71e6dfdaea
This fixes an issue where the strongswan NM client is not able to connect to a VPN. By default it tries to load the trust CA from /usr/share/ca-certificates which doesn't exist in NixOS and most modern distros. See debian-related issue: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=835095