#nixops on 2020-06-06

2020-05-04 14:44 gchristensen changed the topic of #nixops to: NixOps related talk | logs: https://logs.nix.samueldr.com/nixops/ https://meet.jit.si/NixOpsReview

01:03 nuncanada has quit [Ping timeout: 246 seconds]

02:15 nuncanada has joined #nixops

02:33 nuncanada has quit [Read error: Connection reset by peer]

02:36 nuncanada has joined #nixops

02:37 nuncanada has quit [Client Quit]

03:48 virus_dave has quit [Read error: Connection reset by peer]

03:49 virus_dave has joined #nixops

07:15 cole-h has quit [Quit: Goodbye]

15:10 raghavsood has joined #nixops

15:11 <raghavsood> Is there any way to iterate the full node list for an entire network in nixops? I have 6-7 nodes, all on hetzner, and I'd like to whitelist all of their IPs for a given port on each node

15:11 <raghavsood> Is there a way to iterate `nodes.<name>.config.networking`? I usually only deploy to a single machine via `--include`, so would iterating that trigger full machine builds for the others?

15:11 <raghavsood> Or would it use the most recent physical machine config?

15:11 <gchristensen> it would fully evaluate but not build

15:12 <raghavsood> That should be fine, I actually usually deploy to one machine so I can save time on copying closures to machines where nothing has changed

15:12 <gchristensen> so yeah go ahead and iterate over nodes

15:13 <raghavsood> Thanks for the sanity check!

15:13 <gchristensen> yep!

15:23 <raghavsood> So, potentially dumb follow up question - how do I actually iterate it? I've got https://gist.github.com/RaghavSood/e3b3287bacd078aa8720f4f021d59ad0, but it throws `value is a set while a list was expected`

15:24 <raghavsood> Tried searching github, but not much nixops stuff out there to use as examples

15:27 <raghavsood> Ah, I might have gotten it

15:31 <raghavsood> This seems to work, happy to hear suggestions! https://gist.github.com/RaghavSood/bc440ca547fab044603d9ca3408d4504

15:57 <raghavsood> How would I make nixops use unstable packages? I tried adding the unstable channel as `nixpkgs` for my deployment machine (under the same user that executes nixops deploy), but it doesn't seem to pick up unstable channels still

16:03 <b42> run nixops create/modify with -I nixpkgs=channel:nixos-unstable maybe?

16:13 <raghavsood> Well, it does seem to be downloading a system's worth of packages now, so that might have worked

16:14 <raghavsood> Interestingly, the nix.nixPath option given here (https://github.com/NixOS/nixops/issues/736) didn't work for me - it accepted it, but didn't actually update anything

16:14 <{^_^}> nixops#736 (by bobvanderlinden, 2 years ago, open): nixops depends on nix-channel

16:15 <gchristensen> "You can set nix.nixPath in your nixops logical configuration for each machine." should update the Nix channel *on the machine* but not the nixpkgs used to build the system

16:16 <raghavsood> Fair, perhaps I should set up one of the machines as a build slave and use that route before this poor laptop runs out of space

16:16 <gchristensen> in other words, nix.nixPath takes effect after the deploy

16:43 meh` has quit [Ping timeout: 246 seconds]

18:10 cole-h has joined #nixops

18:15 pistache has quit [Ping timeout: 260 seconds]

18:15 pistache has joined #nixops

18:36 meh` has joined #nixops

18:55 meh` has quit [Ping timeout: 260 seconds]

20:25 dongcarl has quit [Read error: Connection reset by peer]

20:45 meh` has joined #nixops

21:04 virus_dave has quit [Quit: virus_dave]

22:15 pbb has quit [Remote host closed the connection]

22:17 pbb has joined #nixops

22:53 virus_dave has joined #nixops

22:58 meh` has quit [Ping timeout: 260 seconds]