gchristensen changed the topic of #nixos to: Share the output of nix-shell -p nix-info --run nix-info to help us help you. || https://nixos.org || Latest NixOS: https://nixos.org/nixos/download.html || Latest Nix: https://nixos.org/nix/download.html || Logs: https://logs.nix.samueldr.com/nixos/ || #nixos-dev, #nix-darwin, #nixos-aarch64, #nixos-chat
<georgew> Hi nixos. Is there a well-known solution to zlib problems when building with cabal? In my case, cabal new-build
ruhatch has joined #nixos
sigmundv has quit [Read error: Connection reset by peer]
<georgew> I've googled around and followed the breadcrumbs back to https://ghc.haskell.org/trac/ghc/ticket/11042
<ruhatch> Hey all
sigmundv has joined #nixos
<ruhatch> Does anyone know if there's an easy way to get the wordpress service here (https://github.com/NixOS/nixpkgs/blob/master/nixos/modules/services/web-servers/apache-httpd/wordpress.nix) working?
<{^_^}> [nixpkgs] @Mic92 merged pull request #30429 → [RDY] init gpg python bindings + Alot: 0.5.1 -> 0.7.0 → https://git.io/vd1Qf
<{^_^}> [nixpkgs] @Mic92 pushed 5 commits to master: https://git.io/vxgdA
<{^_^}> → d9292429 by @teto: alot: 0.5.1 to 0.7.0
<{^_^}> → ee482f85 by @teto: service_identity: cosmetic changes
<{^_^}> → a8403b64 by @teto: gpgme: add withPython ? false to enable bindings
<{^_^}> [nixpkgs] @matthewbauer pushed commit from @andrew-d to release-17.09 « Fix build failures with DBD-SQLite »: https://git.io/vxgFv
me1 has joined #nixos
Crypt0x has joined #nixos
me1 has quit [Client Quit]
kitemikaze has joined #nixos
freeman42x]NixOS has quit [Ping timeout: 264 seconds]
me1 has joined #nixos
<gchristensen> hmm seems the nixos/doc/manual expression has grown some decidedly not manual code
mounty_ has joined #nixos
me1 has quit [Quit: me1]
<MichaelRaskin> What do you consider this?
<MichaelRaskin> All that option-list-extraction?
me1 has joined #nixos
<gchristensen> optionsJSON, and the option list extraction should probably be elsewhere
me1 has quit [Client Quit]
<MichaelRaskin> Well, option list is only used for documentation…
<gchristensen> it should probably be in the dir right above, not manual
<gchristensen> it isn't egregious by any means
me1 has joined #nixos
nwspk has quit [Read error: Connection timed out]
nwspk has joined #nixos
<{^_^}> [nixpkgs] @Mic92 merged pull request #37943 → linuxPackages.ena: 1.5.0 -> 1.5.2 → https://git.io/vxgi1
<{^_^}> [nixpkgs] @Mic92 pushed 2 commits to master: https://git.io/vxgbu
<{^_^}> → b353ff94 by @pbogdan: linuxPackages.ena: 1.5.0 -> 1.5.2
<{^_^}> → dfff83a1 by @Mic92: Merge pull request #37943 from pbogdan/ena-update
<kandinski> Can anyone help me get unstuck here? http://paste.debian.net/1017120/
coconnor has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @Mic92 pushed commit from @pbogdan to release-18.03 « linuxPackages.ena: 1.5.0 -> 1.5.2 »: https://git.io/vxgbK
dvim has quit [Ping timeout: 240 seconds]
<{^_^}> [nixpkgs] @Mic92 merged pull request #37861 → terraform: Wrap PATH of propagatedBuildInputs → https://git.io/vxETd
<{^_^}> [nixpkgs] @Mic92 pushed commit from @adisbladis to master « terraform: Wrap PATH of propagatedBuildInputs (#37861) »: https://git.io/vxgbX
asuryawanshi has joined #nixos
roblabla has quit [Ping timeout: 256 seconds]
Crypt0x has quit [Quit: Crypt0x]
roblabla has joined #nixos
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vxgNe
<{^_^}> → a8375e40 by @fpletz: caddy: 0.10.11 -> 0.10.12
<{^_^}> → e6f4614e by @fpletz: lib/modules: fix typo
Crypt0x has joined #nixos
<{^_^}> [nixpkgs] @Ericson2314 opened pull request #37953 → unixtools: Utilize meta.platforms → https://git.io/vxgNT
asuryawanshi has quit [Ping timeout: 256 seconds]
pkill9 has joined #nixos
<{^_^}> [nixpkgs] @Mic92 merged pull request #37852 → terraform-provider-libvirt: init at 0.3 → https://git.io/vx0F8
<{^_^}> [nixpkgs] @Mic92 pushed 2 commits to master: https://git.io/vxgNc
<{^_^}> → ebcf2d34 by @Mic92: terraform-provider-libvirt: init at 0.3
<{^_^}> [nixpkgs] @Chiiruno opened pull request #37954 → bcachefs-tools: Changed install flag from PREFIX to DESTDIR, deleted unneeded Makefile → https://git.io/vxgNC
<{^_^}> → 15c744a0 by @Mic92: Merge pull request #37852 from Mic92/terraform-libvirt
Lears has joined #nixos
me1 has quit [Quit: me1]
dan_b has quit [Ping timeout: 260 seconds]
me has joined #nixos
me is now known as Guest69210
spear2 has quit [Ping timeout: 264 seconds]
<{^_^}> [nixpkgs] @fpletz opened pull request #37955 → nixos/version: fix nixops pre 1.6 compatibility → https://git.io/vxgN9
freeman42x]NixOS has joined #nixos
<mounty_> Does anyone here have experience of Hydra? I was just beginning to integrate it into my project when someone mentioned (in a context in which I couldn't question him further) that it is incomplete.
<{^_^}> [nixpkgs] @fpletz merged pull request #37930 → firmwareLinuxNonfree: 2018-01-04 -> 2018-03-20 → https://git.io/vxgRR
<{^_^}> [nixpkgs] @fpletz pushed 3 commits to master: https://git.io/vxgAU
<{^_^}> → c787555b by @dtzWill: firmwareLinuxNonfree: 2018-01-04 -> 2018-03-20
<{^_^}> → ecf5caf4 by @fpletz: firmwareLinuxNonfree: simplify source fetching
<{^_^}> → 5e4c3764 by @fpletz: Merge pull request #37930 from dtzWill/update/firmware-linux-nonfree-03-20-2018
freeman42x]NixOS has quit [Ping timeout: 264 seconds]
<elvishjerricco> mounty_: Incomplete in what way?
aramiscd has quit [Ping timeout: 268 seconds]
ottidmes has quit [Ping timeout: 264 seconds]
Lisanna has quit [Quit: Lisanna]
Guest69210 has quit [Quit: Guest69210]
me1 has joined #nixos
vidbina has quit [Ping timeout: 240 seconds]
blankhart has quit [Ping timeout: 256 seconds]
<{^_^}> [nixpkgs] @Chiiruno closed pull request #37954 → bcachefs-tools: Changed install flag from PREFIX to DESTDIR, deleted unneeded Makefile → https://git.io/vxgNC
acarrico has quit [Ping timeout: 240 seconds]
sigmundv has quit [Ping timeout: 240 seconds]
vaninwagen has quit [Quit: Connection closed for inactivity]
me1 has quit [Quit: me1]
acarrico has joined #nixos
me1 has joined #nixos
<{^_^}> [nixpkgs] @Mic92 merged pull request #35587 → clean up rust.md docs → https://git.io/vAr4M
<{^_^}> [nixpkgs] @Mic92 pushed commit from @vitiral to master « docs: extend rust docs (#35587) »: https://git.io/vxgxE
thc202 has quit [Ping timeout: 252 seconds]
<{^_^}> [nixpkgs] @Mic92 pushed commit from @vitiral to release-18.03 « docs: extend rust docs (#35587) »: https://git.io/vxgxg
me1 has quit [Quit: me1]
me1 has joined #nixos
Lears has quit [Remote host closed the connection]
obadz has quit [Ping timeout: 256 seconds]
glines_ has quit [Ping timeout: 252 seconds]
obadz has joined #nixos
glines has joined #nixos
mbrgm has quit [Ping timeout: 256 seconds]
mbrgm has joined #nixos
Supersonic has quit [Disconnected by services]
Supersonic112 has joined #nixos
ryanartecona has quit [Quit: ryanartecona]
Supersonic112 is now known as Supersonic
obadz has quit [Ping timeout: 240 seconds]
obadz has joined #nixos
sigmundv has joined #nixos
Hackapepper has quit [Ping timeout: 260 seconds]
sigmundv has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @ElvishJerricco opened pull request #37957 → Added bionic dynamic linker → https://git.io/vxgpG
sigmundv has joined #nixos
sigmundv has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @Ericson2314 merged pull request #37957 → Added bionic dynamic linker → https://git.io/vxgpG
<{^_^}> [nixpkgs] @Ericson2314 pushed 2 commits to master: https://git.io/vxgpz
<{^_^}> → d390ee74 by @ElvishJerricco: Added bionic dynamic linker
<{^_^}> → 785c62e8 by @Ericson2314: Merge pull request #37957 from ElvishJerricco/add-bionic-dynamic-linker
ivanivan has joined #nixos
silver has quit [Read error: Connection reset by peer]
alhariel has quit [Ping timeout: 248 seconds]
hariel has joined #nixos
<ivanivan> I have a Bash script I'd like to install in NixOS as an executable.
<ivanivan> The script is a thin wrapper around some GNU Stow commands.
<ivanivan> I can write a derivation, but I'm not sure how symlink it into /run/current-system/sw/bin/
<ivanivan> Can anyone point me in the right direction?
<ruhatch> @ivanivan if you put the script in $out/bin in your derivation
<ivanivan> runhatch: really? just that simple? that's great! kinda embarrassed I didn't just try that
<ruhatch> Then add the derivation to your configuration.nix in environment.systemPackages
<ivanivan> thanks
<ruhatch> Should be that simple yeah!
<ivanivan> i also wrote a bash completion script for it -- i found some examples of how to link that; looks straightforward
me1 has quit [Quit: me1]
<ruhatch> FYI: only certain subdirectories are symlinked like this by default
<ruhatch> You can add other paths that you want symlinked to environment.pathsToLink
<ivanivan> ah, good to know. thanks again!
<ruhatch> No worries!
sigmundv has joined #nixos
xcmw has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
sigmundv has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @erictapen opened pull request #37958 → apache-httpd: fix typo in config servedFiles → https://git.io/vxghW
jrolfs has quit [Ping timeout: 264 seconds]
xcmw has joined #nixos
srdqty1 has quit [Ping timeout: 256 seconds]
sigmundv has joined #nixos
sigmundv has quit [Remote host closed the connection]
srdqty1 has joined #nixos
<ivanivan> i don't understand the distinction between buildInputs and propogatedBuildInputs
<ivanivan> i mean, how could a package's runtime dependencies *not* propogate?
<ivanivan> if pkg-A has a runtime dependency on pkg-B, won't any package with a runtime dependency on pkg-A necessarily have a runtime dependency on pkg-B too?
<ivanivan> srdqty1: is that you?
<srdqty1> depends. are you you?
<ivanivan> i would've thought the name gave it away
xcmw has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
srdqty1 is now known as srdqty
<{^_^}> Channel nixpkgs-unstable advanced to https://github.com/NixOS/nixpkgs/commit/ee28e35ba37 (from 6 hours ago, history: https://channels.nix.gsc.io/nixpkgs-unstable)
jrolfs has joined #nixos
kmicklas has quit [Ping timeout: 256 seconds]
contrapumpkin has joined #nixos
jb55 has joined #nixos
magnetophon has joined #nixos
<{^_^}> [nixpkgs] @matthewbauer merged pull request #37953 → unixtools: Utilize meta.platforms → https://git.io/vxgNT
<{^_^}> [nixpkgs] @matthewbauer pushed 2 commits to staging: https://git.io/vxgjr
<{^_^}> → 52f4be2c by @Ericson2314: unixtools: Utilize meta.platforms
<{^_^}> → 2162eb4b by @matthewbauer: Merge pull request #37953 from obsidiansystems/unixtools
jrolfs has quit [Ping timeout: 260 seconds]
asuryawanshi has joined #nixos
ivanivan has quit [Quit: WeeChat 2.0]
asuryawanshi has quit [Ping timeout: 264 seconds]
mizu_no_oto has joined #nixos
jrolfs has joined #nixos
jrolfs has quit [Ping timeout: 264 seconds]
leothrix has joined #nixos
mizu_no_oto has quit [Quit: Computer has gone to sleep.]
<{^_^}> Channel nixpkgs-18.03-darwin advanced to https://github.com/NixOS/nixpkgs/commit/f74188b5517 (from 4 hours ago, history: https://channels.nix.gsc.io/nixpkgs-18.03-darwin)
abrxs has joined #nixos
blonkhart has quit [Ping timeout: 248 seconds]
blonkhart has joined #nixos
<{^_^}> Channel nixos-unstable-small advanced to https://github.com/NixOS/nixpkgs/commit/418b37a7786 (from 4 hours ago, history: https://channels.nix.gsc.io/nixos-unstable-small)
nuncanada has quit [Read error: Connection reset by peer]
nuncanada has joined #nixos
jrolfs has joined #nixos
srdqty1 has joined #nixos
srdqty has quit [Ping timeout: 256 seconds]
<mounty_> Does anyone here have experience of Hydra? I was just beginning to integrate it into my project when someone mentioned (in a context in which I couldn't question him further) that it is incomplete.
<mounty_> Oh sorry; I see there are answers to my previous asking.
<mounty_> Apparently it doesn't install properly; you have to do some extra work to fix the installation to make it work fully.
<mounty_> I have set up a Hydra server but haven't used it seriously yet.
jrolfs has quit [Ping timeout: 240 seconds]
orivej has joined #nixos
pkill9 has quit [Ping timeout: 260 seconds]
Crypt0x has quit [Ping timeout: 256 seconds]
Crypt0x has joined #nixos
jb55 has quit [Ping timeout: 264 seconds]
srdqty1 is now known as srdqty
schoppenhauer has quit [Ping timeout: 276 seconds]
semilattice has joined #nixos
asuryawanshi has joined #nixos
Crypt0x has quit [Quit: Crypt0x]
schoppenhauer has joined #nixos
<{^_^}> Channel nixpkgs-17.09-darwin advanced to https://github.com/NixOS/nixpkgs/commit/ae5c5c06805 (from 4 hours ago, history: https://channels.nix.gsc.io/nixpkgs-17.09-darwin)
<{^_^}> Channel nixpkgs-18.03-darwin advanced to https://github.com/NixOS/nixpkgs/commit/51c49db0f0b (from 3 hours ago, history: https://channels.nix.gsc.io/nixpkgs-18.03-darwin)
asuryawanshi has quit [Ping timeout: 240 seconds]
zzamboni has joined #nixos
abrxs has quit [Ping timeout: 264 seconds]
ruhatch has quit [Quit: Connection closed for inactivity]
<vaibhavsagar> mounty_: I have also set up a personal Hydra
<vaibhavsagar> it's currently broken because it doesn't play well with some of the newer Nix stuff
<vaibhavsagar> btw does anyone know how close 18.03 is to being released?
<vaibhavsagar> I'm asking because I would like it to have GHC 8.4 by default but that's looking unlikely
jrolfs has joined #nixos
pkill9 has joined #nixos
zzamboni has quit [Ping timeout: 246 seconds]
jrolfs has quit [Ping timeout: 248 seconds]
<elvishjerricco> vaibhavsagar: I thought the default GHC was always the one used by the Stackage resolver the package set is based on. That is currently 8.2.2
<vaibhavsagar> exactly
<vaibhavsagar> so if we wait long enough then lts-12 will happen
<elvishjerricco> Ah. That won't be for a while I'd guess
jrolfs has joined #nixos
<elvishjerricco> Probably past April
<vaibhavsagar> :'(
<vaibhavsagar> my larger concern is that nixpkgs is doomed to have the latest-1 version of GHC as standard
<elvishjerricco> mounty_: What specifically isn't working?
<vaibhavsagar> because they're both on 6-month cadences
<elvishjerricco> vaibhavsagar: There are Linux disrepair still on like 7.8 I think :P
<vaibhavsagar> and the new LTSs always take so long to come out
<elvishjerricco> Dostros*
<elvishjerricco> Agh
<elvishjerricco> Distros*
<vaibhavsagar> elvishjerricco: we're not just any linux distro though :)
<vaibhavsagar> and nixpkgs master will probably upgrade the day after lts-12 comes out
<vaibhavsagar> so then there's a mismatch between release-* and unstable forever
<elvishjerricco> Yea I think as long as we're tied to Stackage, we can expect stable nixpkgs to always be one major LTS behind, which is itself going to be one major version behind GHC half the time
<elvishjerricco> It'd be great if we had upstream support for nightlies in nixpkgs
<vaibhavsagar> at least the newest release has make-package-set
<elvishjerricco> In my ideal world we'd have all the LTSes, including nightlies, paired with the latest release of some NixOS channel
nuncanada has quit [Read error: Connection reset by peer]
<vaibhavsagar> actually no, that's been there for ages
<vaibhavsagar> elvishjerricco: the current situation is that minus nightlies
<vaibhavsagar> all you have to do is run a revision of nixpkgs with that package set :)
<elvishjerricco> vaibhavsagar: Fair enough
<vaibhavsagar> I think it even caches now, which is pretty cool
<elvishjerricco> But being forced to use an old nixpkgs kind of sucks
<vaibhavsagar> yes, I agree
<elvishjerricco> Though I guess my suggestion has the same problem
<elvishjerricco> But we can't cache every LTS with every NixOS channel update
<elvishjerricco> That's just too much work
<vaibhavsagar> you're right
blonkhart has quit [Quit: WeeChat 1.9.1]
<elvishjerricco> I guess the solution is stackage2nix + every team uses their own hydra :P
<vaibhavsagar> that is *a* solution
<elvishjerricco> I wonder if it would be to much to have a `haskell.packages.nightly` set that's just the latest Stackage nightly
<vaibhavsagar> IIRC nixpkgs is vehemently against multiple package sets
<vaibhavsagar> we could have our own overlay like the Rust people do
<elvishjerricco> I understand having one package set but I think nightlies may be exceptional enough
<elvishjerricco> Since they should obviously be handled with care
Crypt0x has joined #nixos
jrolfs has quit [Ping timeout: 260 seconds]
Myrl-saki has joined #nixos
semilattice has quit [Ping timeout: 276 seconds]
<Myrl-saki> How do I set max job with the new nix porcelain?
oahong has quit [Ping timeout: 265 seconds]
srdqty has quit [Ping timeout: 256 seconds]
oahong has joined #nixos
srdqty has joined #nixos
<Myrl-saki> `nix build --option max-jobs 1`
<Myrl-saki> I miss -j1
<Myrl-saki> :(
zzamboni has joined #nixos
rauno has quit [Ping timeout: 276 seconds]
Rusty1_ has quit [Quit: Konversation terminated!]
vidbina has joined #nixos
liori has quit [Remote host closed the connection]
<elvishjerricco> Myrl-saki: Hm. That's annoying. `--max-jobs 1` still works
oahong has quit [Ping timeout: 264 seconds]
coconnor has joined #nixos
oahong has joined #nixos
aramiscd has joined #nixos
robstr has joined #nixos
jrolfs has joined #nixos
Myrl-saki has quit [Remote host closed the connection]
zzamboni has quit [Ping timeout: 240 seconds]
Myrl-saki has joined #nixos
Myrl-saki has quit [Read error: Connection reset by peer]
<{^_^}> [nixpkgs] @fpletz pushed 3 commits to master: https://git.io/vx2T2
<{^_^}> → d12daee6 by @fpletz: xmr-stak: 2.2.0 -> 2.3.0
<{^_^}> → 28c00f8f by @fpletz: monero: 0.11.1.0 -> 0.12.0.0
<{^_^}> → 5d86c500 by @fpletz: xmrig: init at 2.5.2
jrolfs has quit [Ping timeout: 276 seconds]
aarvar has quit [Ping timeout: 260 seconds]
Guanin has quit [Ping timeout: 260 seconds]
Myrl-saki has joined #nixos
hamishmack has quit [Ping timeout: 256 seconds]
pkill9 has quit [Ping timeout: 276 seconds]
<{^_^}> [nixpkgs] @ryantm opened pull request #37959 → tachyon: 0.98.9 -> 0.99b2 → https://git.io/vx2TA
Myrl-saki has quit [Remote host closed the connection]
Guanin has joined #nixos
Myrl-saki has joined #nixos
<coconnor> having an odd problem with store paths containing "nix~case~hack" files even when "use-case-hack" is false
Lisanna has joined #nixos
<coconnor> has anyone encountered something similar?
<coconnor> these appear to be paths that were copied from another system; not built locally
vidbina has quit [Ping timeout: 263 seconds]
<coconnor> maybe an issue using nix-serve?
zzamboni has joined #nixos
roconnor has quit [Quit: Konversation terminated!]
vidbina has joined #nixos
<fearlessKim[m]> when I use a simple `makeWrapper $orig $out --set XX toto` in home-manager, `I get /nix/store/b3q8ql3my0y3yyvyq06vsz09vnwa1viv-hook/nix-support/setup-hook: line 113: flagsBefore: unbound variable` that is this line
<fearlessKim[m]> ` echo exec ${argv0:+-a \"$argv0\"} \""$original"\" \
<fearlessKim[m]> "$flagsBefore" '"${extraFlagsArray[@]}"' '"$@"' >> "$wrapper"`
<fearlessKim[m]> the wrapper binary has a zsh shebang but still I wonder if on line 113 it shouldn't be "${flagsBefore:-}" instead
Myrl-saki has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @fpletz pushed 7 commits to release-18.03: https://git.io/vx2kS
<{^_^}> → d206dca8 by @fpletz: firmwareLinuxNonfree: simplify source fetching
<{^_^}> → 4bf9dd12 by @dtzWill: firmwareLinuxNonfree: 2018-01-04 -> 2018-03-20
<{^_^}> → 39e76f5a by @fpletz: caddy: 0.10.11 -> 0.10.12
rauno has joined #nixos
<{^_^}> [nixpkgs] @andir opened pull request #37960 → firefox-{bin,esr} updates for MFSA2018-10 → https://git.io/vx2kA
<{^_^}> [nixpkgs] @ryantm opened pull request #37961 → telepathy-gabble: 0.18.3 -> 0.18.4 → https://git.io/vx2kp
Myrl-saki has joined #nixos
oahong has quit [Ping timeout: 276 seconds]
<fearlessKim[m]> modifying this simple line makes nix rebuild the whole tree, any workaround ?
<fearlessKim[m]> (apart from mounting the store R+w)
oahong has joined #nixos
Crypt0x has quit [Quit: Crypt0x]
hamishmack has joined #nixos
<{^_^}> [nixpkgs] @fpletz closed pull request #30333 → pam module: enable pam_keyinit.so by default → https://git.io/vdK3J
asuryawanshi has joined #nixos
ryanartecona has joined #nixos
<{^_^}> [nixpkgs] @andir opened pull request #37963 → firefox{,-bin,-esr} updates for MFSA2018-10 #37960 → https://git.io/vx2I3
<{^_^}> [nixpkgs] @andir merged pull request #37947 → [17.09] openssl{,1_1_0} update (1.0.2o, 1.1.0h) → https://git.io/vxg1x
<{^_^}> [nixpkgs] @andir pushed 3 commits to release-17.09: https://git.io/vx2Is
<{^_^}> → 33aedcee by @andir: openssl_1_1_0: 1.1.0g -> 1.1.0h (fixes CVE-2018-0739, CVE-2017-3738)
<{^_^}> → 4e63b373 by @andir: openssl: 1.0.2n -> 1.0.2o (fixes CVE-2017-3738, CVE-2018-0739)
<{^_^}> → a58c1ce6 by @andir: Merge pull request #37947 from andir/17.09/openssl
Crypt0x has joined #nixos
jrolfs has joined #nixos
<{^_^}> [nixpkgs] @andir opened pull request #37964 → [18.03] firefox{,-bin,-esr} updates for MFSA2018-10 → https://git.io/vx2In
vidbina has quit [Ping timeout: 246 seconds]
asuryawanshi has quit [Ping timeout: 256 seconds]
ryanartecona has quit [Ping timeout: 263 seconds]
<{^_^}> [nixpkgs] @ryantm opened pull request #37965 → tvheadend: 4.2.5 -> 4.2.6 → https://git.io/vx2I2
<{^_^}> [nixpkgs] @fpletz merged pull request #37958 → apache-httpd: fix typo in config servedFiles → https://git.io/vxghW
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vx2Io
<{^_^}> → 1a984702 by @fpletz: Merge pull request #37958 from erictapen/apache-httpd-fix-typo
<{^_^}> → 169468c4 by @erictapen: apache-httpd: fix typo in config servedFiles
<unlmtd> does `nix-copy-closure` not work with ipv6 addresses?
Mateon3 has joined #nixos
<clever> unlmtd: how did you try running it?
sud0x3 has joined #nixos
zzamboni has quit [Quit: Leaving.]
<unlmtd> actually this is probably my problem `mksh: nix-store: not found`
Mateon1 has quit [Ping timeout: 245 seconds]
Mateon3 is now known as Mateon1
blankhart has joined #nixos
<{^_^}> [nixpkgs] @fpletz merged pull request #37961 → telepathy-gabble: 0.18.3 -> 0.18.4 → https://git.io/vx2kp
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vx2Ix
<{^_^}> → 14e24db9 by @ryantm: telepathy-gabble: 0.18.3 -> 0.18.4
<{^_^}> → 68e31185 by @fpletz: Merge pull request #37961 from ryantm/auto-update/telepathy-gabble
<clever> unlmtd: double-check that PATH is being handled properly for non-interactive shells
<{^_^}> [nixpkgs] @fpletz merged pull request #37960 → firefox-{bin,esr} updates for MFSA2018-10 → https://git.io/vx2kA
<{^_^}> [nixpkgs] @fpletz pushed 3 commits to master: https://git.io/vx2Ih
<{^_^}> → 24a2c3fe by @andir: firefox-esr: 52.7.2esr -> 52.7.3esr
<unlmtd> `nix-copy-closure --to fxxx::xxx1 /run/current-system `
<unlmtd> ahh right
<{^_^}> → f9ddc266 by @fpletz: Merge pull request #37960 from andir/firefox
<{^_^}> → 6abbe395 by @andir: firefox-bin: 59.0.1 -> 59.0.2
Myrl-saki has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @fpletz merged pull request #37964 → [18.03] firefox{,-bin,-esr} updates for MFSA2018-10 → https://git.io/vx2In
<{^_^}> [nixpkgs] @fpletz pushed 4 commits to release-18.03: https://git.io/vx2Ij
<{^_^}> → 7c4115b0 by @andir: firefox-bin: 59.0.1 -> 59.0.2
<{^_^}> → 2251b7bf by @andir: firefox-esr: 52.7.2esr -> 52.7.3esr
<{^_^}> → d5f40d0e by @7c6f434c: firefox: 59.0.1 -> 59.0.2
zzamboni has joined #nixos
<unlmtd> my bash renounciation biting me agaain
<{^_^}> [nixpkgs] @fpletz merged pull request #37963 → [17.09] firefox{,-bin,-esr} updates for MFSA2018-10 → https://git.io/vx2I3
<{^_^}> [nixpkgs] @fpletz pushed 4 commits to release-17.09: https://git.io/vx2Lv
<{^_^}> → 2a74e472 by @andir: firefox-bin: 59.0.1 -> 59.0.2
<{^_^}> → b23c4674 by @andir: firefox-esr: 52.7.2esr -> 52.7.3esr
<{^_^}> → 4f9505fe by @7c6f434c: firefox: 59.0.1 -> 59.0.2
<{^_^}> [nixpkgs] @fpletz merged pull request #37948 → [18.03] openssl{,1_1_0} update (1.0.2o, 1.1.0h) → https://git.io/vxgMf
<{^_^}> [nixpkgs] @fpletz pushed 3 commits to release-18.03: https://git.io/vx2LL
<{^_^}> → f9b510b4 by @andir: openssl_1_1_0: 1.1.0g -> 1.1.0h (fixes CVE-2018-0739, CVE-2017-3738)
<{^_^}> → 877cde22 by @andir: openssl: 1.0.2n -> 1.0.2o (fixes CVE-2017-3738, CVE-2018-0739)
<{^_^}> → b6474a3a by @fpletz: Merge pull request #37948 from andir/18.03/openssl
MercurialAlchemi has joined #nixos
Myrl-saki has joined #nixos
<unlmtd> marked as closed, but only with a hack
<clever> unlmtd: i have a dedicated user called builder that is used for all remote builds
<{^_^}> [nixpkgs] @fpletz merged pull request #37870 → openjdk10: minor cleanups → https://git.io/vxEW5
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vx2Lc
<{^_^}> → aabf45c1 by @jerith666: openjdk10: minor cleanups
<{^_^}> → 8c76754f by @fpletz: Merge pull request #37870 from jerith666/jdk10u
<{^_^}> [nixpkgs] @fpletz closed pull request #36703 → Update JDK 9 and Eclipse to GTK 3 → https://git.io/vAh6K
<unlmtd> clever: so youd use that user to copy-closure .. right?
<clever> yeah, it can also be used for that as well if the normal shell is broken
<unlmtd> using bash as init/root/wrapper shell is insanse
srdqty1 has joined #nixos
<unlmtd> another box on the fork list :P
alex`` has joined #nixos
srdqty has quit [Ping timeout: 240 seconds]
<unlmtd> but then again, people drive a giant pickup truck to the corner store to get a 6-pack of beer
<unlmtd> well fork as soon as we get our first round of funding
<unlmtd> stripping bash out is high on the list
yastero has quit [Ping timeout: 276 seconds]
<clever> unlmtd: what will /bin/sh be then?
<unlmtd> mksh
kerrhau has quit [Ping timeout: 276 seconds]
<unlmtd> it runst 98% of bash
<unlmtd> almost as fast as ash
<unlmtd> I think the binary is 3 times smaller
<unlmtd> than bash*
<clever> if bash is already in-ram, the binary size doesnt really matter much
<clever> and given how much its used
xy2_ has joined #nixos
jrolfs has quit [Ping timeout: 265 seconds]
<vaibhavsagar> how is mksh an improvment over bash, besides being smaller?
jrolfs has joined #nixos
<vaibhavsagar> *improvement
<vaibhavsagar> especially if it means you might have to do some mangling to package potentially anything new
<unlmtd> much faster, more correct (security)
<vaibhavsagar> more correct how?
<unlmtd> 700+kb is pretty big in embedded world
<vaibhavsagar> most of the problems come from the people writing shell scripts, not the interpreter
<unlmtd> we want to use nix to build images for constrained env
<unlmtd> anyway, its already decided, so you can debate the advantages
<vaibhavsagar> alright, cool
endformationage has quit [Quit: WeeChat 1.9.1]
<clever> vaibhavsagar: shellshock i believe was just because bash was in the workflow, but no bash scripts where involved
JosW has joined #nixos
xAFFE has joined #nixos
<vaibhavsagar> sure, fortunately I left myself an out by saying "most" :)
<vaibhavsagar> one or two vulnerabilities in a few years isn't so bad
<vaibhavsagar> compared to the jankiness that is every shell script
thc202 has joined #nixos
simukis has joined #nixos
<vaibhavsagar> wow, it's been three and a half years since Shellshock
<unlmtd> maybe we should turn the question around, why bash? mksh supports almost all the bash sugar
<vaibhavsagar> unlmtd: that's what all our packages assume
xy2_ has quit [Ping timeout: 264 seconds]
<vaibhavsagar> but like you said, the decision has already been made
<unlmtd> we're starting from the beginning, so we get to choose again
<unlmtd> in that sense, bash is not attractive
<vaibhavsagar> don't you want other people's software on your platform?
vidbina has joined #nixos
<unlmtd> we dont need much, and everything will be built with minimal features, so its pretty much a different way of packaging
<vaibhavsagar> cool cool
<vaibhavsagar> planning to use musl?
zzamboni has quit [Quit: Leaving.]
<unlmtd> Xorg isnt even in the plans
<unlmtd> ohh yea
zzamboni has joined #nixos
<{^_^}> [nixpkgs] @ryantm opened pull request #37966 → saga: 6.2.0 -> 6.3.0 → https://git.io/vx2td
<{^_^}> [nixpkgs] @fpletz merged pull request #37507 → nixos/tests/atd : remove non-deterministic test of batch command → https://git.io/vxcUA
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vx2tN
<{^_^}> → b08560fb by @xeji: nixos/tests/atd : remove test of batch command
<{^_^}> → 9f3718fe by @fpletz: Merge pull request #37507 from xeji/p/test-atd
orivej has quit [Ping timeout: 264 seconds]
mounty_ has quit [Ping timeout: 260 seconds]
sud0x3 has quit [Quit: WeeChat 2.1]
<jluttine> what is the correct way to define runtime-only dependencies in a derivation?
<vaibhavsagar> jluttine: propagatedBuildInputs?
<clever> vaibhavsagar: propagatedBuildInputs is only at build-time
<clever> for the things that depend on it
<clever> jluttine: i would use makeWrapper and prefix PATH with the bin dirs
<Myrl-saki> I was thinking of substituteInPlace. That idea's way better.
<Myrl-saki> s/that/clever's/
<{^_^}> [nixpkgs] @fpletz merged pull request #37872 → cloudfoundry-cli: fix build → https://git.io/vxEEW
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vx2qZ
<{^_^}> → 760e972a by @pbogdan: cloudfoundry-cli: fix build
<{^_^}> → 3cc03421 by @fpletz: Merge pull request #37872 from pbogdan/cf-cli-fix-build
<jluttine> vaibhavsagar: propagatedBuildInputs causes the package to be re-compiled if the runtime-only dependency changes..
<jluttine> that's unnecessary
<clever> jluttine: make a 2nd derivation, that wrapProgram's the PATH over the 1st's binary
<clever> jluttine: thats exactly how the firefox/chrome plugins are managed
jrolfs has quit [Ping timeout: 240 seconds]
<clever> the 2nd derivation generates a bash script that just prefixes PATH, then runs the binary from the 1st
<clever> so it only has to "recompile" the bash script when the runtime thing changes
<jluttine> clever: ok. then that wrapped result is what the package derivation nix file returns, right?
<clever> yeah
<clever> in the case of firefox and chrome, there is also an unwrapped package
<Myrl-saki> [0/326 built, 1/134/466 copied (1404.5/3033.9 MiB), 133.6/255.9 MiB DL] fetching nodejs-slim-6.13.0 from https://cache.nixos.org
<Myrl-saki> What do the numbers mean?
<clever> nix-repl> firefox-unwrapped
<clever> «derivation /nix/store/yr2k052z76m4rzdmzanail0169c32s1w-firefox-unwrapped-58.0.2.drv»
<{^_^}> [nixpkgs] @fpletz merged pull request #37184 → spice-gtk: fix symlink errors, add withPolkit option → https://git.io/vxm5U
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vx2qB
<{^_^}> → e2681006 by @xeji: spice-gtk: fix symlink errors, add withPolkit option
<{^_^}> → ecbf439b by @fpletz: Merge pull request #37184 from xeji/spice-gtk-fix
<clever> Myrl-saki: 0 out of 326 packages have been built, 1 is downloading, and 134/466 have been downloaded, i think
jrolfs has joined #nixos
asuryawanshi has joined #nixos
<{^_^}> [nixpkgs] @fpletz merged pull request #37781 → helmholtz: fix failing build → https://git.io/vxRbL
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vx2qu
<{^_^}> → 5bb96e71 by @magnetophon: helmholtz: fix failing build
<{^_^}> → f4e32ecb by @fpletz: Merge pull request #37781 from magnetophon/helmholtz
<clever> Myrl-saki: 1404/3033 on-disk size, 133/255 network size (compression)
<Myrl-saki> clever: Thanks, that makes sense.
blankhart has quit [Ping timeout: 240 seconds]
<{^_^}> [nixpkgs] @fpletz pushed 7 commits to release-18.03: https://git.io/vx2qi
<{^_^}> → be798556 by @erictapen: apache-httpd: fix typo in config servedFiles
<{^_^}> → b65794b4 by @ryantm: telepathy-gabble: 0.18.3 -> 0.18.4
<{^_^}> → b0f5bc0f by @jerith666: openjdk10: minor cleanups
asuryawanshi has quit [Ping timeout: 240 seconds]
jrolfs has quit [Ping timeout: 240 seconds]
<jluttine> is there any very simple way to wrap executables in order to modify PATH, or do i need to use mkDerivation with name, version, meta, buildInput etc although they are already defined in the package i'm wrapping...
<{^_^}> [nixpkgs] @ryantm opened pull request #37967 → shaarli: 0.9.5 -> 0.9.6 → https://git.io/vx2qD
<jluttine> hmmm.. perhaps i can use wrapProgram in (pre?)-fixup phase instead of creating a totally new derivation? :S
<sphalerite> jluttine: runCommand "name" ''mkdir -p $out/bin; makeWrapper ${original}/bin/name $out/bin/name --prefix PATH : somePath ;''
<clever> jluttine: if its in the same derivation, it will trigger a rebuild
<sphalerite> jluttine: I'd suggest leaving the original package unmodified, since you don't want to rebuild it every time
<jluttine> sphalerite: yeah. though it's a very small build, i want to learn to do it correctly, so yes, avoid unnecessary rebuilding
<jluttine> sphalerite: ok, thanks. i'll check that runCommand
<sphalerite> which approach is *correct* depends on the situation. If the wrapper is purpose-specific, then yes make a separate derivation using runCommand or similar. If the software doesn't function correctly without the wrapping, it should go in the original derivation
vidbina has quit [Ping timeout: 252 seconds]
Tucky has joined #nixos
<jluttine> sphalerite: yeah, the package doesn't work without the wrapping because it needs some runtime-only dependencies. but it wouldn't need to be re-compiled if those dependencies change
oahong has quit [Ping timeout: 264 seconds]
blankhart has joined #nixos
oahong has joined #nixos
jrolfs has joined #nixos
<Myrl-saki> How to use `nix run` to get a build env rather than the package itself?
<sphalerite> Myrl-saki: not currently possible AFAIK
<sphalerite> Myrl-saki: continue using nix-shell :)
<Myrl-saki> sphalerite: Awww. :(
<Myrl-saki> sphalerite: I miss the curl messages. ; n ;
<Myrl-saki> Is there a way to get them back with nix-shell?
<sphalerite> Myrl-saki: nothing neat and integrated, but you could just nix build -f shell.nix first
<Myrl-saki> sphalerite: Thanks.
jrolfs has quit [Ping timeout: 264 seconds]
reinzelmann has joined #nixos
Myrl-saki has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @jluttine opened pull request #37969 → diskrsync: add ssh to PATH → https://git.io/vx2mo
<jluttine> sphalerite clever: thanks for the help. i made a pull request now
zzamboni has quit [Quit: Leaving.]
zzamboni has joined #nixos
Myrl-saki has joined #nixos
jrolfs has joined #nixos
roberth has quit [Ping timeout: 256 seconds]
kitemikaze has quit [Quit: kitemikaze]
kitemikaze has joined #nixos
Myrl-saki has quit [Remote host closed the connection]
jrolfs has quit [Ping timeout: 246 seconds]
Myrl-saki has joined #nixos
<{^_^}> [nixpkgs] @7c6f434c merged pull request #37959 → tachyon: 0.98.9 -> 0.99b2 → https://git.io/vx2TA
<{^_^}> [nixpkgs] @7c6f434c pushed 2 commits to master: https://git.io/vx2YY
<{^_^}> → b92a9e15 by @ryantm: tachyon: 0.98.9 -> 0.99b2
<{^_^}> → 6f7ded7e by @7c6f434c: Merge pull request #37959 from ryantm/auto-update/tachyon
Neo-- has joined #nixos
<{^_^}> [nixpkgs] @jluttine opened pull request #37971 → pythonPackages.pytest-flake8: 0.9.1 -> 1.0.0 → https://git.io/vx2Y4
simukis has quit [Quit: simukis]
MichaelRaskin has quit [Quit: MichaelRaskin]
civodul has joined #nixos
simukis has joined #nixos
robstr has quit [Ping timeout: 276 seconds]
<{^_^}> [nixpkgs] @fpletz pushed 0 commits to staging-18.03: https://git.io/vx2YQ
davidlt has joined #nixos
kitemikaze has quit [Remote host closed the connection]
aramiscd has quit [Ping timeout: 276 seconds]
jrolfs has joined #nixos
ilyaigpetrov has joined #nixos
Crypt0x has quit [Quit: Crypt0x]
jrolfs has quit [Ping timeout: 260 seconds]
kai_w has quit [Ping timeout: 240 seconds]
jrolfs has joined #nixos
<{^_^}> [nixpkgs] @ryantm opened pull request #37972 → php: 7.2.3 -> 7.2.4 → https://git.io/vx23f
dvim has joined #nixos
Myrl-saki has quit [Remote host closed the connection]
Myrl-saki has joined #nixos
roberth has joined #nixos
kitemikaze has joined #nixos
simukis has quit [Quit: simukis]
<{^_^}> [nixpkgs] @ryantm opened pull request #37973 → petsc: 3.8.3 -> 3.8.4 → https://git.io/vx2ss
vaninwagen has joined #nixos
<{^_^}> [hydra] @joranvar opened pull request #552 → nix-prefetch-git: Fix git submodule checkout → https://git.io/vx2sC
simukis has joined #nixos
asuryawanshi has joined #nixos
goibhniu has joined #nixos
<{^_^}> [nixpkgs] @Izorkin opened pull request #37974 → mariadb: 10.2.13 -> 10.2.14 → https://git.io/vx2GJ
freeman42x]NixOS has joined #nixos
jrolfs has quit [Ping timeout: 264 seconds]
<{^_^}> [nixpkgs] @ryantm opened pull request #37975 → mate.pluma: 1.20.0 -> 1.20.1 → https://git.io/vx2G4
knupfer has joined #nixos
jrolfs has joined #nixos
<{^_^}> [nixpkgs] @Izorkin opened pull request #37976 → mariadb.connector-c: 2.3.4 -> 2.3.5 → https://git.io/vx2G5
periklis has joined #nixos
ThatDocsLady_ has joined #nixos
sigmundv has joined #nixos
liori has joined #nixos
<{^_^}> [nixpkgs] @ryantm opened pull request #37977 → peek: 1.2.2 -> 1.3.0 → https://git.io/vx2Zz
robstr has joined #nixos
jrolfs has quit [Ping timeout: 256 seconds]
thetet has joined #nixos
Myrl-saki has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @vbgl opened pull request #37978 → ocamlPackages.ocp-ocamlres: 0.3 -> 0.4 → https://git.io/vx2nk
asuryawanshi has quit [Remote host closed the connection]
<Wizek> hello
winem_ has joined #nixos
<Wizek> I have 2 questions: (1) is it safe to delete individual top level folders from /nix/store?
<Wizek> Does that look to nix as if the path has not been built? Or can it leave behind un undefined state?
<{^_^}> [nixpkgs] @Mic92 merged pull request #37928 → buildRustCrate: fix equality testing → https://git.io/vxg48
<{^_^}> [nixpkgs] @Mic92 pushed 3 commits to master: https://git.io/vx2nc
<{^_^}> → 8cc6897a by @VShell: buildRustCrate: fix equality testing
<{^_^}> → d12cab3b by @Mic92: buildRustCrate: remove ancient test guards
<{^_^}> → 8a8a7370 by @Mic92: Merge pull request #37928 from VShell/patch-2
<Wizek> (2) is there some kind of check-nix-store command?
<Wizek> that looks for certain kinds of anomalies and/or even repairs them?
thetet has quit [Quit: Leaving.]
jrolfs has joined #nixos
nick_l has joined #nixos
aramiscd has joined #nixos
aramiscd has quit [Client Quit]
jrolfs has quit [Ping timeout: 260 seconds]
aramiscd has joined #nixos
taktoa has joined #nixos
<LnL> nix-store --verify --check-contents
<LnL> or --verify-path for a specific store path
<Wizek> LnL: cool, I'll try these
<LnL> note that it can take a long time depending on the size of your store
<Wizek> LnL: How long? Can you give an estimate, e.g. 1 hour for 10GB?
<LnL> not really
<nick_l> I defined an overlay myoverlay config: nodes: pkgs: self: super: {foo = bar config nodes pkgs} and specified nixpkgs.overlays = [(myoverlay config nodes pkgs)]; Then in a module I refer to ${pkgs.foo}/bin/foo, but pkgs.foo doesn't exist according to Nix?
<nick_l> Missing semi-colon is not the issue.
ottidmes has joined #nixos
<tilpner> Wizek - It is safe to use nix-store --delete, but you shouldn't rm -rf them
<Wizek> tilpner: alright. Though what's the problem with rm -rf?
coot has joined #nixos
<tilpner> Nix wouldn't know that you removed something, /nix/var/nix/db would be out of sync
<nick_l> tilpner: I specified the overlay as you said, but it doesn't seem to be picked up.
<nick_l> I.e., "attribute
<tilpner> nix-store --delete also only actually removes things if it's safe to do so, so it won't let you delete important files
<nick_l> I.e., "attribute "foo" missing, at <location> (which is ${pkgs.foo}/bin/foo)
<tilpner> nick_l - I did not say anything in particular about how to install it, I just linked a few options. Which one did you choose?
<nick_l> tilpner: nixpkgs.overlays = [...]
michas__ has left #nixos ["http://quassel-irc.org - Chat comfortably. Anywhere."]
michas__ has joined #nixos
michas__ has left #nixos ["http://quassel-irc.org - Chat comfortably. Anywhere."]
michas__ has joined #nixos
<tilpner> Your argument list is unusual, what are you trying to use your overlay for?
<Wizek> tilpner: alright
<nick_l> tilpner: I want to do some aws API calls in which I inject the instance id of the machine being deployed.
michas__ has quit [Remote host closed the connection]
<nick_l> tilpner: i.e. i-<hash> on AWS.
michas__ has joined #nixos
<nick_l> tilpner: similar for a region argument.
<nick_l> tilpner: the only way to compute that is dependent on the deployment target environment, which means I need to depend on "nodes".
knupfer has quit [Ping timeout: 240 seconds]
<nick_l> tilpner: I expect the "pkgs" binding at the top of the module which is in imported in the nixops network description to have a binding for pkgs which has the overlayed pkg also available, but that doesn't seem happen.
<nick_l> I thought the whole point of overlays was to do that.
<nick_l> tilpner: in the entirety of nixpkgs there is only one use of the overlays feature and it is not in the definition of a machine directly, but in a module specification.
<tilpner> In which configuration did you specify nixpkgs.overlays? The one you deploy, or the one you run nixops on?
<{^_^}> [nixpkgs] @fpletz merged pull request #37972 → php: 7.2.3 -> 7.2.4 → https://git.io/vx23f
<{^_^}> [nixpkgs] @fpletz pushed 2 commits to master: https://git.io/vx2Wi
<{^_^}> → 43c6a3f2 by @ryantm: php: 7.2.3 -> 7.2.4
<nick_l> tilpner: not sure what you mean. I have a.nix and b.nix. I specified it in a.nix, which doesn't contain the machine hardware specification.
<{^_^}> → 7f1201cf by @fpletz: Merge pull request #37972 from ryantm/auto-update/php
<Wizek> I've just ran `nix-store --check-contents --verify` and it didn't seem to fix the issue
<nick_l> tilpner: so, b.nix is the network specification. E.g. specifying whether I want to deploy in AWS/GCE/libvirtd, etc.
<nick_l> tilpner: does that help?
aramiscd has quit [Read error: Connection reset by peer]
<tilpner> nick_l - Not really. I don't use nixops anymore, but I remember there being issues with my overlays too
<tilpner> nick_l - You could try testing a simple overlay on your host machine. If you can get that to work there, but not on the to-be-deployed machine, you know the issue is with nixops
<{^_^}> [nixpkgs] @fpletz pushed commit from @ryantm to release-18.03 « php: 7.2.3 -> 7.2.4 »: https://git.io/vx2lG
periklis has quit [Ping timeout: 245 seconds]
paraseba has quit [Ping timeout: 240 seconds]
<nick_l> tilpner: did you stop using nixops because of random bugs like this?
asuryawanshi has joined #nixos
<tilpner> nick_l - No, I didn't need the complexity and didn't like the state. I now use just Nix 2.0 and ssh
daGrevis has left #nixos ["The Lounge - https://thelounge.github.io"]
<tilpner> (My deployments never create machines, only overwrite them)
<tilpner> And yes, I linked that issue, not sure what you want to say by linking it back :))
<{^_^}> [nixpkgs] @ryantm opened pull request #37979 → newsboat: 2.10.2 -> 2.11 → https://git.io/vx28y
paraseba has joined #nixos
<nick_l> tilpner: oh, I completely missed that link. Sorry.
<nick_l> tilpner: in plain NixOS it does work.
thetet has joined #nixos
<tilpner> I can't help you with nixops, but there are plenty of people here who can. You may have to wait a while though :)
Lisanna has quit [Quit: Lisanna]
__Sander__ has joined #nixos
MP2E has quit [Remote host closed the connection]
<nick_l> tilpner: probably found the problem. It was me.
<tilpner> What did you change?
<nick_l> Actually, probably not.
<nick_l> I also had a nixpkgs.overlays let binding, but I also had the right setting.
<nick_l> So, that's likely not it.
<{^_^}> [nixpkgs] @ryantm opened pull request #37980 → mate.mate-control-center: 1.20.0 -> 1.20.2 → https://git.io/vx2BY
kitemikaze has quit [Quit: kitemikaze]
kitemikaze has joined #nixos
knupfer has joined #nixos
<{^_^}> [nixpkgs] @7c6f434c merged pull request #36410 → gnomeExtensions.system-monitor: fix this package and upgrade to v33 → https://git.io/vAFPw
<{^_^}> [nixpkgs] @7c6f434c pushed 4 commits to master: https://git.io/vx2Rp
<{^_^}> → 0935cbf2 by @tiramiseb: gnomeExtensions.system-monitor: fix this package and upgrade to v33
<{^_^}> → 058be360 by @tiramiseb: gnomeExtensions.system-monitor: Fix the version number
<{^_^}> → a180a52d by @tiramiseb: gnomeExtensions.system-monitor: do not need global sessionPath modification
asuryawanshi has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @7c6f434c merged pull request #36411 → gnomeExtensions.impatience: fix the package and upgrade to version 0.4.5 → https://git.io/vAFXW
<{^_^}> [nixpkgs] @7c6f434c pushed 3 commits to master: https://git.io/vx20J
<{^_^}> → 2d047efe by @tiramiseb: gnomeExtensions.impatience: fix the package and upgrade to version 0.4.5
asuryawanshi has joined #nixos
<{^_^}> → fc0e62a2 by @7c6f434c: Merge pull request #36411 from tiramiseb/gnome-shell-extension-impatience
<{^_^}> → e864675e by @tiramiseb: gnomeExtensions.impatience: Fix the version number
<{^_^}> [nixpkgs] @ryantm opened pull request #37982 → mate.mate-panel: 1.20.0 -> 1.20.1 → https://git.io/vx20t
TweyII has joined #nixos
knupfer has quit [Ping timeout: 252 seconds]
newbie|6 has quit [Ping timeout: 240 seconds]
zzamboni has quit [Quit: Leaving.]
roberth has quit [Ping timeout: 264 seconds]
simukis has quit [Quit: simukis]
<nick_l> tilpner: a simple test seems to work. Phew.
zzamboni has joined #nixos
humanoyd has joined #nixos
<Guanin> Is there any known php software packaged in nixpkgs that I can use as an example for my own package? I want to package https://github.com/ToeBee/OsmAnd-Tracker as I want to use it today :D
<{^_^}> [nixpkgs] @ryantm opened pull request #37983 → mate.mate-calc: 1.20.0 -> 1.20.1 → https://git.io/vx2uY
zzamboni has quit [Ping timeout: 240 seconds]
<nick_l> Guanin: nixos/modules/services/web-apps/restya-board.nix is an example
<Guanin> Thanks :)
<nick_l> Guanin: get a git clone of nixpkgs.
<Guanin> that is probably the best idea
davidlt has quit [Ping timeout: 240 seconds]
<nick_l> Guanin: then ag php # should give enough inspiration.
<goibhniu> Hi Guanin, mediawiki is another one
zzamboni has joined #nixos
<nick_l> goibhniu: do you know the difference between imports and requires?
domenkozar has quit [Ping timeout: 265 seconds]
kitemikaze has quit [Quit: kitemikaze]
* goibhniu doesn't know requires <_<
<infinisil> nick_l: there is no requires
<tilpner> infinisil - There is, but IIRC it does the same as imports
<infinisil> Unless you're not talking about nix(pkgs)
<infinisil> Oh well never mind then
<nick_l> infinisil: there is require or requires in nixops.
<tilpner> unifyModuleSyntax has imports = m.require or [] ++ m.imports or [];
zzamboni has quit [Ping timeout: 240 seconds]
<nick_l> nix/eval-machine-info.nix 375: getNixOpsExprs = l: lib.unique (lib.flatten (map getRequires l)); 377: getRequires = f: 380: requires = 386: [ f ] ++ map getRequires requires;
<{^_^}> [nixops] @rbvermaa pushed 0 commits to refs/tags/v1.6: https://git.io/vx2ze
zzamboni has joined #nixos
<{^_^}> [nixops] @rbvermaa pushed 0 commits to refs/tags/v1.6: https://git.io/vx2z6
<{^_^}> [nixops] @rbvermaa pushed 0 commits to refs/tags/v1.6: https://git.io/vx2ze
<infinisil> rbvermaa is on fire today huh
<nick_l> Seems weird to report pushing 0 commits.
davidlt has joined #nixos
jetien has joined #nixos
jetien has quit [Read error: Connection reset by peer]
jetien1 has joined #nixos
<{^_^}> [nixpkgs] @ryantm opened pull request #37984 → mate.marco: 1.20.0 -> 1.20.1 → https://git.io/vx2gk
zzamboni has quit [Quit: Leaving.]
zzamboni has joined #nixos
simukis has joined #nixos
vidbina has joined #nixos
vidbina has quit [Ping timeout: 276 seconds]
humanoyd has quit [Ping timeout: 246 seconds]
humanoyd has joined #nixos
aramiscd has joined #nixos
<{^_^}> [nixpkgs] @ryantm opened pull request #37985 → lxcfs: 2.0.8 -> 3.0.0 → https://git.io/vx22X
<nick_l> How do I get nixops to not fill the remote machine until no space left on device?
<woffs> Is there a chance #36947 will be fixed so 18.03 can be used on i686?
roberth has joined #nixos
<infinisil> nick_l: what do you mean fill it? With random data or what!
<infinisil> ?*
freeman42x]NixOS has quit [Ping timeout: 245 seconds]
<{^_^}> [nixpkgs] @domenkozar pushed to e2fsprogs « e2fsprogs: 1.43.8 -> 1.44.1 »: https://git.io/vx2Vm
<{^_^}> [nixpkgs] @jtojnar opened pull request #37986 → qpdfview: port to qt5 → https://git.io/vx2Vc
<{^_^}> [nixpkgs] @ryantm opened pull request #37987 → mate.mate-applets: 1.20.0 -> 1.20.1 → https://git.io/vx2VK
<{^_^}> [nixpkgs] @domenkozar opened pull request #37988 → e2fsprogs: 1.43.8 -> 1.44.1 → https://git.io/vx2VD
<nick_l> infinisil: well, I even have gcc-6.4.0 in my store for example.
<TweyII> I just noticed that whenever I build a package my NIX_BUILD_CORES is set to 1 O.O
<infinisil> Ohh i missed the "not" part
<infinisil> Understood you wanted to fill it
<nick_l> infinisil: so, it seems that the EC2 image is just super big.
<nick_l> infinisil: i.e. more than 2GB.
<TweyII> I have 8 logical cores on this machine
<nick_l> Same with this file n38189zd3pgh9fm2874iva7v894sqfls-xscreensaver.pam
<TweyII> How do I make Nix set NIX_BUILD_CORES sensibly? (NixOS)
<nick_l> Don't see why I would ever want to have that on a server.
<nick_l> Or mgdl06yrwc93vadh9c4sjzy9gvq5aa65-fc-10-subpixel.conf
<{^_^}> [nixpkgs] @rbvermaa pushed to release-17.09 « nixops: update to 1.6 »: https://git.io/vx2w3
<infinisil> Yeah some packages have gcc in their closure because either it's badly packaged or their installers make the output reference gcc for some reason
thetet has quit [Quit: Leaving.]
<nick_l> infinisil: but perhaps I am also holding on to multiple generations?
<nick_l> infinisil: how do I list all the system generations? nix-env --list-generations returns empty list.
<{^_^}> [nixpkgs] @rbvermaa pushed to release-18.03 « nixops: update to 1.6 »: https://git.io/vx2wK
<nick_l> infinisil: ah, got it.
<nick_l> So the problem is that I run 21 system generations.
<nick_l> There is probably an option to do something sane.
<infinisil> You can delete single generations
<{^_^}> [nixpkgs] @rbvermaa pushed to master « nixops: update to 1.6 »: https://git.io/vx2w1
<nick_l> infinisil: that should happen automatically.
<nick_l> Which I think is possible.
<infinisil> By just going to /nix/var/nix/profiles and deleting the system* ones you don't want
<nick_l> Nixops should know how big a small machine is and adapt its numbers to that.
<infinisil> I don't think it happens automatically
<lejonet> TweyII: nix.buildCores = <int>; in your configuration.nix should do the trick :)
<infinisil> TweyII: set it to 0 for it to use all cores
ielectric has joined #nixos
ielectric has quit [K-Lined]
<nick_l> lejonet: the disadvantage of that solution is that it won't apply to the first build.
<TweyII> Dang
<TweyII> I never knew
<lejonet> nick_l: I think you're attributing more intelligence to nixops than it has :P
<TweyII> I wonder how much time I've wasted
<TweyII> Thanks
<TweyII> Is there an equivalent option for non-NixOS?
<lejonet> nick_l: very true, but its the "correct way" I guess, but iirc there is both a nix cli option and a env var you can set for same effect
<lejonet> but can't remember the name of either on the top of my head
<nick_l> lejonet: what is?
<lejonet> nick_l: setting nix.buildCores in the configuration.nix
<nick_l> lejonet: I think it is a misdesign.
<lejonet> nick_l: how so?
<nick_l> lejonet: every user wants to make those settings apply immediately.
<nick_l> lejonet: so, some nix variables, should simply be "special".
<lejonet> nick_l: well, nixos-generate-config sets nix.buildCores to the amount of logical cores it finds when you install the machine in hardware-configuration.nix...
<srhb> (Which I always reduce somewhat...)
<nick_l> lejonet: that's called a workaround, not a solution.
<lejonet> nick_l: Well, nix is lazy afterall ^^
bennofs has joined #nixos
<nick_l> lejonet: this is my opinion. I cannot force people to do smart things.
<srhb> :P
silver has joined #nixos
<srhb> You can perhaps word it a bit less charged though
<ottidmes> TweyII: The non-NixOS way would probably be to just edit /etc/nix/nix.conf yourself?
<TweyII> ottidmes: Ah, right. Thanks.
<nick_l> srhb: how?
<lejonet> nick_l: start by not implying that its dumb to do it the way it is ;)
<srhb> nick_l: By attempting not to imply people are nonsmart :-)
<nick_l> srhb: doing smart things, doesn't mean that they are now doing non smart things.
<srhb> Good! :)
<nick_l> srhb: perhaps they are working on the BFR.
<nick_l> Perhaps they make no money when working on free and open-source stuff.
<nick_l> So, in that sense it would be stupid for them to work on it, unless as a hobby.
<nick_l> But, if we are talking whether or not it would be good for the adoption of Nix and making it more userfriendly, then I think it would be "smart".
<nick_l> And the current way would then, if you wish, not smart.
<srhb> I wasn't really adding my opinion to the mix, just drawing your attention to the phrasing. :)
<{^_^}> [nixpkgs] @ryantm opened pull request #37989 → mate.mate-settings-daemon: 1.20.0 -> 1.20.1 → https://git.io/vx2ro
<nick_l> srhb: that was clear.
<srhb> Great :)
<nick_l> srhb: thank you for the clarification.
<srhb> Now, my _opinion_ on the subject is that it's tricky.
<srhb> In some sense, build cores should be part of the input hash.
<srhb> Because it really isn't invisible in a lot of builds, and sometimes not even in the output.
<lejonet> Its in one way a chicken-egg problem
<srhb> But that's extremely impractical.
<srhb> (We get around it by forcing some builds to use just one core, but that's also very icky)
<lejonet> srhb: bad build systems are bad, kindof hard to fix them on a package manager/distro level sadly :(
<srhb> Yes, it is...
<lejonet> (yes, I'm looking at you OpenOffice)
<srhb> Clearly we just need smaller units of compilation!
<srhb> *clearly*
<lejonet> Nah, we just need moar powwah! xD
<srhb> 4THz cores would solve the whole problem. Get on it, chipmakers.
<lejonet> It would solve a lot of other issues too, central heating, bad insulation etc etc
<srhb> :)
<lejonet> (on a serious note: I actually know of more than 1 instance where people actually use computers compiling instead of other source of heating)
Synthetica has joined #nixos
<srhb> Well, if the alternative is to waste the heat...
<lejonet> In one case, it was "merely" the fact that they had a bunch of P4s, and didn't have to pay for electricity, but had to pay for heating (weird studentdorm...)
<srhb> Heh
<etu[m]> lejonet: :D
<lejonet> (yes, gentoo people, so the compiling was actually used to produce "useful" things)
<srhb> Oh wow, NixOps was bumped :o
<lejonet> srhb: did they fix nixosVersion -> nixos.version? :O
<srhb> lejonet: Is that a pun on USE flags? Because in that case I might opine differently :P
<srhb> lejonet: I would assume so, it was fixed in master quite a while ago.
<srhb> Or rather, I think it was made compatible with either version.
<lejonet> srhb: could be... ;)
<etu[m]> I wanted to try out nixops like a week ago and ran into that issue
<etu[m]> That was a bit discouraging :p
<lejonet> srhb: that would be nice, so I don't have to use a dev-shell for using nixops :P
<lejonet> I wrote a PR for it, that got accidentally merged then reverted, so didn't really bother with opening it again :P
<srhb> lejonet: I'm pretty sure it was fixed at the same time :)
<srhb> etu[m]: Yeah :/
<lejonet> srhb: most likely, which is why I didn't bother with re-opening my PR
<srhb> Honestly I just defined the other version as a module.
<srhb> But that's probably not an obvious workaround.
<etu[m]> srhb: But I've patched it locally to be able to use it. But then I had issues I couldn't figure out why it happened.
zzamboni has quit [Quit: Leaving.]
* srhb nods
<srhb> I feel like the way eval-machines injects modules is a bit too spooky.
<etu[m]> srhb: After a reboot I couldn't connect anymore. Don't know if it's digitaloceans fault. But I don't see how they could mess it up.
<srhb> In some ways I would prefer to define or import the required stuff myself.
<srhb> etu[m]: Huh, that sounds very unnice.
<etu[m]> yeah
<{^_^}> [nixpkgs] @ryantm opened pull request #37990 → mate.mate-power-manager: 1.20.0 -> 1.20.1 → https://git.io/vx2or
<etu[m]> So at the moment I have two DO droplets running NixOS which I don't use nixops for. But whenever I get the ropes in Nixops it should be easy to make new machines and migrate them :)
<etu[m]> I'm very happy with getting rid of my last ubuntu-machine :)
<{^_^}> [nixops] @rbvermaa pushed to master « Move version to 1.6.1 »: https://git.io/vx2o9
<srhb> etu[m]: With a low amount of machines, managing them without NixOps isn't too bad at all, for the record.
<srhb> etu[m]: I mean, it's just a fancy wrapper over ssh and nix-copy-closure (or presumably nix copy, soon)
<nick_l> etu[m]: congratulations!
<etu[m]> srhb: Yeah, that's what I've thought as well :)
zzamboni has joined #nixos
<srhb> etu[m]: And it's very no-nonsense. You understand the process much more. I recommend at least trying it :)
<etu[m]> nick_l: Sadly I still have two raspberries that has important tasks, and those are debian based. I tried to set up Kodi on a raspberry and didn't have much of luck... :/
vidbina has joined #nixos
<srhb> What's the important tasks? Just out of curiosity :)
<nick_l> srhb: watering his plants? ;)
<srhb> I've been hearing about people using rpis for serious business, but I can only think about fun things
<etu[m]> srhb: Yeah, I managed to set up a machine with nixops, and get a webserver up and such. But then I changed things in the config, ran it again and then I couldn't connect to it anymore. Don't know what happened :(
<srhb> nick_l: Heh! I missed a get-together on that topic last sunday :P
<nick_l> srhb: you are not allowed to do anything really important with a rpi for legal reasons.
<nick_l> It can still be important relative to a consumer or person, etc.
<hodapp> srhb: I work in the R&D department of a company that buys Raspberry Pis by the dozen to use for prototypes and demos
<srhb> Nice :)
<srhb> nick_l: I find it hard to believe any such clause would be valid here. :P
<etu[m]> srhb: one runs libreelec and plays video and audio and such. the other one is hooked up to a monitor in my hallway to show the weather and when the subway leaves. I can show a picture of this in ~5 hours or so if you're interested :)
<ottidmes> etu[m]: You cannot use nixos-rebuild directly on nixops managed machines, unless you make the nixops generated public key persistent (it gets added by nixops, but overwritten when you rebuild) in you configuration.nix
<hodapp> also contracted at a company which made 3D printers, and they shipped with a Ras Pi inside that had a locked-down OpenWrt on it
<nick_l> I considered to order 10,000 Pis, but then I found you cannot actually buy them.
<nick_l> And that they are much more expensive than the lowest price claimed.
<srhb> hodapp: Huh, why OpenWRT?
<hodapp> srhb: it made certain juggling of the wireless much easier
<etu[m]> ottidmes: I didn't run it directly on the machine. But it was a while ago so I don't remember exactly what I did :/
<hodapp> and it didn't wear out SD cards nearly as fast
<srhb> Ah, makes sense.
<hodapp> because it was oriented around a "touch the boot device once, now put everything in RAM and go away" model
<ottidmes> etu[m]: See `nixops export` if you want to find the keypair that has been generated for each machine
<nick_l> OpenWRT people have a lot of networking/embedded skill.
<nick_l> NixWRT would not replicate that.
Guanin has quit [Remote host closed the connection]
<nick_l> (in the short term)
Guanin has joined #nixos
<lejonet> srhb: /b 27
<hodapp> sneaky
<lejonet> gah... keep forgetting buffers here and there xd
romildo has joined #nixos
<lejonet> srhb: what I was going to poke you about is not my 27th buffer but the "ceph-mgr" assertion thing, I'm thinking about removing it as an assertion but adding it to warnings if ceph-mon gets enabled, as upstream recommends having a ceph-mgr wherever there is a ceph-mon, whatcha think bout that?
<srhb> The end of my buffer list is basically Mordor. No one enters there.
<etu[m]> ottidmes: I will try again some day! :)
<etu[m]> but at least I got all of the setups on nixos to begin with, which will make the transition easier.
<srhb> lejonet: I'm kinda lukewarm on warnings.
<srhb> lejonet: But I agree on the condition.
<{^_^}> [nixpkgs] @Twey opened pull request #37992 → remove godot_headers in favour of a dev output on godot → https://git.io/vx2Ky
<lejonet> srhb: how so? Sure, I guess its more up to the user to know this, but I thought that if I put in a warning in the module, atleast they can't say they didn't know :P
<lejonet> or more correctly, whine at me because they couldn't bother to read the docs... :P
ryanartecona has joined #nixos
<romildo> Can someone merge https://github.com/NixOS/nixpkgs/pull/36320 (gsettings-qt: init at 0.1.20170824), please?
<srhb> lejonet: OK. I agree. :-)
bennofs has quit [Ping timeout: 246 seconds]
andi- has quit [Ping timeout: 276 seconds]
<lejonet> srhb: seeing as its rather easy to miss the warnings, I'm more thinking that adding it as a warning will inform those looking at the module and the perceptive user :P
<srhb> I think warnings are easy to miss in a lot of circumstances, hence my reluctance.
<{^_^}> [nixpkgs] @ryantm opened pull request #37993 → mate.mate-desktop: 1.20.0 -> 1.20.1 → https://git.io/vx26e
<srhb> I prefer failing or allowing entirely... But I see the edge case here.
<srhb> Hopefully it will just be made mandatory upstream and there will be no argument :P
<lejonet> srhb: for >= 12.x it is mandatory :P
<srhb> Not that they are colocated with monitors.
<lejonet> Indeed very true, only mandatory of its existence
<srhb> And I'm actually not sure if anything breaks if they're not there. I don't think so.
<lejonet> the colocation with monitors is still just a ops-related advice that probably is a good thing to do
<srhb> Yes.
<lejonet> clusters get really sad if the ceph-mgr isn't up :(
averell has joined #nixos
<srhb> They do? I thought I'd tried it with no ill consequences.
<lejonet> (>= 12.x clusters that is)
<srhb> Admittedly it's a bit tricky to test every functionality in ceph.
ryanartecona has quit [Ping timeout: 260 seconds]
bennofs has joined #nixos
<lejonet> I got to experience this the hard way, because I initially didn't plan on adding ceph-mgr to the module, because I didn't know it was mandatory, but nothing worked then, regardless of the OSDs and MONs being up and happy
<srhb> Oh, interesting.
<srhb> Perhaps I hadn't switched the knobs entirely to Luminous when I tried upgrading.
<lejonet> once I started a ceph-mgr instance, stuff started happening, objects were being allocated and such
<srhb> I see. Interesting. I think there's too little info on exactly what the manager does.
srdqty1 has quit [Ping timeout: 264 seconds]
<srhb> "By default, the manager daemon requires no additional configuration, beyond ensuring it is running. If there is no mgr daemon running, you will see a health warning to that effect, and some of the other information in the output of ceph status will be missing or stale until a mgr is started."
<srhb> This does not sound like the cluster should _break_
<srhb> Anyway, it's mandatory, so moot point. Just annoying :P
<srhb> I wish they would just get rid of all the python shenanigans.
srdqty1 has joined #nixos
<nick_l> Does anyone run kubernetes on NixOS (I know there is a presentation about it)?
simukis has quit [Quit: simukis]
<srhb> I did until last friday. :)
averell has quit [Quit: .]
averell has joined #nixos
<srhb> nick_l: Why?
orivej has joined #nixos
abrxs has joined #nixos
<gchristensen> I think I've cracked the cross-linking problem of the nixpkgs <-> nixos docs
abcrawf has quit [Remote host closed the connection]
knupfer has joined #nixos
raynold has quit [Quit: Connection closed for inactivity]
blankhart has quit [Ping timeout: 264 seconds]
romildo has quit [Quit: Leaving]
abcrawf has joined #nixos
Myrl-saki has joined #nixos
psychic1 has joined #nixos
freeman42x]NixOS has joined #nixos
* srhb is off
<gchristensen> bye
xcmw has joined #nixos
psychic1 has quit [Client Quit]
<{^_^}> Channel nixos-17.09-small advanced to https://github.com/NixOS/nixpkgs/commit/9282ad68812 (from 6 hours ago, history: https://channels.nix.gsc.io/nixos-17.09-small)
<{^_^}> [nixpkgs] @hedning opened pull request #37994 → Make dbus look for .conf files in share/dbus-1/system.d/ too → https://git.io/vx2X7
taktoa has quit [Read error: Connection reset by peer]
ThatDocsLady_ has quit [Ping timeout: 256 seconds]
andi- has joined #nixos
patrl has joined #nixos
thetet has joined #nixos
abbradar has joined #nixos
<abbradar> I see systemd is broken on aarch64 on staging because it can't build systemd-boot. Are there any ARM machines which use UEFI?
<abbradar> I thought there aren't so we can just disable the build
<gchristensen> cc Dezgeg
<gchristensen> I keep getting the answer to that question, abbradar, and I cannever remember the answer. seems I'm hitting ENOSPC :(
<abbradar> :D
Jackneilll has quit [Quit: Leaving]
<{^_^}> [nixpkgs] @ryantm opened pull request #37995 → mate.libmatekbd: 1.20.0 -> 1.20.1 → https://git.io/vx2ML
<gchristensen> I feel like the packet boxes use UEFI, but I don't know :(
<abbradar> next question: is this applicable to NixOS? :D
<gchristensen> ah
<abbradar> I mean do we support systemd-boot on ARM
<abbradar> If yes that's a problem -- I see no fix in sight upstream and reverting 238 is no fun either
<gchristensen> abbradar: https://github.com/nix-community/aarch64-build-box what does it look like ethis uses?
<abbradar> gchristensen: grep shows no mentions
<gchristensen> well
<abbradar> we don't enable systemd-boot anywhere else by default as far as I can see
<gchristensen> I'd go forward maybe .... but I'd be more comfortable ewith a reply from Dezgeg
<abbradar> yeah, me too
<abbradar> (I mean wait for reply)
pkill9 has joined #nixos
Jackneill has joined #nixos
Jackneill has quit [Remote host closed the connection]
Jackneill has joined #nixos
<abbradar> FWIW it's already disabled for ARM32. I'll push a PR and see if it at least builds with disabled EFI support
<gchristensen> cool
rauno has quit [Ping timeout: 260 seconds]
simukis has joined #nixos
<{^_^}> [nixpkgs] @abbradar opened pull request #37996 → systemd: disable EFI support on AArch64 → https://git.io/vx2D4
abrxs has quit [Ping timeout: 268 seconds]
<{^_^}> [nixpkgs] @ryantm opened pull request #37997 → jbake: 2.5.1 -> 2.6.0 → https://git.io/vx2D0
mahalel_ has quit [Ping timeout: 264 seconds]
newbie|6 has joined #nixos
Myrl-saki has quit [Remote host closed the connection]
Myrl-saki has joined #nixos
mahalel_ has joined #nixos
thetet has quit [Quit: Leaving.]
mmercier has joined #nixos
Rusty1_ has joined #nixos
vaninwagen has quit [Ping timeout: 248 seconds]
<tilpner> I'm struggling to use eval-config.nix's specialArgs properly. I want to pass a path to a module collection, and use that to construct new paths to import, but it always ends up with infinite recursion
<tilpner> Is there any example of proper usage (that's not modulesPath)?
<{^_^}> [rfcs] @shlevy opened pull request #28 → [RFC 0028] Nix Release Model → https://git.io/vx2yo
vidbina has quit [Ping timeout: 264 seconds]
asuryawanshi has quit [Ping timeout: 256 seconds]
vidbina has joined #nixos
nuncanada has joined #nixos
srdqty has joined #nixos
Guanin has quit [Quit: Leaving]
<Dezgeg> abbradar, gchristensen: yes, both ARM and AArch64 support EFI, and on server hardware (e.g. the ThunderX) EFI is typically the only way of booting then
srdqty1 has quit [Ping timeout: 260 seconds]
zzamboni has quit [Quit: Leaving.]
<abbradar> Dezgeg: hm, and that means we use systemd-boot for that?
<Dezgeg> no, we use EFI grub there currently
<Dezgeg> I have never seen systemd-boot work on aarch64, I guess that should be debugged one day: https://nix-cache.s3.amazonaws.com/log/paqp1mwz2vj6rzb35pz5vjmsmy1kk982-vm-test-run-installer-simpleUefiSystemdBoot.drv
<Dezgeg> note the boot-after-install# Synchronous Exception at 0x000000005C19997C
<Dezgeg> is where it crashes
<abbradar> it doesn't even build now
<Dezgeg> what broke it? binutils?
<abbradar> feels they don't debug it on ARM at all
<abbradar> Dezgeg: systemd bump I think
<abbradar> sec
<abbradar> bump*
<Dezgeg> if it's binutils them I'm worried what else got broken by new binutils
vidbina has quit [Ping timeout: 248 seconds]
<Dezgeg> ok, at least the 'nix-build pkgs/stdenv/linux/make-bootstrap-tools.nix -A test' still works on aarch64 (which was broken on binutils 2.29)
zzamboni has joined #nixos
taktoa has joined #nixos
ThatDocsLady has joined #nixos
zzamboni has quit [Ping timeout: 240 seconds]
vidbina has joined #nixos
ma27 has quit [Ping timeout: 246 seconds]
<Dezgeg> I need to take a closer look because at some point there were some reports on LAKML of of new binutils causing silent miscompilation of kernels on ARM
zzamboni has joined #nixos
<Dezgeg> but if it's nothing else but systemd-boot that's broken then it should be fine to disable it
spear2 has joined #nixos
<shlevy> Dezgeg: abbradar: Given there's a mass-rebuild on master, it would be a nice time to merge staging... Are we OK to have aarch64 systemd broken there while we figure this out?
<gchristensen> is systemd itself broken or just systemd-boot?
<gchristensen> we can't break systemd totally on master
<shlevy> systemd itself doesn't build on aarch64
<gchristensen> dang
<shlevy> Yeah, that's what I thought ;P
szicari has joined #nixos
<Dezgeg> uh, if there's some security bug on master definitely don't merge staging
<Dezgeg> or it will most probably be stuck for weeks again :P
<{^_^}> [nixpkgs] @ryantm opened pull request #37998 → haproxy: 1.8.4 -> 1.8.5 → https://git.io/vx2H9
Myrl-saki has quit [Remote host closed the connection]
Myrl-saki has joined #nixos
<shlevy> Dezgeg: Was gchristensen's idea :P
<{^_^}> [nixpkgs] @ttuegel merged pull request #36320 → gsettings-qt: init at 0.1.20170824 → https://git.io/vAHFO
<{^_^}> [nixpkgs] @ttuegel pushed 2 commits to master: https://git.io/vx2Hb
<{^_^}> → 4398a9e9 by @romildo: gsettings-qt: init at 0.1.20170824
<{^_^}> → c7d7abc5 by @ttuegel: Merge pull request #36320 from romildo/new.gsettings-qt
<shlevy> Alright, I'm just going to merge master into staging and try to get https://github.com/NixOS/rfcs/pull/26 through
<{^_^}> Channel nixos-unstable-small advanced to https://github.com/NixOS/nixpkgs/commit/6f7ded7e777 (from 6 hours ago, history: https://channels.nix.gsc.io/nixos-unstable-small)
zzamboni has quit [Ping timeout: 246 seconds]
<abbradar> gchristensen: just systemd-boot
<abbradar> see the PR
<abbradar> it builds if systemd-boot is disabled
<shlevy> OK. I'll pause then :)
<shlevy> gchristensen: let me know what you want to do here.
<gchristensen> whwe can't break aarch64 on master
zzamboni has joined #nixos
<shlevy> gchristensen: We have a PR to get systemd building without systemd-boot
<gchristensen> oh cool
<nahamu> gchristensen: I tagged you on https://github.com/antonym/netboot.xyz/issues/37 in case you have some quick insight.
<shlevy> So on the security end, are we OK delaying the fix potentially?
<gchristensen> I can't look at these things right now, please ping me in like 30 minutes :P
<gchristensen> sorry :)
vidbina has quit [Ping timeout: 240 seconds]
<shlevy> and abbradar Dezgeg on the aarch64 end, are we OK with working systemd but broken systemd-boot on master?
zzamboni has quit [Client Quit]
<shlevy> (temporarily, of course)
<abbradar> that's for Dezgeg to decide but if I understood him right yes
zzamboni has joined #nixos
<nahamu> gchristensen: haha, no worries. I'm assuming github will send you an email.
<abbradar> also I'll push a round of fixes for staging right now
<{^_^}> [nixpkgs] @abbradar pushed 12 commits to staging: https://git.io/vx2QZ
<{^_^}> → 8d0f4709 by @abbradar: kvfb: fix build
<{^_^}> → 7fec6c8c by @abbradar: weston: fix build
<nahamu> saw you active and mistook that as a sign that it's a good time to ping you.
<{^_^}> → 133c5cee by @abbradar: enlightenment.efl: fix build
<Dezgeg> having systemd-boot compiled out on aarch64 is conceptually fine by me given I have never seen it working on aarch64
<shlevy> OK cool
<Dezgeg> but I just want to see there's nothing else broken by the binutils bump
<shlevy> Alright, then we'll wait
<shlevy> And I'll merge master into staging :)
<shlevy> Thanks!
__monty__ has joined #nixos
<abbradar> we should also merge this PR then to unblock other AArch64 stuff
<__monty__> Does anyone have trouble resolving .local domains with nixpkgs.firefox?
<shlevy> Yep, I'll merge it
<Dezgeg> no need to hurry
<Dezgeg> we can have the aarch64-unstable jobset to build it
<shlevy> Hey look, a real case where we want isArm || isAarch64 :)
<Dezgeg> only by coindidence :P
<Dezgeg> (IIRC it used to be broken on ARM for some other reason, don't know if that's the case anymore)
<shlevy> Dezgeg: Well if we're not merging staging now I want to get x86 rebuilding against the openssl bump
<shlevy> So may as well do it all on staging
<{^_^}> [nixpkgs] @shlevy pushed 2 commits to staging: https://git.io/vx2Qw
<{^_^}> → 04028773 by @abbradar: systemd: disable EFI support on AArch64
<{^_^}> → 335934a0 by @shlevy: Merge branch 'systemd-arm' of git://github.com/abbradar/nixpkgs into staging
<{^_^}> [nixpkgs] @shlevy merged pull request #37996 → systemd: disable EFI support on AArch64 → https://git.io/vx2D4
<Dezgeg> well you could have staging build x86 and aarch64-unstable build aarch64 with that patch
zzamboni has quit [Remote host closed the connection]
<Dezgeg> is the an upstream bug for this btw?
zybell_ has quit [Ping timeout: 264 seconds]
<Dezgeg> (for this build issue)
<abbradar> Dezgeg: nope, I want to submit one later
<abbradar> if noone outspeeds me
<Dezgeg> ok, thanks
zzamboni has joined #nixos
<Dezgeg> I have been meaning to create / hunt one for the Synchronous Exception at 0x000000005C19997C issue
<gchristensen> shlevy, Dezgeg, abbradar: do y'all still need input from me?
<Dezgeg> no
<gchristensen> ok, wonderful :)
<{^_^}> [nixpkgs] @shlevy pushed 236 commits to staging: https://git.io/vx27q
<{^_^}> → 0935cbf2 by @tiramiseb: gnomeExtensions.system-monitor: fix this package and upgrade to v33
<{^_^}> → 2d047efe by @tiramiseb: gnomeExtensions.impatience: fix the package and upgrade to version 0.4.5
<{^_^}> → e864675e by @tiramiseb: gnomeExtensions.impatience: Fix the version number
<shlevy> OK, cancelling all staging builds and reevaluating
<infinisil> Whew the bot seems to be limited to 3 commits..
<shlevy> :D
<shlevy> gchristensen: Can we get a security announcement?
<shlevy> Or does that wait for channel?
zzamboni has quit [Remote host closed the connection]
<gchristensen> typically we'd wait for the channel to bump at least one channel. also we need someone to write the announcement
<gchristensen> it was one of the first victims of my load-shedding
freeman42]NixOS has joined #nixos
<shlevy> fpletz: ^? :)
<gchristensen> anyone can write it, then I can send it
simukis has quit [Ping timeout: 264 seconds]
humanoyd has quit [Quit: WeeChat 2.1]
freeman42x]NixOS has quit [Ping timeout: 268 seconds]
xy2_ has joined #nixos
<{^_^}> Channel nixos-17.09-small advanced to https://github.com/NixOS/nixpkgs/commit/2a28e657421 (from 3 hours ago, history: https://channels.nix.gsc.io/nixos-17.09-small)
zybell_ has joined #nixos
MercurialAlchemi has quit [Ping timeout: 276 seconds]
<shlevy> Eh.... https://www.openssl.org/news/secadv/20180327.txt doesn't seem especially urgent
<shlevy> I mean, it's done now
<nick_l> How do I set MaxFileSec?
rauno has joined #nixos
<nick_l> (I want to throw away the logs on this machine automatically such that they never exceed a small size.)
<nick_l> In the entirety of nixpkgs nobody has ever used MaxFileSec.
rauno has quit [Remote host closed the connection]
<srhb> nick_l: services.journald.extraConfig looks relevant.
<infinisil> nick_l: Seems to go in journald.conf, so `services.journald.extraConfig`
<srhb> Jinx.
<infinisil> I actually looked up where that systemd option belongs to
zzamboni has joined #nixos
<infinisil> With my new favorite man page: `man systemd.directives`
<srhb> Holy cow, there's so many arbitrary defaults in journald...
<gchristensen> Profpatsch: you know things about things about systemd right?
<gchristensen> its-a-trap.jpg
rummik has quit [Quit: WeeChat 2.0.1]
<hodapp> I just borked systemd the other day by sending notifications to it too fast
<hodapp> which meant I couldn't stop the problematic systemd service
<hodapp> and couldn't cleanly reboot
<nick_l> infinisil: which package contains that man page?
* nick_l would like to have command not found for man pages.
<srhb> That would indeed be handy.
<srhb> nick_l: It's the man otput of systemd.
<srhb> output*
Myrl-saki has quit [Remote host closed the connection]
<infinisil> nick_l: should be there by default on nixos
<nick_l> srhb: well, I don't have it on my 17.09 nixos-release system.
<infinisil> I wish i knew about this manpage earlier
<nick_l> I wish I had it. I feel poor.
<srhb> nick_l: On my 18.03 pre I have it because activate pulls it in, it appears.
<abbradar> nick_l: it's in systemd.man
<{^_^}> [nixpkgs] @ryantm opened pull request #37999 → fatrace: 0.12 -> 0.13 → https://git.io/vx2bf
erasmas has joined #nixos
<infinisil> srhb: i think that might be the root of almost every dependency in nixos
<srhb> Yes.
<srhb> The interesting part is definitely not the root :)
<nick_l> Having different profiles would be useful. Something like a nixHacker module which would do all kinds of stuff like this.
<srhb> nick_l: Hmm, in what sense?
<nick_l> Similarly having tooling to remove dependencies automatically.
<infinisil> nick_l: no idea what you mean
<srhb> Dependencies are essentially removed automatically.
<srhb> Er, unused.
<srhb> I suppose it depends in which context you're thinking :)
<infinisil> Well if they're unused then they're no dependencies
<nick_l> srhb: well, now I am specifying that I want systemd.man. I'd like curl/vim/emacs/wget/file/python/haskell/... to all be installed when some kitchensink module would be imported.
<srhb> Yes... :P
alexteves_ has joined #nixos
<nick_l> srhb: everyone can write their own kitchensink, but that's not really needed.
<srhb> nick_l: You mean some predefined environment.systemPackages that has everything everyone needs?
<infinisil> nick_l: yeah that's what modules can do, just write your own
<infinisil> nick_l: actually you wrote your own module already, configuration.nix is one
<infinisil> Just write a module that does what you want then import it
<nick_l> srhb: yes, defaults for different use cases (like tasksel in Debian)
<srhb> We have some.
<nick_l> infinisil: yes, that's what I already have done.
<srhb> Not that specific one, I can't imagine what it would include.
<nick_l> srhb: I think it should depend on how much juice the machine has.
<nick_l> srhb: so, do you have TBs of free disk space? Then install a ton of stuff (if there is also a decent internet connection)
<nick_l> srhb: i.e., there would be layers of defaults.
<nick_l> If you are a guy in rural Australia, then you would get less by default.
<srhb> Hmm. I guess I don't find tasksel very useful. :)
<srhb> But nothing's preventing a module like that (or several) from existing. Except it sounds like bikeshedding central. :D
<nick_l> man systemd.directives # no juice
<nick_l> With systemd.man installed.
<infinisil> nick_l: totally possible to write modules like you describe
<nick_l> infinisil: I wasn't discussing possibility. It was more of a "do more people think this is a good idea".
<nick_l> And apparently, already one thinks it is not :)
<srhb> I'm ridiculously conservative though, so someone else might :P
<srhb> Well, in this narrow field at least.
ryantrinkle has joined #nixos
<ryantrinkle> does anyone have a nixos configuration that includes hosting a PXE server with the nixos installer image?
<infinisil> nick_l: well nixos is rather minimalistic by default, you add what you need
<ryantrinkle> i.e.: so that it's very easy to install nixos for anyone on that network
<shlevy> andi-: Hey, saw your message
<srhb> ryantrinkle: I had at one point. It's essentially as simple as a tftp enable with an image that you just refer to from the <nixpkgs/nixos> usual build bit
<srhb> But I think I left it on my work laptop, so it's gone to the aether.
<ryantrinkle> srhb: there's no configuration of dnsmasq or other dhcp server necessary?
mmercier has quit [Ping timeout: 256 seconds]
<ryantrinkle> :)
<srhb> There is, yes
<shlevy> andi-: IMO if we're skipping staging for a MR it's probably worth a security announcement... I agree it's a shame we haven't kept up with it but I'm not sure if that means we shouldn't do it now when we're thinking of it.
<srhb> ryantrinkle: Hang on, I was actually inspired by an upstream source, I think I can find it again
<ryantrinkle> srhb: awesome, thanks :)
<shlevy> Would definitely be in favor of aconcrete automation implementation for that :)
<gchristensen> too soft / squishy to automate I think
<gchristensen> some of it, yes, you can
<srhb> ryantrinkle: I think I started from this: https://github.com/alexandergall/nixos-pxe-installer
winem_ has quit [Ping timeout: 240 seconds]
winem__ has joined #nixos
<ryantrinkle> srhb: awesome, thanks :)
<shlevy> gchristensen: andi-'s idea was basically automating the *content* of the message based on commits
<srhb> There was some other source that was more explicit though...
<shlevy> Wouldn't cover every case but might cover some of them
<gchristensen> the content of the message is too complicated, it is important to document the threat and why's and how's and severity and what-not
Z0L1DK3K has joined #nixos
<gchristensen> but some of it can definitely be templated
<andi-> shlevy, gchristensen: in terms of: Pull the right CVE-numbers, add links to the NVD Database etc.. include the summary from the commits and add dates etc.. so we only have to type the relevant part and remove the "pain"
<gchristensen> NVD database usually doesn't have useful information at the time of sending the email
<{^_^}> [nixpkgs] @ryantm opened pull request #38000 → dovecot: 2.3.0.1 -> 2.3.1 → https://git.io/vx2Av
hariel has quit [Ping timeout: 248 seconds]
vidbina has joined #nixos
<srhb> ryantrinkle: Damn, I have a bit of salvage here... http://nixpaste.lbr.uno/Br9hEYrr?nix -- what's missing is the bootstrap files in each of the servers, but perhaps it gives an idea
<gchristensen> https://nvd.nist.gov/vuln/detail/CVE-2018-0733 happens to have some info, but likely just because openssl is so popular
<srhb> ryantrinkle: (What I did was load a very tiny image via tftpd to bootstrap ipxe booting from lighttpd
<andi-> Yeah I know that.. I've encountered that often
<srhb> ryantrinkle: But yeah, the actual served files are gone :(
<{^_^}> [nixpkgs] @jtojnar opened pull request #38001 → gnome3 update → https://git.io/vx2Al
winem__ has quit [Ping timeout: 240 seconds]
<gchristensen> I'm all for automating what we can
blankhart has joined #nixos
<gchristensen> but a concrete implementation is not likely to pay off as much as shlevy might hope
<andi-> I think it is kind of ironic that we have that discussion on a MR that fixes something on an arch that we do not support (CVE_2018-0733 only)
<srhb> (The ipxe image was the interesting one, it "phoned home" to tell its hardware information to a http server which would then respond with the appropriate configuration.nix to apply)
<andi-> shlevy, gchristensen: Wasn't globin working on a tracking platform for security issues on NixOS? That would be a good start to organize the information gathering / publishing.
<srhb> ryantrinkle: Aha! Here's the original work, by clever of course: https://github.com/cleverca22/nixos-configs/blob/master/netboot_server.nix
<gchristensen> I think so!
<srhb> That's all I can dig out I think :-)
<gchristensen> andi-: re nixos/security-advisories, that is for advisories about Nix and Nixpkgs and NixOS themselves, not packages we maintain
<gchristensen> s/we maintain/we package/
<gchristensen> at least, that was my intention
<shlevy> andi-: Why was it merged straight to master then? :)
<andi-> shlevy: we had the discussion in #nixos-security a while ago... the responses where like "just merge it to master" or "it depends but really not"
<shlevy> Another channel? :o
<gchristensen> it is such hard work keeping up with the security issues, I'd rather not harp too hard on whether or not going straight to master was the right choice.
<gchristensen> the analysis and stress and decision making is awful
<ryantrinkle> srhb: fantastic; thanks so much :)
<srhb> You're welcome :)
<pstn> Does anybody have an idea what dep could be missing from baobab that breaks remote scanning? It's neither glib_networking, nor dconf.
<shlevy> gchristensen: I'm just suggesting that the same considerations should apply to whether to send a notice
<gchristensen> aye
<andi-> I also having a hard time figuring out what state staging might be in today, what is planned there.. if it will land in master within a reasonable timeframe.. maybe other stuff is still being baked-out and finalized there...
<pstn> To check if it's really a dep: Could somebody with a full gnome desktop installed try remote scanning in baobab to verify that it's a missing dependency?
<gchristensen> fwiw the typical process for security patches is always to master
<andi-> shlevy: yes, except for my point about `master`
<andi-> If we start announcing stuff for the master branch we might as well treat it like a proper release.. not sure if that is really done
<shlevy> Hmm, OK
<shlevy> Anyway, I'm not too fussed if we don't want an announcement here
<andi-> i've read the new RFC about the release model and I am in favor of having an always releaseable master as you suggested
<nick_l> nixops ssh-for-each nix-collect-garbage -d -s localstate.nixops # why doesn't this work?
<shlevy> I was personally surprised to see a MR on master, and assumed others might want the info as well. But they'll find out one way or another :D
<andi-> I really like the debian approach with that: They provide the information on a best effort pratice for sid (their "master") and annouce for stable/oldstable/oldoldstable..
<shlevy> andi-: FYI that's just for Nix right now
<nick_l> What is a MR?
<andi-> shlevy: ahh, derp me :(
<andi-> nick_l: merge request
<shlevy> mass rebuild :)
<shlevy> in this context
<shlevy> andi-: There's a staging workflow discussion at https://github.com/NixOS/rfcs/pull/26
blankhart has quit [Ping timeout: 256 seconds]
<andi-> shlevy: I've seen that.. not sure if I am a fan of that.. I wasn't really involved in much staging stuff so far... I think it is good that we are striving for a defined process but not sure how much that will help..
mmercier has joined #nixos
gh0st[m] has joined #nixos
<gchristensen> additionally the security patching workflow and team is possible one of the most stressful things and stressed teams around
<shlevy> andi-: If you have thoughts for how we can do it better would definitely appreciate it! The only thing I'm sure about is the status quo is extremely painful :D
<andi-> shlevy: yep, I do not have much more than that right now.. I have been reading it a few times but haven't come up with anything yet
<andi-> shlevy: As long as we've people pushing (untest & breaking) code just into master I do not really think the merge to staging or master is our most important issue
blankhart has joined #nixos
<shlevy> andi-: We have parallel discussions about branch protection :D
<andi-> gchristensen: agreed... thought the stress that I feel is self-generated.. Not sure if anyone is already being paid for doing that job :-)
<andi-> shlevy: good, i've not really been following things
<shlevy> andi-: But this is slightly different... The problem is not so much that things break or not. The problem is it takes arbitrarily long to get staging stuff merged in, when everyone is behaving well.
<gchristensen> no, I think the constant flow of CVEs and critical issues in the same old software is so extremely demoralizing
<shlevy> I don't think this matters all that much to people who don't care about staging, but those of us who do it's a regular frustration
<gchristensen> to be honest, I was actually quite relieved when LWN shut down their data source, if for nothing other than a break from the horrors
<andi-> yeah.. I have a backlog in my head about stuff that is still "broken" (as in: known sec. issues)... kubernetes patches and a few others are on my notebook at home while I have to work at $dayjob :/
<gchristensen> I've always been a "all software sucks" kind of person, it wasn't like being seasoned and seeing for the first time that software isn't that great. it was much worse than that, and I don't think you can really appreciate that until you've done it
<shlevy> :(
orivej has quit [Ping timeout: 240 seconds]
orivej has joined #nixos
<gchristensen> this is why we need a robust team of people to do it. we _can_ do it! we _are_ doing it
<andi-> and thats why writing the annoucement must not hurt any further than generating a template, filling in the critical details and the having a +1 person review it before sending it out..
<andi-> :-)
<gchristensen> yeah
simukis has joined #nixos
<gchristensen> +1
<shlevy> Can't we get a robust team of people to rewrite the world in safe/verified languages instead? O:)
<andi-> shlevy: sure
<andi-> shlevy: when will we switch to the coreutils writting in rust? ;-)
<{^_^}> [nixpkgs] @dtzWill merged pull request #37672 → git: 2.16.2 -> 2.16.3 → https://git.io/vx8Zs
<{^_^}> [nixpkgs] @dtzWill pushed 2 commits to staging: https://git.io/vx2jW
<{^_^}> → dcaea58e by @dtzWill: git: 2.16.2 -> 2.16.3
<{^_^}> → 3d12d78e by @dtzWill: Merge pull request #37672 from dtzWill/update/git-2.16.3
<andi-> we can start with that ^^
<etu[m]> rycee: You mean the issue I've had setting up the first generation on a system? Sadly I can't try it with your latest master because it "just works" after unstable moved forward :(
<andi-> but safe languages do not protect us against everything.. one of the openssl issues from yesterday was an recursion in an asn.1 parser.. layer8 issue
<{^_^}> [nixpkgs] @ryantm closed pull request #37783 → bluez: 5.48 -> 5.49 → https://git.io/vxRxw
<{^_^}> [nixpkgs] @pbogdan opened pull request #38002 → ppp: fix build with newer kernel headers → https://git.io/vx2jw
<gchristensen> and timing attacks
<shlevy> Just extend your verification model! :P
<shlevy> (to be clear, I'm not actually serious)
<gchristensen> and "oops, did you know `tar` will read from the file defined in $TAPE if you don't explicitly pass `-f`?"
<nick_l> And... the NSA is friends with the manufacturer.
<gchristensen> shlevy: I hear ya :)
<shlevy> nick_l: Luckily that is out of scope of the NixOS support team :D
<nick_l> It is impossible to know a given piece of hardware is secure by mere inspection.
<gchristensen> I know how to make it possible
<nick_l> Only if you build it yourself or have crypto cameras, you can know it is secure.
<{^_^}> [nixpkgs] @ryantm closed pull request #37837 → openimageio: 1.8.8 -> 1.8.9 → https://git.io/vx0Zf
<shlevy> nick_l: I have a complete decision procedure for that actually
<shlevy> nick_l: const Insecure
<gchristensen> step 1. throw it in to a volcano, step 2. live your life free of worry that your hardware isn't pwnd
<gchristensen> "nixos volcano edition"
<andi-> Hrhr
<nick_l> step 1. become billionaire step 2. buy Intel step 3. Upgrade internal protocols.
<shlevy> I do wonder sometimes how many of those "impossibility" theorems have probabilistic analogues though. Like sure, trusting trust proves I can't ever prove a compiler safe, but is there anything I can do to be X% sure it's safe?
<nick_l> Step 0. is to become delusional.
<nick_l> Or perhaps to start a new religion.
<makefu> nick_l: next step will be to burn all technology and live a good life with your harem
<andi-> Just give up in life... It sucks and one day you die anyway
<nick_l> shlevy: no, because there is no such thing as a probability in the real world, unless you are counting quantum mechanics.
<andi-> s/in/on/
<gchristensen> andi-: now you're talking. we should get a beer together.
<makefu> andi-: depends on your religion i guess
<makefu> (the one you started before)
<andi-> I have debugged java issues for the last 8h... I am ready for a beer..
<nick_l> Java issues or application issues? ;)
<gchristensen> not a coffee?
<{^_^}> [nixpkgs] @ryantm opened pull request #38003 → facter: 3.10.0 -> 3.11.0 → https://git.io/vxavO
<nick_l> Do you think the Oracle decision will stand?
<andi-> To be exact: shibboleth (in a version still affected by the patches from last year)
jtojnar_ has joined #nixos
acarrico has quit [Ping timeout: 256 seconds]
ryanartecona has joined #nixos
jtojnar has quit [Ping timeout: 252 seconds]
jtojnar_ is now known as jtojnar
<nick_l> My monitor randomly stops after a couple of hours and then starts again without me doing anything. I have never seen a monitor fail, but is that a common way for one to fail?
knupfer has quit [Remote host closed the connection]
abrxs has joined #nixos
kreisys has joined #nixos
<goibhniu> nick_l: I've seen monitors do that alright
* goibhniu would test with another machine too though
vidbina has quit [Ping timeout: 256 seconds]
<pstn> Does anybody have an idea what dep could be missing from baobab that breaks remote scanning? It's neither glib_networking, nor dconf.
<pstn> To check if it's really a dep: Could somebody with a full gnome desktop installed try remote scanning in baobab to verify that it's a missing dependency?
<pstn> I just tride just enableing gnome3, but it kind of broke my whole system due to networking issues, so I don't want to do that again.
azazel has quit [Ping timeout: 240 seconds]
azazel has joined #nixos
<{^_^}> [nixpkgs] @dtzWill opened pull request #38004 → busybox: 1.28.1 -> 1.28.2 → https://git.io/vxaJq
ajp_ has quit [Quit: No Ping reply in 180 seconds.]
ajp has joined #nixos
wladz has quit [Ping timeout: 264 seconds]
roconnor has joined #nixos
<{^_^}> [nixpkgs] @ryantm opened pull request #38005 → convmv: 2.04 -> 2.05 → https://git.io/vxaUd
ajp has quit [Client Quit]
vidbina has joined #nixos
ajp has joined #nixos
phreedom has quit [Quit: No Ping reply in 180 seconds.]
c_wraith has quit [Quit: Bye]
systmkor_ has quit [Quit: ZNC - http://znc.in]
phreedom has joined #nixos
chris| has quit [Ping timeout: 240 seconds]
<fpletz> shlevy: pong, security announcement for what exactly?
<shlevy> fpletz: openssl issue
<shlevy> Seems the decision is we don't need one for htis one
ajp has quit [Quit: No Ping reply in 180 seconds.]
ielectric has joined #nixos
phreedom has quit [Ping timeout: 268 seconds]
ajp has joined #nixos
systmkor has joined #nixos
<fpletz> shlevy: mhm, yeah, imho the applicable issues aren't that severe… openssl fixes DoS issues in nearly every patch release :)
<nick_l> goibhniu: I also hear the sound of a capacitor loading with sometimes a small bang when it starts.
<fpletz> good thing we don't support pa-risc :>
<nick_l> Can Nixops also delete resources when they are "obsolete"?
phreedom has joined #nixos
vidbina has quit [Ping timeout: 240 seconds]
chris| has joined #nixos
<gchristensen> `-k` nick_l
<{^_^}> [nixpkgs] @ryantm opened pull request #38006 → chirp: 20170714 -> 20180325 → https://git.io/vxaIL
lambdamu has joined #nixos
magnetophon has quit [Remote host closed the connection]
humanoyd has joined #nixos
simukis has quit [Quit: simukis]
aarvar has joined #nixos
<{^_^}> [nixpkgs] @dezgeg pushed 600 commits to unstable-aarch64: https://git.io/vxaIp
<{^_^}> → bbeecc70 by @jluttine: lvmsync: init at 3.3.2
<{^_^}> → 616255ad by @tadfisher: pinentry: add option to enable pinentry-emacs
<{^_^}> → c2b8d14b by @Infinisil: nixos/znapzend: fix when no previous zetup
ajp has quit [Quit: No Ping reply in 180 seconds.]
phreedom has quit [Quit: No Ping reply in 180 seconds.]
<coconnor> morning all. what's new?
ajp has joined #nixos
<coconnor> I'm having a fun time with nix~case~hack haha. Anyone else?
bennofs has quit [Ping timeout: 256 seconds]
<Dezgeg> o/
<coconnor> anyways.. that's going on the background. in the foreground I'm finishing up QGIS 3.0
<coconnor> this requires building a wrapper, as usual
<coconnor> which seems to have a few different styles
<TweyII> coconnor: What is the nix~case~hack?
phreedom has joined #nixos
<coconnor> on case insensitive file systems (EG: HFS+ and friends) files like "KPart" and "kpart" will interfere
<coconnor> so, nix nicely avoids this issue by adding a suffix "nix~case~hack" when required. Potentially breaks the package on case insensitive filesystems. But at least ensures preservation of data
<niksnut> maybe we should just get rid of the case hack
<niksnut> iirc, it was once added to allow nixops to run on macos, but I don't know if anybody actually does that
<coconnor> possibly, I have no real issue with it. Only trying to recover from it being improperly applied
<coconnor> ahhhh
<Dezgeg> doesn't APFS allow creating a case-sensitive filesystem?
<coconnor> Both HFS+ and APFS allow creating case-sensitive filesystems
<LnL> yes
<coconnor> however, the default is case preserving but case insensitive
<coconnor> (to retain compatability with... who knows)
<lambdamu> There is still a use of placeholder left in pkgs/development/libraries/pipewire/default.nix that breaks evaluation for nix < 2
<lambdamu> I don't have time for a PR right now
<{^_^}> [nixpkgs] @Ericson2314 merged pull request #37918 → meta: Simplify platform check logic → https://git.io/vxzAZ
<{^_^}> [nixpkgs] @Ericson2314 pushed 2 commits to master: https://git.io/vxatz
<{^_^}> → f8ed783f by @Ericson2314: meta: Simplify platform check logic
<{^_^}> → d5f35637 by @Ericson2314: Merge pull request #37918 from Ericson2314/check-meta-golf
<Biappi> coconnor: shitty 3rd party software that apple *needs*, like the adobe suite, microsoft office and native instruments software amongs others
<coconnor> Biappi: I shoudl have guessed it would be due to Adobe or microsoft haha
digitus has joined #nixos
vidbina has joined #nixos
c_wraith has joined #nixos
<tmplt> I request some help with GNU Octave. When I save a figure as a pdf the program panics and aborts with "support for gl2ps was unavailable or disabled when Octave was built". Is there some Nix option I should override? Nothing in the default.nix seems to be related to it.
<{^_^}> [nixpkgs] @WilliButz opened pull request #38007 → grafana: 5.0.3 -> 5.0.4 → https://git.io/vxaq8
<coconnor> tmplt: checking...
<lambdamu> tmplt: There are a bunch of options for octave
<lambdamu> tmplt: E.g. ghostscript
<coconnor> tmplt: by default ghostscript looks to be disabled
<coconnor> (does ghostscript contain gl2ps?)
<lambdamu> Was just a guess on my part, but doesn't seem so
vaninwagen has joined #nixos
<tmplt> I'll try enabling it
ielectric is now known as domenkozar
acarrico has joined #nixos
yastero has joined #nixos
kolb has joined #nixos
jrolfs has joined #nixos
Synthetica has quit [Quit: Connection closed for inactivity]
jeaye has quit [Quit: WeeChat 1.9.1]
iMatejC has quit [Remote host closed the connection]
__Sander__ has quit [Quit: Konversation terminated!]
iMatejC has joined #nixos
vidbina has quit [Ping timeout: 264 seconds]
chreekat has joined #nixos
yastero has quit [Ping timeout: 276 seconds]
yastero has joined #nixos
<infinisil> lambdamu: I notified the ones who put the placeholder there to correct it
<kolb> Looking at https://nixos.org/nixos/manual/index.html#sec-kernel-config wat is the correct name for kPackages say at 4.4.31?
<kolb> I get error: undefined variable ‘kPackages_4_4’
jb55 has joined #nixos
<kolb> oh NVM I’m dumb
takeda has quit [Quit: leaving]
asuryawanshi has joined #nixos
ThatDocsLady has quit [Ping timeout: 256 seconds]
jrolfs has quit [Read error: Connection reset by peer]
asuryawanshi has quit [Remote host closed the connection]
reinzelmann has quit [Quit: Leaving]
asuryawanshi has joined #nixos
goibhniu has quit [Ping timeout: 248 seconds]
jb55 has quit [Ping timeout: 265 seconds]
<Profpatsch> gchristensen: Nope, don’t really interact with systemd much.
<Profpatsch> Only with the bugs I find when I (seldomly) write service files.
<Profpatsch> It might be a worthwhile project to use the systemd syntax checker and build an executable that can sanity-check the unity files we generate at system build time.
roberth has quit [Ping timeout: 248 seconds]
mmercier has quit [Ping timeout: 260 seconds]
magnetophon has joined #nixos
<tmplt> I haven't overridden a package's options before. Is adding (octave.override {ghostscript = true;}) to the system package list not correct? Building fails with "build input 1 does not exist".
chreekat has quit [Quit: quitting]
endformationage has joined #nixos
<Neo--> Hey all, a bit of a weird issue. Running nix-env -f "<nixpkgs>" -qaP | grep chromium returns that latest chromium version is 64, however, despite running nixos-rebuild test & switch and nix-env -u chromium (doesn't do anything), my system still uses chromium 57 . I even checked the /nix/store and I have several versions present (including 64, which would explain why nix-env -u is noop), but for some reason an old version is symlinked to /nix/var/nix/profiles/def
<Neo--> ault/bin/chromium. Any ideas why this might be happening?
lambdamu has quit [Remote host closed the connection]
<coconnor> check "which chromium" in command line. See if it returns a .nix-profile path
thetet has joined #nixos
<jtojnar> pstn: what do you mean by remote scanning? ssh?
MinceR has quit [Ping timeout: 265 seconds]
sigmundv has quit [Ping timeout: 256 seconds]
MinceR has joined #nixos
peacememories has joined #nixos
<{^_^}> [nixpkgs] @shlevy pushed to staging « ghc: Use persistent URL for abi-depends determinism patch. »: https://git.io/vxaGi
<{^_^}> [nixpkgs] @shlevy pushed to release-18.03 « ghc: Use persistent URL for abi-depends determinism patch. »: https://git.io/vxaGM
patrl has quit [Quit: WeeChat 1.9.1]
<{^_^}> [nixpkgs] @ryantm opened pull request #38008 → mate.caja: 1.20.0 -> 1.20.1 → https://git.io/vxaZk
jeaye has joined #nixos
newbie|6 has quit [Ping timeout: 260 seconds]
<{^_^}> [nixpkgs] @shlevy pushed to staging « binutils: Add comment about the limited lifetime of gold-symbol-visibility.patch »: https://git.io/vxaZ9
orivej has quit [Ping timeout: 256 seconds]
j0xaf has joined #nixos
j0xaf_ has joined #nixos
freeman42]NixOS has quit [Ping timeout: 256 seconds]
j0xaf has quit [Client Quit]
j0xaf_ has quit [Client Quit]
<{^_^}> [nixpkgs] @ryantm opened pull request #38009 → babeltrace: 1.5.4 -> 1.5.5 → https://git.io/vxanE
nick_l has quit [Ping timeout: 260 seconds]
acarrico has quit [Quit: Leaving.]
jetien1 has quit [Quit: Leaving.]
<{^_^}> [nixpkgs] @lboklin closed pull request #34421 → godot: 2.1.4 -> 3.0 → https://git.io/vNHLI
kmicklas has joined #nixos
thetet has quit [Quit: Leaving.]
periklis has joined #nixos
<coconnor> Neo--: the "default" profile is managed by root. Are you "nix-env -u" as your user or root?
<coconnor> On an aside: I think the "default" profile should be named "root"
<{^_^}> [nixpkgs] @ryantm opened pull request #38010 → busybox: 1.28.1 -> 1.28.2 → https://git.io/vxaCm
me has joined #nixos
me is now known as Guest75414
<Neo--> coconnor, much obliged!
<Neo--> this was the hint I needed :)
<Neo--> I think what happened was that a year back when I started with nixos I might have installed chromium via nix-env -i instead of via configuration.nix which I usually do and that had priority over configuration.nix one - I now nix-env --uninstall (as root) chromium and now the correct version is shown :)
<Neo--> I thought "default" was just current user's one :)
<gchristensen> any nix-on-linux users around brave enough to rm -rf /nix/store for me to try a new nix-on-linux installer? (I'm not read yet, just looking for volunteers :))
<coconnor> haha easy mistake. I really do think it shoudl be renamed to root. It's both the root profile and the profile of root.
<Neo--> yup, agreed.
<{^_^}> Channel nixos-unstable-small advanced to https://github.com/NixOS/nixpkgs/commit/c7d7abc51e5 (from 4 hours ago, history: https://channels.nix.gsc.io/nixos-unstable-small)
<{^_^}> [nixpkgs] @ryantm opened pull request #38011 → bluez: 5.48 -> 5.49 → https://git.io/vxalZ
michas_ has joined #nixos
freeman42x]NixOS has joined #nixos
kerrhau has joined #nixos
kerrhau has quit [Changing host]
kerrhau has joined #nixos
jtojnar_ has joined #nixos
<sphalerite> coconnor: yeah but it applies to all users
jtojnar has quit [Ping timeout: 264 seconds]
jtojnar_ is now known as jtojnar
Guest75414 has quit [Quit: Guest75414]
<coconnor> as the root of a hierarchy would
acarrico has joined #nixos
peacememories has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
Ariakenom has joined #nixos
peacememories has joined #nixos
ryanartecona has quit [Quit: ryanartecona]
<jtojnar> is there something like git-shell? I would love to use git shell branch that would just open a shell with the branch checked out
<jtojnar> I want each shell to be independent, stashing only allows to work on a single branch at a time
jensens has quit [Ping timeout: 256 seconds]
ryanartecona has joined #nixos
zzamboni has quit [Quit: Leaving.]
<Neo--> jtojnar, I'm not sure if I understand you correctly, but there's git worktree which can checkout more than one branch at a time
<telent[m]> > NixWRT would not replicate that.
<telent[m]> Right now, pretty much all the networking/embedded knowledge in nixwrt has been acquired by reading & copying code wholesale from openwrt, so yeah :-)
jtojnar has quit [Quit: jtojnar]
jtojnar has joined #nixos
<{^_^}> [nixpkgs] @ryantm closed pull request #38010 → busybox: 1.28.1 -> 1.28.2 → https://git.io/vxaCm
raynold has joined #nixos
John882 has joined #nixos
Ross has quit [Quit: ZNC - http://znc.in]
<{^_^}> [nixpkgs] @jtojnar pushed to master « treewide: remove placeholder usage »: https://git.io/vxa4p
<infinisil> gchristensen: Just a bind mount should be enough, right?
<gchristensen> to test the installer?
<infinisil> Yeah
<gchristensen> no idea, my installer assumes clean slate
<abcrawf> How would I go about debugging "error: stack overflow (possible infinite recursion)" when using `nix-env -i`?
blankhart has quit [Ping timeout: 248 seconds]
<{^_^}> [nixpkgs] @jtojnar pushed 8 commits to master: https://git.io/vxaBi
<{^_^}> → 30f8c93a by @jtojnar: shotwell: 0.28.0 → 0.28.1
<{^_^}> → 1449a479 by @jtojnar: orca: 3.27.91 → 3.28.0
<{^_^}> → 78190d2e by @jtojnar: evince: add comic support
<infinisil> gchristensen: I can't test it, but I think it should work, bind mounts are pretty opaque to the file API
ryanartecona has quit [Quit: ryanartecona]
<infinisil> abcrawf: 1. add --show-trace and hope you can stop something relevant 2. Bisection between what you had previously that didn't give that error and your current state
<infinisil> s/stop/spot
<jtojnar> infinisil: I think --show-trace is useless for stack overflow
<infinisil> jtojnar: It helped me sometimes actually
<infinisil> Oh wait
<gchristensen> anyone here with a drupal site? (cc: fpletz, globin) some severe security advisories are dropping in 10min.
<infinisil> It's a stack overflow, never mind
<infinisil> Yeah just 2. then
<coconnor> --show-trace has improved WRT infinite recursion
<infinisil> Well it's always an option
<abcrawf> Does the stack overflow imply that the derivation has the stack overflow or something internal to nix-env?
<coconnor> but lazy evaluation makes stack traces a challenge. See GHC's long battle with that haha
<{^_^}> [nixpkgs] @jtojnar merged pull request #38001 → gnome3 update → https://git.io/vx2Al
michas_ has quit [Ping timeout: 246 seconds]
<infinisil> coconnor: Would a strict nix even be possible practically (for nixpkgs?2
<fpletz> gchristensen: thankfully not %)
<globin> gchristensen: uah burn them with fire
<jtojnar> abcrawf: I suspect nix, I am occasionally getting stack overflows on nixpkgs tree that worked a few days before
<coconnor> I don't think so: Hard to define the fixpoint
<gchristensen> infinisil: ofborg effectively runs a strict eval
<abcrawf> jtojnar: Okay, I'm hitting this while attempting to install firefox from the overlay (which has worked countless times before).
<infinisil> coconnor: Hmm right, maybe some explicit builtin lazyness but strict by default, like strict haskell
humanoyd has quit [Quit: WeeChat 2.1]
<infinisil> gchristensen: So it evaluates single packages strictly? Returning this huge attrset of the whole dependency closure?
<gchristensen> ofborg instantiates all of nixpkgs with allowBroken = true, all licenses, all platforms ...
<infinisil> By all of nixpkgs you mean just the nixpkgs/default.nix, right? Because there are some nix files in nixpkgs which won't even parse
blankhart has joined #nixos
<infinisil> I should just check the source
jtojnar has quit [Quit: jtojnar]
davidlt has quit [Ping timeout: 268 seconds]
simukis has joined #nixos
davidlt has joined #nixos
darlan has joined #nixos
darlan has quit [Client Quit]
rauno has joined #nixos
abrxs has quit [Ping timeout: 264 seconds]
ryanartecona has joined #nixos
Ross has joined #nixos
<domenkozar> anyone knows how to build libcurl-nss.so.4
shlevy has quit [Quit: Quit]
rauno has quit [Ping timeout: 240 seconds]
<domenkozar> is that like curl alias built with nss?
<domenkozar> maybe just very old curl
John882 has quit [Ping timeout: 276 seconds]
coot has quit [Quit: coot]
John882 has joined #nixos
peacememories has quit [Quit: Textual IRC Client: www.textualapp.com]
TweyII has quit [Ping timeout: 240 seconds]
Ross has quit [Quit: ZNC - http://znc.in]
Ross has joined #nixos
tilpner has quit [Remote host closed the connection]
vaninwagen has quit [Ping timeout: 264 seconds]
tilpner has joined #nixos
periklis has quit [Ping timeout: 260 seconds]
<rycee> etu: If it works then I'm happy :-) If it ever happens again then you should at least get an error message that provides some information about the error state, which should help finding the root cause.
rauno has joined #nixos
<abbradar> domenkozar: curl.override { gnutlsSupport = true; sslSupport = false; }
<abbradar> ah sorry
<abbradar> nss, not gnutls
knupfer has joined #nixos
<abbradar> domenkozar: it doesn't seem we support building it with nss, only with gnutls or openssl
<{^_^}> [nixpkgs] @bendlas pushed commit from @Ma27 to master « Revert restrictive validation behavior for DM/WM defaults in the X module »: https://git.io/vxazm
<{^_^}> [nixpkgs] @bendlas pushed commit from @Ma27 to release-18.03 « Revert restrictive validation behavior for DM/WM defaults in the X module »: https://git.io/vxazn
<tobiasBora> Hello,
jrolfs_ has quit [Quit: WeeChat 2.0]
<tobiasBora> Any idea why imapnotify is not packaged in nix?
<infinisil> tobiasBora: nixpkgs doesn't automagically have everything packaged, it takes people effort to do so, and apparently nobody took the time to package imapnotify yet
<tobiasBora> infinisil: ok thank you. I just wanted to make sure that it was not for a specific reason.
<tobiasBora> Maybe I could help then ^^
<infinisil> tobiasBora: But you're free to do so yourself and open a PR to add it, or open an issue to ask for it being packaged
thetet has joined #nixos
shlevy has joined #nixos
<{^_^}> [nixpkgs] @bendlas closed pull request #37276 → Revert restrictive validation behavior for DM/WM defaults in the X module → https://git.io/vxOEr
<tobiasBora> infinisil: ok I'll give it a try I think. It is installable using npm, I saw that there is node2nix to deal with that, do you know if it's the cannonical way to proceed?
JosW has quit [Quit: Konversation terminated!]
sigmundv has joined #nixos
<infinisil> (I'm so glad I can link to a readable version of this doc part just like that, you know why? Because it's written in markdown and not xml!)
<{^_^}> [nixpkgs] @dezgeg pushed to staging « perlPackages.YAMLLibYAML: Remove obsolete build fix »: https://git.io/vxag8
<{^_^}> [nixpkgs] @jtojnar pushed commit from @hedning to master « makeDBusConf: Look for .conf files in share/dbus-1/system.d/ too »: https://git.io/vxag4
hotfuzz_ has joined #nixos
hotfuzz has quit [Ping timeout: 256 seconds]
<{^_^}> [nixpkgs] @jtojnar merged pull request #37994 → Make dbus look for .conf files in share/dbus-1/system.d/ too → https://git.io/vx2X7
<elvishjerricco> gchristensen: I can spin up a VM to try your installer. Would that help?
jetien has joined #nixos
<gchristensen> hmm maybe!
<gchristensen> I'll keep you in mind :)
pkill9 has quit [Ping timeout: 240 seconds]
<{^_^}> [nixops] @AmineChikhaoui opened pull request #915 → Fix the deployment of machines with a large number of keys. → https://git.io/vxa26
<{^_^}> [nixpkgs] @rycee pushed commit from @dywedir to master « skypeforlinux: 8.17.0.2 -> 8.18.0.6 »: https://git.io/vxa2S
<infinisil> gchristensen: Maybe you could even set up a vm test in nixpkgs that checks the nix installer :O
magnetophon has quit [Remote host closed the connection]
<{^_^}> [nixpkgs] @rycee closed pull request #37858 → skypeforlinux: 8.17.0.2 -> 8.18.0.6 → https://git.io/vxEer
Ross has quit [Quit: ZNC - http://znc.in]
<gchristensen> tbh that part isn't super interesting
jtojnar has joined #nixos
<gchristensen> I'm wondering about real systems that are configured to do weird stuff by cruft they've accumulated over time
<{^_^}> [nixpkgs] @LnL7 pushed to master « python-celery: fix darwin build »: https://git.io/vxaav
<{^_^}> [nixpkgs] @LnL7 pushed to release-18.03 « python-celery: fix darwin build »: https://git.io/vxaaL
magnetophon has joined #nixos
<infinisil> I see
<ryantm> Is there something in nixpkgs like writeText with an argument for file permissions?
<magnetophon> Is anyone else having weird font problems on the latest NixOS unstable? In emacs the fontis way too big, and in ranger the kerning is way off
<tobiasBora> infinisil: great thank you very much
<infinisil> ryantm: I thought the nix daemon chown and chmods all files anyways after the build, only executable bit is persisted afaik
<elvishjerricco> gchristensen: Got it. Curious why you're making a new installer though?
<gchristensen> so the Nix on Linux installer uses the daemon
knupfer has quit [Remote host closed the connection]
<ryantm> infinisil: ok, thanks.
<infinisil> ryantm: Hah, even worse: suspicious ownership or permission on '/nix/store/0priix4p2w9k8nya2ykvhlbmz007g95y-hello'; rejecting this build output
<ryantm> infinisil: So every file is either 444 or 555?
<infinisil> ryantm: Ah from the nix source: "/* Check that the output is not group or world writable, as that means that someone else can have interfered with the build. Also, the output should be owned by the build user."
<gchristensen> elvishjerricco: ^
<{^_^}> [nix] @matthewbauer opened pull request #2023 → Keep LC_ALL → https://git.io/vxaab
ThatDocsLady has joined #nixos
<ryantm> I want to change the permissions of a file to be 400.
<elvishjerricco> gchristensen: Ah! That would be excellent. I thought making that happen is distro-specific though?
<infinisil> ryantm: So yeah nix would enforce the user to be the build user, so only that user could read it, which is pretty useless
<gchristensen> elvishjerricco: my theory is my installer will support any systemd-based linux
<elvishjerricco> Nice. That's awesome
<{^_^}> [nixpkgs] @LnL7 opened pull request #38013 → disable broken packages on darwin → https://git.io/vxaVq
<infinisil> ryantm: Oh and i just tested it, it makes it readable for everybody anyways
rummik has joined #nixos
<infinisil> ryantm: https://git.io/vxaVn
<sphalerite> is there a canonical place to configure default blanking settings for ttys? I'd like to set a shorter timeout on my laptop which I'm using as a server
<{^_^}> [nixpkgs] @bjornfor pushed commit from @ryantm to master « babeltrace: 1.5.4 -> 1.5.5 »: https://git.io/vxaVB
ThatDocsLady has quit [Ping timeout: 255 seconds]
<{^_^}> [nixpkgs] @bjornfor closed pull request #38009 → babeltrace: 1.5.4 -> 1.5.5 → https://git.io/vxanE
abrxs has joined #nixos
knupfer has joined #nixos
periklis has joined #nixos
<infinisil> And I can't find any reference to consoleblank in nixpkgs
rauno has quit [Ping timeout: 246 seconds]
thetet has quit [Quit: Leaving.]
<sphalerite> infinisil: alright I'll just add it to the kernel params myself then. Thanks!
sigmundv has quit [Ping timeout: 264 seconds]
ruhatch has joined #nixos
<ruhatch> Hey all - I have been having a problem recently where my wireless connection doesn't work after resuming from hibernation
<ruhatch> wpa_supplicant appears to be connected to the network but I cannot connect to anything
periklis has quit [Ping timeout: 255 seconds]
<ruhatch> pinging my router gives connect: Error network unreachable
abbradar has quit [Remote host closed the connection]
<ryantm> infinisil: root would still be able to read it too
<infinisil> ruhatch: restarting wpa_supplicant makes it work again?
MichaelRaskin has joined #nixos
<tobiasBora> infinisil: node2nix is not in the nix repo?
acarrico has quit [Ping timeout: 246 seconds]
<tobiasBora> oh my bad
<tobiasBora> nix-env -f '<nixpkgs>' -iA nodePackages.node2nix
roberth has joined #nixos
<magnetophon> The font I use is not found, even though it is in my system config. Shouldn't that lead to a failed nixos-rebuild?
<ruhatch> infinisil: Sometimes, but not usually
rauno has joined #nixos
<ruhatch> This has been happen for a month, maybe two, and I'm using nixos-unstable
sigmundv has joined #nixos
<ruhatch> I see this error a fair bit, although sometimes while it is working, so I'm not sure it's relevant: brcmfmac: brcmf_inetaddr_changed: fail to get arp ip table err:-23
alex`` has quit [Quit: WeeChat 2.1]
<foldingcookie> hi, does anyone have an example config using dnsmasq as a caching resolver only? I tried `services.dnsmasq.enable = true; services.dnsmasq.extraConfig = ""; services.dnsmasq.resolveLocalQueries = true;` but it merely broke DNS entirely (after a reboot and such)
dbe has quit [Ping timeout: 240 seconds]
jetien has quit [Quit: Leaving.]
John882 has quit [Quit: John882]
John882 has joined #nixos
<infinisil> foldingcookie: If you just have services.dnsmasq.enable = true; try a `dig @127.0.0.1 google.com` to see if it works at all
John882 has quit [Client Quit]
John882 has joined #nixos
<infinisil> magnetophon: NixOS doesn't check whether the fonts you use are there, since that's pretty stateful in user applications configs
<{^_^}> [nixpkgs] @dezgeg pushed 3 commits to unstable-aarch64: https://git.io/vxa6T
<{^_^}> → f8d38c31 by @shlevy: binutils: Add comment about the limited lifetime of gold-symbol-visibility.patch
<{^_^}> → fbe8deb2 by @shlevy: ghc: Use persistent URL for abi-depends determinism patch.
<{^_^}> → f2d6702e by @dezgeg: perlPackages.YAMLLibYAML: Remove obsolete build fix
<Ralith> fontconfig is badly broken for me in 18.03
<foldingcookie> infinisil: I'll try that when I get a chance, thank you
John882 has quit [Client Quit]
jetien has joined #nixos
<infinisil> Ralith: magnetophon: Maybe https://github.com/NixOS/nixpkgs/pull/36371
John882 has joined #nixos
<magnetophon> infinisil: Not sure if we are talking about the same thing. Emacs gives an error that it doesn't find the font, and termite also doesn't seem to find it. So I assume it's not installed (correctly). Since I installit inmy system config, I would expect the "nixos-rebuild" to fail.
<foldingcookie> how do releases of nixOS work? I see mentions of 18.03 and 17.09, but what exactly is being versioned in six-month increments? is there an impending ubuntu-style apocalyptic "upgrade your whole system" event?
<foldingcookie> I would imagine not but don't really get how things do work yet ;)
<infinisil> magnetophon: You used the fonts.fonts option? And I don't see a reason why nixos rebuild would fail because of that
<{^_^}> [nixpkgs] @leenaars opened pull request #38014 → getdns: 1.3.0 -> 1.4.1 → https://git.io/vxa6b
<Ralith> infinisil: I dunno why a routine update would be responsible
robstr has quit [Quit: WeeChat 1.9.1]
John882 has quit [Client Quit]
<Ralith> fc-cache no longer seems to index pcf fonts at all
<infinisil> Was just a wild guess ¯\_(ツ)_/¯
<magnetophon> infinisil: yes, fonts.fonts. Why would that not cause the build to fail? I mean if a systempkg doesn't install properly, that *does* cause a build to fail. Why wouldn't this?
<magnetophon> Ralith: it's a pcf font, so that seems related
<infinisil> magnetophon: What do you mean by not properly? Packages just get added to the result, it doesn't matter if they contain the wrong file, they contain whatever files they have, nothing checks that font packages have exactly the files they had previously
<Ralith> glad it's not just me
<Ralith> on 18.03, fc-cache -v includes `/nix/store/20170zpm44n74js79wq9vy2gwz0lk7sz-terminus-font-4.46/share/fonts/terminus: skipping, existing cache is valid: 0 fonts, 0 dirs`
John882 has joined #nixos
<Ralith> on 17.09, it's instead `/nix/store/hwsd0r3rm620xf12zw1dsisa4n8kh3xa-terminus-font-4.46/share/fonts/terminus: skipping, existing cache is valid: 18 fonts, 0 dirs`
<magnetophon> infinisil: OK, I see. Any ideas on how to troubleshoot this? Maybe related: the upstream urlis down/
ryanartecona has quit [Quit: ryanartecona]
<infinisil> I should try to finish my url verifier which would prevent stuff like this, or at least detect it
<magnetophon> Ralith: on unstable: /nix/store/1n4bmj1x1j1lcldj2nlnm97hb09lqcc4-dina-font-2.92: skipping, existing cache is valid: 0 fonts, 1 dirs
<Ralith> the font is still there, fontconfig is just ignoring it for god knows what reason
<Ralith> magnetophon: that's normal, you want to look at the share/fonts/whatever subdir
jetien has quit [Quit: Leaving.]
<magnetophon> Ralith: /nix/store/1n4bmj1x1j1lcldj2nlnm97hb09lqcc4-dina-font-2.92/share/fonts: skipping, existing cache is valid: 0 fonts, 0 dirs
strobelight has joined #nixos
<magnetophon> I can write a bug report, but I'mnot sure what to write,other than "it's broken"...
<Ralith> there's no /whatever?
jensens has joined #nixos
<Ralith> what does `find /nix/store/1n4bmj1x1j1lcldj2nlnm97hb09lqcc4-dina-font-2.92/` output?
<magnetophon> Ralith: there's a bunch of files in share/fonts like Dina_r700-8.bdf
<{^_^}> [nixpkgs] @fpletz merged pull request #38000 → dovecot: 2.3.0.1 -> 2.3.1 → https://git.io/vx2Av
<{^_^}> [nixpkgs] @fpletz pushed 4 commits to master: https://git.io/vxaPB
<{^_^}> → a668ca4a by @ryantm: dovecot: 2.3.0.1 -> 2.3.1
<{^_^}> → 96d4f13f by @fpletz: dovecot_pigeonhole: 0.5.0.1 -> 0.5.1
<{^_^}> → 6a15c8d6 by @fpletz: nixos/dovecot: set group in config
<magnetophon> Ralith: I can pastebin them if you want
<Ralith> that's kind of weird but probably should work
<Ralith> wouldn't hurt
<magnetophon> Ralith: https://pastebin.com/9rx75E0i
<Ralith> I thought you said this was a pcf font?
<magnetophon> Ralith: https://pastebin.com/vy7Puh3B
John882_ has joined #nixos
<magnetophon> Ralith: in my config it's called dina-pcf
John882 has quit [Ping timeout: 256 seconds]
jetien has joined #nixos
<Ralith> seems like a similar issue, anyway
<{^_^}> [nixpkgs] @rycee pushed 2 commits to release-18.03: https://git.io/vxaXe
<{^_^}> → 8f354913 by @svsdep: skypeforlinux: 8.16.0.4 -> 8.17.0.2
<{^_^}> → 1784c772 by @dywedir: skypeforlinux: 8.17.0.2 -> 8.18.0.6
<Ralith> in my case xlsfonts does find the font, too
<magnetophon> Ralith: it seems like you know a bit more about this stuff than me. could you create an issue for it, or tell me what to put in it?"
<Ralith> I'd go ask the freetype people wtf rather than making a NixOS issue, for starters
<Ralith> er, fontconfig people, not freetype people
<magnetophon> Ralith: "xlsfonts | grep dina" outputs nothing for me
<{^_^}> [nixpkgs] @rycee pushed commit from @dywedir to release-17.09 « skypeforlinux: 8.17.0.2 -> 8.18.0.6 »: https://git.io/vxaXP
<{^_^}> [nixpkgs] @pbogdan opened pull request #38015 → linuxPackages.v4l2loopback: 0.9.1 -> 0.11.0 → https://git.io/vxaX1
<Ralith> shrug
<magnetophon> Ralith: idk what fontconfig is, or what to tell them, sorry
simukis has quit [Quit: simukis]
simukis has joined #nixos
dingotux has joined #nixos
<neonfuz> so I was complaining in here earlier that changing a single option in my kernel caused me to need to build my entire kernel, and someone here suggested building an "out of tree" module, and I was wondering exactly how I would do that
<neonfuz> the source for the module itself is in the linux (kernel) source, I just need to build this one module, and have it override the one from my kernel package if possible
simukis has quit [Client Quit]
simukis has joined #nixos
acarrico has joined #nixos
zybell_ has quit [Ping timeout: 240 seconds]
kolb has left #nixos [#nixos]
ilyaigpetrov has quit [Quit: Connection closed for inactivity]
freeman42x]NixOS has quit [Ping timeout: 256 seconds]
zybell_ has joined #nixos
<MichaelRaskin> neonfuz: that might have been me
<neonfuz> I think it was
<neonfuz> so actually I guess I need to modify an option on an "in tree" module
coot has joined #nixos
coot has quit [Remote host closed the connection]
<MichaelRaskin> I would look at the module source directory for that specific module, at acpi_call source and expression and see if you can make the former look like the latter
coot has joined #nixos
lostman has joined #nixos
LysergicDreams has quit [Quit: leaving]
<{^_^}> [nixpkgs] @pbogdan opened pull request #38016 → linuxPackages.phc-intel: 0.4.0-rev24 -> 0.4.0-rev25 → https://git.io/vxaMN
<lostman> I'm trying to use binary cache over ssh and I'm getting `warning: unknown setting 'ssh-substituter-hosts'`. it is in the latest version of the docs though
<lostman> did something change?
Neo-- has quit [Ping timeout: 256 seconds]
chisui has joined #nixos
ma27 has joined #nixos
<MichaelRaskin> I guess Nix 2.0 release…
goibhniu has joined #nixos
<lostman> yeah, I'm running 2.0. are there new docs somewhere?
<lostman> I've been looking at nixos.org/nix/manual
davidlt_ has joined #nixos
davidlt has quit [Ping timeout: 260 seconds]
orivej has joined #nixos
davidlt_ is now known as davidlt
<MichaelRaskin> Hm, interesting question. The manual seems to be the latest version, maybe this part got stale
<lostman> it seems that extra-binary-caches ssh://user@machine works
<lostman> that is, it *might* work if I get the machine configured correctly :) it says it can't find nix-store command
jetien has quit [Quit: Leaving.]
<{^_^}> [nixpkgs] @NeQuissimus pushed 5 commits to master: https://git.io/vxaSC
<{^_^}> → 50e8d2ad by @NeQuissimus: linux: 4.4.124 -> 4.4.125
<{^_^}> → 97c840ee by @NeQuissimus: linux: 4.9.90 -> 4.9.91
acarrico has quit [Ping timeout: 240 seconds]
<{^_^}> → 6baf64f8 by @NeQuissimus: linux: 4.14.30 -> 4.14.31
<{^_^}> [nixpkgs] @NeQuissimus pushed to release-18.03 « linux: 4.4.124 -> 4.4.125 »: https://git.io/vxaSl
<MichaelRaskin> Maybe is't the question of profile vs rc
<{^_^}> [nixpkgs] @NeQuissimus pushed to release-18.03 « linux: 4.9.90 -> 4.9.91 »: https://git.io/vxaSR
<{^_^}> [nixpkgs] @NeQuissimus pushed to release-18.03 « linux: 4.14.30 -> 4.14.31 »: https://git.io/vxaSz
<{^_^}> [nixpkgs] @NeQuissimus pushed to release-18.03 « linux: 4.15.13 -> 4.15.14 »: https://git.io/vxaS2
<{^_^}> [nixpkgs] @NeQuissimus pushed to release-18.03 « linux-copperhead: 4.15.13.a -> 4.15.14.a »: https://git.io/vxaSo
<lostman> @MichaelRaskin any idea which ssh file is sourced when command is executed directly?
freeman42x]NixOS has joined #nixos
<MichaelRaskin> User shell is bash? I would make sure .bashrc is enough to find Nix in $PATH
Lears has joined #nixos
hiroshi has quit [Ping timeout: 264 seconds]
hiroshi has joined #nixos
hamishmack has quit [Quit: hamishmack]
sigmundv has quit [Ping timeout: 260 seconds]
<Ralith> magnetophon: opened https://github.com/NixOS/nixpkgs/issues/38017 , please post there about your similar issue
Jackneill has quit [Read error: Connection reset by peer]
Jackneill has joined #nixos
<jtojnar> is it possible to rename file in a patch?
xy3_ has joined #nixos
<gchristensen> the patch would contain two parts, one all -'s on the original file and the other all +s on the target file, I think
<Dezgeg> the git extensions to the patch format do allow renames without including the entire contents in the patch
abrxs has quit [Ping timeout: 240 seconds]
cybrian has quit [Ping timeout: 248 seconds]
xy2_ has quit [Ping timeout: 276 seconds]
acarrico has joined #nixos
<jtojnar> right, the patch produced by git diff --no-renames works
<Dezgeg> huh, gnu patch still doesn't support them?
<Dezgeg> that's... annoying
<{^_^}> [nixpkgs] @rycee opened pull request #38018 → radeontop: 2016-10-28 -> 2018-03-25 → https://git.io/vxaH3
<jtojnar> the patch without --no-renames contains
<jtojnar> --- a/data/org.gsmartcontrol.policy
<jtojnar> +++ b/data/org.gsmartcontrol.policy.in
Ariakenom has quit [Quit: Leaving]
<Dezgeg> hm?
<Dezgeg> my git generates: diff --git a/default.nix b/default2.nix | similarity index 100% | rename from default.nix | rename to default2.nix
<jtojnar> info patch: "if any files have been renamed between the two versions, make a list of 'rm' and 'mv' commands for the user to execute in the old version directory before applying the patch."
jrolfs has joined #nixos
<jtojnar> there is a whole shortcomings section in the info pages about it: 18.1.2 Handling Changes to the Directory Structure
<{^_^}> [nixpkgs] @obadz merged pull request #37949 → zerotier module: add option to join network and open port → https://git.io/vxgSu
<{^_^}> [nixpkgs] @obadz pushed to master « zerotier module: add option to join networks and open port »: https://git.io/vxaHx
simukis has quit [Ping timeout: 245 seconds]
xy3_ is now known as xy2_
<jtojnar> apparently, diff-cleaner was at fault
<magnetophon> infinisil, Ralith: I had dina-font installed, and not dina-font-pcf. Now both emacs and termite can find it... sorry for the noise...
<Ralith> maybe I'll switch to dina if it's just terminus that's broke
<magnetophon> Ralith: seems to do the trick. Not sure for how long though, since the upstream url is down..
ottidmes has quit [Quit: WeeChat 1.9.1]
<Ralith> :/
blankhart has quit [Ping timeout: 260 seconds]
szicari has quit [Quit: szicari]
<{^_^}> [nixpkgs] @rycee pushed to master « radeontop: 2016-10-28 -> 2018-03-25 »: https://git.io/vxa7k
<{^_^}> [nixpkgs] @rycee closed pull request #38018 → radeontop: 2016-10-28 -> 2018-03-25 → https://git.io/vxaH3
asuryawanshi has quit [Ping timeout: 248 seconds]
hamishmack has joined #nixos
jb55 has joined #nixos
orivej has quit [Ping timeout: 264 seconds]
__monty__ has quit [Quit: leaving]
ryanartecona has joined #nixos
<Orbstheorem[m]> How can I install gcc with manpages using nix-env?
<Orbstheorem[m]> last time I manually installed the /nix/store/....-gcc-man-../ path. but I just ran `nix-env -u` and it got replaced by gcc :(
<elvishjerricco> Hm. Looks like nixops is moving ahead with a new release. Is it really suitable for release with so many of the options not documented in the manual?
<{^_^}> [nixpkgs] @jtojnar pushed to master « gsmartcontrol: 0.8.7 → 1.1.3 »: https://git.io/vxadU
<elvishjerricco> Especially with this issue still open... https://github.com/NixOS/nixops/issues/908
hiratara has quit [Ping timeout: 240 seconds]
jb55 has quit [Ping timeout: 264 seconds]
hiratara has joined #nixos
tertle||eltret has joined #nixos
<Orbstheorem[m]> :(
John882_ has quit [Quit: John882_]
<pbogdan> sorry to nag again, could I get some feedback on https://github.com/NixOS/nixpkgs/pull/35881 ? (at least in terms of whether it's something worth having in the first place)
<{^_^}> [nixpkgs] @ryantm opened pull request #38019 → nixos/monit: reload monit if config changes → https://git.io/vxaFm
civodul has quit [Quit: ERC (IRC client for Emacs 25.3.1)]
<ryantm> infinisil: ^ theres my workaround for my problem with permissions in the nix store, seems kind of hacky though.
jtojnar_ has joined #nixos
jtojnar has quit [Quit: jtojnar]
jtojnar_ has quit [Remote host closed the connection]
xy2_ has quit [Ping timeout: 260 seconds]
<Dezgeg> sounds like you want restartTriggers = [ config.environment.etc."monitrc".source ]; or something
jtojnar has joined #nixos
acarrico has quit [Ping timeout: 268 seconds]
ryantrinkle has quit [Ping timeout: 252 seconds]
shabius has quit [Remote host closed the connection]
jtojnar has quit [Ping timeout: 260 seconds]
<ryantm> Dezgeg: Looks good! It would be nice if there was also reloadTriggers, but that seems good enough and better than what I did for sure.
shabius has joined #nixos
goibhniu has quit [Ping timeout: 246 seconds]
<{^_^}> [nixpkgs] @ryantm closed pull request #38019 → nixos/monit: reload monit if config changes → https://git.io/vxaFm
blankhart has joined #nixos
<{^_^}> [nixpkgs] @7c6f434c merged pull request #37680 → compactor: init at 0.11.0 → https://git.io/vx8Ba
<{^_^}> [nixpkgs] @7c6f434c pushed 4 commits to master: https://git.io/vxabx
<{^_^}> → 88e83b07 by Felipe Espinoza: cddl: init at 0.8.5
<{^_^}> → 5bebf6be by Felipe Espinoza: cbor-diag: init at 0.5.2
<{^_^}> → f784c6be by Felipe Espinoza: compactor: init at 0.11.0
Sonarpulse has quit [Ping timeout: 276 seconds]
<Orbstheorem[m]> thanks
Bosna has joined #nixos
blankhart has quit [Ping timeout: 268 seconds]
jtojnar has joined #nixos
xcmw has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
<{^_^}> [nixpkgs] @ryantm opened pull request #38020 → nixos/monit: restart if config changes → https://git.io/vxaNy
<ryantm> Dezgeg: ^ thanks that worked :)
jtojnar has quit [Ping timeout: 264 seconds]
hiratara has quit [Quit: ZNC - http://znc.in]
hiratara has joined #nixos
chisui has quit [Ping timeout: 260 seconds]
<obadz> !m ryantm
<[0__0]> You're doing good work, ryantm!
<{^_^}> [nixpkgs] @obadz merged pull request #38015 → linuxPackages.v4l2loopback: 0.9.1 -> 0.11.0 → https://git.io/vxaX1
<{^_^}> [nixpkgs] @obadz pushed commit from @pbogdan to master « linuxPackages.v4l2loopback: 0.9.1 -> 0.11.0 »: https://git.io/vxaAh
<{^_^}> [nixpkgs] @WilliButz opened pull request #38021 → krakenx: init at 0.0.1 → https://git.io/vxaxv
<{^_^}> [nixpkgs] @obadz merged pull request #38016 → linuxPackages.phc-intel: 0.4.0-rev24 -> 0.4.0-rev25 → https://git.io/vxaMN
<{^_^}> [nixpkgs] @obadz pushed commit from @pbogdan to master « linuxPackages.phc-intel: 0.4.0-rev24 -> 0.4.0-rev25 »: https://git.io/vxaxI
<{^_^}> [nixpkgs] @obadz merged pull request #38014 → getdns: 1.3.0 -> 1.4.1 → https://git.io/vxa6b
<{^_^}> [nixpkgs] @obadz pushed commit from @leenaars to master « getdns: 1.3.0 -> 1.4.1 »: https://git.io/vxaxs
<{^_^}> [nixpkgs] @obadz merged pull request #38011 → bluez: 5.48 -> 5.49 → https://git.io/vxalZ
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to staging « bluez: 5.48 -> 5.49 »: https://git.io/vxaxc
<{^_^}> [nixpkgs] @obadz merged pull request #38007 → grafana: 5.0.3 -> 5.0.4 → https://git.io/vxaq8
<{^_^}> [nixpkgs] @obadz pushed commit from @WilliButz to master « grafana: 5.0.3 -> 5.0.4 »: https://git.io/vxaxB
cybrian has joined #nixos
<{^_^}> [nixpkgs] @obadz merged pull request #38008 → mate.caja: 1.20.0 -> 1.20.1 → https://git.io/vxaZk
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.caja: 1.20.0 -> 1.20.1 »: https://git.io/vxaxz
<{^_^}> [nixpkgs] @obadz merged pull request #38005 → convmv: 2.04 -> 2.05 → https://git.io/vxaUd
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « convmv: 2.04 -> 2.05 »: https://git.io/vxax6
<{^_^}> [nixpkgs] @obadz merged pull request #38004 → busybox: 1.28.1 -> 1.28.2 → https://git.io/vxaJq
<{^_^}> [nixpkgs] @obadz pushed commit from @dtzWill to staging « busybox: 1.28.1 -> 1.28.2 »: https://git.io/vxaxD
<{^_^}> [nixops] @Chakerbh closed pull request #877 → Add a check function for the EBS resource. → https://git.io/vArmR
blankhart has joined #nixos
<tobiasBora> For npm, should I target npm 6 or npm 8 ?
<{^_^}> [nixpkgs] @obadz merged pull request #38003 → facter: 3.10.0 -> 3.11.0 → https://git.io/vxavO
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « facter: 3.10.0 -> 3.11.0 »: https://git.io/vxaxd
michas_ has joined #nixos
ryanartecona has quit [Quit: ryanartecona]
leo60228 has joined #nixos
<leo60228> Is it possible to install a 32-bit libgtk-x11-2.0.so.0?
<leo60228> (on x64)
<{^_^}> Channel nixos-17.09-small advanced to https://github.com/NixOS/nixpkgs/commit/681926fa83d (from 3 hours ago, history: https://channels.nix.gsc.io/nixos-17.09-small)
<{^_^}> [nixpkgs] @obadz pushed commit from @pbogdan to staging « ppp: fix build with newer kernel headers »: https://git.io/vxapJ
<{^_^}> [nixpkgs] @obadz merged pull request #38002 → ppp: fix build with newer kernel headers → https://git.io/vx2jw
<leo60228> trying to use a 32-bit statically linked application with a component that uses swt
<{^_^}> [nixpkgs] @obadz merged pull request #37999 → fatrace: 0.12 -> 0.13 → https://git.io/vx2bf
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « fatrace: 0.12 -> 0.13 »: https://git.io/vxapT
<leo60228> that's complaining about libgtk-x11-2.0.so.0 being the wrong architecture
<leo60228> well, not specifically, but someone on askubuntu said this error was fixed by installing 32-bit libgtk-x11
<leo60228> which i can't figure out how to do on nixos
endformationage has quit [Ping timeout: 264 seconds]
<{^_^}> [nixpkgs] @obadz merged pull request #37997 → jbake: 2.5.1 -> 2.6.0 → https://git.io/vx2D0
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « jbake: 2.5.1 -> 2.6.0 »: https://git.io/vxapc
<{^_^}> [nixpkgs] @obadz merged pull request #37995 → mate.libmatekbd: 1.20.0 -> 1.20.1 → https://git.io/vx2ML
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.libmatekbd: 1.20.0 -> 1.20.1 »: https://git.io/vxapB
<{^_^}> [nixpkgs] @obadz merged pull request #37993 → mate.mate-desktop: 1.20.0 -> 1.20.1 → https://git.io/vx26e
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.mate-desktop: 1.20.0 -> 1.20.1 »: https://git.io/vxapu
<{^_^}> [nixpkgs] @obadz merged pull request #37987 → mate.mate-applets: 1.20.0 -> 1.20.1 → https://git.io/vx2VK
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.mate-applets: 1.20.0 -> 1.20.1 »: https://git.io/vxap2
<{^_^}> [nixops] @Chakerbh opened pull request #916 → Add a check function for EBS resource. → https://git.io/vxapa
<{^_^}> [nixpkgs] @obadz merged pull request #37984 → mate.marco: 1.20.0 -> 1.20.1 → https://git.io/vx2gk
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.marco: 1.20.0 -> 1.20.1 »: https://git.io/vxapw
endformationage has joined #nixos
<{^_^}> [nixpkgs] @obadz merged pull request #37983 → mate.mate-calc: 1.20.0 -> 1.20.1 → https://git.io/vx2uY
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.mate-calc: 1.20.0 -> 1.20.1 »: https://git.io/vxap6
Ross has joined #nixos
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.mate-panel: 1.20.0 -> 1.20.1 »: https://git.io/vxap1
<{^_^}> [nixpkgs] @obadz merged pull request #37982 → mate.mate-panel: 1.20.0 -> 1.20.1 → https://git.io/vx20t
<{^_^}> [nixpkgs] @obadz merged pull request #37990 → mate.mate-power-manager: 1.20.0 -> 1.20.1 → https://git.io/vx2or
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.mate-power-manager: 1.20.0 -> 1.20.1 »: https://git.io/vxapQ
<{^_^}> [nixpkgs] @obadz merged pull request #37989 → mate.mate-settings-daemon: 1.20.0 -> 1.20.1 → https://git.io/vx2ro
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.mate-settings-daemon: 1.20.0 -> 1.20.1 »: https://git.io/vxapN
<{^_^}> [nixpkgs] @obadz merged pull request #37980 → mate.mate-control-center: 1.20.0 -> 1.20.2 → https://git.io/vx2BY
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.mate-control-center: 1.20.0 -> 1.20.2 »: https://git.io/vxahv
<{^_^}> [nixpkgs] @obadz merged pull request #37975 → mate.pluma: 1.20.0 -> 1.20.1 → https://git.io/vx2G4
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « mate.pluma: 1.20.0 -> 1.20.1 »: https://git.io/vxahk
michas_ has quit [Ping timeout: 264 seconds]
jtojnar has joined #nixos
xeji has joined #nixos
<{^_^}> [nixpkgs] @obadz merged pull request #37977 → peek: 1.2.2 -> 1.3.0 → https://git.io/vx2Zz
<{^_^}> [nixpkgs] @obadz pushed commit from @ryantm to master « peek: 1.2.2 -> 1.3.0 »: https://git.io/vxahn
shabius has quit [Ping timeout: 246 seconds]
<ryantm> !m obadz
<[0__0]> You're doing good work, obadz!
<obadz> ☺
davidlt_ has joined #nixos
thc202 has quit [Ping timeout: 248 seconds]
jtojnar has quit [Ping timeout: 256 seconds]
jtojnar_ has joined #nixos
jtojnar_ has quit [Remote host closed the connection]
davidlt has quit [Ping timeout: 246 seconds]
jensens has quit [Ping timeout: 256 seconds]
jtojnar has joined #nixos
hamishmack has quit [Quit: hamishmack]
knupfer has quit [Ping timeout: 240 seconds]
jtojnar has quit [Ping timeout: 240 seconds]
<ryantm> nix-update seems to have exhausted the low hanging fruit: on it's last run, it only generated 31 pull requests out of 3838 packages that repology.org says are out of date.
<{^_^}> [nixpkgs] @coreyoconnor opened pull request #38022 → QGIS: 2.18.17 -> 3.0.1 plus required libs → https://git.io/vxajm
hyper_ch has quit [Quit: ZNC 1.6.5 - http://znc.in]
<ryantm> Who regenerates the nixos.org website? I was hoping it was done automatically, but it seems like https://nixos.org/nixpkgs/packages-unstable.json.gz hasn't updated even though https://github.com/NixOS/nixpkgs-channels updated
srdqty has quit [Ping timeout: 248 seconds]
MP2E has joined #nixos
hyper_ch has joined #nixos
srdqty has joined #nixos
davidlt_ has quit [Ping timeout: 248 seconds]
joe1 has joined #nixos
hyper_ch has quit [Client Quit]
<MichaelRaskin> ryantm: re: low-hanging fruit: and most of the failures are build failures after update?
<joe1> hello, when using nixops, how do you best have a single machine with a different pinned nixpkgs?
coot has quit [Quit: coot]
hyper_ch has joined #nixos
<joe1> or similarly, how do I pin a nixos machine?
jtojnar has joined #nixos
<joe1> I know how to do it for individual bits, but want to pin whole configuration to same version
ryantrinkle has joined #nixos
<ryantm> MichaelRaskin: No, a lot of them are not failing builds. https://gist.github.com/ee637b8e7a5d2c8c186d0aa58d587ad7 is the log of the latest run
<ryantm> MichaelRaskin: 495 could not prefetch new version source
<ryantm> MichaelRaskin: "nix-env -q failed to find package name with old version" means it couldn't find the derivation file to update, there are 919 of those.
<elvishjerricco> joe1: I think all the nodes in a given nixops deployment have to use the same nixpkgs
<ryantm> MichaelRaskin: "nix build failed" is only 255
<joe1> thank elvishjerricco, so best to create a new deployment for testing a new pinned version rather than new resources within existing deployment
judson has quit [Ping timeout: 260 seconds]
shabius has joined #nixos
<MichaelRaskin> ryantm: I wonder how many of the nix-env -q failures just mean that the package has been upgraded in the meantime
erasmas has quit [Quit: leaving]
leo60228 has quit [Quit: Page closed]
<ryantm> MichaelRaskin: Yeah, its unfortunate that https://nixos.org/nixpkgs/packages-unstable.json.gz is not updated exactly when nixpkgs-unstable is updated, and that nixpkgs-unstable sometimes takes many days to update, because that is how repology.org is getting it's information. Its probably possible to relax the need to have the exact old version repology.org reports.
<MichaelRaskin> Does repology show the upstream fetch URLs various repos use?
dingotux has quit [Quit: Konversation terminated!]
coconnor has quit [Ping timeout: 276 seconds]
blonkhart has joined #nixos
shabius has quit [Ping timeout: 240 seconds]
jrolfs has quit [Ping timeout: 256 seconds]
pkill9 has joined #nixos
<ryantm> MichaelRaskin: It has a field called downloads where it can expose that. I'm not sure how often it's populated. https://repology.org/api
abathur has joined #nixos
coconnor has joined #nixos
coconnor has quit [Remote host closed the connection]
jrolfs has joined #nixos
<ryantm> MichaelRaskin: I just tried the first package that failed `yacas` and it has a downloads entry for v1.6.1. I'll look into doing more with that.
hyper_ch has quit [Quit: ZNC 1.6.5 - http://znc.in]
hyper_ch has joined #nixos
ruhatch has quit [Quit: Connection closed for inactivity]
jrolfs has quit [Ping timeout: 256 seconds]
zybell_ has quit [Ping timeout: 248 seconds]
zybell_ has joined #nixos