<{^_^}>
#32993 (by shlevy, 1 year ago, merged): haskell generic-builder: Support installing internal libs.
buckley310 has joined #nixos-chat
<infinisil>
The worst part about debugging this was that (1) the error is horribly misleading and doesn't tell you very much at all (cp: missing destination file operand after '/build/package.conf.d/') (2) The error doesn't actually occur for the package build that has the mistake, but for the package that depends on it
<clever>
infinisil: can also litter this chat up
<infinisil>
Perfect
<clever>
$ nix-prefetch-url -A hello.src
<clever>
maybe
<infinisil>
clever: Hmm yeah previously I've just run the nix-build directly and parsed the output for the correct hash
<infinisil>
That's the only general way I know of
<clever>
i dont really want to parse the output of nix
<clever>
even more so, it differs between my desktop and laptop!
<clever>
one has the hashes on the same line, the other doesnt!
<infinisil>
Huh, different nix versions?
<clever>
yeah
<infinisil>
Slash that impurity then, we have the power
<infinisil>
Would be awesome if all nixpkgs fetchers had some annotation to them for how you can calculate their hash
<clever>
dang
<clever>
`nix-prefetch-url -A hello.src` only works against pkgs.fetchurl
<clever>
it wont work on custom FO derivations
<infinisil>
clever: It is a bit unfortunate. 3 solutions: (1) Fix it at the source, add hashing information to all fetchers in nixpkgs (2) Work around it in your code by only supporting a subset of fetchers and manually doing different things for each of them (3) Use a fixed nix version so you can parse the correct hash in the output of it
<clever>
4: patch nix-prefetch-url so it can run any FOD, and print the sha256 in the event of failure
<clever>
then 3 as well, because nobody has that version of nix, lol
<infinisil>
Hah
<clever>
turtle next, i need to execute [ "nix-build", "-E", foo ]
<infinisil>
clever: Oh, yeah I guess toText makes sense, because FilePath is the problem, because it depends on the encoding
buckley310 has quit [Quit: Connection closed for inactivity]
<infinisil>
Well, not sure
<infinisil>
Where are types when you need them!
<clever>
infinisil: and procStrict is up next, running a bit of python that spews json
<infinisil>
clever: Haskell got all this nice typing, but we can't trust it because of legacy stuff
<clever>
infinisil: and </> is basically pointless, because windows now allows / in paths
<infinisil>
Screw windows
<Ralith>
"now allows"? when was the last time it didn't?
<clever>
Ralith: not sure when it didnt, but why else does </> exist to insert "\\" on windows?
<Ralith>
because people like respecting the platform's idioms, and `++ "/" ++` is longer anyway?
<infinisil>
Ah right windows uses \ for path separaters, forgot about that
drakonis1 has quit [Quit: WeeChat 2.3]
drakonis_ has joined #nixos-chat
evhan` is now known as evhan
drakonis has quit [Ping timeout: 264 seconds]
drakonis_ has quit [Ping timeout: 268 seconds]
drakonis_ has joined #nixos-chat
buckley310 has joined #nixos-chat
buckley310 has quit []
obadz has joined #nixos-chat
buckley310 has joined #nixos-chat
buckley310 has quit [Quit: leaving]
buckley310 has joined #nixos-chat
endformationage has quit [Ping timeout: 250 seconds]
sphalerite has quit [Quit: WeeChat 2.2]
sphalerite has joined #nixos-chat
lassulus has joined #nixos-chat
__monty__ has joined #nixos-chat
eyJhb has joined #nixos-chat
<eyJhb>
Can anybody recommend a good VPS provider for setting up a VPN?
<__monty__>
Packet?
<gchristensen>
Packet would be pricey, but you could setup a top-notch VPN there.
<andi->
for a single user that mgiht be a bit expensive. Hetzner, OVH, and many other small providers (check nixos.wiki and the "supported" cloud providers)
<eyJhb>
Any locations near DK?
<eyJhb>
My current VPS provider is under constant DDoS, and they basically are just like "sucks."
<eyJhb>
andi-: nixos isn't a requirement here :p - But might do it at some point
<andi->
Vote with your wallet - or something along those lines ;-)
<eyJhb>
my internet can only handle IRC right now
<eyJhb>
*student friendly providers :p
<andi->
depending on your use case for the VPN: Ask your local uni if they offer shell hosts, VMs, …
<eyJhb>
Will prop look at OVH again..
<eyJhb>
Wouldn't make sense, since my current network is coupled with the university network
<eyJhb>
Hence the use of VPN. Don't like them having the all mighty monitor log of everything
<__monty__>
You think they care about what porn you watch?
<eyJhb>
I really hate that "BuyVM" is listed as `1st class NixOS support`, might be right, but holy hell their service is unstable
<eyJhb>
__monty__ They need to find the good stuff for themselves and not piggy back onme! :(
<eyJhb>
on me*
<eyJhb>
I should prop just setup a secoundary VPS, and then setup failover on my pfSense box...
eyJhb has quit [Quit: Bye]
eyJhb has joined #nixos-chat
<MichaelRaskin>
Have fun settuing up failover when it seems that BuyVM (or their Cogent upstream) failure mode is «6 seconds of delaying all packets, then 12 seconds of OK connectivity»
<andi->
simple.. just get your own IP space, go to a provider that allows advertising it and spam the global routing table with announce/withdrawl every 6seconds ;-)
<MichaelRaskin>
Hosting at Packet might be cheaper.
<gchristensen>
they'll let you do that, though
<gchristensen>
for at least a day or so
<MichaelRaskin>
More if you pass a psychiatrical evaluation?
<andi->
now I am reminded which browser tab I lost weeks back.. the packet community slack... This browser thing doesn't work for me -,-
<gchristensen>
I convinced them to give me a server at one of their edge locations near me
<andi->
whats the latency?
<gchristensen>
I haven't provisioned it just yet. I'm using it to test the NixOS installer on it
<gchristensen>
but it has 4 10Gbps NICs and is about 150mi away
<andi->
I remember you "complaining" about the latency from your house to ANYWHERE. That is why I am asking ;-)
<gchristensen>
yeah, I'm excited to find out :)
<andi->
could run a nix-channel cache there to speedup your lookups
<gchristensen>
haha
<andi->
just downloading store-paths.xz and filtering on those could be worth it ;-)
<gchristensen>
:D
<gchristensen>
I have to give it back almost immediately once I'm done, I can't afford it at $2.25/hr :D
<andi->
to bad
<eyJhb>
MichaelRaskin: yeah, that isn't really that fun.. But should be doable, to just when the latency hit 3000+ms, failover to another provider for x hours
<eyJhb>
Would be nice with a DO Droplet solution :p But I think they are a little more picky with trafic
<gchristensen>
andi-: 25ms
<eyJhb>
gchristensen: do you do anything latency intensive?
<gchristensen>
not really
<eyJhb>
Any particular reason for it then? :p
<gchristensen>
I build/maintain/support NixOS on Packet
<MichaelRaskin>
eyjhb: looks like OVH per-hour costs start around 15¢
<gchristensen>
also I live in a small town in the middle of nowhere , so this is impressive
<eyJhb>
Hm.. I hoped I could do something like NixOPS for my machine, if I really wante d to do Nix for it.. Just point and shoot
<andi->
gchristensen: didn't I add support for the gx2.large? That is still missing from the grid :/
<gchristensen>
yeah, it'll be out with 19.03 :)
<eyJhb>
Any of you love Chef?
<gchristensen>
not since finding nixos... :}
<eyJhb>
gchristensen: but but.. That doesn't support me doing "deploy my openvpn config to ovh"
<gchristensen>
I used to love it. I ran a few hundred servers with it, using immutable deployments and AWS autoscaling
<andi->
eyjhb: run NixOS on OVH :P
<eyJhb>
andi-: requires me to manually setup the OVH server first ;)
<eyJhb>
Seems like I don't really need to if I combine the right recipes, of what the F it is called :p
<andi->
eyjhb: manually? Isn't that mostly just the kexec into installer and then format + nixos-install?
<andi->
(which is manually, I agree ;-))
<eyJhb>
andi-: yup! And then it would be as eassy to just use the default Debian in my opinion
<eyJhb>
easy** Fuuuck
<andi->
but who wants to use Debian?!?
<eyJhb>
*Use it on all my VPS'
<MichaelRaskin>
Who cares as long as the actual software is installed via Nix?
<gchristensen>
:D
<andi->
you can probably generate chef code with nix so you are fine ;-)
<gchristensen>
oh boy
<eyJhb>
If NixOps just were a little more *mature*, then that would be awesome
<andi->
nix -> chef recipe to install nix on $distro -> nix installes the actual software :D
<eyJhb>
And I feel like I will soon get a "then contribute to it" back
<eyJhb>
Waaait a minute. NixOps is coded in Python?
<joepie91>
for the most part, yes
<eyJhb>
Hmm, seems doable to add another backend
<andi->
Does that mean you'll add OVH support?
<jasongrossman>
About BuyVM - I haven't been able to get them to accept my money recently. So I'm going to have to move my servers away from them. (Probably to Hetzner.)
<eyJhb>
andi-: I will consider it, but taking into account that I have so many projects that is stressing me, might take quite some time
<eyJhb>
jasongrossman: currently this last week, they are not worth any money...
<jasongrossman>
I've also found RamNode to be OK.
<jasongrossman>
eyjhb: Hetzner is very close to Denmark.
<joepie91>
fwiw, afterburst now also has a NixOS ISO
<joepie91>
I don't think I've added them to the list yet though
<joepie91>
(I have good experiences with them :P)
<jasongrossman>
Oh, good.
<jasongrossman>
I'd like to consolidate the first two categories in that list, unless any of the hosting companies are REALLY special. Both the first and second categories contain companies that provide ISO images for NixOS (and don't do anything else to help you run it).
<eyJhb>
Ohh how I love slow forgotten password emails. - jasongrossman I am basically considering everything, that isn't down 50% of the time
<andi->
A differentiation I'd like to see in that listing is if they support some kind of cloud-init style nix configuration
<andi->
e.g. I can start a VM with a specific configuration OR I can install it via an ISO..
<andi->
currently it is all in the same category.
<jasongrossman>
andi-: I don't know that any of them do that at the moment, do they?
<joepie91>
andi-: jasongrossman: I feel like we want to be distinguishing on multiple axes here; maybe what we need instead is a feature/support matrix?
<joepie91>
instead of categories along one axis
<jasongrossman>
joepie91: Yes ... but I think most of them will be in the same cell in the matrix, won't they?
<joepie91>
dunno, I mean, there's a significant difference vs. "has first-class NixOS integration" vs. "has a NixOS ISO" vs. "can load any ISO including NixOS"
<joepie91>
you might even care about the third but not the second because you want to deploy a custom NixOS ISO for example
<joepie91>
and another potentially interesting feature column would be "scriptable deployment via NixOps" for example
<joepie91>
which only a few providers offer
<joepie91>
or rather, only a few providers offer the APIs that NixOps needs to do that
<joepie91>
(an example of 'first-class NixOS integration' would be what andi- described)
<andi->
not sure if it is still first-class if you can't upload custom ISOs :-)
<andi->
It really depends on the use-case
<andi->
but yeah, nixos-centric that would probably be first-class for most people
<joepie91>
maybe name it as "Nix-specific integration"
<andi->
it isn't specific
<joepie91>
or "NixOS-specific integration" or something
<eyJhb>
jasongrossman: hetnzer has in Finland! :D - But, they are toooo good friends with Denmark
<jasongrossman>
eyjhb: I'm not sure what you mean about being good friends.
<eyJhb>
I will let that stay with __monty__ statement
<eyJhb>
But I am still waiting for OVHs email...
<samueldr>
"Provides NixOS installed" (e.g. packet) // "NixOS iso instlallation" with two additional columns: "Provides a NixOS iso" (e.g. a bunch) "Allows iso upload" (another bunch) // No direct support, but trickery and guide available (e.g. the cheaper OVHes)
<samueldr>
does that sound sane?
<samueldr>
I think the kexec/trickery installs are of another category than isos, since generally it means that rescuing will be a bother
<joepie91>
samueldr: that sounds like a reasonable subdivision
<samueldr>
because I agree: providing a nixos iso without custom iso is much less good than with custom iso support; but providing nixos iso is better than not providing an nixos iso, meaning that "iso support" cannot be split
<eyJhb>
I completely forgot.. OVH has regions....... So it will always say "WE sent you a email", and then nothing, because, wrong region.
endformationage has joined #nixos-chat
pie__ has joined #nixos-chat
pie_ has quit [Remote host closed the connection]
drakonis has joined #nixos-chat
drakonis_ has quit [Ping timeout: 250 seconds]
drakonis_ has joined #nixos-chat
drakonis has quit [Ping timeout: 264 seconds]
drakonis has joined #nixos-chat
linarcx has joined #nixos-chat
linarcx has quit [Quit: WeeChat 2.4]
<colemickens>
oh joy, I migrated /var/lib/unifi between machines and my unifi gateway is gone again, maybe I get to reset it and reprovision it for the 6th time
<colemickens>
infinisil: no, the controller starts up fine. This stuff is really touchy!
<colemickens>
For example, it was in steady state, albeit with a missing gateway, I "systemctl restart unifi" and the UAP goes into "Disconnected" state for ~4 minutes. Self-corrects, but still...
<infinisil>
Sounds like trouble indeed..
<infinisil>
Man my NixOS configuration is so big, and there's many things I'm not using anymore
<infinisil>
Or only occasionally
<infinisil>
I'm considering adding a feature that asks me "Are you still using <feature>?" once a month when I rebuild
<infinisil>
And if I say no then it disables it
<infinisil>
If I say yes then increase the time to 2 months
<__monty__>
*Or* run something like arbtt and automatically parse the logs to find out whether you still use something.
<infinisil>
__monty__: There's many things that I use in my nixos config without spending time on them though
<infinisil>
I think
<__monty__>
How's that possible?
<MichaelRaskin>
Well, deep nested old scripts…
<MichaelRaskin>
Auto-started in background…
<infinisil>
E.g. my paste script I often use to pastebin stuff to my website
<infinisil>
Or sshfs mount configs
<infinisil>
Or my torrent client that always runs in the backgroudn
<__monty__>
Pretty sure arbtt can log those.
<infinisil>
Having a feature flag for all of those with a script that does as described above would be nice
<infinisil>
Huh it can
<infinisil>
But it couldn't automatically disable such features in any case
<__monty__>
No, you'd run a service periodically for the log analysis and disabling.
<infinisil>
__monty__: Getting from logs -> nixos options it should disable sounds non-trivial
<__monty__>
It does.
<eyJhb>
Any cloud-init gurus here?
<eyJhb>
Haha, I have created/destroyed so many DO instances, that I have hit a IP I have used once before.
<MichaelRaskin>
You noticed it via known_hosts conflict?
<eyJhb>
MichaelRaskin: yuuuup
<eyJhb>
Was actually just thinking it would be fun, if it happened.. Aaand it did. But I am fairly tired of copy pasting IPs around
drakonis has quit [Quit: WeeChat 2.3]
<eyJhb>
I think they are starting to hate my. My droplet just took 3 minutes to start
<sphalerite>
eyjhb: CheckHostIP no in your .ssh/config :)
<sphalerite>
(and use the hopefully-existing unique DNS names for droplets)
<sphalerite>
or maybe off instaed of no? I forget
drakonis_ has quit [Ping timeout: 252 seconds]
drakonis_ has joined #nixos-chat
__monty__ has quit [Quit: leaving]
<joepie91>
welp, I've found the source of my magical memory leaks
<joepie91>
thumbnail.so
<samueldr>
magical memory leaks?
<joepie91>
samueldr: unattributable memory usage increases over time
<joepie91>
shut down all applications and I'd still be using 8/24GB RAM
<joepie91>
seems that thumbnail.so was just running lots of processes that all took a bit of RAM
<joepie91>
adding up to 7 of those 8GB
<joepie91>
exhausted my open file limit, too
<samueldr>
:/
<joepie91>
so it's probably time to replace Dolphin <.<
<samueldr>
seems magical, like something apple would write (dicoveryd anyone?)
<samueldr>
spent way longer than I thought doing a mindless but annoying thing; removed decal/strong stickers on my bike, because they started to look like they'd soon start to look gnarly if I didn't and be harder to remove
<samueldr>
wow is it stuck on hard, and hard to pull! the finger pad of one of my finger is even numb from the pulling :/
drakonis has joined #nixos-chat
drakonis_ has quit [Ping timeout: 245 seconds]
drakonis_ has joined #nixos-chat
infinisil has quit [Quit: Configuring ZNC, sorry for the joins/quits!]