install
''}
'';