<flokli>
Mic92: you rewrote parts of the activation script in Go? ;-)
aminechikhaoui has quit [*.net *.split]
aminechikhaoui has joined #nixos-systemd
arianvp has quit [*.net *.split]
arianvp has joined #nixos-systemd
mdlayher has quit [*.net *.split]
{^_^} has quit [*.net *.split]
JJJollyjim has quit [*.net *.split]
Mic92 has quit [*.net *.split]
colemickens has quit [*.net *.split]
elvishjerricco has quit [*.net *.split]
NinjaTrappeur has quit [*.net *.split]
feepo has quit [*.net *.split]
{^_^} has joined #nixos-systemd
mdlayher has joined #nixos-systemd
feepo has joined #nixos-systemd
NinjaTrappeur has joined #nixos-systemd
Mic92 has joined #nixos-systemd
elvishjerricco has joined #nixos-systemd
colemickens has joined #nixos-systemd
JJJollyjim has joined #nixos-systemd
globin has quit [*.net *.split]
fpletz has quit [*.net *.split]
flokli has quit [*.net *.split]
fpletz has joined #nixos-systemd
flokli has joined #nixos-systemd
globin has joined #nixos-systemd
colemickens has quit [Max SendQ exceeded]
elvishjerricco has quit [Ping timeout: 253 seconds]
JJJollyjim has quit [Ping timeout: 250 seconds]
feepo has quit [Ping timeout: 250 seconds]
emily has quit [Ping timeout: 244 seconds]
aanderse has quit [Ping timeout: 244 seconds]
<gchristensen>
I don't suppose systemd would mind starting inside a non-default network namespace
Ox4A6F has quit [*.net *.split]
asymmetric has quit [*.net *.split]
asymmetric has joined #nixos-systemd
Ox4A6F has joined #nixos-systemd
adisbladis has quit [*.net *.split]
ma27[m] has quit [Ping timeout: 244 seconds]
adisbladis has joined #nixos-systemd
andi- has quit [*.net *.split]
edef has quit [*.net *.split]
tazjin has quit [Quit: Updating details, brb]
andi- has joined #nixos-systemd
edef has joined #nixos-systemd
tazjin has joined #nixos-systemd
pbb has quit [*.net *.split]
hexa- has quit [*.net *.split]
gchristensen has quit [*.net *.split]
samueldr has quit [*.net *.split]
<Mic92>
flokli: It's sops integration for NixOS.
<Mic92>
sops has a go API for decryption.
balsoft has quit [Remote host closed the connection]
Ox4A6F has quit [Remote host closed the connection]
pbb has joined #nixos-systemd
hexa- has joined #nixos-systemd
samueldr has joined #nixos-systemd
gchristensen has joined #nixos-systemd
infinisil has quit [*.net *.split]
lukegb has quit [*.net *.split]
makefu has quit [*.net *.split]
makefu has joined #nixos-systemd
lukegb has joined #nixos-systemd
infinisil has joined #nixos-systemd
qyliss has quit [*.net *.split]
qyliss has joined #nixos-systemd
colemickens has joined #nixos-systemd
elvishjerricco has joined #nixos-systemd
<flokli>
Mic92: how does it tie together? When are things decrypted?
<flokli>
Also, does it relate to the secrets rfc?
feepo has joined #nixos-systemd
<Mic92>
flokli: It's orthogonal to it. The secrets RFC just takes care about exposing the secret to the service. My implementation is about decrypting the key in to ramfs.
<Mic92>
But I also want to built in reloading/restarting services.
<gchristensen>
oooh sops
ma27[m] has joined #nixos-systemd
emily has joined #nixos-systemd
JJJollyjim has joined #nixos-systemd
Ox4A6F has joined #nixos-systemd
balsoft has joined #nixos-systemd
aanderse has joined #nixos-systemd
<Mic92>
It decrypts on the target machine, right now I only implement GPG, but the cloud-specific should be easy enough to add.