wget (curl subcomponent) requires /etc/ssl certs to https

[tlaurion]

Doing PoC testing u-root provided tools in the goal of maybe adding Nix into heads in runtime (either ramfs or disk, will see how it goes). Was guided into trying to use https://install.determinate.systems, but communicating with their websites either require tls/openssl support which is a constraint in smaller systems' SPI. Opened issue DeterminateSystems/nix-installer#434 since they do not document the need of busybox's openssl (which is basically a wrapper and expects openssl-util binary helper to deal with TLS. Ugly to say the least).

---

In our u-root situation here, packing wget into u-root alone doesn't do it.
Two distinct -files statements need to pack /etc/ssl content (since /etc/ssl/private has different rights).

It would be nice if the dependencies could be packed automatically by the package. Discussed off-github with @rminnich at https://matrix.to/#/!cxigwGSzZmCNJEVtke:matrix.org/$rUBEM-iaNJ0stqkXPsHd08ANKoqKgWiD_Lg-M2BVuTY?via=matrix.org

/home/user/heads/build/x86/u-root/src/github.com/u-root/u-root \
-uroot-source /home/user/heads/build/x86/u-root/src/github.com/u-root \
-initcmd="" \
-build=gbb \
-defaultsh="" \
-files /etc/ssl/certs -files /etc/ssl/openssl.cnf \
-format=cpio \
-o /home/user/heads/build/x86/qemu-coreboot-whiptail-tpm1/u-root.cpio  \
github.com/u-root/u-root/cmds/core/wget