Supersonic112 has quit [(Ping timeout: 240 seconds)]
<anelson_>
hmm ok I hacked it with `--build-users-group ''`
<anelson_>
not my proudest moment...
<anelson_>
I'm guessing there's some kind of logic where nix detects it's being run on nixos somehow and changes its behavior accordingly? Maybe just goes off of the owner of the binary?
luigy_ has quit [(Ping timeout: 260 seconds)]
unlmtd has joined #nixos
dpino has quit [(Ping timeout: 246 seconds)]
Supersonic112 has joined #nixos
newhoggy_ has quit [(Remote host closed the connection)]
luigy has joined #nixos
acarrico has quit [(Ping timeout: 240 seconds)]
newhoggy has joined #nixos
simukis has quit [(Ping timeout: 255 seconds)]
Guest49110 has quit [(Changing host)]
Guest49110 has joined #nixos
Guest49110 is now known as edef_
acarrico has joined #nixos
<joepie91>
anelson_: Nix behaviour should, afaik, not change on NixOS
<joepie91>
nixpkgs behaviour, though, may - depending on the channel
<joepie91>
but if the problem is "it uses nix-daemon but I don't want it to", that's probably because an env var is set that triggers daemon mode
<catern>
so, what I currently have is, I have a second service on top of my git repo
<adisbladis>
I'm still not awake yet....
<catern>
git repos*
<catern>
this service maps commit hashes into hashes of the sources at that commit
<catern>
and then instead of a list of commit hashes, I have a list of hashes of sources
<catern>
but this is really inconvenient because it's a separate service, and also because a list of commit hashes is easier to generate - getting the list of hashes of sources requires a query to this service, or a hashing of the local repos!
<catern>
is there some way I could, like, integrate this service with Nix?
<catern>
implement this service with Nix in some way?
<catern>
hmm
<catern>
will sources fetch with fetchgit without a hash, be cached?
<catern>
I guess of course they will, right?
<clever>
if sandboxing is enabled, a lack of a sha256 will disable the network
<clever>
then git cant even clone
<catern>
ah
<catern>
fair enough
<catern>
I do not have sandboxing enabled though
<catern>
hmmmmmmmMMMMmmmm
<catern>
I mean
<clever>
the main hydra also has sandboxing enabled, so it wont get binary cache support from nixos
<catern>
that's fine I have my own build farm
<catern>
so, I mean, if we trust the Nix store
<clever>
your also trusting that packages havent been written poorly
<catern>
we presumably also trust it to fetch the correct sources when it fetches sources
<catern>
you mean with sandboxing disabled?
<catern>
I plan to re-enable it of course
<clever>
if sandboxing is off, you can do things the wrong way, and it will half work
<catern>
but I might leave it off for certain very specific things
<clever>
and then it can be hard to figure out why
<clever>
oh, but there is a relaxed mode
<clever>
where you can specify in the derivation that you want it off
<catern>
such as fetching sources from git with a commit hash... hmmmm.....
<clever>
so its on by default, and you can opt-out
<catern>
that sounds useful, but I really do want to enforce sandboxing
<catern>
in the long run
Kingsquee has joined #nixos
<catern>
hmm
<catern>
are there any derivations besides fixed-output derivations that have sandboxing off? hmmmmm
<catern>
hmm
<catern>
what if I just inject the sources into the Nix store directly, at commit push time?
<clever>
only if you set the sandbox mode to relaxed, then you can opt-out on a per-derivation basis
<catern>
rather than fetching
<clever>
if the nix expressions are in the same dir as the source, you can src = ./foo;
<catern>
i am aware :)
<catern>
I want binary caching without rehashing things, though
<catern>
so
<catern>
I kind of like the idea of just pushing the sources into the Nix store
<catern>
such that building magicallyGetSources "repo_identifier" "commit_hash"
<catern>
magically gets those sources from that repo_identifier
<catern>
I guess it makes just as much sense to have a new plugin or something
<catern>
which performs the fetch outside sandboxing
<catern>
the fetchgit
proteusguy has joined #nixos
<catern>
basically, we would be treating the store as a generic key-value store
<catern>
fairly abusive
<catern>
oh wait a second
<catern>
magicallyGetSources *can* verify the commit hash
<catern>
so it's not abusive at all!
<catern>
yeah, I'm being silly
<catern>
the hash of the sources that fetchgit currently needs, is just an optimization
<catern>
because it's expensive to verify the commit hash
<catern>
but if we know we're going to be downloading every commit from a certain repo *anyway*
<catern>
then we can have some native code outside the sandbox, which fetches the commit hash and verifies it against its existing set of commit hashes in an efficient way
<catern>
is there a way to do readlink from Nix code? readFile doesn't work on symlinks :(
zeus_ has joined #nixos
drakonis has quit [(Read error: Connection reset by peer)]
timofonic has quit [(Quit: WeeChat 1.9)]
<clever>
catern: dont think ive seen that anywhere
<catern>
that is unfortunate, I have a symlink that I would like to read so I can get an immutable path... I guess it's not a common need
zraexy has joined #nixos
<clever>
i wonder, if you do foo = ./symlink; and the symlink points into the store, it may just reuse the store path, since its already immutable
obadz has quit [(Ping timeout: 276 seconds)]
<catern>
(it doesn't point in to the store anyway)
obadz has joined #nixos
justbeingglad has joined #nixos
justbeingglad has left #nixos []
sellout- has joined #nixos
<rnhmjoj[m]>
do you have any idea on what is causing this test to fail?
<dtzWill>
is what I used, and it seems to--oh okay
<adelbertc>
:|
<clever>
ls ~/.nix-defexpr/channels/ -lh
<clever>
adelbertc: what does this say?
<adelbertc>
symlinks to /nix/var/nix/profiles/per-user/adelbertc/channels
<clever>
with the extra / at the end
nur0n has joined #nixos
<adelbertc>
ah
<clever>
ls is weird like that when you use -l
<adelbertc>
binary-caches points to nixos-unstable-17.09
<adelbertc>
manifest points to... some hash-manifest
<adelbertc>
nixos-unstable points to nixos-unstable
<adelbertc>
those are the 3 things in there
<clever>
yeah, so there should be a channel called nixos-unstable that nix-env can access
asymmetric has quit [(Ping timeout: 276 seconds)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] rnhmjoj opened pull request #28280: haskellPackages.shell-conduit: fix failing test (master...shell-conduit) https://git.io/v7ded
NixOS_GitHub has left #nixos []
aristid has quit [(Ping timeout: 276 seconds)]
benley has quit [(Ping timeout: 276 seconds)]
patrickmn has joined #nixos
ahmedtd_ has joined #nixos
<clever>
adelbertc: try the last cmd dtzWill gave
timclassic has quit [(Ping timeout: 276 seconds)]
pmn has quit [(Ping timeout: 276 seconds)]
ahmedtd has quit [(Ping timeout: 276 seconds)]
aristid has joined #nixos
<adelbertc>
its installing alacritty :|
<adelbertc>
its installed
<adelbertc>
wat
<dtzWill>
٩(^ᴗ^)۶
<adelbertc>
well thats weird
<adelbertc>
but ok ill take it
<adelbertc>
separate, newbie question. how does one get firefox and terminal (and i guess other apps in general) to share a clipboard, like one has in windows or macOS?
asymmetric has joined #nixos
<clever>
linux has 2 clipboards
<clever>
a selection buffer (whatever you select, middle click to paste)
<clever>
and a normal clipboard (ctrl+c, ctrl+v)
<clever>
but ctrl+c is special in a terminal, so most of them rebind paste to ctrl+shift+c/v
<rnhmjoj[m]>
they should be shared already
<clever>
though some terminals like xterm just dont support the clipboard at all, and only work via the selection buffer
<adelbertc>
yeah im using xterm atm
<adelbertc>
but weird, yeah middle click is pasting stuff
ona has quit [(Ping timeout: 240 seconds)]
<clever>
thats the selection buffer
<clever>
it pastes whatever you selected, not what you copied
ona has joined #nixos
<rnhmjoj[m]>
I use rxvt with the clipboard plugin. I'm not too fond of the selection buffer too
rauno has quit [(Ping timeout: 255 seconds)]
timclassic has joined #nixos
benley has joined #nixos
benley is now known as Guest51099
ericsagnes has quit [(Ping timeout: 255 seconds)]
zeus_ has quit [(Ping timeout: 246 seconds)]
zeus_ has joined #nixos
<adisbladis>
rnhmjoj[m]: In some DEs they are shared
ericsagnes has joined #nixos
<adisbladis>
I think I remember them being shared in gnome2.... But my memory may be a bit fuzzy
<adisbladis>
That was a long time ago
johnsonav has quit [(Ping timeout: 246 seconds)]
<adisbladis>
adelbertc: My easy solution to the problem is not using xlib/xcb software ;)
proteusguy has quit [(Ping timeout: 240 seconds)]
silver_hook has joined #nixos
<clever>
i just always use the selection buffer
<clever>
selecting is faster then select, copy
<adelbertc>
for people who have their configuration.nix version controlled, is the strategy for a new machine generally just install bare NixOS, install git, clone, and then symlink over the generated configuration.nix?
<clever>
i git clone from the install cd, so nixos-install does everything at once
<adelbertc>
so you do nixos-generate-config and then copy over your own configuration.nix before running the first nixos-install?
<clever>
yeah
<adelbertc>
oh hm
<adelbertc>
how do you keep track of it in the future then
<adelbertc>
or do you not care at that point
<clever>
i have a nixcfg folder with all of the configs, named after each host
<clever>
and then configuration.nix just contains the bare minimum to boot (where / and /boot are and such), along with imports = [ ./nixcfg/hostname.nix ];
silver_hook has quit [(Ping timeout: 248 seconds)]
<clever>
so the stuff specific to the actual hardware isnt controlled, because it will change with every install
<adisbladis>
I'm having one config per host and then a few "profiles" I include in the installs depending in the system type
<clever>
same
<adisbladis>
So one profile for graphical desktop, one for server etc etc
<clever>
and i keep all of that in a subdir of /etc/nixos/
<adisbladis>
clever: Same same :)
<adisbladis>
nixpkgs is a git submodule to my config
<clever>
i leave nix-channel in control of that
<adelbertc>
ok so after you do you first boot into NixOS you git clone your repo again, and then change configuration.nix to import some other nix file
<adelbertc>
thats in the git repo?
<clever>
i clone it once from the installer, directly to /mnt/etc/nixos/
<adelbertc>
ahhh ok ok
Guest51099 is now known as benley_
benley_ is now known as benley
proteusguy has joined #nixos
jb55 has joined #nixos
rauno has joined #nixos
jb55 has quit [(Ping timeout: 248 seconds)]
zeus_ has quit [(Remote host closed the connection)]
zeus_ has joined #nixos
zeus__ has joined #nixos
zeus_ has quit [(Ping timeout: 276 seconds)]
inflames has joined #nixos
<dtzWill>
aw man I just now saw nix-dev@ got moved haha eep
<NixOS_GitHub>
nixpkgs/master 2f44cbc Frederik Rietdijk: Merge pull request #28274 from womfoo/bump/gpxsee-4.9...
NixOS_GitHub has left #nixos []
snikkers has quit [(Remote host closed the connection)]
rpifan has quit [(Quit: Leaving)]
Filystyn has joined #nixos
roberth has joined #nixos
newhoggy_ has joined #nixos
newhoggy has quit [(Ping timeout: 240 seconds)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] MP2E opened pull request #28285: Fix so that ucl compiles with gcc6 [staging branch] (staging...ucl_update) https://git.io/v7dLc
NixOS_GitHub has left #nixos []
newhoggy_ has quit [(Ping timeout: 246 seconds)]
roberth has quit [(Ping timeout: 260 seconds)]
filterfish has left #nixos ["Leaving"]
kiloreux has joined #nixos
DutchWolfie has joined #nixos
zeus__ has quit [(Remote host closed the connection)]
symphorien has joined #nixos
zeus_ has joined #nixos
Phillemann has joined #nixos
ylwghst has joined #nixos
<Phillemann>
I have another linux on my machine and I'd like to have a boot entry for it. Is there a way to specify this in the nixos configuration?
<NixOS_GitHub>
[nixpkgs] apeschar opened pull request #28287: hyperlink: init at 17.3.0 (master...hyperlink) https://git.io/v7dqf
NixOS_GitHub has left #nixos []
zeus_ has quit [(Ping timeout: 240 seconds)]
<clever>
Phillemann: i think efi has native support for that, but ive not messed with it
<Phillemann>
I think I'd be fine with some kind of assurance that nixos doesn't delete all other boot entries when it writes itself to the EFI partition :>
<Phillemann>
I can still bot into an efi shell and run the other Linux manually.
<clever>
i think efi supports multiple efi system partitions
<clever>
and you configure the entries using efibootmgr, which writes to flash memory
roberth has joined #nixos
ylwghst has quit [(Quit: Lost terminal)]
nh2 has joined #nixos
thc202 has joined #nixos
phreedom has quit [(Ping timeout: 240 seconds)]
<kiloreux>
I already have opencore-amr in my machine installed and in my /nix/store. But mentioning it inside ffmpeg-full it seems like it doesn't exist and it gives me "ERROR: libopencore_amrnb not found"
<kiloreux>
Any idea on why the lib is not found by nix?
jtojnar has quit [(Remote host closed the connection)]
<clever>
kiloreux: you need to put the opencore derivation into the buildInputs of ffmpeg
* clever
heads to bed
jtojnar has joined #nixos
<kiloreux>
Good night clever and thank you.
ShalokShalom_ is now known as ShalokShalom
ShalokShalom has quit [(Remote host closed the connection)]
MP2E has quit [(Quit: sleep)]
nwuensche has joined #nixos
<nwuensche>
Hi everybody! I have a little problem with my nixos. I want to add a rule in /etc/udev/rules.d/, but it always says that this is a read-only file system. I cannot chmod +w the folder. Even sudo doesn't bring anything. What should I do?
<nwuensche>
Hi! I want to install steam on NixOS, but it always says that libGL.so.1 is missing. I installed mesa, but this doesn't work. Anyone knows what to do?
michiel_l has joined #nixos
DutchWolfie has quit [(Quit: Konversation terminated!)]
<michaelpj_>
how are you installing steam? nix-env or configuration.nix? I recommend the latter - the former sometimes has problems because it has to match up with how nixos is providing libGL
<nwuensche>
I installed it via configuration.nix
<michaelpj_>
hm
<nwuensche>
But I installed mesa via nix-env
<hyper_ch>
qtpass not working anymore :(
<nwuensche>
Should I do the same with mesa?
<michaelpj_>
you shouldn't need to install mesa
<michaelpj_>
have you set hardware.opengl.driSupport32Bit?
catch22 has quit [(Remote host closed the connection)]
<nwuensche>
michaelpj_: Works with the flag, thank!
<michaelpj_>
\o/
<nwuensche>
However, I have another question :)
takle has joined #nixos
mpcsh has quit [(Quit: THE NUMERICONS! THEY'RE ATTACKING!)]
takle has quit [(Read error: Connection reset by peer)]
wigust has quit [(Remote host closed the connection)]
mpcsh has joined #nixos
takle has joined #nixos
newhoggy has quit [(Remote host closed the connection)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] symphorien opened pull request #28289: epkowa: init at 2.30.3-1 (master...epkowa) https://git.io/v7dnb
NixOS_GitHub has left #nixos []
newhoggy has joined #nixos
wigust has joined #nixos
takle has quit [(Remote host closed the connection)]
takle has joined #nixos
<nwuensche>
I added services.udev.extraRules = ''ENV{ID_FS_USAGE}=="filesystem|other|crypto", ENV{UDISKS_FILESYSTEM_SHARED}="1"''; so that udiskie always mounts everything in /media. However, I get the error "Error creating mount point `/media/TOSHIBA EXT': No such file or directory", when I try to add my external HDD. Of course this folder doesnt exist, it should be added when the HDD is pluged in and deleted if the HDD
<nwuensche>
is pluged out. How can I do this?
<michaelpj_>
does `/media` exist?
<michaelpj_>
also, probably worth having a look in journalctl, there might be some earlier error that's leading to this
<nwuensche>
michaelpj_: No it didn't exist... . Atleast now it works, thanks:)
<nwuensche>
Is there a possiblity to mkdir this folder in the config file so I can't forget it?
<michaelpj_>
isn't there a media folder under /run somewhere that you're supposed to use for this?
<michaelpj_>
also, the error reporting isn't great, but I'm pretty sure that's just mount, which has behaved like that for ages
erictapen has joined #nixos
<michaelpj_>
whatever service does the mounting should probably also `mkdir -p` the parent dir
<nwuensche>
I know that there is one in /run, but somehow e.g. truecrypt doesn't use this one, but a different. When I do it with the rule, I have just one mounting folder
<michaelpj_>
what's mounting the truecrypt volume? The truecrypt application? Does it just have the path hardcoded in? (ew)
<michaelpj_>
oh hm, I guess there's also the question of why your udev rule tries to mount under /media
<nwuensche>
Is this a problem? I like it like that :)
grumble has quit [(Quit: b)]
<michaelpj_>
well, I guess that it always has a problem with the parent of the mount point needing to exist, so if it's going to play nicely with the OS out of the box, then they should agree about where that is, so the OS can make sure it exists
<michaelpj_>
if we make the directory under `/run` we should make sure udisks mounts there otherwise people have your problem :)
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] domenkozar pushed 1 new commit to master: https://git.io/v7dW6
<NixOS_GitHub>
nixpkgs/master da8712e rnhmjoj: haskellPackages.shell-conduit: fix failing test
NixOS_GitHub has left #nixos []
ambro718 has quit [(Ping timeout: 255 seconds)]
c0ffee152 has joined #nixos
<michaelpj_>
hm, looks like we use udisks2, which uses /run/media, and udiskie claims that it uses that by default, so I'm a bit mystified
freusque has quit [(Quit: WeeChat 1.7.1)]
grumble has joined #nixos
wigust has quit [(Remote host closed the connection)]
__Sander__ has joined #nixos
Myrl-saki has joined #nixos
Infinisil has joined #nixos
symphorien has quit [(K-Lined)]
nwuensche has quit [(Quit: Leaving)]
<mpickering>
Is it possible to create a meta haskell package which just groups together a bunch of other packages but has no src or cabal file of its own?
Mateon3 has joined #nixos
<Infinisil>
mpickering: Would just an array of packages work?
Mateon2 has quit [(Ping timeout: 246 seconds)]
<Infinisil>
s/array/list
<mpickering>
But then you can't uniformly treat it like other haskell packages?
adisbladis has quit [(Remote host closed the connection)]
<mpickering>
If that's what people do then I can try that
Mateon3 is now known as Mateon2
bennofs has joined #nixos
<Infinisil>
I don't know what people do, but I don't know of any other way
ylwghst has joined #nixos
needshelp has joined #nixos
<Infinisil>
Something like `pkgs = hp: with hp; [ base fuzzy whatever ]`, then use `ghcWithPackages (hp: (pkgs hp) ++ with hp; [ other packages ])`
<Infinisil>
Is what I'm thinking of
<needshelp>
hello, I am trying out nix os for the first time. I nix-env -qa '*' | grep deluge which finds it. but when I try to nix-env -i deluge i get a 'deluge' matches no derivations error. What could be the problem? thank you
<mpickering>
Infinisil: I see, I will try making a package and can do that if it fails.
obadz has quit [(Ping timeout: 246 seconds)]
grumble has quit [(Quit: o)]
<Infinisil>
needshelp: Looking into it
grumble has joined #nixos
<Infinisil>
needshelp: Try nix-env -iA nixos.deluge instead, or nix-env -iA nixpkgs.deluge if you're not on nixos
<Fare>
I ran an older version of chromium between /run and ~/.nix-profile, and now chromium is totally confused :-(
<Fare>
even when I go back to the newer one
<needshelp>
Infinisil: thank you
<Infinisil>
needshelp: -A selects an attribute path, don't know exactly why the other doesn't work
viaken has joined #nixos
<viaken>
Is there such a thing as "idiomatic nix config layout", or is it largely up to the user? What's expected to be installed by the system, and what's expected to be installed by the user(s)?
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] FRidh pushed 1 new commit to master: https://git.io/v7dBa
<NixOS_GitHub>
nixpkgs/master cfda600 Albert Peschar: hyperlink: init at 17.3.0
<needshelp>
if something is available in the nixpkgs github repo but doesn't show up under nix-env -qa i would be missing a channel?
<Infinisil>
viaken: There isn't really such a thing, it's up to you to decide. NixOS is often seen as a single-user system, lots of people use configuration.nix for everything. There is the movement that goes towards more user-level stuff, such as home-manager and a recent github issue
<Fare>
actually, now even after blowing my ~/.{cache,config}/chromium, chromium is confused with either the version from unstable or 17.03 (!)
Fare has quit [(Remote host closed the connection)]
<hyper_ch>
hmmmm, how can I make a list of domain names and store it in a seperate file so that nixos uses it in the configuration.nix as extra hosts for blocking?
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] fpletz pushed 1 new commit to staging: https://git.io/v7d6u
<hyper_ch>
the-kenny: it worked... I really thought '' can only contain literal stuff
<trikl[m]>
Has anyone tried running cargo installed through rustup? With nightly as my toolchain, it complains it cannot find the `std` crate, which is listed as installed by `rustup components list`
rauno has quit [(Ping timeout: 240 seconds)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] edolstra pushed 2 new commits to master: https://git.io/v7dM3
<NixOS_GitHub>
nixpkgs/master afc6b43 Frederik Rietdijk: Python: build 2.7 and 3.6 packages on Hydra again
<phdoerfler>
does the nixos firewall in any way affect outgoing traffic?
<trikl[m]>
the-kenny: as far as I tried, rustup itself seems to work fine
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] fpletz closed pull request #12544: Add package and module for Rundeck (master...rundeck-pr) https://git.io/vzac7
NixOS_GitHub has left #nixos []
erictapen has quit [(Ping timeout: 240 seconds)]
<the-kenny>
phdoerfler: I don't think so
Infinisil has joined #nixos
<the-kenny>
hyper_ch: I was going to suggest `builtins.fetchurl` next, but it fails: error: invalid character ‘;’ in name ‘serverlist.php?showintro=0;hostformat=hosts’ :(
<hyper_ch>
the-kenny: I'll just cron the fetching of the page :)
<hyper_ch>
but good thinking though :)
<the-kenny>
ah, my bad!
<hyper_ch>
I should have know that fetchurl thingy
<the-kenny>
hyper_ch: note that difference between builtins.fetchurl which is impure & executed every time your system is rebuilt and pkgs.fetchurl which is pure (and needs a hash)
<the-kenny>
s/that/the/
newhoggy has quit [(Ping timeout: 260 seconds)]
<hyper_ch>
the-kenny: thank you :)
Mateon2 has joined #nixos
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] fpletz closed pull request #14284: webkitgtk: add darwin support (master...webkitgtk-darwin) https://git.io/vVkpa
<betaboon>
i have a question on nixos-containers: is there documentation somewhere how to do nixos-rebuild switch just in a container? I'm somewhat unhappy with how i currently do things: nixos-rebuild switch on host, then nixos-container stop/start
<Infinisil>
Whoa, builtins.fetchurl can take a attrset/
<Infinisil>
didn't know that
gr8 has joined #nixos
<Infinisil>
betaboon: The nixos-container command?
newhoggy has quit [(Ping timeout: 260 seconds)]
Fare has quit [(Ping timeout: 240 seconds)]
<gr8>
does NixOS allow the isolation of program configurations in the home directory? So that programs don't write to .cache, .config, .local etc. but to config/application/.cache, config/application/.local etc.
<Infinisil>
gr8: Nope, but I have been thinking about how that could work and have a solution that should work for most programs
<gr8>
could also be combined with something like Firejail for security maybe
<gr8>
what's your solution Infinisil?
<Infinisil>
gr8: It's ugly, but it works: bind mounting /home/<user> to a program specific home directory
<Infinisil>
Then programs can write everything they want there, and you could bind mount them to your desired location in the actual home directory
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] fpletz closed pull request #14860: WIP: nixos: mkEnableOption on steroids for discoverable `man configuration.nix` (master...nixos-related-packages) https://git.io/vwcjv
NixOS_GitHub has left #nixos []
<tilpner>
gr8 - I bind ~/.config/application per application with bubblewrap, the rest of ~/.config will just appear empty
<betaboon>
Infinisil: nixos-container update? to my understanding of the manual, i have to pass a configuration.nix just for the container. how does that fit in with my host-system configuration.nix ?
<gr8>
lol I didn't know bubblewrap was an actual program :D
<Infinisil>
betaboon: I don't understand, do you want the containers to be managed with your system or not?
<gr8>
sounds complicated
mounty has joined #nixos
<Infinisil>
I don't know, I just used an `unshare -mr` and `mount --bind`, works unprivileged
erictapen has quit [(Remote host closed the connection)]
erictapen has joined #nixos
<gr8>
it's probably easier to patch each application's source code to access the config directories in my preferred way lol. I don't have *that* many applications
<Infinisil>
Ohhh, unshare -mr makes me root.. damnit, my solution doesn't work fully i guess
<Infinisil>
gr8: Yeah that would be a better solution, I already looked at the openssh source for that, it's pretty easy to change
<betaboon>
Infinisil: i want all containers to be managed by the system-configuration (the host /etc/nixos/configuration.nix). as i understand 'nixos-containers update' documentation I have to pass a containers configuration.nix.
MercurialAlchemi has quit [(Ping timeout: 240 seconds)]
<gr8>
guess that's what I'll be doing. Much cleaner than setting up some weird container system
<tilpner>
Uhh
ThatDocsLady_brb is now known as ThatDocsLady
<Infinisil>
tilpner: Nice
<Infinisil>
betaboon: If you want it managed by the system configuration then you can't change its config without rebuilding
<gr8>
brb guys
newhoggy has quit [(Ping timeout: 240 seconds)]
<tilpner>
gr8 - I don't think that's a good idea at all. You don't limit the processes, and you need to find *every* place where a path is mentioned. Oh, and you lose the binary caches...
<avn>
tilpner: cool thing. Would be nice to have it generalized and in main nixpkgs ;)
<avn>
tilpner: does it better or simpler than firejail/nsjail btw?
<betaboon>
Infinisil: i don't want to get rid nixos-rebuild switch on the host-system. i want to get rid of the need for 'nixos-containers stop CONTAINER && nixos-containers start CONTAINER' afterwards
<Infinisil>
betaboon: How about `alias rebuild="nixos-rebuild switch && nixos-container stop && nixos-container start` ?
<tilpner>
avn - I agree, but my function and presets are not mature enough for nixpkgs. bubblewrap works better than firejail (firejail has some very questionable design and implementation choices)
<tilpner>
(But it does less, so it's not a replacement for firejail)
<Infinisil>
tilpner: Where is your weechat stuff stored then? Looking at your script
Fare has joined #nixos
iyzsong has quit [(Ping timeout: 276 seconds)]
<tilpner>
Infinisil - It's stored in my actual ~/.weechat, but I could bind e.g. host:/data/weechat/ to bwrap:/home/jail/.weechat
<avn>
tilpner: I looking on all of them ;) At least I want add hard memory limits to firefox
newhoggy has joined #nixos
<betaboon>
Infinisil: of course i could do that, but that would still reboot the container
<tilpner>
Infinisil - What's important is that my weechat doesn't see anything in my home directory but ~/.weechat
gr8 has quit [(Ping timeout: 276 seconds)]
<Infinisil>
tilpner: Is it possible to have weechat put stuff in ~/.weechat, but in reality it's put in ~/.config/weechat ?
<Infinisil>
with bubblewrap?
<tilpner>
Infinisil - Yes. The host will not see ~/.weechat
<Infinisil>
tilpner: Nice, may I have a look at that function?
<tilpner>
Hold on
jtojnar has quit [(Quit: jtojnar)]
newhoggy has quit [(Read error: Connection reset by peer)]
<Infinisil>
Because I'm thinking of making an "XDG-overlay" that makes every program respect the XDG specification: configs in ~/.config/<name>, caches in ~/.cache/<name>, etc.
newhoggy has joined #nixos
<tilpner>
Infinisil - Note that this was not meant to be shared just yet (or ever), it's only a few days old. My presets are probably wrong, some features may not work, I still need to integrate (generate?) seccomp profile, etc.
<rnhmjoj[m]>
infinisil: I have a solution to the XDG problem
ylwghst has joined #nixos
<Infinisil>
tilpner: Sure, thanks!
<Infinisil>
rnhmjoj[m]: That is?
<rnhmjoj[m]>
It's quite radical but it works nicely
<bennofs1>
tilpner: does that profile suppress access to dbus?
<tilpner>
Infinisil - If you only want XDG conformity (no security enhancements), you can probably --bind / / --bind ~/.config/weechat ~/.weechat and ignore all I did
<bennofs1>
tilpner: because a sandbox exploit is easy when you have access to dbus: systemd's user instance allows you to launch scopes, which will run as child of the systemd process
<gr8>
re
<Infinisil>
tilpner: But bind mounts don't work well in user space
<bennofs1>
systemd user process*
<tilpner>
Infinisil - Those were arguments to bubblewrap, which work fine
<tilpner>
bennofs1 - Probably. Do you know how to test that?
<rnhmjoj[m]>
Infinisil: I mount the home directory with rewritefs. it's a FUSE filesystem that rewrite file access with regular expression
<Infinisil>
tilpner: Ah
<Infinisil>
Regexes for filesystems? Oh god
drakonis has joined #nixos
<rnhmjoj[m]>
I know.
<Infinisil>
But it does sound like a good solution
newhoggy has quit [(Ping timeout: 240 seconds)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] apeschar opened pull request #28297: Graphite (master...graphite) https://git.io/v7d7W
NixOS_GitHub has left #nixos []
<bennofs1>
tilpner: try systemd-run --user bash
newhoggy has joined #nixos
<rnhmjoj[m]>
infinisil: after fighting in the issue trackers for years i have decided i had enough
<tilpner>
bennofs1 - Error getting authority: Error initializing authority: Could not connect: No such file or directory (g-io-error-quark, 1)
<gchristensen>
clever: how do you use nix-env + buildEnv to manage your user environment again?
<tilpner>
bennofs1 - Not sure what that means
<Infinisil>
rnhmjoj[m]: Issues of rewritefs?
<bennofs1>
tilpner: sounds like the bus may not be available. not 100% familar with this stuff either though
<tilpner>
gchristensen - clever specifically?
<gchristensen>
no actually :)
viaken[m] has left #nixos ["User left"]
<dbe>
Infinisil: rewritefs seems pretty cool. computationally it should be fine, right, since re is just a finite automata... I should try this out.
<Infinisil>
dbe: Oh god, this regex does have to be translated every time right
<tilpner>
gchristensen - For a while I put e.g. desktopEnv = with pkgs; buildEnv { ... } into the packageOverrides of ~/.config/nixpkgs/config.nix, then you can nix-env -iA nixpkgs.desktopEnv to install/update all of them. Some people use "-r" too, to keep their user environment clean by removing all previously installed packages
<Infinisil>
That makes it sound pretty bad actually
m0rphism1 has quit [(Quit: WeeChat 1.9)]
newhoggy has joined #nixos
<gchristensen>
nice, tilpner
<dbe>
Infinisil: Hmm, maybe.. depends on the implementation. But you could optimize that away without too much trouble.
<Infinisil>
dbe: But that happens on every single file access..
<rnhmjoj[m]>
infinisil: one issue i noticed is with big repositories like nixpkgs.
<tilpner>
bennofs1 - I'm fully aware that this is not perfect security. Did you know any two Firefox instances that share an X server can communicate via X11 shared memory, even if there otherwise is heavy sandboxing? Yeah, lost cause without X sandboxing, but it still helps
<Infinisil>
rnhmjoj[m]: Is it slow?
<dbe>
Infinisil: I guess you could be inotified on changes to whatever file the regexes are in, and compile it at that point.
<Infinisil>
dbe: Oh right
<rnhmjoj[m]>
infinisil: yes, significantly. it's probably due to the .git directory. But you can access the original filesystem that is still mounted to avoid that
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] jamtrott opened pull request #28298: fenics: init at 2017.1.0 (master...fenics) https://git.io/v7d5D
NixOS_GitHub has left #nixos []
ylwghst has quit [(Ping timeout: 240 seconds)]
<Infinisil>
dbe: just had a look at the source of rewritefs, looks like it's doing it for every access..
<Infinisil>
rnhmjoj[m]: ^^ I think that's the issue
<dbe>
Infinisil: that's too bad. but a neat idea I think!
<dbe>
I love tricks to keep my file system clean.
<tilpner>
And you presumably don't want a bunch of symlinks into ~/.config either, right?
felipedvorak has quit [(Ping timeout: 260 seconds)]
newhoggy has quit [(Ping timeout: 246 seconds)]
<Infinisil>
tilpner: That doesn't free the home dir is the problem
<Infinisil>
You just have symlinks instead of actual files there then
<tilpner>
Yes, aesthetics. It still manages to store the files in the right place for easy transfer/backup, etc,
<rnhmjoj[m]>
with rewritefs I have only .cache, .local e .config in ~. but I can still do stuff like `cd .mozilla`
newhoggy has joined #nixos
sauyon has quit [(Quit: WeeChat 1.9)]
<Infinisil>
tilpner: There might be another benefit though, because with symlinks you need access to both directories
<Infinisil>
And the XDG_CONFIG_HOME, etc. are really flexible
<tilpner>
Oh, yes, I always just assume ~/.config
<tilpner>
:/
<Infinisil>
Symlinks don't do it for me
gwang has joined #nixos
<tilpner>
Okay. What was wrong with mount namespace?
ThatDocsLady has quit [(Ping timeout: 276 seconds)]
newhoggy has quit [(Ping timeout: 246 seconds)]
gwang has quit [(Client Quit)]
<Infinisil>
tilpner: I'm not sure, but I feel like it's gonna get me problems at some point. `whoami` is root
<Infinisil>
$USER and $HOME is still correct though
<Infinisil>
Not sure
<tilpner>
Huh. Why does that say root?
<Infinisil>
I need to do `unshare -mr` to be able to bind mount as an unprivileged user
<Infinisil>
and that makes you "root" (not really)
<bennofs1>
i think you can make it take any UID?
<Infinisil>
bennofs1: Ahh
<tilpner>
Do you really need the -r?
newhoggy has joined #nixos
* Infinisil
has a look at the manpage
erasmas has joined #nixos
<bennofs1>
Infinisil: hmm, or perhaps you just have to su afterwards
<Infinisil>
`unshare -m`
<Infinisil>
unshare: unshare failed: Operation not permitted
<Infinisil>
bennofs1: Can't do su, it's explicitly forbidden, throws an error
<bennofs1>
Infinisil: oh? perhaps runuser works?
<bennofs1>
Infinisil: you may need some subuid/subgid mappings iirc
<tilpner>
Infinisil - What about -Um?
<Infinisil>
tilpner: Ohh
stepcut has joined #nixos
<Infinisil>
But only sudo can bind mount..
<Infinisil>
Ah, i should specify a file
newhoggy has quit [(Ping timeout: 240 seconds)]
<Infinisil>
I don't know how such a file works..
<Infinisil>
-U-U, --user[=file]
<Infinisil>
Unshare the user namespace. If file is specified, then a
<Infinisil>
persistent namespace is created by a bind mount.
felipedvorak has joined #nixos
zraexy has joined #nixos
newhoggy has joined #nixos
<tilpner>
Those files are weird
<tilpner>
lrwxrwxrwx 1 till users 0 Aug 15 16:46 mnt -> mnt:[4026532433]
<Infinisil>
How did you create that?
<tilpner>
bwrap --bind / / ls -lah /proc/self/ns
<tilpner>
Or unshare -Um ls -lah /proc/self/ns
<mpickering>
How do I patch a bash script to replace an executable name with the absolute path, the executable comes from one of the buildInputs
sary has joined #nixos
<Infinisil>
tilpner: Oh i didn't know about /proc/self, neat!
<Infinisil>
Is there any program that does depend uid being correct?
bennofs1 has quit [(Ping timeout: 248 seconds)]
<Infinisil>
It's just asking for trouble isn't it
newhoggy has quit [(Ping timeout: 240 seconds)]
<tilpner>
mpickering - Something like sed -i 's@previous_name@${dependency}/bin/dependency@' script perhaps?
<tilpner>
Infinisil - How do you mean that?
<tilpner>
FWIW, unshare -Um id => uid=65534(nobody) gid=65534(nogroup) groups=65534(nogroup)
<Infinisil>
tilpner: unshare -mr and then mount --bind, then `whoami` is root, I don't know how programs run like this behave
<tilpner>
While bwrap --unshare-user --ro-bind / / id => uid=1000(till) gid=100(users) groups=100(users),65534(nogroup)
<Infinisil>
tilpner: bubblewrap sounds like the best solution then
gr8 has left #nixos []
<tilpner>
Infinisil - You can also provide --uid and --gid to bwrap. Might be better than relying on the outside user being the same
newhoggy has joined #nixos
acarrico has joined #nixos
<Infinisil>
tilpner: The programs would be launched as the user that wants to use them, so i think that's not needed
* tilpner
tests
<Infinisil>
I mean the goal (mine at least) is to have an overlay that replaces as many programs with wrappers that conform to the XDG thing
<tilpner>
Yes, --uid only affects inside uid, not anything you do to mounted files
nwuensche has joined #nixos
<nwuensche>
Hi! I tried to use arandr together with my Mini-DP port on my NixOS sytem, but arandr doesn't show me the port. What can I do?
newhoggy has quit [(Ping timeout: 248 seconds)]
<Infinisil>
nwuensche: Well, it doesn't see it for me either, unless I have it connected at boot time
<nwuensche>
I tried this, but it still doesn't show it to me. I added an HDMI Converter if this is important.
ison111 has joined #nixos
<mpickering>
tilpner: Thanks, that is doing the right thing but at what stage do I have to rewrite it?
cpennington has quit [(Read error: Connection reset by peer)]
<mpickering>
If I try and rewrite ${./ghc_wrapper.sh} then I get permission errors
cpennington has joined #nixos
<tilpner>
mpickering - I don't know, patchPhase sounds good?
<nwuensche>
Infinisil: Do I have to add any driver package?
mrkgnao has quit [(Ping timeout: 260 seconds)]
<Infinisil>
nmikhailov: tilpner: I think using substituteInPlace <file> --replace "A" "B" is more common in nixpkgs
<tilpner>
That sounds better, do that!
<Infinisil>
nmikhailov: No idea, Im having a lot of trouble with my MacBook + Mini Displayport + Thunderbolt display
<Infinisil>
nmikhailov: I didn't add any driver or so, the display works when I have it attached on boot though
gnuhurd has quit [(Remote host closed the connection)]
gnuhurd has joined #nixos
<nwuensche>
Anyone knows what I could do?
Infinisil has quit [(Remote host closed the connection)]
Infinisil has joined #nixos
ShalokShalom has joined #nixos
nwuensche has quit [(Quit: Leaving)]
Supersonic112 has quit [(Quit: Bye)]
Supersonic112 has joined #nixos
freusque has quit [(Quit: WeeChat 1.7.1)]
<Infinisil>
Any thoughts on the declarative user environment discussions going on?
<Infinisil>
Lots of people saying they want declarative user environments, but I fail to see what's wrong with rycee[m]'s home-manager
<Infinisil>
Sure it would need to be integrated officially, but it's working pretty well, and I don't see the need to create "NixUP" (the suggested name), and it doesn't even exist yet
<Infinisil>
Ah actually it does exist in the PR
<mpickering>
Are there any good ways to find why infinite recursion errors are happening?
<michaelpj_>
one thing I really don't like about home-manager is that it doesn't reuse the systemd modules from NixOS. So if we get fixes to one they won't apply elsewhere, etc.
<mpickering>
tilpner: I got that bit working now thanks
<pierron_>
niksnut: I guess you want to release the next version of Nix with the next version of NixOS, which makes this a harmful regression, that thebuiltins.match function can no longer accept any large regexp.
alx741_ has quit [(Quit: alx741_)]
<Infinisil>
michaelpj_: Is it possible to share them? Is the difference between to systemd user services really just that a different user is running it?
<Infinisil>
s/between//
alx741 has joined #nixos
<michaelpj_>
I mean, a priori I would expect that it should be able to use our existing definitions of user services, but it doesn't, and if you read the initial blog post he suggests that it's hard for some reason
<michaelpj_>
but I think it would be much nicer
<niksnut>
pierron_: tokenizer sounds fine to me
<niksnut>
pierron_: however what's the regression?
<niksnut>
the only change in builtins.match I know is that we're stricter about extended POSIX regexps now
<Infinisil>
michaelpj_: Agreed, would be nicer. Maybe the differences could be abstracted. Most services are just a service accompanying a program anyways
<pierron_>
niksnut: this breaks the TOML file parser, for pulling the latest rust versions.
<niksnut>
what's the length limitation?
<Infinisil>
If there was an effort to integrate home-manager into nixpkgs, I think this would be done
<pierron_>
niksnut: basically, with the previous implementation, I was able to produce a regex which would parse as many tokens as the file is expected to contain.
<pierron_>
niksnut: I did that because the match function reauire to match the entire string.
<michaelpj_>
yeah, "nicely integrated with nixpkgs and nixos" is really the thing I want, and I feel like home-manager falls a little short atm. So possibly the right approach is "improve home-manager", but since rycee is apparently involved in the discussions, I assume they're thinking about that
<pierron_>
niksnut: and not doing so, implies that we have to match a handful of tokens, then read until the end of the string for nothing, and repeat that for the next handful of tokens.
<pierron_>
niksnut: that until we finally reach the end of the string, which makes it quite time consuming.
digitus has joined #nixos
<Infinisil>
michaelpj_: He is?
<pierron_>
niksnut: a tokenizer will solve many issues at once: by reducing the regex size, and generating a vector with all the substrings at once.
<pierron_>
niksnut: and iterating only once over the tokenized string.
<Infinisil>
michaelpj_: Ahh yes
<phdoerfler>
Finally I got a working mail server with postfix, dovecot and an SSL certificate from let's encrypt
<phdoerfler>
it's beautiful
<pierron_>
niksnut: when do you expect to release the next version of Nix?
<Infinisil>
phdoerfler: Nice! Can you put it in the wiki?
ambro718 has quit [(Ping timeout: 248 seconds)]
newhoggy has joined #nixos
m0rphism has joined #nixos
<phdoerfler>
Infinisil: it's largely based on jeaye's nix files. I'd rather file a PR or two to fix some things in his config files and put a link to those into the wiki if there isn't one already.
<phdoerfler>
if he didn't fix said things already by himself that is
roundhouse has quit [(Ping timeout: 240 seconds)]
<Infinisil>
phdoerfler: I'd actually prefer a wiki page with some more words on it, what problems you encountered, etc.
<Infinisil>
phdoerfler: Whatever you wanna do ;) (As long as you put it out there somewhere)
nwuensche has joined #nixos
<phdoerfler>
Infinisil: see, setting up this server was mainly an act of procrastination avoiding cramming for my next final
<Infinisil>
Heh
<niksnut>
pierron_: hopefully soon
<Infinisil>
damnit, I currently have a lot of exams and i should really be studying no
<Infinisil>
w
newhoggy has quit [(Ping timeout: 276 seconds)]
<pierron_>
niksnut: ok, so I should this tokenizer function before that?
<nwuensche>
Hello everybody! I want to open a link to a video in my PDF in evince, but it always says that it can't find an application which could handle the file. Does anyone know how to get this working?
* pierron_
expected to have more time for hacking other things :(
stepcut has quit [(Remote host closed the connection)]
stepcut has joined #nixos
newhoggy has joined #nixos
mudri has joined #nixos
newhoggy has quit [(Ping timeout: 246 seconds)]
stepcut has quit [(Ping timeout: 246 seconds)]
gnuhurd has quit [(Remote host closed the connection)]
gnuhurd has joined #nixos
Fare has quit [(Ping timeout: 276 seconds)]
nwuensche has joined #nixos
newhoggy has joined #nixos
nwuensche has quit [(Remote host closed the connection)]
nwuensche has joined #nixos
wigust has joined #nixos
<nwuensche>
Hi! Currently, I try to set up my keyboard right now. I use the euro layout with caps locked switched to escape. The command setxkbmap eu -option caps:escape does exactly what I want, but I want to add this to configuration.nix . I tried to services.xserver.layout = "euro" and services.xserver.xkbOptions = "caps:escape", but this doesn't work. Does anyone knows what I do wrong?
<nwuensche>
It compiles the config, but I don't have the right layout nor the escape key on caps lock
newhoggy has quit [(Ping timeout: 240 seconds)]
drakonis has quit [(Remote host closed the connection)]
drakonis has joined #nixos
newhoggy has joined #nixos
jensens has quit [(Ping timeout: 246 seconds)]
Fare has joined #nixos
newhoggy has quit [(Ping timeout: 240 seconds)]
<Infinisil>
catern: Ah
newhoggy has joined #nixos
<Infinisil>
nwuensche: Did you restart display-manager?
newhoggy has quit [(Ping timeout: 260 seconds)]
Fare has quit [(Ping timeout: 240 seconds)]
<nwuensche>
Infinisil: I rebooted my system several times
Sonarpulse has joined #nixos
<nwuensche>
Does this also restart services?
AtnNn_ is now known as AtnNn
<Infinisil>
A non-running system doesn't run anything, so yes, it definitely restarted everything
newhoggy has joined #nixos
<Infinisil>
Hmm
<seequ>
I had this problem
erictapen has joined #nixos
<seequ>
I'll take a look at my config
timon37 has joined #nixos
newhoggy has quit [(Ping timeout: 260 seconds)]
<nwuensche>
I'll restart again.
<seequ>
Hrm, not actually sure what fixed it.
nwuensche has quit [(Quit: Leaving)]
<Infinisil>
I bet it's gonna work now \s
ison111 has joined #nixos
nwuensche has joined #nixos
<nwuensche>
Still the same problem
<Infinisil>
Restarting without changing anything, no surprise there
ronny has joined #nixos
ixxie has joined #nixos
<ronny>
hi
newhoggy has joined #nixos
<Infinisil>
nwuensche: Is the InputClass section present in your xsession.conf?
<Infinisil>
um, xserver.conf
<nwuensche>
I tried to change the layout in the config from euro to EurKEY, because xkblayout-state print %n shows me this
seagreen has quit [(Ping timeout: 240 seconds)]
<nwuensche>
Infinisil: Where is this file?
<ronny>
is there any known fix to thunderbord crashing for not finding the symbol drmGetDevice2?
<clever>
nwuensche: ps aux | grep xserver
<nwuensche>
THanks
atis_ has joined #nixos
<phdoerfler>
how do I add SSL certificates to nixos?
<seequ>
nwuensche: If the command uses "eu", why arem you using "euro" in the config?
<nwuensche>
Jup, it' is there
<atis_>
Hey, I'm trying to setup a nginx server with auto-renewing Let's Encrypt HTTPS
<phdoerfler>
I added them to /etc/ssl/certs but now I'd need to run c_rehash but I feel like that's the wrong way of doing it
<atis_>
any resources on how to do this?
<phdoerfler>
especially since c_rehash isn't installed
<Infinisil>
nwuensche: Go into htop and check the command line arguments X was invoked with, there's the config file path
gnuhurd has quit [(Remote host closed the connection)]
<simpson>
atis_: Set `recommendedTlsSettings = true;` in your top nginx config, and also `enableACME = true;` on each vhost.
gnuhurd has joined #nixos
<simpson>
This *should* Just Work. You may have to kick nginx once or twice if it fails to come up.
nwuensche has joined #nixos
gnuhurd has quit [(Read error: Connection reset by peer)]
<clever>
yeah, nginx will need a restart after each renew
gnuhurd has joined #nixos
<copumpkin>
ixxie: I'd say that Nix the system doesn't rely on bit-for-bit reproducible binaries for correctness, but prefers them
<clever>
including ~2 minutes after the initial rebuild-switch
<nwuensche>
So I changed services.xserver.layout to "eu". After restart, I still have the same problem
<copumpkin>
ixxie: instead we sort of have a reproducible-modulo-irrelevant-garbage situation, which is admittedly not ideal, but can deeply reduce the scope of what you need to diff
obadz has quit [(Ping timeout: 240 seconds)]
<copumpkin>
ixxie: but of course, if we could make more of our stuff bit-for-bit reproducible I'd rejoice :)
<clever>
ixxie: i also discovered, snmp builds will peek around in /etc to see if you have a /etc/mtab file, and setup the build properly
<atis_>
simpsons: thanks, I will try that
nil has quit [(Ping timeout: 255 seconds)]
<clever>
ixxie: nix sandboxes lack /etc/mtab, so snmp configures itself to open the literal file "unknown" when finding mounts
<clever>
but if built without sandboxing, it works fine
<atis_>
is it normal for nginx.service to take a while to restart after nixos-rebuild?
<clever>
and there was a haskell testcase i saw fail lastnight, where it tried to just "cd /home", and that also fails
<atis_>
doesn't seem to happen on other OSes
nil has joined #nixos
<Infinisil>
atis_: What do you mean by "a while"? Should be a few seconds
<atis_>
it's taking at least 1 minute
<clever>
atis_: can you gist the output of "ps -eH x", that should say why its hung
newhoggy has quit [(Ping timeout: 276 seconds)]
<atis_>
oh, apparently it was renewing the ACME certificate and that failed.
<clever>
letsencrypt needs the nginx to be up before it can create the certs
<simpson>
atis_: Yeah, the certs aren't instant, and nginx would rather die than start without certs. (Which IMO is the better of the two failure directions!)
<clever>
simpson: but you also cant make certs until nginx is up
<clever>
something creates a self-signed example.com cert to fill the gap
<nwuensche>
Which file does setxkbmap change? I could look up the config looks there and learn something from it. I mean: setxkbmap eu -option caps:escape does what I want..
obadz has joined #nixos
<simpson>
clever: Sure, and all the configuration is meant to support the model. I just mean that nginx fails safe rather than failing open.
<clever>
nwuensche: i dont think it changes any file, it sets a variable within the xserver process
<Infinisil>
nwuensche: As a workaround you could just do services.xserver.displayManager.sessionCommands = "setxkbmap ..."
<ixxie>
copumpkin: I guess I just feel it should be made clear somewhere because many come to Nix for reproducibility, so the *nature* of the reproducibility should be clear. Is it documented somewhere?
gnuhurd has quit [(Remote host closed the connection)]
<simpson>
atis_: That looks reasonable.
<atis_>
what do I need to do to generate the certificate?
newhoggy has joined #nixos
<clever>
atis_: nixos will create services to do it automatically, watch "journalctl -f"
nwuensche has quit [(Remote host closed the connection)]
<ixxie>
clever: I don't get the link to reproducibility
<clever>
ixxie: more about how the differences between the sandbox and normal env are making it less reproducable, in that the stable env lacks things that snmp expected every distro to have
Capprentice has quit [(Ping timeout: 240 seconds)]
jekor has joined #nixos
eacameron has quit [(Ping timeout: 248 seconds)]
Neo-- has joined #nixos
ShalokShalom has quit [(Quit: No Ping reply in 180 seconds.)]
<jekor>
Is there a way to get tmux to use my terminfo under darwin? tmux complains "open terminal failed: missing or unsuitable terminal: xterm".
newhoggy has quit [(Ping timeout: 255 seconds)]
ShalokShalom has joined #nixos
nwuensche has joined #nixos
newhoggy has joined #nixos
<nwuensche>
Infinisil: Thanks, the workaround works. At least the line is in my config now :)
Myrl-saki has quit [(Ping timeout: 240 seconds)]
<Infinisil>
nwuensche: That's also how I have my layout customized, using xkbcomp in sessionCommands
newhoggy has quit [(Ping timeout: 240 seconds)]
Arcaelyx has joined #nixos
<Fare>
Infinisil, where is there docs for customizing with xkbcomp ?
newhoggy has joined #nixos
<Fare>
I'd like to have compose patterns for lambda, arrows, etc.
<nwuensche>
I'm so sorry, but I have the next problem. I tried to enable services.printing.enable . However, I get the error when rebuilding: cups.service: Main process exited, code=exited, status=1/FAILURE, cups.service: Unit entered failed state, cups.service: Failed with result 'exit-code'.
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nix] nbp opened pull request #1517: Move builtins.match documentation between map and mul. (master...move-match-doc) https://git.io/v7FRo
NixOS_GitHub has left #nixos []
<Infinisil>
Fare: I don't think there's docs for that, but I can share my config if you want
<Infinisil>
Fare: Well there is docs for xkb, just not nixos related
sellout- has quit [(Quit: Leaving.)]
<Infinisil>
nwuensche: That's the normal error when a service couldn't start, have a look at `journalctl -u cups`
<Infinisil>
Maybe there's something more interesting there
hotfuzz_ is now known as hotfuzz
<nwuensche>
There it says: Unknown SystemGroup "sys root" on line 19 of /etc/cups/cups
newhoggy has quit [(Ping timeout: 240 seconds)]
atis_ has quit [(Ping timeout: 246 seconds)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nix] edolstra pushed 2 new commits to master: https://git.io/v7F0R
<NixOS_GitHub>
nix/master 27417c6 Nicolas B. Pierron: Move builtins.match documentation between map and mul.
<nwuensche>
Infinisil: There it says 'Unknown SystemGroup "sys root" on line 19 of /etc/cups/cups'
hotfuzz has quit [(Read error: Connection reset by peer)]
<Infinisil>
nwuensche: No idea about that
<nwuensche>
Oh, ok.
gnuhurd has quit [(Remote host closed the connection)]
<Infinisil>
I have no idea how cups works
<Infinisil>
And have never used it
gnuhurd has joined #nixos
hotfuzz has joined #nixos
<nwuensche>
Ok, thanks nevertheless. But how do you print then? :)
newhoggy has quit [(Ping timeout: 240 seconds)]
newhoggy has joined #nixos
freusque has quit [(Ping timeout: 240 seconds)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] 7c6f434c closed pull request #28212: fontforge: 20160404 -> 20170730 + support reproducible builds of fonts (master...fontforge-20170730) https://git.io/v7HEj
NixOS_GitHub has left #nixos []
newhoggy has quit [(Ping timeout: 240 seconds)]
bennofs1 has joined #nixos
<Infinisil>
nwuensche: I have never needed to print anything in the past 3 years or so ;)
<nwuensche>
Infinisil: That sounds nice!
Fare has quit [(Ping timeout: 240 seconds)]
takle has joined #nixos
jensens has joined #nixos
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] edolstra pushed 1 new commit to staging: https://git.io/v7Fu9
<NixOS_GitHub>
nixpkgs/staging 43cea71 Will Dietz: jdk8: add cflags to fix build w/gcc6
NixOS_GitHub has left #nixos []
<nwuensche>
Infinisil: I made a mistake. The error message from cups is 2 days old! The only thing that happend in the last 30 minutes was:
<Infinisil>
Oh lol
<nwuensche>
cups.service: Main process exited, code=exited, status=1/FAILURE, cups.service: Unit entered failed state, cups.service: Failed with result 'exit-code'.
<Infinisil>
well that's not a lot of info
<clever>
cups may write to its own logs
<nwuensche>
But there is nothing more in journalctl
<Infinisil>
maybe you can start it manually somehow so you can see the stdout output, or start it with debug mode
<clever>
look around /var/ for any files or directories with cups in the name
newhoggy has joined #nixos
<nwuensche>
systemctl start cups doesn't show any error
ison111 has joined #nixos
jekor has joined #nixos
<bennofs1>
nwuensche: have you tried cupsctl LogLevel=debug2 (may need to restart cups after that? or perhaps that would lose the LogLevel change? not sure)
pikajud- has quit [(Ping timeout: 260 seconds)]
<bennofs1>
nwuensche: then look in journalctl
mbrgm has quit [(Ping timeout: 240 seconds)]
<nwuensche>
bennofs1: cupsctl gives me: "cupsctl: Unable to connect to server: Bad file descriptor"
<clever>
thought that might happen
<clever>
cups has to be running to change the debug with cupsctl, lol
<clever>
nwuensche: what about "find /var | grep cups"
<bennofs1>
oh... right ;/
pikajude has joined #nixos
mbrgm has joined #nixos
<nwuensche>
clever: There are a lot of config files. However, I tried to import my cups configuration from Arch Linux yesterday, and so I had to copy some stuff. I think these files come from there.
<clever>
nwuensche: any log files in the results?
<nwuensche>
Is it save to delete the whole /var/lib/cups folder and install it all over again?
<clever>
id say its safer to rename it, then you can always undo
<nwuensche>
clever: Ok, but there is no log file btw.
colabeer has joined #nixos
<clever>
nwuensche: what are the contents of /etc/systemd/system/cups.service?
ertes-w is now known as supercynic
newhoggy has joined #nixos
hsk3 has joined #nixos
sellout- has joined #nixos
<hsk3>
Do NixOS production servers (for hosting web apps) usually have only one profile active at a time - or is it somehow possible to have one profile for one web app, another profile for another web app, etc.?
<hsk3>
Just wondering what the usual practice is
newhoggy has quit [(Ping timeout: 240 seconds)]
<nwuensche>
clever: It worked after I moved the folder. Thanks!
<Infinisil>
hsk3: You're probably looking for nixos containers
athaller has quit [(Remote host closed the connection)]
<nwuensche>
Ok, so I have the next question for cups. When I configured my Brother printer with Arch Linux, I had to mv several files from the .deb packages in some folder. What's the best way to do this in NixOS? Write a new package?
<hsk3>
Infinisil is it common to have multiple containers on a production machine? (one for each web app, for instance)
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] Ericson2314 pushed 2 new commits to staging: https://git.io/v7Fgd
<NixOS_GitHub>
nixpkgs/staging 3c9cf28 John Ericson: cc-wrapper: Improve `set -u` compliance
<NixOS_GitHub>
nixpkgs/staging 63439f8 John Ericson: Merge pull request #28269 from obsidiansystems/cc-wrapper-set-u...
<catern>
I just need to add it to propagatedBuildInputs?
bgamari has joined #nixos
<jeaye>
phdoerfler: PRs welcome. :) The postfix + dovecot setup was quite the journey to figure out, for NixOS. Fortunately, I was mostly porting an existing setup on Arch.
<phdoerfler>
jeaye: You're using dovecot to do the auth for postfix in your config. Does that actually work for you? I have to supply username and PW to postfix
<phdoerfler>
jeaye: other than that and the things I mentioned the other day I can't think of anything else
<phdoerfler>
jeaye: oh I was wondering whether you pulled the entire config just out of your hat or not. I see. That explains a lot :)
<jeaye>
phdoerfler: Let's take it to PM.
jensens has quit [(Ping timeout: 240 seconds)]
newhoggy has quit [(Ping timeout: 240 seconds)]
bgamari has quit [(Ping timeout: 240 seconds)]
bgamari has joined #nixos
newhoggy has joined #nixos
bgamari has quit [(Client Quit)]
frankpf has quit [(Ping timeout: 248 seconds)]
DutchWolfie has joined #nixos
DutchWolfie has quit [(Changing host)]
DutchWolfie has joined #nixos
ona has joined #nixos
newhoggy has quit [(Ping timeout: 255 seconds)]
newhoggy has joined #nixos
pie_ has joined #nixos
bgamari has joined #nixos
ison111 has quit [(Ping timeout: 255 seconds)]
<dash>
catern: pulled into where? :)
<catern>
dash: well, into the PYTHONPATH
<dash>
catern: In what environment?
<catern>
so that offlineimap can import it
<catern>
offlineimap's :)
<dash>
ok.
<dash>
catern: propagatedBuildInputs
newhoggy has quit [(Ping timeout: 255 seconds)]
<catern>
yeah
<catern>
that's what I thought
<catern>
and what I did
<catern>
okay thanks :>
bgamari has quit [(Ping timeout: 276 seconds)]
FRidh has joined #nixos
acertain has quit [(Quit: WeeChat 1.9)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] bjornfor pushed 2 new commits to master: https://git.io/v7FKU
<hodapp>
which is strange, since earlier I started a build, pointed to the same nixpkgs repo, which should have downloaded the exact same file already
ison111 has joined #nixos
<Infinisil>
hodapp: If there's no gcroot, the garbage collection may remove it from the store
freusque has joined #nixos
newhoggy has quit [(Ping timeout: 260 seconds)]
<hodapp>
I didn't run garbage collection since then though
<michaelpj>
is there any way to specify documentation for a whole module in NixOS? It would be nice to be able to do something like `man services.ngnix` and get a list of the options in the module, an overview of how to use it and any limitations, etc.
miefda has quit [(Read error: Connection reset by peer)]
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] Ericson2314 pushed 1 new commit to staging: https://git.io/v7F6r
<NixOS_GitHub>
nixpkgs/staging a71cf06 John Ericson: mkDerivation: Simply Nix...
NixOS_GitHub has left #nixos []
newhoggy has joined #nixos
eacameron has joined #nixos
Neo-- has quit [(Ping timeout: 255 seconds)]
ylwghst has joined #nixos
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] bjornfor pushed 1 new commit to master: https://git.io/v7F6p
<ixxie>
of course one can manually build man pages from withing the module
<michaelpj>
e.g. I was just looking into using the znc module, and it would be nice to have a little something that tells you what are the minimum set of options you need, and what you'd need to do to connect to it, etc
newhoggy has joined #nixos
<michaelpj>
I was thinking something like a `doc` module, and then modules could register themselves with that and some kind of lookup name, which would then generate the help files
ylwghst has quit [(Ping timeout: 255 seconds)]
<florianjacob>
michaelpj: mandatory options should be named as such in their respective description and listed in the `.enable` description. In general, if there's more to say than fits in the option descriptions, the place you're looking for is the NixOS manual ;)
Fare has joined #nixos
<michaelpj>
maybe the manual is the answer
<michaelpj>
but there are a lot of services
MP2E has quit [(Read error: Connection reset by peer)]
<michaelpj>
and really I want the description of how to use it and the list of options together
MP2E has joined #nixos
newhoggy has quit [(Ping timeout: 255 seconds)]
newhoggy has joined #nixos
ylwghst_ has quit [(Quit: Lost terminal)]
<florianjacob>
michaelpj: I had similar problems for a new service and stuffed everything into the `.enable` descriptions, but was told to just write a manual section for it (didn't dare that my little package was eligible to be part of the NixOS manual before). Was a total relief, the option description could be made shorter again, while I could describe the bigger picture in the manual. (For reference, that was the piwik service).
<Fare>
what is the most lightweight solution for sending mail on a NixOS + linode host?
<michaelpj>
but then the options listing is somewhere else. And it's nice to use variable substitution to ensure that help text is accurate. And it would be defined in the module itself, rather off somewhere else ;)
newhoggy has quit [(Ping timeout: 240 seconds)]
roberth has joined #nixos
DutchWolfie has quit [(Quit: Konversation terminated!)]
* hodapp
twiddles thumbs while annoying build that requires GCC 4.9 completes
<hodapp>
blugh. getting computer vision & deep learning stuff working is a royal pain... it is always full of half-assed build processes involving custom versions of specific libraries
<clever>
but once the nix expresison is done, it should be trivial to reproduce it again and again in the future!
<hodapp>
the problem is when I'm just trying to experiment, I don't necessarily want to take the time to make that nix expression
<hodapp>
and when it's deep learning stuff, it usually requires all of the GPU garbage that's powered by proprietary garbage that is really difficult to make work right in something like Docker (which is ordinarily what I'd use when the build is this much of a mess)
BPA has left #nixos []
m0rphism has joined #nixos
<ixxie>
michaelpj: maybe you should do an RFC for a manpage attribute for modules?
<michaelpj>
I'm thinking about it ;) trying to work out how the current stuff is generated atm
<florianjacob>
michaelpj: you can put the doc file for that chapter right next to the nix file, so at least it's not far off… but I'm not saying that solution is great, I just wanted to say this is the currently preffered solution. ;)
<michaelpj>
florianjacob: sure, I am thinking of this somewhat aspirationally in terms of how I'd *like* it to work... and then maybe see if that's doable
newhoggy has joined #nixos
gnuhurd has quit [(Ping timeout: 246 seconds)]
<hsk3>
NixOS is the future IMO. Why isn't it more popular? Mindboggling.
<vandenoever>
hsk3: because it's not so simple to get started
<hsk3>
:)
supercynic has quit [(Read error: Connection reset by peer)]
ertes-w has joined #nixos
newhoggy has quit [(Ping timeout: 240 seconds)]
<Infinisil>
We need to make it simpler to get started
<Infinisil>
Admittedly I haven't ever read the pills
<Infinisil>
What I think could really benefit adoption is to make higher-leveled configuration. Example: options to set a dark theme, enable mail server, macbook ready config, and more
eschnett has quit [(Quit: eschnett)]
<Infinisil>
And combine that with a non-terrible GUI
newhoggy has joined #nixos
<ixxie>
Infinisil: there are lots of good resources, but they are not easy to find (unless you know for example about the new nix user wiki)
slyfox has joined #nixos
MP2E has quit [(Read error: Connection reset by peer)]
erictapen has joined #nixos
<ixxie>
Infinisil: yeah thats a cool idea
MP2E has joined #nixos
<ixxie>
even just a module collection would be great
bgamari has quit [(Ping timeout: 240 seconds)]
<ixxie>
like modules for particular stacks would be cool
<Infinisil>
ixxie: Ohh yes
roberth has quit [(Ping timeout: 240 seconds)]
<Infinisil>
e.g. setting rustdev.enable = true, which sets up a wonderfully configured emacs by default with working racer & co.
Filystyn has quit [(Quit: Konversation terminated!)]
<Infinisil>
A la one-click
alx741_ has joined #nixos
newhoggy has quit [(Ping timeout: 246 seconds)]
bgamari has joined #nixos
<ixxie>
Infinisil: essentially, what I was thinking is - in a sense NixOS should make it so easy to make derivative 'distros' which are essentially just sets of configuration modules
<ixxie>
so if we made a repo for that sort of thing, it could create make NixOS into a distro which contains its own downstream
<Infinisil>
ixxie: Hmm, you mean like a 'distro' that's really just NixOS with e.g. KDE + a well fit together suite of applications?
<michaelpj>
can't you package up basically all the bits you need for, say, `rustdev.enable` into a module? Then the user can just clone your repo, add an import, and away they go?
<Infinisil>
musnix.kernel.latencytop
<Infinisil>
NOTE: Enabling this option will rebuild your kernel.
<Infinisil>
Heh
<clever>
ive also played with latencytop on my machine
newhoggy has joined #nixos
<Infinisil>
michaelpj: Yes, but I want that integrated into nixos
<ixxie>
what do you mean integrated?
eacameron has joined #nixos
<ixxie>
you just need to import the module into your config and bam! you have the new option now
<clever>
ixxie: oh, that das_watchdog option, ive run into something very similiar, that was extremely anoying
<clever>
Infinisil: something in the kernel is already doing exactly that, and -9's pulseaudio if the watchdog hangs for even a split second
<Infinisil>
I mean to have like a folder in nixpkgs/nixos/modules/high-level that contains this sort of stuff
<clever>
and half my programs fail to reconnect to pulseaudio
<clever>
so i wind up having to restart things every 5 minutes
<michaelpj>
is virtualbox completely broken on unstable for anyone else?
<Infinisil>
clever: That doesn't sound very nice
<clever>
security.rtkit.enable = lib.mkForce false; was the only way to make it stop
<clever>
that denies pulse access to realtime threads, so it never becomes a target
<michaelpj>
or maybe it's just nixops
<clever>
Infinisil: skype will just 100% stop all network traffic, yet claim its still online
<clever>
Infinisil: teamspeak looses all audio, and refuses to cleanly exit because its waiting for pulseaudio
<clever>
Infinisil: chromium still has playback, but claims i no longer have a microphone
<joepie91>
skype for linux is a fun guinea pig, it seems that no matter what distro you install it on, or with what dependencies, or with what configuration, or what version... it always finds a way to break things catastrophically
<Infinisil>
\o/
<joepie91>
from hogging an audio device, to fucking with your volume, to breaking your webcam, to inexplicably hanging with no indication to the user, to upsetting the OOM killer
<clever>
joepie91: that was under the older skype, version 4.3 era
<joepie91>
to deity knows what else
<Infinisil>
We really need better testing with nixos, right?
<joepie91>
clever: honestly I've given up on skype a year or two ago
<joepie91>
it just wasn't worth the pain
<clever>
joepie91: yeah, i have noticed a large number of voip programs messing with the pulse capture levels to implement automatic gain
<joepie91>
it always found new ways to break
NixOS_GitHub has joined #nixos
<NixOS_GitHub>
[nixpkgs] Ericson2314 opened pull request #28304: stdenvs: Distinguish between `extraBuildInputs` and `extraNativeBuildInputs` (staging...stdenv-extra-inputs) https://git.io/v7FQ4
NixOS_GitHub has left #nixos []
<joepie91>
and I was kind of done with that :)
<clever>
which screws with programs that dont (teamspeak), causing the noise floor to be boosted into triggering constant mic spam
dcosnet has joined #nixos
<ixxie>
Infinisil: if you ever post a RFC about this higher-level module stuff, I would love to hear about it
timon37 has quit [(Remote host closed the connection)]
<Infinisil>
ixxie: I don't know, I've never thought of doing an RFC, I'd just start hacking first
betaboon has joined #nixos
betaboon has quit [(Changing host)]
betaboon has joined #nixos
<ixxie>
Infinisil: well, then if you ever make something you want to show ^^
zeus_ has quit [(Read error: Connection reset by peer)]
zeus_ has joined #nixos
bpa has quit [(Quit: Leaving)]
<ixxie>
I can imagine how to build the options, but its not so clear to me how to organize them
eacameron has quit [(Remote host closed the connection)]
eacameron has joined #nixos
<ixxie>
Infinisil: I guess it would just be a new tree under nixos in nixpkgs?
newhoggy has quit [(Remote host closed the connection)]
georgiy has joined #nixos
gnuhurd has joined #nixos
<Infinisil>
ixxie: Probably
eacameron has quit [(Ping timeout: 240 seconds)]
tmaekawa has joined #nixos
tmaekawa has quit [(Client Quit)]
<Infinisil>
But then I'm also asking myself, there is a whole range of "levelness", low-level (e.g. kernel settings), mid-level (e.g. nameserver option), high-level (e.g. theme to use)
<Infinisil>
and it would make sense that an option at level n should only be allowed to control options at level 0..(n-1) to have a nice abstraction
<Infinisil>
don't know exactly where I'm going with this, just an idea
<ixxie>
I see the logic, but I wonder how one can identify levels concretely
<ixxie>
I mean, there are suboptions clearly
<ixxie>
but also, modules can reference one another's options rights?
<Infinisil>
Yeah
<ixxie>
so its essentially nonhierarchical
<Infinisil>
Right now, yes
<ixxie>
and right now, if I pick some option, this choice propegates to whatever suboptions it sets
<ixxie>
but I can alway overrride them
<Infinisil>
Indeed, reminds me of a loeb actually
mahalel_ has quit [(Read error: Connection reset by peer)]
<ixxie>
but all you need is good discretion
hiratara has quit [(Ping timeout: 246 seconds)]
mahalel_ has joined #nixos
<ixxie>
i.e. don't define a theme in a kernel option
michaelpj has quit [(Remote host closed the connection)]
<hodapp>
I am trying to do a build based on a custom fork of Caffe, so I started from caffe's expression in nixpkgs... and am now getting a bunch of "#warning -- unsupported GNU version! gcc 4.10 and up are not supported!"
<hodapp>
but if I override that to gcc 4.9, then it cannot link at the end because all dependencies it's trying to link with were built with newer GCC (or something)
<hodapp>
so I don't understand how caffe was ever even able to build...
ona has quit [(Ping timeout: 240 seconds)]
<hodapp>
can I separate what it uses for CXX and NVCC?
ona has joined #nixos
pi3r has joined #nixos
hiratara has joined #nixos
michaelpj has joined #nixos
<clever>
hodapp: i believe you want to override the stdenv, not insert a new gcc into buildInputs
<clever>
you may need to .override each dependency you pass in, to change their stdenv's also
viaken has left #nixos ["WeeChat 1.8"]
<hodapp>
clever: then the build properly uses the older GCC, but at link time I get things like:
<hodapp>
/nix/store/x4y0ij8q6jdkak742zv4jr1y15ls4y7h-boost-1.62.0/lib/libboost_filesystem.so: undefined reference to `std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >::find_first_not_of(char const*, unsigned long, u
<clever>
try (boost.override { inherit stdenv; })
<clever>
that will make boost use the same stdenv
<hodapp>
clever: the confusion is that caffe has none of this in its expression, so I'm confused as to how it ever worked (if it did not have to override everything in the dependencies)
<clever>
ah
<clever>
no idea then
<hodapp>
as the list of dependencies is considerable that I'd have to make it rebuild
<MP2E>
that's a good point. Hmmm
bennofs has quit [(Ping timeout: 240 seconds)]
<hodapp>
and I am wondering if it must be using the same compiler for both CXX and NVCC
<hanslo-W>
Thanks, I've gotten that far. I'm working on a project with a haskell-cabal(backend) node(frontend) combination and I was I'm a little stuck on how to get the builder to recognize some node dependencies, for example 'jshint'
<hanslo-W>
was a little*
sellout- has quit [(Read error: Connection reset by peer)]
hanslo-Wesson has quit [(Ping timeout: 240 seconds)]
erasmas has quit [(Quit: leaving)]
frankpf has joined #nixos
eacameron has joined #nixos
<clever>
joepie91: yeah, ive got at least 4 unique snowflakes i manage, that i refuse to even upgrade because of how fragile they can sometimes be, i really need to switch that crap over to nixos
<clever>
joepie91: they all predate me discovering nix
<joepie91>
clever: add a 1 in front of that number and that sentence applies to me :)
<clever>
lol
astsmtl has joined #nixos
astsmtl has quit [(Changing host)]
astsmtl has joined #nixos
<MP2E>
funny, I started using nixos in 2015 with only one machine and no real need for containers or the advantages, I just liked the concepts and Cabal Hell was still in full force from Haskell, nix was touted as a good solution
<MP2E>
over the years i've gotten a few more machines and started using it for work
<MP2E>
nixos has only become more pleasant/great :P
eacameron has quit [(Ping timeout: 240 seconds)]
<MP2E>
i hope it reaches that threshold of immortality one day
<MP2E>
dunno if that's a thing for OSes i suppose
<MP2E>
but it's rather obscure right now
Sonarpulse has quit [(Ping timeout: 260 seconds)]
astsmtl has quit [(Ping timeout: 240 seconds)]
<MP2E>
also: excited for staging to merge into master :)
mudri has quit [(Quit: WeeChat 1.9)]
<MP2E>
gcc-6 branch landed
<MP2E>
looking good so far too, rebuilt off of it successfully
markus1199 has joined #nixos
mizu_no_oto has quit [(Quit: Computer has gone to sleep.)]
UrsidaeJohn has joined #nixos
Rotaerk has joined #nixos
markus1189 has quit [(Ping timeout: 240 seconds)]
<clever>
joepie91: eek!, the python27 example in the blog you linked is wrong
<clever>
joepie91: that overwrites the patches attribute on the object, but doesnt actually override the derivation