update nipr cert on wsl

2024-10-05 20:06:16 -07:00 · 2024-10-02 09:10:57 -07:00 · 2024-10-02 09:10:57 -07:00 · e432467fc7
commit e432467fc7
parent 024370803b
2 changed files with 148 additions and 0 deletions
--- a/provision/hosts/wsl/configuration.nix
+++ b/provision/hosts/wsl/configuration.nix
@ -42,8 +42,19 @@ in

  environment.systemPackages = with pkgs; [
    firefox
+    wget
  ];

+  security.pki.certificateFiles = [
+    ./nipr.crt
+  ];
+  environment.variables = {
+    "NIX_SSL_CERT_FILE" = ./nipr.crt;
+  };
+  security.sudo.extraConfig = ''
+    Defaults env_keep += "NIX_SSL_CERT_FILE"
+  '';
+
  # Modules 
  modules = {
    devel = {
--- a/provision/hosts/wsl/nipr.crt
+++ b/provision/hosts/wsl/nipr.crt
@ -0,0 +1,137 @@
+subject=CN=*.google.com
+issuer=CN=DoD WCF Signing CA 4,OU=WCF PKI,OU=DoD,O=U.S. Government,C=US
+-----BEGIN CERTIFICATE-----
+MIINGjCCDAKgAwIBAgIIZvxWwRN+YXgwDQYJKoZIhvcNAQELBQAwZjELMAkGA1UE
+BhMCVVMxGDAWBgNVBAoTD1UuUy4gR292ZXJubWVudDEMMAoGA1UECxMDRG9EMRAw
+DgYDVQQLEwdXQ0YgUEtJMR0wGwYDVQQDExREb0QgV0NGIFNpZ25pbmcgQ0EgNDAe
+Fw0yNDA4MjYwNjMzNDdaFw0yNDEwMzEyMDA4MzNaMBcxFTATBgNVBAMMDCouZ29v
+Z2xlLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKXxDFpbH/Rw
+4R35CqSim4K+fEthyG7zyRWun7/QocOGUHMC64V7XLbaabtRHKjR0T6aJZ2hVlLj
+mG8F7a4Rka5dz29zAr7gSepxKPZnq6R1ZoCu7URnkBwCtVVaQELHoYPkz6ojM8uM
+XcsdiJTofwROgTsJslLPdVqiNuoZTtByQvE/kfGg6j+Oq8S8M1P5QoESyz/LdwE8
+JkYCo1SrbTzY+RkDJrlbfUf+wlmsTCQ5zqXGOjFZ7rx2YzkK0XG0uPUIXbey+iIN
+GXa8Ko6tnTt5LRQvkc0Z68pDJcJHD+x8gTEPXzl36jpi3GY5KjDm+Jm5h0lfoA7E
+fYXcFX2vdFsCAwEAAaOCChkwggoVMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1Ud
+EwEB/wQCMAAwggnNBgNVHREEggnEMIIJwIIMKi5nb29nbGUuY29tghYqLmFwcGVu
+Z2luZS5nb29nbGUuY29tggkqLmJkbi5kZXaCFSoub3JpZ2luLXRlc3QuYmRuLmRl
+doISKi5jbG91ZC5nb29nbGUuY29tghgqLmNyb3dkc291cmNlLmdvb2dsZS5jb22C
+GCouZGF0YWNvbXB1dGUuZ29vZ2xlLmNvbYILKi5nb29nbGUuY2GCCyouZ29vZ2xl
+LmNsgg4qLmdvb2dsZS5jby5pboIOKi5nb29nbGUuY28uanCCDiouZ29vZ2xlLmNv
+LnVrgg8qLmdvb2dsZS5jb20uYXKCDyouZ29vZ2xlLmNvbS5hdYIPKi5nb29nbGUu
+Y29tLmJygg8qLmdvb2dsZS5jb20uY2+CDyouZ29vZ2xlLmNvbS5teIIPKi5nb29n
+bGUuY29tLnRygg8qLmdvb2dsZS5jb20udm6CCyouZ29vZ2xlLmRlggsqLmdvb2ds
+ZS5lc4ILKi5nb29nbGUuZnKCCyouZ29vZ2xlLmh1ggsqLmdvb2dsZS5pdIILKi5n
+b29nbGUubmyCCyouZ29vZ2xlLnBsggsqLmdvb2dsZS5wdIIPKi5nb29nbGVhcGlz
+LmNughEqLmdvb2dsZXZpZGVvLmNvbYIMKi5nc3RhdGljLmNughAqLmdzdGF0aWMt
+Y24uY29tgg9nb29nbGVjbmFwcHMuY26CESouZ29vZ2xlY25hcHBzLmNughFnb29n
+bGVhcHBzLWNuLmNvbYITKi5nb29nbGVhcHBzLWNuLmNvbYIMZ2tlY25hcHBzLmNu
+gg4qLmdrZWNuYXBwcy5jboISZ29vZ2xlZG93bmxvYWRzLmNughQqLmdvb2dsZWRv
+d25sb2Fkcy5jboIQcmVjYXB0Y2hhLm5ldC5jboISKi5yZWNhcHRjaGEubmV0LmNu
+ghByZWNhcHRjaGEtY24ubmV0ghIqLnJlY2FwdGNoYS1jbi5uZXSCC3dpZGV2aW5l
+LmNugg0qLndpZGV2aW5lLmNughFhbXBwcm9qZWN0Lm9yZy5jboITKi5hbXBwcm9q
+ZWN0Lm9yZy5jboIRYW1wcHJvamVjdC5uZXQuY26CEyouYW1wcHJvamVjdC5uZXQu
+Y26CF2dvb2dsZS1hbmFseXRpY3MtY24uY29tghkqLmdvb2dsZS1hbmFseXRpY3Mt
+Y24uY29tghdnb29nbGVhZHNlcnZpY2VzLWNuLmNvbYIZKi5nb29nbGVhZHNlcnZp
+Y2VzLWNuLmNvbYIRZ29vZ2xldmFkcy1jbi5jb22CEyouZ29vZ2xldmFkcy1jbi5j
+b22CEWdvb2dsZWFwaXMtY24uY29tghMqLmdvb2dsZWFwaXMtY24uY29tghVnb29n
+bGVvcHRpbWl6ZS1jbi5jb22CFyouZ29vZ2xlb3B0aW1pemUtY24uY29tghJkb3Vi
+bGVjbGljay1jbi5uZXSCFCouZG91YmxlY2xpY2stY24ubmV0ghgqLmZscy5kb3Vi
+bGVjbGljay1jbi5uZXSCFiouZy5kb3VibGVjbGljay1jbi5uZXSCDmRvdWJsZWNs
+aWNrLmNughAqLmRvdWJsZWNsaWNrLmNughQqLmZscy5kb3VibGVjbGljay5jboIS
+Ki5nLmRvdWJsZWNsaWNrLmNughFkYXJ0c2VhcmNoLWNuLm5ldIITKi5kYXJ0c2Vh
+cmNoLWNuLm5ldIIdZ29vZ2xldHJhdmVsYWRzZXJ2aWNlcy1jbi5jb22CHyouZ29v
+Z2xldHJhdmVsYWRzZXJ2aWNlcy1jbi5jb22CGGdvb2dsZXRhZ3NlcnZpY2VzLWNu
+LmNvbYIaKi5nb29nbGV0YWdzZXJ2aWNlcy1jbi5jb22CF2dvb2dsZXRhZ21hbmFn
+ZXItY24uY29tghkqLmdvb2dsZXRhZ21hbmFnZXItY24uY29tghhnb29nbGVzeW5k
+aWNhdGlvbi1jbi5jb22CGiouZ29vZ2xlc3luZGljYXRpb24tY24uY29tgiQqLnNh
+ZmVmcmFtZS5nb29nbGVzeW5kaWNhdGlvbi1jbi5jb22CFmFwcC1tZWFzdXJlbWVu
+dC1jbi5jb22CGCouYXBwLW1lYXN1cmVtZW50LWNuLmNvbYILZ3Z0MS1jbi5jb22C
+DSouZ3Z0MS1jbi5jb22CC2d2dDItY24uY29tgg0qLmd2dDItY24uY29tggsybWRu
+LWNuLm5ldIINKi4ybWRuLWNuLm5ldIIUZ29vZ2xlZmxpZ2h0cy1jbi5uZXSCFiou
+Z29vZ2xlZmxpZ2h0cy1jbi5uZXSCDGFkbW9iLWNuLmNvbYIOKi5hZG1vYi1jbi5j
+b22CFGdvb2dsZXNhbmRib3gtY24uY29tghYqLmdvb2dsZXNhbmRib3gtY24uY29t
+gh4qLnNhZmVudXAuZ29vZ2xlc2FuZGJveC1jbi5jb22CDSouZ3N0YXRpYy5jb22C
+FCoubWV0cmljLmdzdGF0aWMuY29tggoqLmd2dDEuY29tghEqLmdjcGNkbi5ndnQx
+LmNvbYIKKi5ndnQyLmNvbYIOKi5nY3AuZ3Z0Mi5jb22CECoudXJsLmdvb2dsZS5j
+b22CFioueW91dHViZS1ub2Nvb2tpZS5jb22CCyoueXRpbWcuY29tggthbmRyb2lk
+LmNvbYINKi5hbmRyb2lkLmNvbYITKi5mbGFzaC5hbmRyb2lkLmNvbYIEZy5jboIG
+Ki5nLmNuggRnLmNvggYqLmcuY2+CBmdvby5nbIIKd3d3Lmdvby5nbIIUZ29vZ2xl
+LWFuYWx5dGljcy5jb22CFiouZ29vZ2xlLWFuYWx5dGljcy5jb22CCmdvb2dsZS5j
+b22CEmdvb2dsZWNvbW1lcmNlLmNvbYIUKi5nb29nbGVjb21tZXJjZS5jb22CCGdn
+cGh0LmNuggoqLmdncGh0LmNuggp1cmNoaW4uY29tggwqLnVyY2hpbi5jb22CCHlv
+dXR1LmJlggt5b3V0dWJlLmNvbYINKi55b3V0dWJlLmNvbYIRbXVzaWMueW91dHVi
+ZS5jb22CEyoubXVzaWMueW91dHViZS5jb22CFHlvdXR1YmVlZHVjYXRpb24uY29t
+ghYqLnlvdXR1YmVlZHVjYXRpb24uY29tgg95b3V0dWJla2lkcy5jb22CESoueW91
+dHViZWtpZHMuY29tggV5dC5iZYIHKi55dC5iZYIaYW5kcm9pZC5jbGllbnRzLmdv
+b2dsZS5jb22CEyouYW5kcm9pZC5nb29nbGUuY26CEiouY2hyb21lLmdvb2dsZS5j
+boIWKi5kZXZlbG9wZXJzLmdvb2dsZS5jbjAfBgNVHSMEGDAWgBRVl9AJSuPMHDON
+VvW74eDLLIJmDDANBgkqhkiG9w0BAQsFAAOCAQEApJvUVsTMNoPcI+FRxpP1z7Vq
+3AJ52MXNn2e0enbFH71C0CjDxgKMLV4oesvrYCri7B2K9CpEeP0IOhPZTh8krrZ8
+7//l0bQJ5hySDzrJxSbQw/pFKFMah9XSkIEgCmhhfuKAJPySD/2tNKyThbhMbngT
+64Y46L14osOuYN5XHqMhJw/F84PPiMzO1yn6jS39XYb04Y0EqxbTL0bLo1l15/5x
+M08tKY2buxNmoEIbiPGY+5/ES9u93cFKgbzzOPJDNuxIMw2kUCc08vdxUuPbung7
+d/E+yeOqipcF+gabXOYn7rKwqyo6qDSOhc4JrlxsSOttqTfI3yNhMs+ReRXnsw==
+-----END CERTIFICATE-----
+subject=CN=DoD WCF Signing CA 4,OU=WCF PKI,OU=DoD,O=U.S. Government,C=US
+issuer=CN=DoD WCF Intermediate CA 1,OU=WCF PKI,OU=DoD,O=U.S. Government,C=US
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+subject=CN=DoD WCF Intermediate CA 1,OU=WCF PKI,OU=DoD,O=U.S. Government,C=US
+issuer=CN=DoD WCF Root CA 1,OU=WCF PKI,OU=DoD,O=U.S. Government,C=US
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----