#nix-darwin on 2020-10-25

00:35 philr has joined #nix-darwin

00:41 supersandro2000 has quit [Disconnected by services]

00:41 supersandro2000 has joined #nix-darwin

03:32 infinisil has quit [Quit: Configuring ZNC, sorry for the joins/quits!]

03:34 infinisil has joined #nix-darwin

07:44 Mic92 has quit [Quit: WeeChat 2.9]

07:45 Mic92 has joined #nix-darwin

07:48 Chiliparrot has joined #nix-darwin

09:50 Chiliparrot has quit [Quit: My iMac has gone to sleep. ZZZzzz…]

10:59 hmpffff has joined #nix-darwin

11:00 __monty__ has joined #nix-darwin

13:59 hmpffff has quit [Ping timeout: 272 seconds]

14:02 hmpffff has joined #nix-darwin

14:05 philr has quit [Ping timeout: 264 seconds]

15:21 hmpffff has quit [Ping timeout: 272 seconds]

15:24 hmpffff has joined #nix-darwin

16:25 Chiliparrot has joined #nix-darwin

16:29 Chiliparrot has quit [Client Quit]

17:38 <abathur> emily ok; it was a little painful, but I've managed to split the baby on the UUID thing

17:39 * abathur harmed no actual babies in the process

17:50 <abathur> LnL: around?

17:51 Chiliparrot has joined #nix-darwin

17:57 <abathur> want to discuss your concern about the daemon when you are, though first I'm hoping you can expand on this statement: and the installer (neither variant) manages the daemons so having a third variant in that regard doesn't seem like a good idea either

18:10 <emily> probably controversial, but I wouldn't mind if the installer simply didn't offer single-user mode

18:10 <emily> having /nix mutable by your normal user feels like a massive footgun

18:11 <emily> and nix is pretty elaborate to install anyway esp. on darwin

18:12 <supersandro2000> Doesn't multi user mode create 30 users?

18:13 <abathur> I think it's 32? :)

18:13 <abathur> the quantity can be overridden, CI installers tend to just use 4

18:17 aminechikhaoui has quit [Quit: The Lounge - https://thelounge.github.io]

18:26 <__monty__> I do want to add that multi-user installs don't always work. I'm only on a single-user install because I couldn't get the multi-user install to work.

18:27 <abathur> do you recall why it didn't work?

18:29 <supersandro2000> abathur: you need to modify the install script for that?

18:29 <abathur> no

18:30 <supersandro2000> can't read

18:30 <abathur> `readonly NIX_USER_COUNT=${NIX_USER_COUNT:-32}`

18:30 <abathur> so if you export or prefix NIX_USER_COUNT=4 or whatever, it should work I think

18:31 <supersandro2000> *nvm cant read

18:31 <supersandro2000> --daemon-user-count 4 should work

18:31 <abathur> oh, yeah, guess that works too :)

18:40 <LnL> abathur: kind of

18:41 <LnL> gist of it is that I definitively wouldn't introduce a deamon there

18:41 <supersandro2000> > clang-7: error: argument unused during compilation: '-fno-strict-overflow' [-Werror,-Wunused-command-line-argument]

18:41 <{^_^}> error: syntax error, unexpected ':', expecting ')', at (string):345:51

18:41 <supersandro2000> Anyone already encountered such issue?

18:43 <supersandro2000> hardeningDisable = [ "strictoverflow" ];

18:43 aminechikhaoui has joined #nix-darwin

18:44 <abathur> LnL: I agree a daemon's undesirable, but I guess we're weighting things differently

18:44 <LnL> abathur: so either some kind of suboptimal approach or make single user and encryption mutually exclusive and make eg. the current error point to the daemon mode instead

18:45 <abathur> I think the status quo where we drag every new prospective macOS user through a Hall of Horrifying UX before getting them set up is sad enough that I did all of this work even though I'm not using filevault

18:45 <abathur> (not that me doing the work means it goes in--just qualifying how bad I think the current state is)

18:49 <abathur> it's a drag on the new experience for every prospective user, in exchange for a marginally more tedious uninstall process for the people who've already decided they're uninterested; it doesn't effect whether they have to sudo to install, so we're already filtering anyone who can't; it isn't the difference between having to follow manual install steps and not

18:50 <abathur> I'd say if single-user isn't encrypting it probably can't be the default

18:51 <abathur> because the ultimate thing we're down in the hole trying to solve is breaking people's expectations about whether their store is encrypted or not when they've bothered enabling FDE

18:53 <LnL> yeah, that might be a good middle ground compared to eg. removing single-user entirely

18:53 <abathur> my personal preference is indeed just no encryption, but IIRC it was quite clear when graham polled on Twitter that it wasn't a viable approach for orgs with encryption requirements

18:53 <abathur> well

18:54 <abathur> I don't have context on whether different defaults on different OSes is or has been an issue in the past

18:54 <abathur> IIRC the default was changed to single-user when I was fairly new?

18:55 <abathur> but I don't know what was under/behind it

18:55 <LnL> no, an automated multi-user install (outside of nixos) was new

18:55 <abathur> my goal, basically, is to get macOS back to `curl https://nixos.org/nix/install | sh` being viable

18:56 <abathur> ah

18:56 <LnL> and the story on linux is also more complicated since there are a bunch of service managers and I think we still only support systemd there

18:56 <abathur> so it had to become a default because before that it was the only option

18:56 <abathur> nod

18:56 <LnL> yeah and multi-user was very new so a bit scary to switch everything

18:57 <abathur> gotcha

18:57 <LnL> I don't see a particular issue with different defaults, but the installer still has some painful quirks

18:57 <abathur> another thought I had is just prompting for permission like the multi-user does, not sure if that could satisfy your concern?

18:58 <LnL> the multi-user variant can't upgrade and the story with /etc files is pretty bad I think

18:59 <abathur> i.e., "This installer is going to require sudo, modify these global settings files, and install a LaunchDaemon to ensure your Nix volume is mounted early enough that restored programs can access it. Is that okay?"

18:59 <abathur> nod

18:59 <abathur> I wish we had something ~idempotent that supported changing install types

19:00 <LnL> not sure how people deal with that without eg. nix-darwin to re activate stuff that gets replaced with updates

19:00 <LnL> yeah that goes back to the nix-installer idea :)

19:00 <abathur> and an uninstaller :]

19:02 <LnL> https://github.com/LnL7/nix-darwin/blob/master/pkgs/darwin-uninstaller/default.nix#L85-L101

19:03 <abathur> nod

19:07 <LnL> I've thought about just taking a few days and seeing how far I'd get with making something in rust or go

19:08 <LnL> some basic approach modelling the steps as resources that can be created/updated/destroyed

19:11 <abathur> what if single-user prompted the user "We'd like to install this LaunchDaemon to ensure your Nix Volume mounts early enough that restoring apps can access it. <include LaunchDaemon plist>. If you say no, your volume will still be automatically mounted when the system processes /etc/fstab--but beware that apps may not restore properly if they try to access files on your Nix volume."?

19:12 <abathur> and defaulted to installing it if headless

19:14 <LnL> that's also an option, but it blurs the lines between the different cases again

19:15 <abathur> how do you mean?

19:19 <LnL> more combinations again, what do you need to uninstall single user?

19:19 <abathur> yeah

19:21 <abathur> It's possible to dice it and only prompt them when they're using filevault, for example, but I actually at first hoped I could just do the volume even for pre-catalina installs to cull some of the differences

19:22 <abathur> though I'm not sure how much it matters; things like `rm -rf /nix` are just work differently with the read-only root vs before...

19:22 <abathur> but when I ran a check on that in travis-ci I think everything before mojave was breaking

19:23 <abathur> so I restored the guard to only run the script if /nix doesn't exist and / is not writable

19:26 <__monty__> abathur: Sorry, grepping my logs isn't turning anything up. I remember a bunch of problems with the nixbld users.

19:27 <abathur> no worries; didn't imagine so, was just curious if it'd be something I knew had been fixed

19:29 <LnL> abathur: is that github actions stuff you made usable for installer testing?

19:29 <LnL> __monty__: that was a bug in iTerm IIRC

19:30 <__monty__> I've never used iTerm.

19:30 <LnL> huh, well that's the only issue I remember

19:31 <__monty__> Well, I have to test problems users reported with iTerm. But I'd be really very surprised if I ran the nix installer from iTerm. I either ran it from Terminal.app or Kitty.

19:31 <LnL> something about the application policies they had didn't allow creating users from that shell without user prompting

19:31 <LnL> quite painful if you have to type your password 32 times :D

19:32 <__monty__> The nixbld users were created but then the daemon claimed they weren't or something?

19:32 <__monty__> And then re-running the installer didn't fix it or maybe it didn't want to re-run at all.

19:32 <LnL> hmm, that doesn't ring a bell

19:33 <__monty__> I'm very hazy on what the trouble was but I remember I had to manually remove the nixbld users multiple times.

19:34 <abathur> LnL you mean the CI run I linked testing this PR? or something else?

19:34 <LnL> yeah the filevault thing

19:35 <abathur> I plan to split it off because it was hard enough to figure out

19:35 <abathur> I'm not certain it isn't a ToS violation of some sort, but as long as we don't toot the horn too much or break anything I doubt they notice...? :)

19:43 <abathur> LnL if I've read you right, it seems like the least-controversial next steps are something like: default darwin installs to multi-user; block single-user installs if filevault is on; don't set up a mount daemon for single-user installs?

19:44 <abathur> LnL and I would like to see us figure out regular CI testing of installers under as many conditions as possible

19:45 <abathur> so I'll be happy if this little innovation helps

19:45 <LnL> well yeah, but that's my opinion :)

19:46 <abathur> nod, I assume there will be arguments and a bikeshed or two :P

19:47 <abathur> just want to make sure I have the right sense of it

19:48 <LnL> and yeah testing would be _really_ nice, that's also one of the main things that's kind of holding me back from taking a stab at the other approach

19:50 johnw has joined #nix-darwin

19:50 <abathur> I have opinions as well, but my overriding preference for now is pretty pragmatic: the least-controversial path that gets us back to single-invocation `curl https://nixos.org/nix/install | sh` macOS installs in time to squeeze it into 2.3.8

19:52 <abathur> yeah, I have a fantasy that even the shell-based installs could be a lot better, and could probably support a good uninstaller, once they're regularly getting run through a good install matrix with a test suite catching all of the little crap people turn up with on discourse/IRC with

19:53 <LnL> having that "just work" I think that's a goal we can all agree on

19:55 <abathur> <3 LnL

19:55 <{^_^}> LnL's karma got increased to 89

19:55 <abathur> oh

19:56 <abathur> I think emily had the only other question so far that I haven't tried to address, and personally have no opinion on, about whether the volume should be case-sensitive

20:01 <LnL> I'm not sure about that one, might be totally fine but might also cause weird bugs that literally nobody else runs into

20:05 <abathur> I guess I could make APFS a variable default, so that people who want to try it local or in CI can specify NIX_VOLUME_FS='Case-insensitive APFS' or whatever

20:07 <abathur> make fact-finding easier without stalling the PR

20:15 <abathur> going afk a bit now; I'll try to make a comment later laying out the single-user thing; do you have a sense of who I should be treating as stakeholders on this one? whether I missed anyone in mentions, or if there's a list that should get pinged?

20:20 <emily> I think case-insensitivity itself causes weird bugs that literally nobody else (using Nix) runs into, to be fair

20:20 <emily> we know ~all packages work on case-sensitive FSes because of linux, darwin not so much, and there's stuff like hackage2nix

20:20 <emily> my main concern would be that it shouldn't depend on encryption vs. not or anything like that

20:21 <emily> we'd want to create a volume on all systems with apfs

20:26 ehmry has quit [Quit: https://quassel-irc.org - Chat comfortably. Anywhere.]

20:41 <LnL> that's not exactly true tho, every platform conditional in build tools, etc. only ever runs on case insensitive systems

20:43 <LnL> it might be that this is only an issue in one direction, but I doubt that

20:45 <LnL> for the current state I know it's a problem for eg. darwin->linux cross so switching might make that feasible

20:46 ehmry has joined #nix-darwin

20:47 <LnL> but I definitively wouldn't change this without having some kind of an idea of what this might mean for nixpkgs

21:12 Chiliparrot has quit [Ping timeout: 260 seconds]

21:16 <abathur> gah, 2.3.8's already been cut and I didn't even notice :P

21:16 Chiliparrot has joined #nix-darwin

21:16 <abathur> could've sworn I had turned release watch on

21:19 <abathur> I thought it was waiting for the nixpkgs support for big sur; did that also go in while I had my nose in this? :)

22:19 hmpffff has quit [Ping timeout: 240 seconds]

22:21 hmpffff has joined #nix-darwin

22:21 philr has joined #nix-darwin

22:23 __monty__ has quit [Quit: leaving]

22:29 <domenkozar[m]> heh

22:37 <abathur> :]

22:37 johnw has quit [Quit: ZNC - http://znc.in]

23:01 hmpffff has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]

23:10 hmpffff has joined #nix-darwin

23:21 <LnL> nope, hydra is still building stuff

23:21 <LnL> my jobset has much lower build shares so master, etc. will generally get priority

23:49 hmpffff has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]