gchristensen changed the topic of #nixos-chat to: NixOS but much less topical || https://logs.nix.samueldr.com/nixos-chat
<colemickens> lovesegfault: I've got an intel igpu I'm on now and access to a gtx1080.
<colemickens> I also don't like commits without PRs but it's not a universal opinion, apparently. It's also really frustrating to see it lodged as a complaint against nixpkgs/nixos and not be able to argue against it.
<colemickens> I'd feel a lot better with "yes, everything is PR'd, yes, committers are required to have 2FA".
<ashkitten> colemickens: i understand that some workflows need direct commit but it scares me that maintainers won't get pinged about it like with prs.. i think a good compromise might be to have the bot ping maintainers in the comments of all direct commits
<ashkitten> that way they always see when changes are made, whether it's a pr or direct commit
<lovesegfault> what workflows need commit-to-master?
<colemickens> mailing list patches
<colemickens> (I think)
<lovesegfault> We have a mailing list?
<ashkitten> i'm not sure what workflows exactly, honestly
<colemickens> idk there's a discourse post about it. someone ... ports patches from some ML to nixpkgs I think.
<colemickens> So, there's sort of another pipeline for getting changes into nixpkgs, in a way. Not sure how I feel about that.
<ashkitten> this stuff is terrifying considering so much infra from commit to deploy is entirely automated
<colemickens> We ("someone") should write an RFC.
<colemickens> Of course, then I'd have to write an RFC forcing people to use GH and I'm not in the least bit interested in doing that right now, so.
<ashkitten> right now, if someone pushed a change to master and release that turned every nixos machine into a botnet... how many machines have auto updates enabled?
<colemickens> It would sort of be inappropriate to joke about "TIAS"...
ky0ko has joined #nixos-chat
<ashkitten> what's that?
<colemickens> TIAS = "try it and see"
<ashkitten> heh, oof
<colemickens> I feel sort of strongly about this, but don't know what to realistically do about it.
<colemickens> I don't know what I'm supposed to say when... a certain someone happily reminds everyone that nixpkgs has a long committer list and no 2FA requirements. Because it's true and it's a bad look.
<ashkitten> try to convince as many people as possible that it's a real problem that needs fixing
<supersandro2000> colemickens: commiter access requires 2FA
<colemickens> (well, those things plus the lack of branch protection)
<colemickens> supersandro2000: alright, my bad. very happy to hear that.
<supersandro2000> I don't care about mailing lists but if people want to use it then we can't forbit that
<supersandro2000> but patches from there must be proxied into a PR and if there is more changes required the PR creator needs to take care of that
<colemickens> Maybe instead of mirroring the PRs from the ML into GH, there could be something like https://nixpk.gs that just indexes all PRs and the ML "PRs".
<colemickens> At least to document the metadata.
<colemickens> Plus it could give us a metadata backup for when our source platform disappears our data.
<ashkitten> maybe we should move to something besides gh that everyone can be more okay with, and that we can more tightly control while respecting workflows
<colemickens> Because I also just hate winding up on a nixpkgs commit and wondering "where the heck did this come from"
<aleph-> ashkitten: I'd agree with that. Too many core platforms tied to GH.
<colemickens> lots of bikeshedding, lots of potential hiccups along the way. I have gripes with all of the self-host options too.
<{^_^}> #113511 (by fabaff, 4 days ago, merged): python3Packages.linode-api: 4.1.8b1 -> 5.0.0
<colemickens> supersandro2000: sorry, not totally sure what I'm looking at?
<colemickens> I feel like it's one of those childhood "whats the difference" puzzles :P
<supersandro2000> I automatically archive PRs I have build in nixpkgs-reviews
<colemickens> ooooh, cool!
<supersandro2000> if we just throw that into all nixpkgs-review or any of the two bots we just throw everything decantriced to archive.org
<samueldr> decantriced?
<supersandro2000> *decentralized
<cole-h> colemickens: ashkitten https://github.com/NixOS/rfcs/pull/79
<{^_^}> rfcs#79 (by dasJ, 17 weeks ago, closed): [RFC 0079] No more direct pushes to master and release branches
<cole-h> There already was an RFC
tilpner has quit [Read error: Connection reset by peer]
tilpner_ has joined #nixos-chat
<cole-h> (oh, heh, this was already posted in -dev)
<colemickens> I missed it, thanks for posting it. I didn't have much to add though, hard to argue with too much with anything in it.
tilpner_ is now known as tilpner
BaughnLogBot has quit [Ping timeout: 240 seconds]
BaughnLogBot has joined #nixos-chat
<supersandro2000> I think a few low hanging fruits to make it harder to sneak something in would be to disallow fetching commits which do not belong to the mentioned github repo and changing node2nix to only allow fetches from npmjs
supersandro2000 has quit [Disconnected by services]
supersandro20002 has joined #nixos-chat
<supersandro20002> also we could maybe label PRs from people who have less than 10, 30 or 50 commits in nixpkgs
supersandro20002 is now known as supersandro2000
supersandro2000 has quit [Client Quit]
supersandro2000 has joined #nixos-chat
<cole-h> Hard -1 on that.
<cole-h> Gatekeeping doesn't seem like something we'd want to do.
<cole-h> "Oh, you don't have 38921080 commits in Nixpkgs yet and you made this simple mistake? Shows how much you know, loser."
<cole-h> Of course, (I'd hope) our community isn't like that. But I don't think it's a good idea to add something with the potential to alienate people like that.
<cole-h> From the last couple days of playing with zrepl, I think the only thing I don't like about it is that the `grid` specification isn't easy (for me) to understand, compared to znapzend's plan configuration
<gchristensen> me too
<gchristensen> though I find znapzend's a bit confusing too, but only in terms of syntax
<supersandro2000> not gatekeeping but making reviews and mergers more easily aware that this user new
<supersandro2000> maybe only for people with less than 10
<supersandro2000> this could encourage people to take a closer look and guide new contributors more closely
<cole-h> I think the "first-time contributor" is more than enough. People should be taking a close look and guiding contributors (kindly) regardless, IMHO.
tilpner_ has joined #nixos-chat
tilpner has quit [Ping timeout: 240 seconds]
tilpner_ is now known as tilpner
supersandro2000 has quit [Quit: The Lounge - https://thelounge.chat]
supersandro2000 has joined #nixos-chat
rajivr has joined #nixos-chat
<lovesegfault> Reading RFC79 made me wish we used `bors` like rust does
<lovesegfault> just rollup daily and merge the rollup
<cole-h> For the casual observer: bors isn't actually bors-ng. It's actually https://github.com/rust-lang/homu, but the bot user (or whatever) is named bors.
<lovesegfault> I'd be fine with bors-ng too :P
<cole-h> (I've been confused by this in the past... https://github.com/bors-ng/bors-ng)
<cole-h> There's also graydon's bors: https://github.com/graydon/bors
tilpner has quit [Remote host closed the connection]
tilpner has joined #nixos-chat
tilpner has quit [Remote host closed the connection]
tilpner has joined #nixos-chat
tilpner has quit [Remote host closed the connection]
tilpner_ has joined #nixos-chat
tilpner_ is now known as tilpner
tilpner has quit [Remote host closed the connection]
tilpner has joined #nixos-chat
tilpner has quit [Remote host closed the connection]
tilpner has joined #nixos-chat
BaughnLogBot has quit [Ping timeout: 260 seconds]
BaughnLogBot_ has joined #nixos-chat
BaughnLogBot_ is now known as BaughnLogBot
Dotz0cat has quit [Ping timeout: 240 seconds]
Dotz0cat has joined #nixos-chat
krkini has joined #nixos-chat
kini has quit [Ping timeout: 264 seconds]
BaughnLogBot has quit [Ping timeout: 264 seconds]
BaughnLogBot has joined #nixos-chat
krkini has quit [Ping timeout: 240 seconds]
kini has joined #nixos-chat
abathur has quit [Ping timeout: 272 seconds]
waleee-cl has quit [Quit: Connection closed for inactivity]
<supersandro2000> I don't think we even need this
<supersandro2000> just create a PR, have the tab open for 20 minutes and then merge it if you can't wait
<supersandro2000> or just eval everything locally if you have the RAM
kini has quit [Quit: bye]
kini has joined #nixos-chat
omnd has quit [Ping timeout: 265 seconds]
BaughnLogBot has quit [Ping timeout: 260 seconds]
BaughnLogBot_ has joined #nixos-chat
BaughnLogBot_ is now known as BaughnLogBot
kini has quit [Ping timeout: 264 seconds]
kini has joined #nixos-chat
numkem5 has joined #nixos-chat
numkem has quit [Ping timeout: 265 seconds]
numkem5 is now known as numkem
FRidh has joined #nixos-chat
kini has quit [Excess Flood]
kini has joined #nixos-chat
FRidh has quit [Ping timeout: 260 seconds]
FRidh has joined #nixos-chat
<cole-h> gchristensen: if https://github.com/zrepl/zrepl/issues/92 is ever fixed, zrepl would be much less confusing. I like how znapzend's snapshots happen at set times in the specified plan, rather than "5 minutes after the daemon happened to start"
<{^_^}> zrepl/zrepl#92 (by problame, 2 years ago, open): Calendar-based keep rule
abathur has joined #nixos-chat
abathur has quit [Ping timeout: 240 seconds]
kini has quit [Remote host closed the connection]
kini has joined #nixos-chat
cole-h has quit [Ping timeout: 264 seconds]
<eyJhb> ,ping
<{^_^}> pong
<eyJhb> Always nice to just do a `nix-build && ./result`, and then seeing all systems being successfully updated!
<eyJhb> Fun little game to play while having online lectures, see if your router can update without loosing connection :D
Mic92 has quit [Quit: WeeChat 3.0.1]
Mic92 has joined #nixos-chat
<siraben> eyJhb: your router runs NixOS?
<eyJhb> siraben: It sure does! :D
<eyJhb> #nixos-on-your-router :D
BaughnLogBot has quit [Ping timeout: 265 seconds]
BaughnLogBot has joined #nixos-chat
<Taneb> I'd like to ask, in the least dismissive way possible, why I should care about the OS my router runs
<eyJhb> Taneb: Security
<eyJhb> Is a simple answer to that
<eyJhb> Multiple other nice things, but you don't need to CARE as such, but if you need anything more advanced NixOS is nice. But vendors have a history of being.. Shitty :p
<srk> unified configuration management :)
<srk> I've considered generating openwrt configs recently
<srk> I would prefer to run nixos on omnia if I manage to get its bootloader crunch extlinux.conf tho
<eyJhb> ie. the router in my laundry room where I live is hackable :D
<srk> what hw?
__monty__ has joined #nixos-chat
<hexa-> Taneb: multiple vlans, appropriate firewalling, dynamic routing, many reasons really
<Taneb> This all makes sense, thank you
<Taneb> To summarize: improved security and flexibility compared to vendor-shipped operating system
<hexa-> confidence in the thing :)
<hexa-> since it sits at the very core of your network
<philipp[m]1> I went the other way: Don't trust the network and use wg locally with the ipv6 local link addresses. Works beautifully.
Jackneill has quit [Ping timeout: 264 seconds]
abathur has joined #nixos-chat
Jackneill has joined #nixos-chat
FRidh has quit [Ping timeout: 264 seconds]
FRidh has joined #nixos-chat
FRidh has quit [Ping timeout: 246 seconds]
FRidh has joined #nixos-chat
<eyJhb> srk: Can't remember :(
<eyJhb> NetGear maybe...
<srk> x86?
<eyJhb> Taneb: Yes, also, up-to-date stuff so bugfixes etc.
<eyJhb> Might be. not sure :p It is 2 years ago I tried it
<srk> check uname -a :D
<eyJhb> Maybe some other time :p Don't want to exploit it :p
* srk demands a NixOS router proof :D
FRidh has quit [Ping timeout: 272 seconds]
FRidh has joined #nixos-chat
omnd has joined #nixos-chat
FRidh has quit [Ping timeout: 260 seconds]
FRidh has joined #nixos-chat
<Ke> also nixos router config can migrate to new hw
<cransom> i don't do my main routing on the embedded stuff, i like cpu to do other stuff than only move packets. but, the barest of features thats i require are rollback and a single config file.
<gchristensen> zfs's nopwrite feature is cool... it lets me run `sudo qemu-img convert -p mac_hdd_ng.img -O raw /dev/zvol/macos/installs/catalina`, then make a change to the .img in the middle of the file, re-run the same command and only have a few bytes of the zvol actually be considered changed
omnd has quit [Ping timeout: 256 seconds]
<veleiro> i would also like nixos on omnia, but i'm pretty much done with nixos and armv7
<veleiro> even containers
<Ke> is that useful?
omnd has joined #nixos-chat
<gchristensen> veleiro: armv7 being slow to compile for makes it so hard to do :(
<veleiro> it will change with the intensional store model and more advancements with arm64 i assume
<veleiro> but i dont know when that will be
<veleiro> re-compiling whole trees with the majority of the content not changing is what kills utility
<veleiro> especially if you're on 3 mbit connection like i am
<infinisil> Ahhh my github notifications are piling up
<gchristensen> I don't know why arm64 would help
liebach has quit [Quit: leaving]
waleee-cl has joined #nixos-chat
liebach has joined #nixos-chat
cole-h has joined #nixos-chat
aleph- has quit [Ping timeout: 256 seconds]
aleph- has joined #nixos-chat
aleph- has quit [Ping timeout: 256 seconds]
aleph- has joined #nixos-chat
Dotz0cat_ has joined #nixos-chat
Dotz0cat has quit [Ping timeout: 272 seconds]
Dotz0cat_ has quit [Ping timeout: 240 seconds]
rj has joined #nixos-chat
<siraben> Mic92: how do I use tex2nix in a flake?
<siraben> not sure what's going on with http://ix.io/2QnK
<siraben> and why is `inputs.nixpkgs.url = "github:Mic92/tex2nix";` rather than `inputs.tex2nix.url = "github:Mic92/tex2nix";`
<siraben> s/is/is it/
<cole-h> probably a typo
<Mic92> siraben: yes, typo
<siraben> ah lol I was scratching my head
<siraben> what about `inputs.nixpkgs.inputs.utils.follows = "nixpkgs";` ?
<Mic92> siraben: fix + something lese
<Mic92> inputs.tex2nix.inputs.utils.follows = "nixpkgs";
<siraben> I put tex2nix in nativeBuildInputs
<siraben> but tex2nix not found in buildPhase
<siraben> flake.nix: http://ix.io/2QnN
<Mic92> siraben: tex2nix needs network. This won't work anyway
<siraben> bah, I see.
<Mic92> it downloads texlive packages from nixpkgs to resolve dependencies
<siraben> so tex2nix as a flake input will let me use it in nix develop?
<Mic92> That should work. You can also just use nix run to have it on demand
rajivr has quit [Quit: Connection closed for inactivity]
thibm has joined #nixos-chat
<siraben> hm, why doesn't `devShell = mkShell { buildInputs = [ tex2nix ]; };` work?
Dotz0cat has joined #nixos-chat
<cole-h> needs an arch
<cole-h> `devShell.x86_64-linux =` would work
<cole-h> (assuming you're running it on a x86_64-linux host)
<siraben> cole-h: I'm using `flake-utils.lib.eachDefaultSystem`
<siraben> I can do `nix develop` but tex2nix is not in my path
<cole-h> siraben: try `tex2nix.defaultPackage.${system}`
<cole-h> tex2nix by itself is just a flake reference
<siraben> Ah, ok.
<siraben> <insert groan about how Nix should be typed>
<siraben> Nice, it works now.
<aanderse> i wish nixos didn't assume i'm a functional programmer
<aanderse> i think i want to use `makeScope`, but it isn't mentioned **anywhere** in either the nixpkgs or nixos manual
<aanderse> :(
<joepie91> yep, have run into that one before
<joepie91> still don't think I really understand how it works or why
<joepie91> vaguely recall http://r6.ca/blog/20140422T142911Z.html being relevant
<adisbladis> aanderse: What are you tring to do?
<aanderse> make an overridable package set
<aanderse> so have fooPackages which contains a bunch of packages
<aanderse> i want the packages inside of fooPackages to be overridable, composable, all that good stuff
<aanderse> packages within my fooPackages will depend on each other, and i want it so i can override packages in fooPackages and have all that properly work out
<adisbladis> Right :)
<adisbladis> You're on the correct track
<adisbladis> lib.makeScope newScope (self: { somePackage = self.callPackage ./some/path {}; })
<adisbladis> lib.makeScope newScope (self: { somePackage = self.callPackage ./some/path {}; someDep = self.callPackage ./some/other/path {}; })
<adisbladis> Will correctly inject deps from the the set
<adisbladis> fooSet = lib.makeScope newScope (self: { somePackage = self.callPackage ./some/path {}; someDep = self.callPackage ./some/other/path {}; })
<adisbladis> Now you can do `fooSetOverriden = foo.overrideScope' (fooself: foosuper: somePackage = somePackage.override { }; )`
<adisbladis> aanderse: ^
<aanderse> thanks adisbladis
<aanderse> i'm going to try that
<adisbladis> Minor typo fixup: `fooSetOverriden = foo.overrideScope' (fooself: foosuper: { somePackage = somePackage.override { }; })`
<adisbladis> But I think you get it :)
<aanderse> if i find some time to hack tonight hopefully i'll get it then :D
<adisbladis> =)
<veleiro> TIL that nix is json-like by inspiration
<veleiro> just cant seem to get away from javascript =<
<joepie91> JSON isn't JS despite what the name implies :P
<joepie91> (in the same way that JS isn't Java despite what the name implies)
<joepie91> until fairly recently, even the commonly-cited claim of "JSON is a subset of JS" was not true!
<gchristensen> Nix is json-like by inspiration?
<gchristensen> I didn't know many things were inspired by json in early 2000s
<lovesegfault> is Alyssa Ross here?
<lovesegfault> nixpk.gs/pr-tracker is amazing
<joepie91> lovesegfault: 404?
<joepie91> ah the .html got lopped off
<joepie91> neat
<infinisil> lovesegfault: qyliss would be the nick, not here currently, but in other channels
<lovesegfault> infinisil: Ah, thank you, I'll ping her a 'thanks' :)
<infinisil> Oh that is neat
<lovesegfault> I just asked myself "I wonder if my PR is in this latest nixos-unstable" and boom, instant answer!
<lovesegfault> No more looking at the commit ranges and figuring out what's where
<gchristensen> I think that is just coincidence
<veleiro> "All in all, the Nix language is a lazy JSON with functions." is what i was referring to, maybe not "inspired" sorry
<lovesegfault> The main thing that attracts me to Guix is they use a real language
<lovesegfault> Alas the temptation ends there since it's not a usable distro and doesn't aspire to be
<veleiro> I prefer a DSL like nix honestly, there's so much more bloat with real languages
<veleiro> i agree with not being interested in guix outside of theoretical systems
<FRidh> aanderse: adisbladis: hopefully someday we'll have a makePackageSet function
<aanderse> FRidh: that would be great, having some consistency
<aanderse> someone has an RFC or something about that maybe... 🤔
<FRidh> yes
<aanderse> woo!
<{^_^}> #108562 (by KarlJoad, 6 weeks ago, open): Octave modules
<FRidh> Its heavily based on the Python packaging. How I wish our stdenv was in say Python, so we could abstract out hooks more easily, and share more structure along languages/frameworks.
FRidh has quit [Ping timeout: 260 seconds]
FRidh has joined #nixos-chat
<lovesegfault> So, more on that sway issue
<lovesegfault> I've overlayed kernelPackages to try and pinpoint where the problem happened
<lovesegfault> it's somewhere between 5.10.15(working) and 5.10.17(not working)
<lovesegfault> seems low-risk
<lovesegfault> now to .17
<infinisil> I just replaced a part of a test suite with (the haskell equivalent of) `throw "Nope"`, expecting it to fail immediately
<infinisil> But it didn't..
<infinisil> But all good, it just collected all failures to display them later
<infinisil> Phew
<infinisil> gchristensen++
<{^_^}> gchristensen's karma got increased to 430
<infinisil> Watching now..
<infinisil> Damn, that's awesome
<infinisil> It's interesting how the video feed from the drone cuts out right around the time as it cuts the cables (because of course, the drone crashes in a bit)
<infinisil> gchristensen: Looks like the drone is flying pretty near to the ground
<philipp[m]1> The Perseverance image pipeline is up: https://mars.nasa.gov/mars2020/multimedia/raw-images/
<philipp[m]1> It's their raw image feed for the nerds. I rather have them publish everything than "just the good ones".
<etu> Isn't it like something that they are a "publicly founded organization" and therefore kinda "have to" publish "all the things"? Not sure how that works but I've read that at some point.
<samueldr> philipp[m]1: sure, I'm definitely not against it
<samueldr> just incredibly funny they have "garbage" in there
<philipp[m]1> One man's garbage...
<samueldr> see the quotes :)
<samueldr> it's art!
<samueldr> the lush green skies of mars!
FRidh has quit [Quit: Konversation terminated!]
<lovesegfault> samueldr: what do I do if I need a clone of the kernel repo starting at a given hash
<lovesegfault> I'm doing a bisect and I want to use remote builds, but uploading the whoel 4.7GB of repo on every step is coconuts
<samueldr> uh, use `src = builtins.fetchGit /path/to/checkout`...
<lovesegfault> huh
<lovesegfault> TIL
<samueldr> IIRC that will only bring the revision it's currently at on the remote builder
<samueldr> well, in the store
* lovesegfault tries
<samueldr> I assume you had `src = /path/to/checkout`
<lovesegfault> yup
<samueldr> otherwise, I'm not sure about what kind of git shenanigans you can do
<lovesegfault> now it only copies 932MiB :P
<lovesegfault> solution, bisect on both the local and remote machine and pray the hashes are the same
<lovesegfault> brain size: big
slack1256 has joined #nixos-chat
<ashkitten> maybe with the upcoming xwayland release separate from xorg, the xwayland build in nixpkgs will be easier to work with
aleph- has quit [Ping timeout: 246 seconds]
__monty__ has quit [Quit: leaving]
aleph- has joined #nixos-chat
<aanderse> adisbladis++ thanks again for sharing your thoughts on `makeScope`, nice and simple, got exactly what i wanted 👍
<{^_^}> adisbladis's karma got increased to 141
<infinisil> aanderse: Link?
<infinisil> Ohh, irc logs
<aanderse> infinisil: i'm not a functional programmer and there isn't great documentation on makeScope/newScope stuff if you aren't a functional programmer
<aanderse> at least i assume thats the disconnect :)
<infinisil> Yeah, very valid, and I've also had trouble with this before because of no docs. Was able to muddle through with a bunch of source research, which is not ideal..
<aanderse> well... thanks no adisbladis i have it working now
<aanderse> hacking a new package set :D
<aanderse> which i've never done before
<aanderse> so neat learning experience