gchristensen changed the topic of #nixos-borg to: https://www.patreon.com/ofborg https://monitoring.nix.ci/dashboard/db/ofborg?refresh=10s&orgId=1&from=now-1h&to=now "I get to skip reviewing the PHP code and just wait until it is rewritten in something sane, like POSIX shell. || https://logs.nix.samueldr.com/nixos-borg
orivej has quit [Ping timeout: 256 seconds]
orivej has joined #nixos-borg
orivej has quit [Ping timeout: 248 seconds]
orivej has joined #nixos-borg
jtojnar has joined #nixos-borg
orivej has quit [Quit: No Ping reply in 180 seconds.]
orivej has joined #nixos-borg
<LnL> oh wait, it's a bit weird but I can add partial tagging
<gchristensen> oh?
<gchristensen> nice!
<LnL> just add a field until we make it mandatory :)
<samueldr> this is why I got more rebuilds than expected
timokau has quit [Quit: WeeChat 2.1]
timokau has joined #nixos-borg
<gchristensen> LnL: I think it looks good? :)
<gchristensen> as much as I like rabbitmq, hotdog it can be a right pain
<LnL> cool, I'll rebase and see if I can split up the legacy struct into a few parts
<LnL> howso?
<gchristensen> if it can't understand your SSL certs it doesn't error, it opens the port and then hangs all the connections to it
<samueldr> saw the same issue months ago when trying to play with rabbitmq
<samueldr> (but wouldn't have been able to articulate it that way)
<gchristensen> very very frustrating
<gchristensen> to make things worse, testing different letsencrypt clients means I keep getting ratelimited
<MichaelRaskin> Can't you deploy a local server for testing?
<MichaelRaskin> I thought there was some way to test the protocol without hitting the main production workflow
<gchristensen> there is but I haven't gotten to that yet X)
<samueldr> there are also staging servers that are not rate limited the same way
<samueldr> (probably easier than a local instance)
<samueldr> they'll give out valid, but not signed by a trusted root, certs IIRC
<samueldr> (otherwise it would be pretty useless I guess)
<gchristensen> so i struggled with simp_le to get it doing the right thing by rabbitmq and now I'mtrying to do the same for lego and it isn't goin well.
timokau has quit [Quit: WeeChat 2.2]
timokau has joined #nixos-borg
jtojnar has quit [Quit: jtojnar]
jtojnar has joined #nixos-borg
jtojnar has quit [Remote host closed the connection]
jtojnar has joined #nixos-borg
<gchristensen> like 5hrs of screwing with certs
<gchristensen> cat /nix/store/cdk1idnbzf3qsgz45y8gm8d0qny80kvi-rabbitmq.config
<gchristensen> {ssl_options, [
<gchristensen> {cacertfile,"/var/lib/acme-dns01/test2.nix.ci.crt"},
<gchristensen> {certfile,"/var/lib/acme-dns01/test2.nix.ci.only.crt"},
<gchristensen> {keyfile,"/var/lib/acme-dns01/test2.nix.ci.key"},
<gchristensen> [nix-shell:/var/lib/acme-dns01/certificates]# cat /var/lib/acme-dns01/test2.nix.ci.crt
<gchristensen> cat: /var/lib/acme-dns01/test2.nix.ci.crt: No such file or directory
<gchristensen> [nix-shell:/var/lib/acme-dns01/certificates]# cat /var/lib/acme-dns01/test2.nix.ci.only.crt
<gchristensen> cat: /var/lib/acme-dns01/test2.nix.ci.only.crt: No such file or directory
<gchristensen> [nix-shell:/var/lib/acme-dns01/certificates]# cat /var/lib/acme-dns01/test2.nix.ci.key
<gchristensen> cat: /var/lib/acme-dns01/test2.nix.ci.key: No such file or directory
<gchristensen> SIGH