Fix container tests, unify RPM install path, and ensure Nix TLS truststore detection

Changes included:
• GitHub Actions workflow: rename job from 'test-unit' to 'test-container' to match intent.
• RPM packaging: replace %{_libdir}/package-manager with a fixed /usr/lib/package-manager
  to avoid lib/lib64 divergence on CentOS and ensure pkgmgr + Nix flake resolution works
  consistently across distros.
• Docker entrypoint: add automatic CA-bundle detection and set NIX_SSL_CERT_FILE to fix
  TLS issues on CentOS ('unable to get local issuer certificate') when Nix fetches flake
  inputs.

These updates stabilize container-based tests and unify the runtime environment
for Fedora, CentOS, and other distributions.

Reference:
ChatGPT conversation: https://chatgpt.com/share/6937aa72-d33c-800f-a63f-c353e92de6b3

This commit is contained in:

Kevin Veen-Birkenbach

2025-12-09 05:50:08 +01:00

parent f9943fafae

commit da9d5cfa6b

3 changed files with 40 additions and 21 deletions

									
										2

.github/workflows/test-container.yml
									
										vendored
									
												View File
												
				@@ -10,7 +10,7 @@ on:

				  pull_request:

				jobs:

				  test-unit:

				  test-container:

				    runs-on: ubuntu-latest

				    timeout-minutes: 30

Fix container tests, unify RPM install path, and ensure Nix TLS truststore detection

2 .github/workflows/test-container.yml vendored Unescape Escape View File

2

.github/workflows/test-container.yml vendored

View File