<pie_>
somoene said databases were originally used to deal with block filesystems being unwieldy
<qyliss>
aww I was skimming through my buffers, saw ĥ, and assumed people were speaking Esperanto :(
<samueldr>
nah, finding fi hard to read in monospaced contexts, sorry
<samueldr>
([compose]fi)
<qyliss>
malĝoja
<pie_>
so apparently i played the tutorial level of this game like 10 times
<pie_>
turns out its supposed to let me continue now or something...
<pie_>
????
<pie_>
ah, so if your saves are read only or something that happens...wow
drakonis has joined #nixos-chat
<samueldr>
not sure why browser.sessionstore.warnOnQuit in firefox doesn't default to true, but accidentally using ctrl+q and quitting without warning is rude
drakonis_ has quit [Ping timeout: 250 seconds]
<samueldr>
what I understand is that if your firefox is set to reopen tabs from last session, it will not warn
<colemickens>
lol, it's probably the single biggest complaint I see about Firefox repeatedly.
<colemickens>
The bug for Ctrl+Q in Linux is over a decade old.
<samueldr>
though, tbf, it is not a bug, it is as designed, but a misfeature :/
<colemickens>
It's one where I have to laugh it off because it sparks a misplaced sense of entitled anger that they don't seem to care that "close tab" is one button away from "wreck my entire god damn session".
<colemickens>
And the workarounds are always "oh, disable any privacy features so your session is constantly persisted to disk and possibly recoverable on restart". Yeah, okay.
<samueldr>
chrome has it right, imho, with its alt+F (menu) then x (to choose exit) prompt when you hit CTRL+Q
<samueldr>
oh, when you hit ctrl+shift+q (the previous quitting shortcut)
<colemickens>
I guess I don't use Chrome much these days, I'm surprised I've never experienced that actually.
drakonis1 has joined #nixos-chat
<colemickens>
clever I hope it's okay to ping, I had a small question that I was wondering if you could advise on, given your kexec experience. -- Assuming that I dig through the forked debian live-boot scripts that Tails use, in theory -- I should be able to build an initramfs and kexec into it, right? Thus allowing me to boot into Tails without needign removable media?
<clever>
thats basically what this does, to load a nixos installer env
<colemickens>
clever yeah that's sort of what inspired me originally. I think I need to up my debugging skills and/or experiment more in a KVM VM. I also strongly suspect that tails has a hackneyed fork of live-boot that is making it harder than it should be.
* colemickens
is also strongly wondering if nixos+tor browser adn a readonly rootfs is good enough to replace tails
<clever>
colemickens: nixos doesnt really even need a rootfs
<clever>
colemickens: the kexec image above, uses a tmpfs for / and then a read-only squashfs for /nix/
<colemickens>
clever right :)
<clever>
stage-1-init.sh recreates everything of importance in / on boot
<clever>
stage-2-init.sh, oops
<colemickens>
I think I'd need to convince myself that I can rig NixOS to force all traffic through Tor reliably, but if I can get there, I might just piggyback off what you did instead of trying to coerce Tails.
<clever>
2 ways of doing that
<clever>
1st way is simple, you can have multiple routing tables, so you can just force all traffic to a local privoxy instance
<clever>
2nd way, you can configure iptables with --module uid, to filter based on uid, so only the tor user can really get internet, force everything else to privoxy
<clever>
3rd way, the image you boot, is just a tor instance and VM host, and it will then boot another thing, under qemu-kvm!!
<clever>
and then all network from qemu is forced out tor!
<colemickens>
yeaaaaah
<colemickens>
see, if I'm not careful I get lost in a grander vision of "nixos + qubes + declarative network namespaces and crosvm VMs"
<clever>
colemickens: and this is my plex frontend, it just runs plex on X login
<clever>
what if you instead ran qemu there? :P
<colemickens>
Hm! Interesting! There's some technical implications of proxying all VM traffic through Tor that I need to looki nto, but something like that could potentially work.
<colemickens>
(For example, a user can choose a new "circuit" for a certain domain, idk if that's possible if the Tor daemon is running on an external host?)
<colemickens>
I feel myself being pulled toward "make tails kexec-able" for the sake of maybe helping a wider range of people, also, to be realistic about the fact that I have no formal or in-depth security training.
<clever>
if you had an ssh server on the host, you could still ssh up to it
<clever>
and then control tor as normal (and bypass tor)
<jasongrossman>
samueldr: The correction by mcc made me LOL.
<elvishjerricco>
becoming increasingly frustrated by time machine over the network... Thinking of just switching to rsync + zfs snapshots on the target :P
<elvishjerricco>
How much harder would it be to restore a whole system from such a backup?
<dtz>
LOL awesome
<jasongrossman>
elvishjerricco: A Macintosh system? There are various posts on the web about backing up Macs without using Time Machine. It's *fairly* straightforward. You have to worry about permissions on a couple of things.
<jasongrossman>
elvishjerricco: Or you could use Carbon Copy Cloner.
<jasongrossman>
elvishjerricco: I don't think restoring would be any harder than from Time Machine.
<elvishjerricco>
jasongrossman: Yea, backing up with rsync is the easy part, especially with APFS snapshots. But restoring... With Time Machine, it's just a button in the OS setup wizard, and then I write in the URL to the backup server. With rsync, I dunno if there'd be a way to do it without first setting up a dummy install, copying the whole disk over, and then hoping that I didn't just break a bunch of crap :P
<jasongrossman>
I've done it from rsync. I'm not sure what the problem might be, apart from permissions, which you can get right either by finding the right guide on the web or by using Carbon Copy Cloner. (Oh, and you also need to bless the startup disk when you've finished, or use Carbon Copy Cloner.)
<jasongrossman>
elvishjerricco: Oh, I've just realised you might be asking about how to get the backup back physically. I've usually used Target Disk Mode to do that.
Myhlamaeus has quit [Ping timeout: 258 seconds]
endformationage has quit [Ping timeout: 245 seconds]
<elvishjerricco>
jasongrossman: Physically? Nah, the backup would be on a server, accessible via ssh
<elvishjerricco>
Is macOS portable? Can you copy the root volume of any mac to any other mac supported by that version of macOS and just boot it? Or does macOS installation emit things that may be necessary on other supported devices?
<jasongrossman>
elvishjerricco: Yes, it's portable, in that sense.
<elvishjerricco>
Though I guess any files written to rely on the uuid of the disk wouldn't work... Dunno how much of that there is in macOS
<sphalerite>
samueldr: pff, who needs partitions? sqlite3 /dev/sda
<sphalerite>
clever colemickens: there's another option to get all traffic through tor — route everything through a different network namespace, someone's implemented this for wireguard: https://github.com/NixOS/nixpkgs/issues/52411
<{^_^}>
#52411 (by anderspapitto, 19 weeks ago, open): Support network-namespace based wireguard vpn setup [feature request]
ivan has quit [Quit: lp0 on fire]
ivan has joined #nixos-chat
jackdk has quit [Ping timeout: 245 seconds]
Jackneill has quit [Read error: Connection reset by peer]
Jackneill has joined #nixos-chat
__monty__ has joined #nixos-chat
<elvishjerricco>
Increasing Bluetooth headphones battery life from 6 hours to 40 is a life changer.
<pie_>
Twey, just saw this hadean stuff, i think i saw something else that was kind of similar but i cant figure out if it was the same thing
<pie_>
i dont suppose you guys have any major competitors
<pie_>
i think it was also some fancy distributed simulaiton thing
<Twey>
pie_: Don't think we have any direct competitors… there are some people trying to do the simulation thing but it's just a use-case example for us
<pie_>
yeah but it was also marketed for games i think
<pie_>
well anyway *shrug*
<drakonis>
oh man its the only movie i wanna watch
drakonis has quit [Quit: WeeChat 2.4]
<elvishjerricco>
The sonic trailer is so unnervingly bad... His face is so weird looking. It's a generic "hero vs military vs common enemy the military doesn't understand" thing. Gangsta's paradise makes no sense as the soundtrack. What were they thinking?
hedning_ has joined #nixos-chat
<srhb>
I am tempted simply by the absurdity of that summary.
<srhb>
But I have proven poor taste :P
<elvishjerricco>
Neither a live action Sonic, nor a live action Detective Pikachu movie has any right to exist given their descriptions. But somehow Ryan Reynolds is gonna make one awesome, and Jim Carrey is gonna make the other horrifying.
<adisbladis>
I saw the trailer for it. Not cinema material but it seems entertaining enough for later :)
<pie_>
i guess this is an attempt of paramount pictures to renew its appeal to modern audiences? xD
<pie_>
jim carrey is weird
<adisbladis>
I might have to point out I was talking about detective pikachu.. I cant stand anything with jim carrey in it.
<pie_>
yeah i figured
<adisbladis>
Except for Eternal Sunshine, that's really good. But hardly a "Jim Carrey movie".
<elvishjerricco>
Jim Carrey also kinda went off the deep end in the past couple years. Lots of interviews of him just spewing insanity
<srhb>
adisbladis: Surely you can't hate The Mask, surely! :P
* simpson
recalls The Majestic
<elvishjerricco>
I do love the truman show though
<Taneb>
...I'm not sure I've seen a Jim Carrey film all the way through
<drakonis>
it is not unlike what nix does but with ansible
<cransom>
'its like X but not whatsoever at all.'
<gchristensen>
it looks like nix on the outside but has the same slippery quick-sand underneat
<gchristensen>
which, tbh, good they're moving in this direction
jasongrossman has quit [Read error: Connection reset by peer]
jasongrossman has joined #nixos-chat
__monty__ has joined #nixos-chat
c00w has joined #nixos-chat
<lassulus>
could we have nixos cloaks?
<gchristensen>
we have cloaks!
<sphalerite>
lassulus: check mine ;)
<lassulus>
oh
<lassulus>
can I have one?
<gchristensen>
want a NixOS/user/lassalus?
<lassulus>
sure
<gchristensen>
you got it
<lassulus>
but I need to drop my old one?
<lassulus>
oh okay
<gchristensen>
no need
<lassulus>
that was surprisingly easy
<gchristensen>
well now comes the trickier part
<joepie91>
[19:37] <gchristensen> which, tbh, good they're moving in this direction
<joepie91>
makes it easier to slip in Nix-y internals later? :P
<drakonis>
when did we get to 3000 issues
<gchristensen>
same way you walk 500 miles
<averell>
i want a NixOS cloak!
lassulus has quit [Quit: WeeChat 2.4]
<drakonis>
i'd take a lobsters cloak tho
<drakonis>
these are the best
<drakonis>
joepie91, makes it easier to move people into the nix community
lassulus has joined #nixos-chat
<lassulus>
hmm, it's still my c-base cloak
<gchristensen>
no need to quit and re-join, lassulus
<drakonis>
you have to request and it is granted
<gchristensen>
I have to twiddle bits with Freenode staff
<drakonis>
the server will automatically switch you to it
<drakonis>
i wonder what's the inspiration to do this roles thing
lassulus has quit [Changing host]
lassulus has joined #nixos-chat
<gchristensen>
there you go lassulus
<lassulus>
(^∇^)
<drakonis>
a beauty
<drakonis>
you can only have one at once
<gchristensen>
averell: I can ask for you another day, but I try not to make 2 requests in a day
<drakonis>
i honestly do wish they would provide a cloak switcher
<gchristensen>
(if I hadn't already asked for lassulus, I could have sent them a csv of requests)
<averell>
alright, not really a rush :)
<pie_>
waiting for the day people on counter strike show up with [NixOS] clan
<drakonis>
haha welp
<pie_>
nixos CS workgroup
jtojnar has quit [Quit: jtojnar]
jtojnar has joined #nixos-chat
<gchristensen>
so something that spooked me off from using wayland is that it was in the programs.* namespace and not a services namespace
<gchristensen>
it made me think that it wasn't really supported yet
<samueldr>
it's kinda not a service, I guess
<gchristensen>
yeah
<samueldr>
a DM that would interact with wayland (e.g. gdm) would be though, I assume
<gchristensen>
ture
<gchristensen>
that would be nice
<LnL>
gchristensen: I just realised something, do you know if the remaining lib.unique usage in nixpkgs needs to preserve order?
<gchristensen>
I don't know
<MichaelRaskin>
LnL: are you considering list to attrs?
<LnL>
yeah, that's >30x faster
<gchristensen>
wow
<MichaelRaskin>
I think the issue is that you want to do lib.unique on lists of something else than strings?
<MichaelRaskin>
If the order would be the only issue, you could traverse the list while maintaining and attrset of seen stuff
<LnL>
oh, I thought it wouldn't work for lists/attrs
<adisbladis>
Ohh, nixos cloaks <3
<LnL>
ask gchristensen if you want one :)
<adisbladis>
gchristensen: Can you fix one for me too?
jasongrossman has quit [Read error: Connection reset by peer]
drakonis has quit [Read error: Connection reset by peer]
lassulus has quit [Ping timeout: 246 seconds]
drakonis has joined #nixos-chat
drakonis_ has joined #nixos-chat
hedning_ has quit [Remote host closed the connection]
drakonis has quit [Ping timeout: 250 seconds]
drakonis has joined #nixos-chat
drakonis_ has quit [Read error: Connection reset by peer]
drakonis_ has joined #nixos-chat
drakonis has quit [Ping timeout: 250 seconds]
__monty__ has quit [Quit: leaving]
lassulus has joined #nixos-chat
lassulus has quit [Ping timeout: 246 seconds]
Synthetica has quit [Quit: Connection closed for inactivity]
infinisil has quit [Quit: Configuring ZNC, sorry for the joins/quits!]
infinisil has joined #nixos-chat
<pie_>
so, i have a problem and my initial solution is wanting to modify makeWrapper, but what do you guys think?:
<pie_>
i have an app that takes plugins by having the plugins copied into a subdirectory, obviously this necessitates a rebuild
<pie_>
an alternative i came up with is to use symlinkjoin, however the app uses makewrapper
infinisil has quit [Quit: Configuring ZNC, sorry for the joins/quits!]
infinisil has joined #nixos-chat
<pie_>
makewrapper hardcodes the path to the executable, which results in the original derivation being called as opposed to the new one with the added plugins
* pie_
scratches head
<pie_>
actually im not sure changing makewrapper will fix that behaviour
<pie_>
guess I need to rethink this
drakonis has joined #nixos-chat
hedning_ has joined #nixos-chat
infinisil has quit [Quit: Configuring ZNC, sorry for the joins/quits!]
infinisil has joined #nixos-chat
<sphalerite>
pie_: maybe look at weechat's plugin wrapping for inspiration.
<sphalerite>
(full disclosure: I originally wrote it :p )
<pie_>
;P
<pie_>
my stuff works its just not great , i havent touched it in a few weeks so im not sure why
<pie_>
really want to upstream this damn code already
<pie_>
clean clean clean some more :p
lassulus has joined #nixos-chat
<nh2>
clever sphalerite samueldr: The never-ending Chromebook story is continuing. While I got everything working, I'm chasing down the remaining secrets:
<nh2>
The v4.14 upstream kernel doens't work, but the NixOS linux_4_14 kernel works. After messing around a lot with the config, I noticed that NixOS is running the linux-stable kernel v4.14.113, and that one works. I bisected the problem to find that commit 5c9da120 `x86/efi: Fix kernel param add_efi_memmap regression` was the fix.
<nh2>
Unfortunately that wasn't it, because the linux_4_19 kernel is broken again.
<nh2>
It seems like Chromebook-breaking is the kernel devs' favourite hobby.
<nh2>
Again I bisected the problem, finding that the problem was introduced between 4.17 and 4.18, in commit 1b3a6264 `x86/boot/compressed/64: Validate trampoline placement against E820`.
<samueldr>
or maybe the chromebook does just enough EFI to be in a confusing spot?
<samueldr>
though yeah, "ouch"
<nh2>
Kernels >= linux_4_14 work when kexec'ed, but linux_4_14 is the *last* kernel that can boot directly, so I think this really needs to be fixed upstream if this machine is to live longer
<nh2>
it's very disappointing though, all these issues suggests that I'm the only person on the planet using this Chromebook that apparently has/had "full vendor open-source Linux support"
<samueldr>
definitely, it's most likely that even if the machine is in the wrong, the fact that there is a regression is bad :/
<samueldr>
I'm curious how many of those are still kicking around and not simply using whatever older distro was installed at one point on them
<samueldr>
it _is_ an old model
<samueldr>
and before the real boom in proliferation of chromebooks
<nh2>
samueldr: it's newer than my main machine! (Thinkpad X220) And even my old Pentium 3 works better on Linux
<samueldr>
yeah, but in a segment of weird not exactly stock compliant machine, and with less market penetration, I guess
<samueldr>
thinkpads are huge
<samueldr>
not saying that it's right that it broke, but just saying, you might be among the few ones running one with recent kernels :)
<pie_>
manveru, who dis
<nh2>
samueldr: I secretly wonder whether ChromiumOS discontinued the machine after kernel v4.4 because they couldn't (bother to) figure out why it broke :D
<samueldr>
don't wonder, it's likely due to its base platform
<manveru>
pie_: a guy i know from tokyo
<pie_>
manveru, i like how the loops is pretty good
<pie_>
ok, its an ok loop
<manveru>
lol
<manveru>
he was just talking about how some mailserver upgrade freaked out his mother because her ancient mac couldn't get mails anymore