<ndowens08>
While I am thinking about it, did you guys see the Cloudfire or so vulnerability that has possibly affected a lot of sites?
<RchrdB>
I hope so, it's been all over twitter and the news lately.
<ndowens08>
yup scary :\
gk_-1wm_- has joined #nixos
gk_-1wm_- has left #nixos []
freusque has quit [(Ping timeout: 268 seconds)]
<gchristensen>
is there a way other than the vga parameter to tell the kernel to make the font display bigger? it is picking up the native resolution of my display, which makes the font about 1mm tall
jensens has quit [(Ping timeout: 255 seconds)]
ndowens08 has quit [(Quit: WeeChat 1.7)]
takle has quit [(Remote host closed the connection)]
Kendos-Kenlen has quit [(Quit: Konversation terminated!)]
<the-kenny>
So much space to work with! :)
takle has joined #nixos
MP2E has quit [(Quit: bbl)]
takle has quit [(Ping timeout: 260 seconds)]
dingen has joined #nixos
dingen is now known as dreamer
dreamer has quit [(Changing host)]
dreamer has joined #nixos
dreamer has left #nixos []
MarcelineVQ has quit [(Ping timeout: 260 seconds)]
nh2 has quit [(Ping timeout: 260 seconds)]
<NixOS_GitHub>
[nixpkgs] nbp closed pull request #23102: Allow directories with a default.nix to be imported as an overlay. Cl… (master...master) https://git.io/vyeTn
AllanEspinosa has joined #nixos
mudri has quit [(Ping timeout: 240 seconds)]
mudri has joined #nixos
phreedom has quit [(Ping timeout: 268 seconds)]
phreedom has joined #nixos
digitalmentat has joined #nixos
gk_-1wm has joined #nixos
gk_-1wm has left #nixos []
mudri has quit [(Quit: WeeChat 1.7)]
lambdamu has quit [(Read error: Connection reset by peer)]
MarcelineVQ has joined #nixos
sibi has quit [(Quit: Connection closed for inactivity)]
mbrgm has quit [(Ping timeout: 240 seconds)]
mbrgm has joined #nixos
jackneill__ has quit [(Remote host closed the connection)]
digitalmentat has quit [(Ping timeout: 260 seconds)]
gk-------1__w__m has joined #nixos
gk-------1__w__m has left #nixos []
derjohn_mob has quit [(Ping timeout: 240 seconds)]
takle has joined #nixos
eacameron has joined #nixos
takle has quit [(Ping timeout: 255 seconds)]
s33se has joined #nixos
takle has joined #nixos
s33se_ has quit [(Ping timeout: 240 seconds)]
alx741 has quit [(Quit: alx741)]
derjohn_mob has joined #nixos
takle has quit [(Ping timeout: 240 seconds)]
ibrahims has quit [(Ping timeout: 260 seconds)]
sivteck has joined #nixos
dramforever has joined #nixos
ericsagnes has quit [(Ping timeout: 255 seconds)]
hexagoxel has quit [(Ping timeout: 260 seconds)]
hexagoxel has joined #nixos
ibrahims has joined #nixos
ibrahims has quit [(Ping timeout: 260 seconds)]
jsgrant has quit [(Read error: Connection reset by peer)]
ibrahims has joined #nixos
alx741 has joined #nixos
hexagoxel has quit [(Ping timeout: 240 seconds)]
systemfault has quit [(Quit: Bye!)]
hexagoxel has joined #nixos
ibrahims has quit [(Ping timeout: 260 seconds)]
ibrahims has joined #nixos
ibrahims has quit [(Ping timeout: 260 seconds)]
mguentner has quit [(Quit: WeeChat 1.7)]
Hoolootwo has joined #nixos
ibrahims has joined #nixos
dramforever has quit [(Ping timeout: 240 seconds)]
mguentner has joined #nixos
ibrahims has quit [(Ping timeout: 260 seconds)]
dramforever has joined #nixos
wavewave has quit [(Quit: Connection closed for inactivity)]
ibrahims has joined #nixos
ericsagnes has joined #nixos
ibrahims has quit [(Ping timeout: 255 seconds)]
systemfault has joined #nixos
<gchristensen>
setting up the 9560 on nixos has been shockingly easy.
mguentner2 has joined #nixos
sivteck has quit [(Read error: Connection reset by peer)]
<adelbertc>
gchristensen: the new dell xps 15?
<gchristensen>
yeah, adelbertc
<adelbertc>
cool to hear
<gchristensen>
I'm working on a write-up. I'll post in the morning. Way past my bedtime :)
<adelbertc>
im thinking about picking up one of the new x1 carbons, hopefully its just as easy
<NixOS_GitHub>
nixpkgs/master 3a4dd97 Franz Pletz: nginx module: fix acme if vhost name != serverName...
mkoenig has joined #nixos
takle has quit [(Ping timeout: 260 seconds)]
ibrahims has joined #nixos
<eacameron>
ekleog: How do I use the new security.dhparams module? I have nixops machine and I added "security.dhparams = { nginx = 3072; };" but it gives me an error that `security.dhparams` does not exist
<nekroze>
Can anyone tell me what is going wrong here "hash of path â/nix/store/9hms7vkxpjx3a82cw58qays20cnzdmz0-python3-3.4.5â has changed from â99386c19e79487e77a49f2bd5dc4c4c9400706ae85c73a149f9f61b2eb118d42â to â29caa1190111dbdbfcf87410d1c07c84901b70929658562de7d180bb0a818f09â! at
<nekroze>
/nix/store/gyxrpa4vl6parf1r66wwga50zg81n4lr-nix-1.11.6/lib/perl5/site_perl/5.22.2/x86_64-linux-thread-multi/Nix/CopyClosure.pm line 44." Just started happening out of the blue.
eacameron has quit [(Remote host closed the connection)]
eacameron has joined #nixos
ibrahims has joined #nixos
eacameron has quit [(Ping timeout: 255 seconds)]
<NixOS_GitHub>
[nixpkgs] fpletz pushed 2 new commits to master: https://git.io/vyTmW
<NixOS_GitHub>
nixpkgs/master a6dffee Jonathan Rudenberg: libcec: 3.1.0 -> 4.0.2
<NixOS_GitHub>
nixpkgs/master 87d294f Jonathan Rudenberg: kodi: Explicitly compile in libcec support...
eacameron has joined #nixos
<NixOS_GitHub>
[nixpkgs] peterhoeg pushed 1 new commit to master: https://git.io/vyTm0
<NixOS_GitHub>
nixpkgs/master 9f184ac Peter Hoeg: utox: 0.13.0 -> 0.13.1
d762b440__ has quit [(Ping timeout: 240 seconds)]
eacameron has quit [(Ping timeout: 240 seconds)]
freusque has joined #nixos
<clever>
hyper_ch: all objects in git are identified by sha1 hashes
<clever>
hyper_ch: and i believe the signatures on the git history are signing the sha1 of the commit
nekroze has quit [(Quit: Lost terminal)]
eacameron has joined #nixos
AllanEspinosa has quit [(Ping timeout: 240 seconds)]
eacameron has quit [(Ping timeout: 260 seconds)]
thc202 has joined #nixos
s33se has joined #nixos
takle has joined #nixos
s33se_ has quit [(Ping timeout: 240 seconds)]
s33se has quit [(Ping timeout: 240 seconds)]
mog has quit [(Ping timeout: 240 seconds)]
s33se has joined #nixos
schneefux has quit [(Ping timeout: 268 seconds)]
hotfuzz_ has joined #nixos
d762b440__ has joined #nixos
takle has quit [(Ping timeout: 260 seconds)]
hotfuzz has quit [(Ping timeout: 268 seconds)]
s33se_ has joined #nixos
s33se has quit [(Ping timeout: 240 seconds)]
d762b440__ has quit [(Ping timeout: 240 seconds)]
s33se_ has quit [(Ping timeout: 240 seconds)]
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to staging: https://git.io/vyTYx
<NixOS_GitHub>
nixpkgs/staging 9d14ea4 Franz Pletz: utillinux: 2.29 -> 2.29.2 for CVE-2017-2616...
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to master: https://git.io/vyTOe
<NixOS_GitHub>
nixpkgs/master 6bafe64 Franz Pletz: qemu: apply patches for multiple CVEs...
takle has joined #nixos
<srk>
hmm
<srk>
any idea how to get build hash from tarball build log?
<srk>
or git commit hash?
<srk>
or should I use short hash extracted from /nix/store/gmka0y98lk7r32mb26id2473c9csj3zn-tarball ?
mog has joined #nixos
takle has quit [(Ping timeout: 255 seconds)]
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to release-16.09: https://git.io/vyTOl
<NixOS_GitHub>
nixpkgs/release-16.09 edce91c Franz Pletz: qemu: apply patches for multiple CVEs...
schneefux has joined #nixos
montag451_ has joined #nixos
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to master: https://git.io/vyTOi
<NixOS_GitHub>
nixpkgs/master 6dfbb07 Franz Pletz: mupdf: add patch to fix CVE-2017-5896
<the-kenny>
Hm. Anyone got an idea why my local rust package isn't building anymore? Error is 'failed to open: /tmp/nix-build-herbstmove-0.4.drv-0/deps/registry/index/-ba82b75dd6681d6f/.cargo-index-lock'. Was working fine before updating my nixpkgs to latest master.
<the-kenny>
Okay, now can someone explain me while Google Chrome blocks its own 'print preview' with "Refused to load the script 'chrome-extension://mhjfbmdgcfjbbpaeojofohoefgiehjai/main.js' because it violates the following Content Security Policy directive: "script-src chrome://resources 'self' 'unsafe-eval'"." ? :D
<the-kenny>
okay, looks like an upstream issue
jgertm has joined #nixos
eacameron has joined #nixos
eacameron has quit [(Read error: Connection reset by peer)]
eacameron has joined #nixos
dramforever has joined #nixos
eacameron has quit [(Ping timeout: 240 seconds)]
mudri has joined #nixos
eacameron has joined #nixos
takle has quit [(Remote host closed the connection)]
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to master: https://git.io/vyTnT
<NixOS_GitHub>
nixpkgs/master ae1c0ad Franz Pletz: git-dit: fix evaluation...
eacameron has quit [(Ping timeout: 260 seconds)]
<LnL>
lassulus: yeah, that's the one I was talking about
jgertm has quit [(Ping timeout: 240 seconds)]
eacameron has joined #nixos
takle has joined #nixos
eacameron has quit [(Ping timeout: 240 seconds)]
pi3r has joined #nixos
justbeingglad has joined #nixos
takle has quit [(Ping timeout: 260 seconds)]
dramforever has quit [(Quit: Leaving)]
dramforever has joined #nixos
<pierron>
zimbatm: I wonder, should I start making a RFC now, even if the first one is not stabilized yet?
<aristid>
who accepted a commit with this message into nixpkgs?! "Beebooboop"
<aristid>
wtf
<aristid>
or this: "More derp? It's 5am..."
<pierron>
aristid: I think github makes it hard to review commit messages of individual commits, and people tend to trust the commiters and the changes.
<aristid>
pierron: reviewing the commit messages to be good is hard, sure
<aristid>
but this kind of commit message is easy to spot, as i do think github shows the first line of the commit message fairly prominently
<pierron>
aristid: Merge pull request #16654
<aristid>
ah, those are from this huge merge which broke my nixos
<aristid>
is that fixed in master?
<aristid>
i usually use nixos-unstable-small
<pierron>
aristid: I think today, such changes should be squashed and merged.
<aristid>
pierron: probably. github does make that easy enough.
<pierron>
aristid: either by the original author, as he is the best person for doing that, or by the committer.
<aristid>
pierron: at work, i'm sometimes torn whether to do a merge or a squash
fre has joined #nixos
<aristid>
squashes do throw away some information
<pierron>
aristid: yes, which is why it would be better if the original author could clean-up his patches, and get them merged if a logical split matters.
<aristid>
right, do a good ol' git rebase -i on the whole branch
<LnL>
yeah, I usually rebase -i and fixup commits that belong with another change
<pierron>
aristid: "More derp? It's 5am..." is certainly not the kind of information you are interested to see in the history
<aristid>
indeed.
<pierron>
LnL: I add fixup commits that I name accordingly, and do all the reordering & squashing when I want to get something in a better shape
<pierron>
I guess the problem here, is that the branch of the developer periodically merged out of master into his own branch, and unless he uses top-git, this would not work quite as simply with "rebase -i"
takle has joined #nixos
justbeingglad has left #nixos []
pi3r has quit [(Ping timeout: 268 seconds)]
<aristid>
pierron: why?
georges-duperon has quit [(Ping timeout: 255 seconds)]
takle has quit [(Ping timeout: 240 seconds)]
JagaJaga has joined #nixos
Entroacc1ptor is now known as Entroacceptor
<aristid>
hmm, it would be so awesome if we had hydra build all pull requests, or at least non-trivial ones :D
pi3r has joined #nixos
georges-duperon has joined #nixos
Jackneill_ has joined #nixos
<LnL>
we had a test version for a while that created a jobset for each pr
<aristid>
so my bisect failed, and even on nixos master i get this error:
<aristid>
LnL: but... shouldn't that make pretty much everybody's nixos fail to build?!
<aristid>
who doesn't have locate?
georges-duperon has quit [(Quit: Leaving)]
<LnL>
I think it's the other way around
<NixOS_GitHub>
[nixpkgs] nlewo opened pull request #23168: Nova image refactoring and partition resizing (master...nova-image-refactoring) https://git.io/vyTCF
takle has joined #nixos
<aristid>
LnL: what do you mean?
<aristid>
LnL: also, disabling locate does not fix it.
<aristid>
ah, no, it's my own setuid wrapper that i forgot about!
<aristid>
$ git grep sendmailSetuidWrapper
<aristid>
nixos/common/opensmtp.nix: services.mail.sendmailSetuidWrapper = { program = "sendmail"; };
eacameron has joined #nixos
<aristid>
LnL: and locate is fine because mlocate is not the default.
<LnL>
yeah, I thought so
katyucha_ is now known as katyucha
eacameron has quit [(Ping timeout: 260 seconds)]
johnw has quit [(Ping timeout: 260 seconds)]
<NixOS_GitHub>
[nixpkgs] Kendos-Kenlen opened pull request #23169: kde5: add hack font dependency (master...kde-hack) https://git.io/vyTWu
johnw has joined #nixos
eacameron has joined #nixos
ttuegel has joined #nixos
mudri has quit [(Ping timeout: 260 seconds)]
eacameron has quit [(Ping timeout: 260 seconds)]
eacameron has joined #nixos
eacameron has quit [(Ping timeout: 260 seconds)]
mkoenig has joined #nixos
eacameron has joined #nixos
mudri has joined #nixos
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to master: https://git.io/vyTlf
<NixOS_GitHub>
nixpkgs/master 0570686 Franz Pletz: mpd: 0.20.4 -> 0.20.5...
eacameron has quit [(Ping timeout: 260 seconds)]
Kendos-Kenlen has joined #nixos
eacameron has joined #nixos
proteusguy has quit [(Ping timeout: 240 seconds)]
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to release-16.09: https://git.io/vyTlB
<NixOS_GitHub>
nixpkgs/release-16.09 38ba8c4 Franz Pletz: mpd: 0.20.4 -> 0.20.5...
mizu_no_oto has quit [(Ping timeout: 240 seconds)]
<Kendos-Kenlen>
Hi :)
eacameron has quit [(Ping timeout: 240 seconds)]
pi3r has joined #nixos
<Kendos-Kenlen>
Is there any plan to update to kde 5.9 ? Or is the LTS version privilegied ?
<ttuegel>
Kendos-Kenlen: Do you mean Plasma 5.9? Yes, after the 17.03 release.
<ttuegel>
Besides being Plasma 5.8 being an LTS version, Plasma 5.9 requires two versions of Qt updates, and I just don't want to cause that much breakage right before release.
LnL has quit [(Quit: exit 1)]
LnL has joined #nixos
<Kendos-Kenlen>
ttuegel: okay, it's a good reason yes
<Kendos-Kenlen>
Looking forward ! I tested plasma 5.9 before using NixOS and it works well :)
<ttuegel>
Kendos-Kenlen: That's interesting, because I have it here too, and it won't start...
<Kendos-Kenlen>
ah ? On NixOS?
<ttuegel>
Yes.
<Kendos-Kenlen>
Is there any branch or somewhere I could test it ? :) I like to do this (even if I don't always succeed :P )
<ttuegel>
Hm, it's not on the machine I'm at right now, sorry :(
<Kendos-Kenlen>
BTW, I tried to update yarn to v0.20.3 but have a hash problem. When I prefetch url, I have a hash but when running nix-env -i, the has differs and i can't figure why. The URL looks correct...
<Kendos-Kenlen>
ttuegel: okay :/ np
<sphalerite>
Kendos-Kenlen: try using --unpack on the prefetch-url invocation
fre has quit [(Quit: WeeChat 1.7)]
<NixOS_GitHub>
[nixpkgs] bjornfor pushed 1 new commit to master: https://git.io/vyT8q
<NixOS_GitHub>
nixpkgs/master 46e4422 Bjørn Forsman: munin: add 'bc' (needed by 'acpi' and 'snort_pkts' plugins)
<pierron>
samae: The problem you had is that you were not using the "override" function on the package to change the input given by the callPackage function.
<samae>
ah : )
<samae>
So my interpretation of the error was wrong then
zarf- has joined #nixos
<samae>
ok
<samae>
let me try your way : )
<pierron>
samae: hum … I admit that what you did should also have worked.
<pierron>
samae: I made a typo, this should be nixpkgs.overlays instead of nixpkgs.config.overlays
<samae>
ok
* pierron
found an error in the documentation of nixpkgs.overlays :(
<samae>
good, one less :)
itsN1X has joined #nixos
itsN1X has quit [(Remote host closed the connection)]
acarrico has joined #nixos
<pierron>
samae: You can test it without rebuild NixOS everytime by using nix-build '<nixos/nixos>' -A config._module.args.pkgs.st
<samae>
ok
<samae>
I still have a syntax error I trying to find
<LnL>
samae: It's '<nixpkgs/nixos>' I think
JagaJaga has quit [(Ping timeout: 240 seconds)]
<pierron>
samae: This should be }; }) ];
zarf- is now known as zarf
<pierron>
samae: my fault
<samae>
it's what I have, I fixed it this way
Ivanych has quit [(Quit: Leaving.)]
<samae>
but still…
hotfuzz_ is now known as hotfuzz
<samae>
unexpected ')', expecting $end at /etc/nixos/configuration.nix:235:188 (the end of my configuration.nix)
<samae>
my bad : )
<samae>
I had some text hanging very far >> 80th column
<samae>
: /
<samae>
pierron: now I've got the same error than before : )
<pierron>
samae: let me guess, column 188 :P
<samae>
haha
<samae>
cannot coerce a set to a string, at /nix/store/nhfggr94nnnznpyb07448icjnl8zj7l9-nixos-17.03pre101839.53a2baa/nixos/pkgs/applications/misc/st/default.nix:8:3
<samae>
It's what I thought was fetchurl giving back a derviation, while patches were expected to be a list of strings
itsN1X has joined #nixos
AndroUserN1X has joined #nixos
dramforever has quit [(Quit: Leaving)]
AndroUserN1X has quit [(Remote host closed the connection)]
<samae>
I think my mistake is quite basic…
<pierron>
samae: ok, I can reproduce the "cannot coerce" issue
sibi has quit [(Quit: Connection closed for inactivity)]
chris| has quit [(Quit: Quit)]
AndroUserN1X has joined #nixos
itsN1X has left #nixos []
AndroUserN1X has quit [(Client Quit)]
<pierron>
samae: ok, patches is expeected to be a list of path, but the patchf function evaluates to an attribute set.
<jaym>
dies with /tmp/nix-build-VirtualBox-GuestAdditions-5.1.14-4.10.drv-0/install/src/vboxguest-5.1.14/vboxsf/lnkops.c:93:23: error: 'generic_readlink' undeclared here (not in a function) .readlink = generic_readlink,
<Profpatsch>
johnw: You’re the author of hnix, right?
<Profpatsch>
I was thinking about a quasi-quoter for literal nix expressions with splicing.
acarrico has quit [(Ping timeout: 255 seconds)]
<jaym>
cant build nvidia drivers either with 4.10 :(
slyfox has quit [(Quit: :))]
xwvvvvwx has quit [(Quit: WeeChat 1.7)]
<garbas>
pierron: yup, i already have an experimental branch where nix installed using current puppet infra
slyfox has joined #nixos
<pierron>
garbas: I guess I should update the MOOS page.
<garbas>
MOOS?
Ivanych has joined #nixos
Guest32701 has joined #nixos
<pierron>
garbas: there is a wiki page about all the software used in Mozilla and who to contact to support them.
<pierron>
garbas: and a brief descriptions of what we use them for.
<garbas>
oh, right. i added nix and elm 2 weeks ago :)
<garbas>
i saw you already mentioned NixOS
<NixOS_GitHub>
[nixpkgs] FRidh pushed 1 new commit to master: https://git.io/vyTuD
<NixOS_GitHub>
nixpkgs/master 09e191c Frederik Rietdijk: sabnzbd: 1.2.0 -> 1.2.1
endformationage has joined #nixos
<pierron>
garbas: ok ;)
acarrico has joined #nixos
taeradan has joined #nixos
acarrico has quit [(Ping timeout: 260 seconds)]
aloiscochard has joined #nixos
<aloiscochard>
hi all, is it possible to use nix on freebsd? I could not find any reference
phreedom has quit [(Ping timeout: 268 seconds)]
<pierron>
aloiscochard: I think so, but I do think our buildfarm targets any bsd at the moment, so a lot of packages might fail and you will have to recompile all of them.
<pierron>
^ I do *noy* think
<pierron>
s/noy/not/
<aloiscochard>
I see, thanks pierron!
phreedom has joined #nixos
ertes has quit [(Ping timeout: 260 seconds)]
AndChat|576281 has joined #nixos
erlandsona has joined #nixos
drakonis has joined #nixos
montag451_ has quit [(Ping timeout: 240 seconds)]
erlandsona has quit [(Ping timeout: 240 seconds)]
CAPRA-MAU has joined #nixos
<gchristensen>
anyone using encrypted swap with a keyFile which is stored in your encrypted root+
<ndowens08>
LnL: even though it uses "?" still looks like default setting instead of setting root as default and giving option to set it to something else
<LnL>
hrm looks like setuidOwners has similar behaviour
<ttuegel>
@gchristensen ^^
<LnL>
ttuegel: nice!
<zetok>
ndowens08: I'd be happy to copy & paste stuff from the vm as soon as the livecd gains support for passing the clipboard vm↔host
<ndowens08>
zetok: do you use UEFI or MBR?
<zetok>
anyway, I didn't put in the config anything fancy, just uncommented the default stuff necessary for it to boot to kde
takle has quit [(Remote host closed the connection)]
<zetok>
Neither.
<LnL>
most likely an issue with partitioning not the configuration itself
<ndowens08>
your installing in VM then?
<zetok>
I've used GPT
<gchristensen>
ttuegel: aahhh!!!! YAY!
<gchristensen>
!m ttuegel
<[0__0]>
You're doing good work, ttuegel!
<gchristensen>
ttuegel: nice work! that is incredible, what a huge step forward
<ndowens08>
I use GPT/UEFI, when I installed NixOS on my HD, the default configuration set it correctly for me, so I didnt have to set the boot setup part of the config
<ndowens08>
you could use it if you point nixpkgs to a local copy of nixpkgs
takle has joined #nixos
aloiscochard has quit [(Quit: Connection closed for inactivity)]
Mic92 has quit [(Quit: WeeChat 1.7)]
<eacameron>
ttuegel: ndowens08: I see. If I open a recent version in nix-repl, how can I see the nixos modules?
Mic92 has joined #nixos
<LnL>
eacameron: with nix-repl '<nixpkgs/nixos>' you get an options and config variable
<LnL>
or nix-repl ./nixos if you want to use a local checkout
takle has quit [(Ping timeout: 260 seconds)]
<NixOS_GitHub>
[nixpkgs] ttuegel closed pull request #23180: Separate Qt 5 packages from dependent libraries (master...qt-libs) https://git.io/vyTVx
<endformationage>
How can I allow vscode to find rust bits in my PATH added from a nix-shell? I tried starting code from the shell with no luck :/
<eacameron>
LnL: It says "error: file nixos-config was not found in the Nix search path"
<eacameron>
LnL: If I try to look at the options attr
<LnL>
ah you're not on nixos?
<eacameron>
LnL: macOS...but I could try on NixOS
<LnL>
you can add an empty configuration and add nixos-config=/tmp/configuration.nix to NIX_PATH
Mic92 has quit [(Ping timeout: 240 seconds)]
<eacameron>
LnL: Aha it works on NixOS
<eacameron>
and yes dhparams is there
<endformationage>
Code seems to be using PATH from user env. I guess I'd need to add code itself to nix-shell -p packages.
<LnL>
eacameron: if it's a new module and it's not in the channel yet you can use it by adding imports = [ /src/nixpkgs/nixos/modules/... ]; to your configuration
wizeman has quit [(Quit: Connection closed for inactivity)]
<eacameron>
LnL: Oh well that's pretty cool too!
zarel has joined #nixos
ttuegel has quit [(Remote host closed the connection)]
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to master: https://git.io/vyTPc
<NixOS_GitHub>
nixpkgs/master 26a2822 Franz Pletz: nginx service: restart instead of stop to reduce downtime...
proteusguy has quit [(Remote host closed the connection)]
takle has quit [(Ping timeout: 260 seconds)]
edvorg has quit [(Ping timeout: 240 seconds)]
tempeh has joined #nixos
<tempeh>
Hi guys - quick question. I'm new to Nix/NixOS. I'd like to do some reading to get me comfortable with things, e.g. installing packages that aren't in Nixpkgs, setting up development environments, setting up software like Emacs. Is there a standard tutorial for Nix/NixOS that you guys like? Will just the NixOS manual work?
<adelbertc>
the nix manual was quite helpful to me
<adelbertc>
seems like a good starting point
<ndowens08>
ok to use a local copy of nixpkgs for nixos-rebuild including sample config it's like: NIXOS_CONFIG=CONFIG_FILE_PATH nixos-rebuild build-vm -I nixpkgs=PATH_TO_NIXPKGS
<ndowens08>
right
bennofs1 has quit [(Ping timeout: 260 seconds)]
<ndowens08>
also looking at packages's Nix expressions can be helpful to geth an idea how to package as well
<tempeh>
okay cool. so NixOS manual is also a good intro to Nix?
Rotaerk has quit [(Read error: Connection reset by peer)]
<tempeh>
adelbertc: actually read those :)
<Unode>
hi everyone. On the process of trying out btrfs in my nixos system I replaced the partition scheme by copying all disk contents to a backup, reformatting as btrfs and copying back from backup. I'm now sitting on my other system (gentoo) trying to rescue nixos via chroot. Mounting works, I managed to run /nix/var/nix/profiles/system/activate which doesn't error but also doesn't populate /run/current-system/bin/
<Unode>
with bash. Regardless, I can use one of the bash instances on /nix/store and chroot into it without major problems. However when I run nixos-rebuild switch I get http://dpaste.com/0N1MR0C and don't know how to proceed from here.
<Unode>
Any suggestions?
<sphalerite>
Is there an easy way to install nixos on about 15 machines at once?
sellout- has joined #nixos
<Unode>
sphalerite: there's nixops
phreedom has quit [(Quit: No Ping reply in 180 seconds.)]
<clever>
sphalerite: nixops does have a way to deploy to baremetal, as long as the target machine has sshd and nixos already on it
<sphalerite>
That's great, but how do I get to that state? :p
<clever>
sphalerite: depends on where the machine is and what kind of access you have
<Unode>
clever: thanks, boot seems to have done the work rebooting to check, be back in a few minutes
phreedom has joined #nixos
<sphalerite>
clever: they're in a lab at uni and I have physical access. I'm guessing some sort of PXE setup would be best for the bootstrap, but is there documentation on how to do it anywhere?
<clever>
sphalerite: ah, there is a good pxe target in nixos
<clever>
sphalerite: the nix-build command is in the youtube description
<clever>
sphalerite: that will generate a directory containing an ipxe script, along with a kernel+initrd, and if you boot those, you get the same env as if you had booted from a cdrom
<sphalerite>
cool, I've managed to do something like that before
bennofs1 has joined #nixos
<sphalerite>
is there a way to script the whole installation, so I don't have to type all those commands on each of the machines?
drakonis has quit [(Remote host closed the connection)]
<clever>
sphalerite: this is fragments of some config from an example i made 3 months ago, it modifies the netboot image to include a script called justdoit
<clever>
so you can just type "justdoit" into the root shell, and it does it
<sphalerite>
Awesome! Thanks
<clever>
target-config.nix will need to exist when you build that configuration.nix to make the netboot image
<clever>
and it needs to enable ssh and setup an ssh key so you can get in
<Profpatsch>
I wonder if I can get the PATH of a nix shell into an emacs buffer/session?
<clever>
sphalerite: gistfile1.txt is how the modified netboot gets built
<clever>
sphalerite: and boot.php is something i have to allow each machine to boot into a different image, so i can dynamicaly configure things without having to touch the dhcp server
<sphalerite>
that's really neat!
<clever>
sphalerite: oh, and the version thing on line 12 is just to work around weirdness in virtualbox
<clever>
sphalerite: the ipxe embeded into virtualbox doesnt handle http, so i have to chainload a better ipxe, and then detect the difference
<Unode>
clever: thanks the boot helped but had to go back and issue grub-install /dev/sda. Which fixed the MBR. Grub is now fixed however the system doesn't boot. Seems to get stuck waiting for a disk to show up. I think it's looking for a UUID disk that doesn't exist.
<clever>
Unode: you need to fix the boot.grub.device in configuration.nix, so it knows what to grub-install against
<sphalerite>
ah, ok
<Unode>
clever: right, got it
<clever>
Unode: and you need to fix the uuid for / in either hardware-configuration.nix or configuration.nix, so it can find the new root
<Unode>
yup already see the problem
bennofs1 has quit [(Ping timeout: 255 seconds)]
<clever>
sphalerite: line 6 of boot.php is another fun test i did, that laptop was booting with the rootfs and grub on iscsi
<clever>
sphalerite: due to how sanboot works, grub thinks its booting from a normal hdd in the local box, but ipxe is redirecting it over iscsi transparently
<sphalerite>
wow
<sphalerite>
Don't think I'll be going there, but that's neat
<clever>
that only gets you far enough to load the kernel+initrd
<clever>
it still needs some nixos modules to add iscsi support to the initrd after that step
aszlig_ is now known as aszlig
<clever>
sphalerite: oh, and line 11 of justdoit, i believe if you remove the size= field, it will just take the entire disk automaticaly
<clever>
and you can obviously customize that to match the partition layout you want, and fs types
<Unode>
and we are back. Cheers clever! Once again you are a life saver.
* sphalerite
notes: clever is an absolute wizard when it comes to booting nixos
<Unode>
and always amazed at how nixos simply does it once you give it the right commands.
<clever>
sphalerite: and because that netboot kernel+initrd runs nixos entirely from ram, i have also thrown them at kexec
<sphalerite>
Unode: computers do that in general. The problem is basically always getting the commands right ;)
<clever>
sphalerite: this script, will generate a tarball, you just unpack it to /, and /kexec_nixos
<clever>
sphalerite: and within 60 seconds, you will have nixos running purely from ram, with no changes to the hdd
<sphalerite>
How many different ways of booting nixos do you have? xD
<clever>
you can then ssh into that, format the hdd, and install nixos
<Unode>
sphalerite: well not from my experience. Usually the incantation is rather obscure. Like proper dark-arts. With nixos, 1 right command and you are good to go.
<clever>
main downside of the kexec method, is that you have no way to recover a mistake
<clever>
sphalerite: but the main upside of the kexec method, is that you can do it 100% remotely
<sphalerite>
That is pretty neat. PXE will do fine for my purposes though ^^
<clever>
sphalerite: if i had root on anything, i could have nixos infect it :P
<sphalerite>
clever: windows? :P
<Unode>
windows 10 has this ubuntu thing right?
<clever>
sphalerite: it would need to be a windows 9x era windows, loadlin.com
<endformationage>
Am I wrong to believe that a process executed from a nix-shell should inherit the shell's PATH? I cannot get vscode to use my nix-shell dev env.
<clever>
sphalerite: this one compiles down to a ~47mb squashfs (1/4th the size of the netboot image), and all files it executes must be signed with a certificate
<sphalerite>
What does it verify the sig against?
<clever>
sphalerite: a certificate is embeded into ipxe at build-time
<sphalerite>
oooh nice
mkoenig has quit [(Ping timeout: 255 seconds)]
<clever>
sphalerite: so you can just make your own self-signed cert, and use that key to sign things
<sphalerite>
hunter2? Isn't that the password someone accidentally put on an IRC and it ended up on bash.org?
<clever>
yep
<sphalerite>
hahaha
<clever>
i use that any time i need an example that will be publicly visible
<sphalerite>
It's sad that I recognised it
<endformationage>
clever: that's cool
Guest54751 has quit [(Read error: Connection reset by peer)]
<sphalerite>
clever: is there any benefit to it though?
<clever>
sphalerite: the design idea behind that boot method, is that you cant brick the hardware, you can always swap files out on the tftp server, hard-reset the machine, and it will come back to life
<clever>
and even if somebody does get into the network, they cant inject custom code
<sphalerite>
How does the iPXE get on the machine?
mkoenig has joined #nixos
<clever>
3 main options i was thinking of
<clever>
1, put it into the hdd via grub
<clever>
2, directly into the boot rom of a NIC
<clever>
3, as a payload in coreboot, directly in the bios
justan0theruser has joined #nixos
<clever>
in the case of 3, you need to rip the bios chip off the board and reflash it, if you want to bypass the signing requirements
<sphalerite>
right
<sphalerite>
Well, not really rip it off, do you?
<sphalerite>
Surely there are ISPs or something you can use instead
<clever>
either pull it out of the socket or de-solder it
<Unode>
how good are you with font related issues on nixos these days? Still my #1 peeve with nixos right now. http://pasteall.org/pic/show.php?id=112991 . The bluriness on the terminal also makes it hard after a few hours.
<clever>
some motherboards have ISP, but its not always documented
<sphalerite>
2 and 3 aren't possible on run-of-the-mill consumer hardware though, are they?
<clever>
2 should be possible with anything that has an ethernet card
<clever>
3 would require coreboot support, which is harder to find
<sphalerite>
Chromebooks :D
<sphalerite>
oh really, how do you replace the boot ROM on an ethernet card?
<clever>
most of the time, its actualy flash memory
<clever>
so you can reflash it with a utility that knows the NIC
justanotheruser has quit [(Ping timeout: 240 seconds)]
<sphalerite>
Unode: how are you getting that horrible non-antialiased text? O.o as for terminals, yes they tend to be very blurry for me too except at large sizes, so I use a pixel font (Terminus)
<clever>
sphalerite: but sometimes, the NIC vendors just omit the boot rom entirely, and you must supply your own
<Unode>
sphalerite: I've no idea... been trying to track down whatever font I have (or don't) that causes this horrible fallback of a font to be displayed
<sphalerite>
clever: what about NIXs built into the motherboard?
<sphalerite>
NICs*
<Unode>
sphalerite: tried playing with every font config on nixos, including adding a bunch of fonts, but I still see this on quite a few websites.
mudri has joined #nixos
<sphalerite>
Unode: I've never seen anything like that :/
<clever>
sphalerite: probably more likely to have it omited, but you can sometimes just stick a crappy 100mbit card onto the pci bus, purely for the bootrom
<Unode>
sphalerite: it's a relatively fresh nix install... and adding/removing fonts doesn't seem to help so...
<sphalerite>
clever: fair enough. The computing society at my uni has literally bags full of NICs lying around so I should probably be able to play around with that :D
<Unode>
I'm waiting for 17.03 to come out to see if the problem goes away. If it doesn't I'm going to have a fight with the bugtracker.
<sphalerite>
Unode: it's weird though, that you would have this problem and I've never encountered it on any of the machines I've installed NixOS on
<clever>
sphalerite: this also has security implications, in theory, i could put a hypervisor into the NIC boot rom, that then boots the hdd under a vm
<clever>
sphalerite: and there is no way for the anti-virus to detect it from within the vm
<Unode>
sphalerite: it has to be a combination of factors. Even with a different user (to isolate any odd config I might have on mine) produces the same. So it's something affecting the system.
<viric>
clever: what do you use ipxe in?
<clever>
viric: i have used it to netboot nixos on my laptop before, even the MBR for grub was on the iscsi drive
<sphalerite>
clever: yeah, thinking about low-level security always terrifies me
<clever>
viric: but its currently not in use right now
<sphalerite>
Unode: does it help though?
<sphalerite>
clever: why do you have so many ways to boot nixos? Are you secretly on a mission to get every machine in the world running it?
<clever>
lol
<RchrdB>
"secretly"?
<clever>
sphalerite: i have had to convert a few ubuntu servers to nixos, without any physical access to the machines
<Unode>
sphalerite: sorry was fighting with something that broke in the meanwhile. Checking it now
sigmundv has joined #nixos
<Unode>
sphalerite: where would I add that configuration?
<sphalerite>
clever: how many is "a few"? :D
<sphalerite>
Unode: right there in my message. ~/.config/fontconfig/fonts.cong
<clever>
sphalerite: 2 so far
<sphalerite>
conf*
<Unode>
doh ... sorry distracted
<sphalerite>
clever: and you have about 5 methods for that? x)
<clever>
sphalerite: i used the kexec method on both of those
<LnL>
clever: what... you can put grub on iscsi?
<clever>
LnL: yeah
<Unode>
sphalerite: OMG!
<clever>
LnL: ipxe will hijack the legacy hdd API in the bios, and reroute hdd access to iscsi
<sphalerite>
Unode: it helped? :D
<Unode>
like going to the doctor and finally geting the right drug for your aches
<clever>
LnL: so any OS that uses the bios to read the hdd, will go over iscsi
<sphalerite>
In that case, you'll want to get that setting systemwide. Not sure what exactly the option is, but I'm sure you can find it
<clever>
LnL: in theory, this might even work for dos and windows 3.11
<clever>
LnL: and sanboot just hooks the drive, then executes sector 0, triggering the normal boot process
<sphalerite>
Unode: :) you might not need all those options, maybe experiment with them (especially the hinting)
<Unode>
sphalerite: I could swear I had tweaked those options on the nixos configuration without success. Now I know they work so time to debug further or file a report if they aren't working as they should
<sphalerite>
:)
<Unode>
sphalerite: yeah. also curious if they will affect my window manager too which currently uses this blurry effect, hinting/aliasing haven't been able to pinpoint exactly.
<sphalerite>
should do.
<sphalerite>
clever: thanks for all the tips, I'll give that stuff a shot tomorrow if I can get to the machines :)
yorick_ has joined #nixos
<clever>
sphalerite: you can also test a lot of this out under VM's, qemu lets you execute a kernel+initrd pair easily, and virtualbox can record the screen to video
<sphalerite>
sweet
<Unode>
sphalerite: just as curiosity. http://pasteall.org/pic/show.php?id=112993 top is NixOS, bottom is gentoo. Checking if your suggestion helped there too in a couple of minutes.
jgertm has joined #nixos
<sphalerite>
Unode: wow, the gentoo one looks much nicer
<sphalerite>
Unode: I doubt it will help with the terminal, if you can get it looking nice please let me know because I'd really like to have small text in the terminal that's antialiased but doesn't make my eyes suffer
mkoenig has quit [(Ping timeout: 268 seconds)]
montag451_ has quit [(Ping timeout: 260 seconds)]
<Unode>
sphalerite: so the wm remains the same but the terminal seems much better now. Will paste a screenshot in a moment.
mkoenig has joined #nixos
sellout- has quit [(Ping timeout: 260 seconds)]
<NixOS_GitHub>
[nixpkgs] jhhuh opened pull request #23188: Yasr (master...yasr) https://git.io/vyTH5
kantor has quit [(Remote host closed the connection)]
<NixOS_GitHub>
[nixpkgs] LnL7 opened pull request #23189: mpv: disable drmSupport on darwin (master...darwin-mpv) https://git.io/vyTHF
<sphalerite>
Unode: There's nothing wrong with knowing it to me, but *needing* to know it is the annoying bit >.>
<Unode>
sphalerite: I wouldn't mind actually using those brain cells for something a bit more useful :P
<Unode>
the only thing you get with this is further increase your geekness about odd topics that only serves to scare the ladies.
<Unode>
well most ladies...
johnsonav has joined #nixos
<Unode>
if there's any in the room with a kink for font rendering now is the moment of truth.
<sphalerite>
if I'm talking to anybody (not just ladies) and we reach a topic like that and the person, one of four things can happen. A, they happen to know about it too and we geek out together. B, they don't know about it and are interested in what I have to say about it. C, they don't know about it and don't care. We move on to another topic. D, the person judges me negatively for my knowledge and I really should
sellout- has joined #nixos
<sphalerite>
n't be talking to them.
<Unode>
and on that note !m sphalerite
<Unode>
!m sphalerite
<[0__0]>
You're doing good work, sphalerite!
<sphalerite>
s/and the person//
<sphalerite>
thank you :D
<sphalerite>
that's my first !m I think, yay!
JagaJaga has joined #nixos
<Unode>
hum... just did a nix-channel update and nixos-rebuild test... I'm compiling stuff... is there something wrong with hydra again?
hiratara has quit [(Ping timeout: 240 seconds)]
<clever>
Unode: which channel are you on and what is compiling?
<Unode>
thanks for all the help today. Closing the shop. gnite'
systemfault has quit [(Quit: Bye!)]
MP2E has joined #nixos
pi3r has joined #nixos
kampfschlaefer has quit [(Ping timeout: 240 seconds)]
<ndowens08>
Ok, i am confused in which category to put numlockx under, should it be services or programs. I am thinking services maybe since gonna create systemd file so it would be enabled according if set to true?
<sphalerite>
Unode: as a suggestion for your script: use XDG_CACHE_DIR (default to ~/.cache/something) or $XDG_RUNTIME_DIR (default to /run/user/$UID)
<sphalerite>
rather than /tmp/$USER
<ndowens08>
obadz: that is what i was thinking, so went ahead and starting to put it there :) I like having numlock auto-enabled, so figured hey I want it, lets share it :)
<philipp[m]>
What is the state of connecting a bluetooth keyboard while in initrd on nixos?
mudri has joined #nixos
<obadz>
does this really require a systemd script?
<ndowens08>
obadz: i dunno, maybe if a person wants to enble it on startup?
<ndowens08>
unless there is a better way
<ndowens08>
otherwise, have to type numlock on every boot i believe
<ndowens08>
numlockx*
<obadz>
system.activationScripts.numlock … ?
<ndowens08>
hmm never heard of that
<obadz>
you can define some command that's run at bootup in there
<ndowens08>
hmm
<ndowens08>
looking at it :)
<sphalerite>
clever: just got nixos booted on my flatmate's laptop using PXE after promising I wouldn't break anythign :D https://sphalerite.org/nixlap.jpg
<Dezgeg>
activationScripts are not only run at bootup
bennofs1 has joined #nixos
<clever>
sphalerite: :D
Rotaerk has joined #nixos
<ndowens08>
Dezgeg: yea looking at the nix file for that, made me kinda wonder in a way, like there is a command for var to create the var dirs needed and such
<Dezgeg>
preStart of individual services is a better place
<clever>
sphalerite: if you customize the nixos in the netboot using the gist i linked, you could even add xfce to it, if you where feeling crazy enough
<ndowens08>
Dezgeg: hmm is there a module you know of that uses that, so I can look at it?
<sphalerite>
clever: the initramfs already took long enough to load, I'd rather not!
<ekleog>
hmm, I'm investigating a non-starting-up nixos (saying me it can't mount the root fs for the device doesn't exist), is there any way to drop into a shell so that I can figure out the right device file?
<sphalerite>
clever: what would be really nice though is having the same machine that's serving DHCP and such also serve a binary cache, so the targets don't all have to download the files individually. Have you done anything like that?
<Dezgeg>
nixos/modules/services/audio/icecast.nix seems one
<ekleog>
(I'm over serial console, getting "r) to reboot immediately *) to ignore the error and continue")
bennofs1 has quit [(Ping timeout: 240 seconds)]
<clever>
sphalerite: you add a binary cache to its nix.conf via the same gist, and nix-serve can act as a binary cache
<ndowens08>
Dezgeg: thanks, i have to look at modules in order to do them :D
<clever>
sphalerite: this netboot.nix lets you build the netboot images from any configuration.nix you want, so you can freely configure whatever you want
<ekleog>
oh, that was a kernel cmdline parameter, not a nixos option :°
<clever>
yeah
mkoenig has quit [(Ping timeout: 255 seconds)]
mkoenig has joined #nixos
djvdorp has quit [(Quit: PanicBNC account has been auto selected for removal due to login inactivity.)]
jluttine has quit [(Ping timeout: 240 seconds)]
justanotheruser has joined #nixos
Kendos-Kenlen has joined #nixos
justan0theruser has quit [(Ping timeout: 240 seconds)]
<ekleog>
hmm... anyone here knows exactly which config options nixos requires to be run as a qemu guest? I'm booting on a -drive file=...,if=virtio ; and adding boot.initrd.kernelModules = [ "virtio" ]; doesn't seem to be enough, /dev/vda still isn't detected
<clever>
ekleog: its using this arg to set the boot media
<ekleog>
oooooooh
<ekleog>
I never thought it would default to media=cdrom
<ekleog>
thanks!
<ekleog>
(I'm actually currently trying to write a vms.* that does the same as containers.* but for VMs right now, using this as an example, but looked at the line just above this one -_-)
<clever>
ekleog: also of note, nixos qemu doesnt copy the /nix/store about at all, it uses 9plan to share it
<clever>
ekleog: this allows the guest to mount the host /nix/store without having to use any block devices or filesystems
<pikajude>
has anyone tried and or succeeded at overclocking a monitor while using the nvidia driver
<ekleog>
yes, I'm doing something similar for the time being (but will copy the relevant parts of the store to another location when I get something working, as there is still issue 8, which would most likely leak secret information to the VMs)
<clever>
ekleog: if you have root on the host, you could use mount --bind to copy parts of the store to an area like /tmp/vm1/nix/store/ and then expose that
<clever>
ekleog: the sandboxes for nix builds work in a similar way
<clever>
mount --bind is similar to a hardlink
<ekleog>
that's the idea I'm working towards, but right now I can't even boot a VM
ninja_in_neopren has quit [(Read error: Connection reset by peer)]
lassulus has quit [(Read error: Connection reset by peer)]