Broken /etc/ssl/certs/ca-certificates.crt
symlink breaks SSL certs #560
Labels
No labels
Area/build-packaging
Area/cli
Area/evaluator
Area/fetching
Area/flakes
Area/language
Area/profiles
Area/protocol
Area/releng
Area/remote-builds
Area/repl
Area/store
bug
Cross Compilation
devx
docs
Downstream Dependents
E/easy
E/hard
E/help wanted
E/reproducible
E/requires rearchitecture
imported
Needs Langver
OS/Linux
OS/macOS
performance
regression
release-blocker
RFD
stability
Status
blocked
Status
invalid
Status
postponed
Status
wontfix
testing
testing/flakey
ux
No milestone
No project
No assignees
2 participants
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference: lix-project/lix#560
Loading…
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Describe the bug
When
ssl-cert-file
is not set, Lix tries/etc/ssl/certs/ca-certificates.crt
and then/nix/var/nix/profiles/default/etc/ssl/certs/ca-bundle.crt
. The/etc
path is where Linux distros (such as NixOS) place certs. If macOS has a broken symlink at that path, Lix will use that symlink and SSL certs will break. This can happen when uninstalling nix-darwin and doing a fresh Lix install.Lix should check the
/etc/ssl/certs/ca-certificates.crt
path to make sure it's not a broken symlink before using it.This issue was mentioned on Gerrit on the following CLs: