<betaboon>
samueldr: did you have a chance to look at the refind stuff ?
<samueldr>
not more than simply gazing at what you shared
seafood has joined #nixos
seafood has quit [Client Quit]
<betaboon>
i currently have the refind-stuff in my overlay and running it on my machine. works like a charm
seafood has joined #nixos
wpcarro has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<samueldr>
awesome
seafood has quit [Client Quit]
<samueldr>
(I wanted to take a peek and see how difficult it would be to harmonize all bootloader config generation)
seafood has joined #nixos
seafood has quit [Client Quit]
<betaboon>
i 'borrowed' alot of the python-code from systemd-boot (determing available profiles, generations, current configuration etc) that should be a perfect candidate for reusing.
<betaboon>
tho i found that code to be a little unclean
<{^_^}>
[nixpkgs] @xeji pushed commit from @rembo10 to master « paper-icon-theme: 2017-11-20 -> 2018-06-24 (#43419) »: https://git.io/fNtrx
seafood has joined #nixos
seafood has quit [Client Quit]
<betaboon>
btw. is there a way to determine screen-resolution without a running xserver during buildPhase ?
bennofs has quit [Ping timeout: 265 seconds]
seafood has joined #nixos
Copenhagen_Bram has quit [Read error: Connection reset by peer]
seafood has quit [Client Quit]
<samueldr>
because of sandboxing, no clean ways
seafood has joined #nixos
<gchristensen>
hopefully no dirty way either X)
<samueldr>
(there are)
* gchristensen
hides
seafood has quit [Client Quit]
<betaboon>
yeah you're right xD
<samueldr>
(without sandboxing, I mean)
<samueldr>
for your own configs, you could do with a custom option with resolution
<samueldr>
and there per-computer define their expected res
<samueldr>
that's what I'd do
seafood has joined #nixos
<betaboon>
that's how i am doing it right now
<samueldr>
(I have one for screen rotation for a tablet convertible)
seafood has quit [Client Quit]
<dhess>
tenten8401: I'm not familiar with ocserv, but don't forget to set networking.nat.internalIPs and networking.nat.internalInterfaces
seafood has joined #nixos
<betaboon>
for generating wallpaper, slim-theme, plymouth theme, refind-theme starting from a svg and then using imagemagick for all the manipulation (having a single source of truth for all color codes to be used for xresource, windowmanager etc)
seafood has quit [Client Quit]
<gchristensen>
samueldr: during build??
<dhess>
and networking.nat.externalInterface
Copenhagen_Bram has joined #nixos
seafood has joined #nixos
<samueldr>
gchristensen: any system access with sandboxing disabled?
<samueldr>
if so, /sys/ has a bunch of useful files :)
seafood has quit [Client Quit]
<gchristensen>
samueldr: I mean, you do this during build? <samueldr> (I have one for screen rotation for a tablet convertible)
<samueldr>
oh, a nixos config
<samueldr>
that's for grub
seafood has joined #nixos
<gchristensen>
ah
<samueldr>
otherwise it's at the wrong angle in the keyboard dock
<samueldr>
(and defaults for X and all)
seafood has quit [Client Quit]
erictapen has joined #nixos
wpcarro has quit [Ping timeout: 244 seconds]
<samueldr>
also rotates the framebuffer consoles
<tenten8401>
dhess: What would I set for those? The only iptables routing related commands I can see for that in multiple setup guides are "iptables -t nat -A POSTROUTING -j MASQUERADE", and they work just fine on my Ubuntu server
<dhess>
what devices show up in 'ip addr show' when ocserv is running?
seafood has quit [Client Quit]
<tenten8401>
lo, enp2s0, docker0, pterodactyl0, vethe65b4bf@if43, and veth2c2c62c@if55
seafood has joined #nixos
<dhess>
is your ocserv running in a docker container?
<tenten8401>
nope
seafood has quit [Client Quit]
<tenten8401>
docker0 and pterodactyl0 aren't related at all
erictapen has quit [Quit: leaving]
<dhess>
Again, I'm not familiar with ocserv so I'm not sure. Maybe it's one of the veth devices
seafood has joined #nixos
<tenten8401>
they don't have the IPs I've assigned to ocserv for clients though
erictapen has joined #nixos
seafood has quit [Client Quit]
fractalcat has joined #nixos
<dhess>
they don't necessarily need to
seafood has joined #nixos
seafood has quit [Client Quit]
muzzy has joined #nixos
seafood has joined #nixos
<dhess>
try just setting internalIPs and externalInterface, and leave internalInterfaces empty for now.
seafood has quit [Client Quit]
<tenten8401>
doesn't look like there's any interface created either on my ubuntu server
<dhess>
maybe in that case the NAT rules that NixOS generates won't be interface-specific
<tenten8401>
I'll give it a shot
seafood has joined #nixos
Khetzal has quit [Ping timeout: 265 seconds]
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
muzzy_ has joined #nixos
spear2 has quit [Remote host closed the connection]
<tenten8401>
nope, setting externalInterface to enp2s0 and internalIPs to 192.168.0.0/24 (what I'm using for ipv4-network in ocserv) doesn't seem to make a difference
seafood has joined #nixos
spear2 has joined #nixos
seafood has quit [Client Quit]
redj has joined #nixos
seafood has joined #nixos
seafood has quit [Client Quit]
<dhess>
It's a bit ugly but you could also set networking.firewall.extraCommands to "iptables -t nat -A POSTROUTING -j MASQUERADE"
<dhess>
plus whatever else you have set on your Ubuntu server
seafood has joined #nixos
seafood has quit [Client Quit]
<tenten8401>
tried that already I believe, but I'll try it again with nat enabled just incase
muzzy has quit [Ping timeout: 260 seconds]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
raynold has quit [Quit: Connection closed for inactivity]
erictapen has quit [Quit: leaving]
seafood has joined #nixos
erictapen has joined #nixos
<tenten8401>
yeah I have absolutely no clue
redj_ has quit [Ping timeout: 256 seconds]
seafood has quit [Client Quit]
<tenten8401>
there's gotta be some stupid rule conflicting
freusque has joined #nixos
seafood has joined #nixos
<tenten8401>
all I have set on my ubuntu server is the -A POSTROUTING -j MASQUERADE and it works
<dhess>
well I would start with some logging in ocserv to make sure that the packets from your clients are actually making it to ocserv
seafood has quit [Client Quit]
Sonarpulse has quit [Ping timeout: 260 seconds]
<tenten8401>
I can connect to the VPN server and authenticate with no problems
<tenten8401>
once I'm authenticated I lose all internet access
seafood has joined #nixos
<dhess>
sure but once you're connected, are the tunneled packets from the client hitting the ocserv instance?
seafood has quit [Client Quit]
seafood has joined #nixos
<tenten8401>
I would think they are but I'll see if I can enable some logging
seafood has quit [Client Quit]
<dhess>
also make sure that, after you've connected, the route on your client is correct.
seafood has joined #nixos
seafood has quit [Client Quit]
<tenten8401>
I'm using the VPN as a default gateway
<tenten8401>
there shouldn't be any routes getting sent over
seafood has joined #nixos
<dhess>
presumably all of that works if you've just copied a working config from the Ubuntu side and are using more or less the same client config with it
seafood has quit [Client Quit]
<tenten8401>
let me compare it with the ubuntu side once more
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<dhess>
try this while ocserv is running: ifconfig vpns0
seafood has joined #nixos
seafood has quit [Client Quit]
<dhess>
it looks lke "device = vpns" is telling ocserv to create an interface named vpns0
<Psi-Jack>
Hmmm.. Interesting. nixos-install got an OOM kill with 512MB RAM. Most... Peculiar..
<tenten8401>
config is identical, just went through line by line
seafood has joined #nixos
<dhess>
and it might not show up in the default list of interfaces if it doesn't have an IP assigned, which is not unusual for a tunnel device
seafood has quit [Client Quit]
<tenten8401>
ifconfig vpns0 returns device not found on both the ubuntu and nix boxes
alexteves has quit [Remote host closed the connection]
<samueldr>
Psi-Jack: activate swap, nix 2.0.x is a bit ram-hungry right now :/
<dhess>
hmm anything like vpns* show up if you do "ifconfig -a" ?
<infinisil>
Psi-Jack: NixOS eats dat RAM
seafood has joined #nixos
<gchristensen>
nix specifically
<Psi-Jack>
Yeah. heh
seafood has quit [Client Quit]
<tenten8401>
on the ubuntu box, all that appears is eth0 and lo
seafood has joined #nixos
<tenten8401>
nothing related to vpns0 on the nix box
<dhess>
that's strange. Googling a bit seems to indicate there should be some kind of tunnel device with ocserv
seafood has quit [Client Quit]
<tenten8401>
yeah, it's very strange. Let me verify once more that I can indeed connect to the ubuntu box
seafood has joined #nixos
seafood has quit [Client Quit]
Mateon1 has quit [Remote host closed the connection]
seafood has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
Created a NixOS VM on my Proxmox VE cluster to form into a base template VM to deploy more subjective testing. :)
seafood has joined #nixos
<gchristensen>
neat
<Psi-Jack>
Didn't even create a swap partition, but I just made a swap file instead.
<tenten8401>
Ahh, seems the tun device is only created when there are users connected
seafood has quit [Client Quit]
<tenten8401>
in that case I do see vpns0 on my Ubuntu server
<tenten8401>
let me do it on my NixOS server again with a client connected
seafood has joined #nixos
<dhess>
ok so now remove any networking.firewall.extraCommands you've added to the config, and set networking.nat.internalInterfaces to [ "vpns0" ]
<dhess>
with the other networking.nat.* settings as before
seafood has quit [Client Quit]
seafood has joined #nixos
<tenten8401>
All I have in there is enable = true, which settings from before specifically?
<dhess>
<tenten8401> nope, setting externalInterface to enp2s0 and internalIPs to
<dhess>
192.168.0.0/24 (what I'm using for ipv4-network in ocserv)
<tenten8401>
I do see "vpns0" as an interface when I'm connected, and enp2s0 is my external interface
countoren has joined #nixos
seafood has joined #nixos
<countoren>
hi everybody
seafood has quit [Client Quit]
<dhess>
tenten8401: those settings should be sufficient from the NixOS config side anyway. If I were you I'd start looking at ocserv logs at this point and make sure it's getting packets and nat'ing them properly, and check for errors.
seafood has joined #nixos
seafood has quit [Client Quit]
<samueldr>
hi countoren
<tenten8401>
doesn't look like there are any errors in the ocserv logs at all, but I'll see if I can enable more thorough logging
<dhess>
you can poke around in there for more clues, though as I said, it's fairly complicated and doesn't support ocserv. But the NixOS I'm setting should be irrespective of the VPN server software
seafood has quit [Client Quit]
seafood has joined #nixos
<tobiasBora>
Hum... I tried lot's of things to make the raspberry pi use "ondemand" governor... But even when I stress the cpu the frequence is stable...
<tobiasBora>
I tried powerManagement.cpuFreqGovernor =
<tenten8401>
yeah, I'm testing a PR for someone that would allow for ocserv from nixpkgs
<tobiasBora>
"ondemand";
<dhess>
"the NixOS bits I'm setting..." is what I meant to say
seafood has quit [Client Quit]
blankhart has quit [Ping timeout: 240 seconds]
seafood has joined #nixos
seafood has quit [Client Quit]
thc202 has quit [Ping timeout: 240 seconds]
seafood has joined #nixos
<tenten8401>
would the iptables rules fail to apply if there wasn't an interface to apply them to, or would it not matter if the interface exists at the time of applying?
<tenten8401>
I've got internalIPs set exactly the same as my ipv4-network in ocserv
blankhart has quit [Ping timeout: 268 seconds]
seafood has joined #nixos
seafood has quit [Client Quit]
<tenten8401>
interfaces do appear on that IP range I specified
<Psi-Jack>
512MB RAM, 2GB swap, current utilization of swap just to `nix search` 754MB... Ouch.
Supersonic112 has joined #nixos
Supersonic has quit [Disconnected by services]
seafood has joined #nixos
Supersonic112 is now known as Supersonic
seafood has quit [Client Quit]
<tenten8401>
I think seafood is having some serious connection issues
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<tenten8401>
uhg yeah I don't even know what to try at this point
seafood has quit [Client Quit]
<tenten8401>
if I had to guess, it's just not getting NATed correctly
<Psi-Jack>
Annnd.. Now "A stop job is running for SSH Daemon" with a timeout of up to 1min 30s.
<Psi-Jack>
During shutdown. heh
seafood has joined #nixos
<infinisil>
Something ain't right there
seafood has quit [Client Quit]
<Psi-Jack>
And it's taking the full duration.
ericsagnes has joined #nixos
seafood has joined #nixos
<tenten8401>
usually whenever I see a stop job like that and it takes over a minute I'll just cut the power
seafood has quit [Client Quit]
<Psi-Jack>
heh
seafood has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
The only other distros I've seen to do this is /sometimes/ Fedora, and most often times Arch Linux. Solus never has even once for me, which has been fantastic. :)
seafood has joined #nixos
blankhart has joined #nixos
<infinisil>
It shouldn't happen if everything's set up correctly
<Psi-Jack>
Exactly.
seafood has quit [Client Quit]
<Psi-Jack>
This is an extremely minimal nixos setup with almost nothing on it. :)
seafood has joined #nixos
libertyprime has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
Pretty much a swap file, openssh enabled, and a few packages installed. htop, vim, wget, w3m and lsof.
<tenten8401>
if there are no TX packets going out on my tun interface, would that be a sign of it not getting NATed correctly?
seafood has joined #nixos
<infinisil>
Psi-Jack: On a physical machine or VM?
<Psi-Jack>
VM.
seafood has quit [Client Quit]
<Psi-Jack>
That was after running a "shutdown -h" within the OS itself.
seafood has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
And after the aformentioned nix search I'd done.
erictapen has quit [Quit: leaving]
Edes has joined #nixos
<Psi-Jack>
Heh, with 1GB RAM, the same nix search runs instantly.
seafood has joined #nixos
<gchristensen>
nix search caches :)
seafood has quit [Client Quit]
<Psi-Jack>
Ahh
<Psi-Jack>
Can that cache be cleared?
<gchristensen>
~/.cache/nix
<Psi-Jack>
Danke. :)
<gchristensen>
bitte
seafood has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
Yeah, there it goes. Eating up all the RAM again. heh
seafood has joined #nixos
<Psi-Jack>
But, this time, it got up to 1GB RAM usage, used a couple MB of swap, and finished, quickly.
<infinisil>
Psi-Jack: Check the logs when the machine is back up to find out why it hanged, hopefully
seafood has quit [Client Quit]
<Psi-Jack>
infinisil: Which logs?
<infinisil>
journalctl -u sshd -e
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<Psi-Jack>
Nothing useful, except that "Stopping SSH daemon at 01:04:18, and at 01:06:18 timed out, Killing.
seafood has quit [Client Quit]
<gchristensen>
hmm were you connected over ssh?
<Psi-Jack>
1:04:48, actually.
<gchristensen>
not sure if that'll keep it alive
<Psi-Jack>
I had been, but that dropped instantly.
seafood has joined #nixos
seafood has quit [Client Quit]
<samueldr>
could be a process started by the ssh session keeping the tree alive?
<Psi-Jack>
Nothing was started, except nix search, but that had ended.
<Psi-Jack>
Didn't happen this time I rebooted.
seafood has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
Was actually the first time I'd seen it happen, but any time a process hangs at shutdown I question it. :)
Copenhagen_Bram has quit [Read error: Connection reset by peer]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<Psi-Jack>
Yep. Not happening consistently. Just the one time... So far.
seafood has quit [Client Quit]
<Psi-Jack>
Now... The fun part. Hooking up cloud-init. heh heh heh
seafood has joined #nixos
seafood has quit [Client Quit]
<infinisil>
And the only ssh related thing you did was log in and log out with a single session and user? No other users, no ControlMaster, no tmux or so?
<Psi-Jack>
Correct.
Edes has quit [Quit: leaving]
seafood has joined #nixos
<infinisil>
Weird
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<tenten8401>
alright, so ocserv is definently receiving packets from the clients, it's just not being NATed correctly
<tenten8401>
I enabled debug logging and its receiving packets, decrypting them, and writing them to the TUN interface
seafood has joined #nixos
<Psi-Jack>
heh.. cloud-init adds soooo many things.. heh
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
freusque has quit [Ping timeout: 244 seconds]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<tenten8401>
almost tempted to reboot the server and see if it'd help
<gchristensen>
I didn't know you were writing it up anyway
<Psi-Jack>
Okay, maybe it was just ldle. :)
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<samueldr>
well, now we know :)
<Psi-Jack>
hehe
<gchristensen>
very cool!
<Psi-Jack>
I'm pretty harsh at times, but extremely thorough. :)
trcc has joined #nixos
seafood has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
Back when, for example, Arch still weren't doing any kind of signatures of authentication of verification for packages, ohhhhhh, they got nailed big time. :)
<gchristensen>
ouch
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<gchristensen>
well, Nix and NixOS is by no means perfect, so I expect some good critique to come out of it.
seafood has quit [Client Quit]
markus1199 has quit [Ping timeout: 260 seconds]
seafood has joined #nixos
<gchristensen>
and with any luck, we'll improve
seafood has quit [Client Quit]
<Psi-Jack>
Heh yeah. nix is definitely going to get slapped a bit by me because of how memory hungry it is. :)
seafood has joined #nixos
<samueldr>
OH, duh, I wondered why there was so much stuff in a nixos build-vm VM's store
<samueldr>
it's mounting the host's store obviously
seafood has quit [Client Quit]
trcc has quit [Ping timeout: 268 seconds]
seafood has joined #nixos
seafood has quit [Client Quit]
nuncanada has quit [Quit: Leaving]
seafood has joined #nixos
seafood has quit [Client Quit]
<gchristensen>
some good memory improvements will be released in 2.1.0, but no word on when exactly that'll be out
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
robogoat has quit [Ping timeout: 240 seconds]
<Psi-Jack>
Yeah, I reaaaaally hope so. 1GB RAM just for `nix search`, is painful. :)
seafood has quit [Client Quit]
<gchristensen>
not sure if that one will be fixed in 2.1.9
<gchristensen>
2.1.0*
seafood has joined #nixos
seafood has quit [Client Quit]
<gchristensen>
a nice feature of NixOS is being able to build the system on one machine and copy the results to another, it used to be this process was also memory-intensive but will not be in 2.1.0. this makes it easy to deploy to low memory devices
robogoat has joined #nixos
seafood has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
That is the primary reasons I'm evaluating NixOS, actually. The built-in declarative construction of it. It would reduce my need for things like salt and chef, if even use them at all.
seafood has joined #nixos
<gchristensen>
exactly :)
seafood has quit [Client Quit]
<gchristensen>
I deploy many-a-server through this mechanism
<gchristensen>
(without salt or chef)
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<Psi-Jack>
I mean, even if I did use salt, it would be to configure nixos, mostly, and keeping it insatiably minimal. :)
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<Psi-Jack>
I'm also evaluating NixOS, though, for professional level use. At work for example, we use salt+debian. On hardware, in virtual machines, on hosted "cloud" providers like AWS and Rackspace.
seafood has joined #nixos
seafood has quit [Client Quit]
<samueldr>
nobody's ever been fired for buying IBM^W^W running nixos <- this ought to catch on
<gchristensen>
samueldr++
<{^_^}>
samueldr's karma got increased to 7
seafood has joined #nixos
<gchristensen>
sure, Psi-Jack, I've worked with deploys of each of those types, among many others here
seafood has quit [Client Quit]
<gchristensen>
I do loads of work with NixOS at Packet.net
<Psi-Jack>
heh
seafood has joined #nixos
<gchristensen>
in other words, sounds good
seafood has quit [Client Quit]
<Psi-Jack>
I've a huge history in HA/HS with Linux. :)
seafood has joined #nixos
<gchristensen>
I have no doubt
seafood has quit [Client Quit]
<samueldr>
anyone awake with knowledge of packages with / packaging python, gobjectIntrospection?
<Psi-Jack>
I'm literally well known enough, recommended enough, and always getting job offers... On a near daily basis. :)
<samueldr>
having issues with "Namespace ______ not available", here it's Namespace LightDM
seafood has joined #nixos
seafood has quit [Client Quit]
<samueldr>
I have a feeling GI_TYPELIB_PATH may be related, though I'm not entirely positive, and if it is, don't know how to make it work
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
markus1189 has joined #nixos
seafood has quit [Client Quit]
<dhess>
gchristensen: are you doing anything with Terraform at the moment?
seafood has joined #nixos
<dhess>
for Tweag maybe? Did I see that somewhere?
<gchristensen>
nothing too interesting, what's up?
orzo has quit [Ping timeout: 265 seconds]
seafood has quit [Client Quit]
<gchristensen>
I made a weird terraform resource to do a thing with nixos + nixops, but its weird and not souseful
<dhess>
It definitely does. That VPN module I referred you to earlier works for me on multiple hosts
<tenten8401>
ah dang
seafood has quit [Client Quit]
<tenten8401>
it seems like ocserv is definently getting traffic from the clients
<tenten8401>
and sending it to the TUN device
seafood has joined #nixos
<tenten8401>
I can PM the logfile if you'd like, mostly since it's got IPs in it
seafood has quit [Client Quit]
lassulus has quit [Ping timeout: 268 seconds]
lassulus_ is now known as lassulus
seafood has joined #nixos
seafood has quit [Client Quit]
<dhess>
Sorry, I just don't know enough about ocserv to help
seafood has joined #nixos
<tenten8401>
I don't think it's an ocserv issue
<samueldr>
hah, got it, gobjectIntrospection had to be added to lightdm, so its hook could do its thing to make it available to packages needing it
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<tenten8401>
Here's a log with redacted IPs: https://hastebin.com/uvexoqibag.makefile -- notice how it's receiving packets from the client, decrypting them, and writing them to the TUN device
seafood has joined #nixos
<tenten8401>
the traffic either isn't making it out of the server or not making it back to the tun device
seafood has quit [Client Quit]
wpcarro has joined #nixos
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<tenten8401>
they're definently making it to the TUN device from ocserv, I can see my RX packets slowly go up as I refresh a page on my connected client
seafood has joined #nixos
seafood has quit [Client Quit]
doyougnu has quit [Ping timeout: 240 seconds]
seafood has joined #nixos
freusque has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
wpcarro has quit [Ping timeout: 240 seconds]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
zearen has quit [Ping timeout: 264 seconds]
muzzy_ has quit [Ping timeout: 244 seconds]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
joebobjoe has left #nixos [#nixos]
seafood has quit [Client Quit]
Mateon3 has joined #nixos
Mateon1 has quit [Ping timeout: 244 seconds]
Mateon3 is now known as Mateon1
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<{^_^}>
[nixpkgs] @bhipple opened pull request #43458 → pythonPackages.aws-adfs: init at 0.12.0 → https://git.io/fNt1q
seafood has joined #nixos
seafood has quit [Client Quit]
graphene has quit [Remote host closed the connection]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
graphene has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
sam__ has quit [Ping timeout: 264 seconds]
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<tenten8401>
so I set up iptables to log all traffic in realtime, and it seems like traffic is making it into vpns0, but there's no OUT= interface in the log, which makes me think it might not be routing traffic to an interface
seafood has joined #nixos
<tenten8401>
I don't know, this whole thing is so confusing
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
sir_guy_carleton has joined #nixos
seafood has joined #nixos
seafood has quit [Client Quit]
<{^_^}>
[nixpkgs] @bhipple opened pull request #43459 → s4cmd: init at 2.0.1 → https://git.io/fNt1R
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<tenten8401>
yeah, traffic just isn't making it out and I don't know why
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
phreedom has quit [Ping timeout: 250 seconds]
seafood has joined #nixos
sir_guy_carleton has quit [Quit: WeeChat 2.0]
phreedom has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
sir_guy_carleton has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<iqubic>
Is there a guide out there somewhere to getting nix to work with javasript? Like can I get nix to run a local server for me?
<iqubic>
So that I can test things before I deploy them?
seafood has joined #nixos
seafood has quit [Client Quit]
<iqubic>
Neither the Nix manual nor the NixOS manual are particularlly helpful.
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<samueldr>
iqubic: that's an interesting idea, though nix itself wouldn't do much, it can run "check" phases, so it may be possible to run headless test suites this way
<samueldr>
weird (you're missing a semi-colon after the buildInputs list, but it's unrelated to your issue)
<iqubic>
Does anyone know what's up with that error?
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
aarvar has joined #nixos
<samueldr>
iqubic: please run `readlink -f $(type -P nix-shell)`
<samueldr>
this'll tell us which nix-shell your session sees
<samueldr>
(and which nix)
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
<iqubic>
I don't have the type command available.
<dtz>
iqubic: did you recently update through the nix 1.x -> 2 change?
seafood has quit [Client Quit]
<iqubic>
dtz: I have updated to Nix 2.
<samueldr>
iqubic: hmm, using zsh?
<iqubic>
samueldr: No.
<samueldr>
dtz: I was thinking along the way
seafood has joined #nixos
<samueldr>
what shell then?
<dtz>
("command -v nix-shell" will do the job of "type -P nix-shell", FWIW)
hxrts_ has joined #nixos
seafood has quit [Client Quit]
<dtz>
iqubic: try setting NIX_REMOTE=daemon and if that fixes it we know something
<samueldr>
(type is a bash builtin)
seafood has joined #nixos
<iqubic>
I'm being esoteric and using the emacs eshell.
<samueldr>
ah lol
<iqubic>
Which is being a pain.
<iqubic>
I just love emacs though.
seafood has quit [Client Quit]
<samueldr>
use `which` instead of `type -P`
<samueldr>
no worries, esotheric isn't inherently bad, breaking some workflows can be illuminating :D
seafood has joined #nixos
<samueldr>
(I like to break things for shits and giggles using non-standard stuff)
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
hxrts_ has quit [Remote host closed the connection]
seafood has joined #nixos
<dtz>
I forget what we know but it's the thing that makes sense-- anyway if taht fixe
<dtz>
ah, you have an "old" (pre-nix-2) 'nix' in your profile (or PATH, possibly) ... but a nix-2-enabled NixOS no longer sets NIX_REMOTE since it's not needed
seafood has quit [Client Quit]
<samueldr>
dtz: what I had in mind
<iqubic>
Here's what I have from the readlink: /nix/store/aq8i9jvxgi2m6igkpyic3lcx7kawvwpg-nix-1.11.16/bin/nix-build
<samueldr>
looks like it
<dtz>
btw why does matrix say this channel is "#nixos:pierrebeaucamp.com"
seafood has joined #nixos
<samueldr>
iqubic: nix-env -q 'nix.*'
seafood has quit [Client Quit]
Mr_Keyser_Soze has joined #nixos
seafood has joined #nixos
<dtz>
samueldr: <3 awesome
<samueldr>
dtz: no idea how matrix works, bridge used?
<iqubic>
error: selector ‘nix.*’ matches no derivations
seafood has quit [Client Quit]
<samueldr>
oh, then nix 1.11 isn't installed in your user profile...
<samueldr>
same with sudo?
seafood has joined #nixos
<iqubic>
yes.
seafood has quit [Client Quit]
<samueldr>
dtz: any tricks you know to figure out from which profile nix 1.11 comes from?
seafood has joined #nixos
seafood has quit [Client Quit]
<samueldr>
at least, iqubic: `readlink -f /nix/var/nix/profiles/system/sw/bin/nix-env`
<samueldr>
that'll tell us what your nixos configuration installed
<lostman>
does anyone know how to enable ccache for a particular derivation?
seafood has joined #nixos
libertyprime has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
remmbster has quit [Ping timeout: 264 seconds]
seafood has joined #nixos
seafood has quit [Client Quit]
seafood has joined #nixos
seafood has quit [Client Quit]
<lostman>
there's some `configuration.nix` setting: `config.program.ccache.enabled = true` but how would I use that if I don't have `nixos` but just `nix` on Ubuntu?
<iqubic>
I'm having some issues with firefox. When ever I watch a youtube video in full screen, after about 2 minutes the screen goes black. It's the same behavior I get if I just leave my machine inactive for a bit of time.
wpcarro has quit [Ping timeout: 248 seconds]
<iqubic>
I feel like this shouldn't occur. I feel like the screen shouldn't go blank if I'm in fullscreen.
<iqubic>
VLC in fullscreen works fine.
camsbury_ has joined #nixos
srl295 has quit [Quit: Connection closed for inactivity]
camsbury has quit [Ping timeout: 264 seconds]
andymandias_ has joined #nixos
andymandias has quit [Ping timeout: 260 seconds]
regulus_ has quit [Ping timeout: 244 seconds]
regulus_ has joined #nixos
<adisbladis[m]>
iqubic: I can't answer _why_ this is happening but you should be able to work around it with systemd-inhibit
<iqubic>
How does that work?
andymandias has joined #nixos
npmccallum has joined #nixos
<iqubic>
Ultimately I want something like caffeine.
<sphalerit>
adisbladis: I don't think so, since that's for suspend/power off etc
andymandias_ has quit [Ping timeout: 240 seconds]
<sphalerit>
iqubic: I have the same problem, and I think blanking is prevented correctly in chromium
thc202 has joined #nixos
periklis has joined #nixos
<iqubic>
sphalerit: I don't want to switch browsers rihgt now.
<sphalerit>
Might be worth trying firefox-bin as well. I have a suspicion that maybe the wrapper doesn't include libXss in the library path and it might need that, but I can't check now, I'm on my phone
<sphalerit>
That's perfectly understandable and I'm not saying you should :)
<manveru>
iqubic: you can use `xset dpms 0 0 0` for now
<manveru>
basically disabling your monitor standby
<manveru>
you need both to enable xfce, and to set it as the default
<angerman>
so I can enter a nix-shell for a package.
<angerman>
and I can do somehting like `cd $(mktemp -d)` to have the rest execute in a temporary directory. Is there also a command to run the full build procedure? Or do I need to run `unpackPhase`, ... all by hand?
winem_ has joined #nixos
tmaekawa has joined #nixos
<manveru>
angerman: does running `genericBuild` work?
patrl has joined #nixos
tmaekawa has quit [Client Quit]
<kristoferus75>
now it says if i bouild the config : error: Default window manager (xfce) not found
<manveru>
kristoferus75: i think it could be `xfce4-session`
<manveru>
just checked the docs
goibhniu has joined #nixos
<sphalerit>
adisbladis: and in the source-built one?
<adisbladis[m]>
Linus: Also in inputs
<angerman>
manveru: let’s see.
hamishmack has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
johanot1 has joined #nixos
<kristoferus75>
no it wont work also with: services.xserver.desktopManager.default = "xfce"
<kristoferus75>
and `services.xserver.windowManager.default = "xfce4-session"
<ghasshee>
Hi , is there any good tutorial to build opam system on nixos ? I failed utop because cannot solve the dependency "camlp4" ...
sbdchd has joined #nixos
hamishmack has joined #nixos
civodul has joined #nixos
periklis has quit [Remote host closed the connection]
sbdchd has quit [Ping timeout: 240 seconds]
<goibhniu>
hi ghasshee, are you trying to build opam without using nix?
<LnL>
there's an ocaml section in the manual IIRC, not sure about anything else
<ghasshee>
Yes. I installed nixos.opam .
<ghasshee>
Ohh, ... it seems that I should use ocamlPackages.utop rather than `opam install utop`.
hamishmack has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
hamishmack has joined #nixos
andymandias has quit [Ping timeout: 264 seconds]
nschoe has joined #nixos
ericsagnes has quit [Ping timeout: 240 seconds]
winem_ has joined #nixos
orivej has quit [Ping timeout: 240 seconds]
fragamus has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
camsbury has joined #nixos
sbdchd has joined #nixos
w17t has joined #nixos
camsbury_ has quit [Ping timeout: 256 seconds]
fragamus has joined #nixos
<Taneb>
"error: unrecognized flag '--help'. Try 'hydra-queue-evaluator --help' for more information"
sbdchd has quit [Ping timeout: 248 seconds]
betaboon has joined #nixos
<betaboon>
hello #nixos, is there a way to speedup kernel-compilation ?
<nschoe>
Hi all, I have a section `shellHook` in my default.nix, which ix executed when I enter `nix-shell`, but not when I run `nix-build`. How can I have it executed?
<makefu>
betaboon: normally nix will scale to the number of available cores. you can set `nix.buildCores` in your configuration.nix
<srhb>
betaboon: We build a loooot of modules, so if you disable them...
<infinisil>
nschoe: you generally can't do that, what are you trying to achieve?
<betaboon>
well nix.maxJobs is set to 8 in hardware-configuration.nix. setting buildColrs is documented to introduce non-deterministic behavior !?
<srhb>
betaboon: In some cases only.
<srhb>
betaboon: maxJobs 2 just means you can build two kernels at the same time.
<betaboon>
srhb: ah yeah. figured
telent has joined #nixos
<srhb>
betaboon: And derivations that are known to be nondeterministic in face of multiple build threads should have parallel building disabled individually.
<nschoe>
infinisil, well, that's pretty ugly (so don't judge ^^). I'm experimenting a bit, and I'm trying my hand at packaging ROS for nix. By https://wiki.ros.org/Installation/Source it says it needs some dependencies, and we can install them with python pip. So I have followed this https://nixos.org/nixpkgs/manual/#python (section 9.11.3.6) that explains how to use shellHook to setup python so that it installs with pip.
<manveru>
angerman: did it work?
<nschoe>
infinisil, and this sorts of work when I run `nix-shell`: I can see a bunch of stuffs installed, and the dependencies listed in the requirements.txt are found when I try to run them.
<infinisil>
nschoe: ah no that's not what you wanna do
<nschoe>
infinisil, argh. Why?
<infinisil>
There should be a python section in the manual explaining how to build packages
<nschoe>
infinisil, actually what I wish I could do is write those dependencies in the `buildInputs`, but since there are no nix packages I can't do that. So how do I "list them / build them" as dependencies for ny derivation?
<disasm>
looking for recommendations for a home dns server that can be declaratively declared in nix. Currently using pdns with pgsql backend, but looking at moving my dns to a more reliable machine with less CPU/RAM, and would like to manage my records with nix as well.
<betaboon>
srhb: so i'll try setting buildCores to 4 and see what happens :X
<nschoe>
infinisil, well the thing is: I don't just need to build them for my system, I need them as dependencies for my derivation. Is that possible?
betaboon has quit [Quit: WeeChat 2.1]
<srhb>
betaboon: If you have both maxJobs and buildCores set fairly high, know that memory usage can skyrocket for some builds. In case you suddenly see failing builds due to OOM conditions :)
<nschoe>
infinisil, yes but the packages are not in python-packages.
<infinisil>
Probably you should read these to get a basic idea of how nix works ^^
<nschoe>
infinisil, yep I have read the nix pills (though I think a refresher would do no harm ^^)
<infinisil>
Oh
<aminechikhaoui>
Taneb: what's the output of ls -l /nix/var/nix/db/big-lock ?
<nschoe>
I have a basic idea (which I'm trying to improve, though so any how-to, link, resource is welcome!), but in this case, the packages are not in python-packages.
<betaboon>
ehm. i think i did a switch. not sure now tho .... need coffee
<Taneb>
aminechikhaoui: after all my messing with it it was "-rw-rw-rw- 1 root hydra 0 Jul 13 11:10 /nix/var/nix/db/big-lock" but initially the permissions were -rw------- and the group was root
<srhb>
betaboon: nix show-config | grep cores
<betaboon>
did another switch. it restarted nix-daemon. so i guess just just did a build ...
PLPD-Bot has quit [Remote host closed the connection]
<clacke>
I'm messing with services in /etc/nixos/configuration.nix
<clacke>
Actually using nix-darwin, but it uses the same framework.
<clacke>
How do I add a module with options and config without having to patch the nixos tree
<betaboon>
srhb: now it's building in parallel :D
<Taneb>
goibhniu: certainly looks liek it
<infinisil>
clacke: You can just set your configuration.nix to something like `{ pkgs, ... }: { options = { <option defs> }; config = { <your actual config> }; }`
PLPD-Bot has joined #nixos
<clacke>
From what I understand, I can't.
<infinisil>
clacke: Or alternatively, create a new file that looks like this and add `imports = [ ./path/to/file ]` from configuration.nix
<manveru>
but the tab seems to be gone from some builds
eddyb has quit [Changing host]
eddyb has joined #nixos
eddyb has joined #nixos
__Sander__ has joined #nixos
<manveru>
sorry, no idea what's going on there
<dmj`>
manveru: thank you! ncdu looks cool too
<manveru>
ncdu++
<{^_^}>
ncdu's karma got increased to 1
<{^_^}>
[nixpkgs] @Profpatsch pushed to revert-42832-bazel-hydra-darwin « Revert "bazel: fix darwin build on hydra" »: https://git.io/fNqYo
<{^_^}>
[nixpkgs] @Profpatsch opened pull request #43479 → Revert "bazel: fix darwin build on hydra" → https://git.io/fNqY6
<{^_^}>
[nixpkgs] @Profpatsch merged pull request #43479 → Revert "bazel: fix darwin build on hydra" → https://git.io/fNqY6
<{^_^}>
[nixpkgs] @Profpatsch pushed to master « Revert "bazel: fix darwin build on hydra" »: https://git.io/fNqYM
worldofpeace has quit [Quit: worldofpeace]
worldofpeace has joined #nixos
cryp7nix has joined #nixos
<dmj`>
lol
fendor has quit [Ping timeout: 260 seconds]
<{^_^}>
[nixpkgs] @grahamc pushed 0 commits to revert-42832-bazel-hydra-darwin: https://git.io/fNqY5
thevoidthevoidth has left #nixos ["sext: the end the end the end the end the end the end the end the end the end the end the end the end the end the end the end"]
blu3r4d0n has quit [Quit: ZNC 1.6.6+deb1 - http://znc.in]
<cryp7nix>
can somebody maybe help me with nixpkgs-overylays? I find the documentation about installing them confusing.
<cryp7nix>
and I'm unsure how to debug it properly... I read the manuals of nixpkgs about overlays and some page on the wiki and an issue from 2017 and now my head is spinning with too many options...
<radisson>
I'm on NixOS 18.03 and I'm pretty new to it and I guess my question is half-haskell-half-nix: how can I update all-cabal-hashes to its latest revision (from https://github.com/commercialhaskell/all-cabal-hashes/) on my system?
Lisanna has quit [Remote host closed the connection]
hxrts_ has joined #nixos
knupfer has joined #nixos
<LnL>
we even use eval :p
<dmj`>
gchristensen: knowing this file is basically knowing nix well
hxrts_ has quit [Remote host closed the connection]
graphene has quit [Read error: Connection reset by peer]
graphene has joined #nixos
graphene has quit [Read error: Connection reset by peer]
graphene has joined #nixos
orivej has joined #nixos
mariatsji has quit [Remote host closed the connection]
mariatsji has joined #nixos
orivej has quit [Ping timeout: 265 seconds]
ixxie has joined #nixos
alexteves has joined #nixos
w17t has quit [Quit: Leaving]
aarvar has quit [Ping timeout: 264 seconds]
alex``` has joined #nixos
<oharvey>
I'm trying to update xfce4-pulseaudio-plugin from 2.3 to 4.1 since it is 3 years behind and doesn't work . I've tried messing around with the configure and install flags, but I keep running into wrapper spawning errors. https://gist.github.com/lepsa/f1af944637a68eb3198aba5206973f2f
mariatsji has quit [Ping timeout: 276 seconds]
<oharvey>
From looking at other plugins, I don't think that the build script shouldn't require much editing from the current version in nixpkgs.
<Psi-Jack>
hmmmmmm....
<Psi-Jack>
No pacemaker package in nix.
<etu>
Psi-Jack: PR's are welcome ;)
pie_ has quit [Ping timeout: 240 seconds]
<{^_^}>
[nixpkgs] @Ma27 opened pull request #43483 → pythonPackages.scikitlearn: skip `test_max_iter` test → https://git.io/fNqZ2
fendor has joined #nixos
graphene has quit [Remote host closed the connection]
<dmj`>
error: Unknown QEMU binary for 'x86_64-darwin'
<dmj`>
:(
patrl has quit [Quit: WeeChat 2.0]
fendor has quit [Quit: Leaving]
fendor_ is now known as fendor
<gchristensen>
so delete the runInLinuxImage part, you get an error about being darwin but needing linux, right?
<Psi-Jack>
etu: Heh. Oh, I'm sure. Pacemaker would be a complicated one, especially with declarative configurations to go along with it.
<etu>
Psi-Jack: I'm not familiar with it so I wouldn't know:)
<gchristensen>
indeed, it'd be two parts: 1) the package, which wouldn't be so hard, 2) the module -- which I'm certain would be quite tricky
<Psi-Jack>
Yep.
<Psi-Jack>
I use pacemaker for things like automated failover PostgreSQL, to promote/demote a master within them.
<etu>
Cool :)
<etu>
And yeah, that sounds complicated to write a module for
<gchristensen>
etu: pacemaker is neat stuff, you should check it out!
<gchristensen>
Psi-Jack: may I suggest setting your sights slightly lower to start? :P
<Psi-Jack>
hehe
<Psi-Jack>
I was just rebuilding my own existing cluster setup in NixOS. But this prevents me from going on with that. :)
periklis has quit [Ping timeout: 268 seconds]
<Psi-Jack>
I can see about doing my smaller non-clustered instance though, which is more just ZNC, OpenVPN, and Zabbix. heh
dbmikus has joined #nixos
<Psi-Jack>
In my desktop VM of nixos, I'd gotten a PostgreSQL 10 server setup and provisioned with a few users, a few databases, schemas for them, etc. Was actually pretty cool.
<gchristensen>
nice! yeah, the double-edged sword of being actually declarative is it makes it much harder to do things like failover which require changing the system
<gchristensen>
it is doable, but nixos' modules aren't built with exactly that in mind
hsribei has joined #nixos
<clacke>
infinisil: just to confirm I got everything working in the end, and now our macOS build slave and our main hydra are talking OpenVPN to each other -- sweet!
<clacke>
thanks for your help, now it's time for dinner and movie night over here
<Psi-Jack>
gchristensen: Yeah. I always have options. Some more difficult than others to accomplish, even normally, but that's what gives me thorough investigative ideas, too. :)
<Psi-Jack>
hehe, another one I /could/ do, which would be a simpler approach to figure out how to build nix packages, would be to rebuild my whole BBS system. Synchronet, BinkD, Husky-Tools, and apparently dosemu since nixos doesn't have dosemu either. hehe
<Psi-Jack>
But, all of those mentioned, I'd already made CentOS 7 and Debian 9 packages for already. :)
justbeingglad has joined #nixos
<dmj`>
gchristensen: ok I deleted it
<dmj`>
gchristensen: and yes, there was an error
<gchristensen>
good, you have to run a linux VM (or have access to a linux server you can build on) to build docker containers on your mac (this is also true for docker, where docker4mac brings a linux vm)
<dmj`>
error: a 'x86_64-linux' is required to build '/nix/store/h381xgbnjva8lblsnw28s5j5ww57ljsy-hello-1531489534.drv', but I am a 'x86_64-darwin'
graphene has joined #nixos
<gchristensen>
hmm can you paste the output of from when you ran `nix-linuxkit-configure`?
<dmj`>
gchristensen: refresh the gist
<gchristensen>
oh actually, try running your build again -- it may have still been booting up
<dmj`>
hmmm
<dmj`>
gchristensen: unable to open SSH connection to 'ssh://nix-linuxkit': cannot connect to 'nix-linuxkit'; trying other available machines...
<gchristensen>
hmmm indeed, what do you see when you run `pgrep hyperkit vpnkit linuxkit`
<dmj`>
nothing
<gchristensen>
huh! try `launchctl start org.nix-community.linuxkit-builder` and then the pgrep command again
<dmj`>
same
alex``` has quit [Ping timeout: 240 seconds]
Neo-- has quit [Remote host closed the connection]
Neo-- has joined #nixos
clacke has quit []
<gchristensen>
paste the output from `tree ~/.cache/nix-linuxkit-builder/`
<dmj`>
I installed docker for mac
<dmj`>
beforehand
<gchristensen>
that shouldn't be a problem
<dmj`>
gchristensen: refresh the gist
alex``` has joined #nixos
<gchristensen>
interesting
Lisanna has joined #nixos
graphene has quit [Remote host closed the connection]
<LnL>
what about nix-build -vvv
graphene has joined #nixos
dbmikus_ has joined #nixos
cherrybl0ss0m_ has joined #nixos
dbmikus has quit [Ping timeout: 240 seconds]
<gchristensen>
dmj`: try adding the contents of http://ix.io/1h32 to ~/Library/LaunchAgents/org.nix-community.linuxkit-builder.plist after the <true/> line and before </dict>, and then `launchctl unload ~/Library/LaunchAgents/org.nix-community.linuxkit-builder.plist; launchctl load ~/Library/LaunchAgents/org.nix-community.linuxkit-builder.plist`
<nschoe>
Can anyone confirm that in order to include my own copy of the nixpkgs with nix-shell, it's the -I option, like `nix-shell -I /home/nschoe/nixpkgs my-custom.nix`?
fragamus has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
halfbit has joined #nixos
<infinisil>
nschoe: -I nixpkgs=/the/path
<nschoe>
oh!
<nschoe>
infinisil, thanks.
<nschoe>
Well it doesn't solve my problem for some reason.
<gchristensen>
lewo``: how do you like to install the glance cli?
pluplog has quit [Ping timeout: 260 seconds]
<nschoe>
It says "anonymous function ... called without required argument 'sdformat'". Yet when I check the git branch for nixpkgs, there is `sdformat`.
<gchristensen>
primeos[m] / primeos_ those updates should probably be backported too, I think signal breaks the older clients regularly
freeman42x]NixOS has joined #nixos
wpcarro has quit [Remote host closed the connection]
<dhess>
gchristensen: oh is that linuxkit stuff working reliably now?
<dhess>
more or less?
wpcarro has joined #nixos
<gchristensen>
dhess: reliably? more or less. my team uses it with periodic issues, and dmj`'s install seems to have not gone properly
<dhess>
huh cool. I thought that was still squarely in the experimental or "works for the maintainer" mode
<gchristensen>
I've not talked about it much b/c the name is really bad
<dhess>
I'll check it out. Normally all of my Macs have access to my remote builders, but I need something that works on a plane or e.g., with poor Internet connectivity
<gchristensen>
cool
wpcarro has quit [Ping timeout: 248 seconds]
wpcarro has joined #nixos
wpcarro has quit [Remote host closed the connection]
wpcarro has joined #nixos
trcc has quit [Read error: Connection reset by peer]
mariatsji has quit [Remote host closed the connection]
graphene has quit [Remote host closed the connection]
graphene has joined #nixos
ixxie has quit [Ping timeout: 268 seconds]
tzemanovic has quit [Remote host closed the connection]
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
tzemanovic has quit [Remote host closed the connection]
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
Sonarpulse has joined #nixos
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
tzemanovic has joined #nixos
<primeos[m]>
gchristensen: ok, thanks for the information, I wasn't aware of this
<gchristensen>
no worries :)
tzemanovic has quit [Remote host closed the connection]
<dhess>
gchristensen: looks like you fixed that NixOS issue that was causing lo interfaces to time out when trying to assign IPs to them?
tzemanovic has joined #nixos
<gchristensen>
dhess: yep
tzemanovic has quit [Remote host closed the connection]
<dmj`>
gchristensen: so it works on my newer mac
tzemanovic has joined #nixos
<dhess>
gchristensen: cool. I've been using dummy interfaces as a workaround; do you know of any reasons to prefer one to the other?
<Taneb>
What are the .drv files in the nix store for?
tzemanovic has quit [Remote host closed the connection]
<dmj`>
gchristensen: maybe my old 2012 mac didn’t have the kernel extensions necessary for linuxkit
<dmj`>
gchristensen: nvm dude I totally spoke prematurely error: a 'x86_64-linux' is required to build '/nix/store/86bsmdsgx58b0cbyg2xh7dwq77kgxkz2-hello-1531493408.drv', but I am a 'x86_64-darwin'
tzemanovic has joined #nixos
<gchristensen>
dhess: I dunno, I just really really wanted to experiment with Packet's BGP support as a method of load balancing and HA, and they recommended using lo
tzemanovic has quit [Remote host closed the connection]
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
<dhess>
gchristensen: I use lo (or dummy) devices to run "anycast"-style services.
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
tzemanovic has joined #nixos
tzemanovic has quit [Remote host closed the connection]
<lewo``>
gchristensen: hmm, maybe it is not working anymore
<cocreature>
I’m confused, it looks like nixos-unstable went back to a 3 weeks old commit. why did it do that? I’m pretty sure it was at a newer commit before
<lewo``>
gchristensen: yes, i think we should regenerate all of these files
tzemanovic has joined #nixos
<lewo``>
gchristensen: moreover with the override file, the build fails due to missing remote python module: Download error on https://pypi.python.org/simple/vcversioner/: [Errno -2] Name or service not known -- Some packages may not be found!
drewr has quit [Ping timeout: 276 seconds]
wpcarro has quit [Remote host closed the connection]
<gchristensen>
OK I'll try sending a PR updating it :D
<gchristensen>
thank you for your help!
wpcarro has joined #nixos
<nschoe>
Is github user akru here by chance?
Tucky has quit [Quit: WeeChat 2.1]
<nschoe>
I have some questions regarding his ros packaging :)
<Taneb>
Ugh, I've removed everything from my nixops config thing that could be causing my hydra weirdness that I was talking to srhb about earlier and it's still happening...
<Taneb>
infinisil: the hydra-queue-runner fails because its user (and any user other than root) don't have permissions to read or write /nix/var/nix/db/big-lock
<infinisil>
I'd go dig in the nix source
wpcarro has joined #nixos
<gchristensen>
are you running agarbage collection?
<Taneb>
gchristensen: not intentionally
<Taneb>
I auto-optimize the store but I don't auto-gc
drewr has joined #nixos
jensens has quit [Ping timeout: 240 seconds]
sigmundv has quit [Ping timeout: 260 seconds]
grp has joined #nixos
<dhess>
Taneb: could this have something to do with Hydra using Nix 1.x and your system using Nix 2?
<Taneb>
dhess: Hydra's running on a VM with Nix 2
__Sander__ has quit [Quit: Konversation terminated!]
<dhess>
Taneb: is this Hydra from GitHub master or similar? Because I believe that the Hydra that's in nixpkgs will always use Nix 1
<dhess>
It doesn't matter which version of Nix your system config is using
<Taneb>
I've been switching between them and rebuilding the VM trying to get something working, it was happening with both
cryp7nix has quit [Ping timeout: 264 seconds]
stepcut has quit [Remote host closed the connection]
stepcut has joined #nixos
graphene has quit [Remote host closed the connection]
<srhb>
Taneb: What dhess is saying is that the hydra derivation hardcodes nix 1, or at least used to
<srhb>
(I think)
graphene has joined #nixos
<Taneb>
So I'll have to specify in my config that I should have nix 1?
<lewo``>
dhess: i don't think hydra from nipkgs is using nix1
stepcut has quit [Ping timeout: 260 seconds]
<dhess>
lewo``: I believe it was until recently, anyway.
<nschoe>
Is that a bad sign if I have to run `sudo <my-command>` in my builder.sh?
<nschoe>
Does it mean I'm doing smth wrong?
<Taneb>
So, any idea what I should do?
<dhess>
lewo``: for example, I recently had to configure my Hydra (running a recent nixos-unstable-small channel rev) to use a different machines file, rather than /etc/nix/machines, because Nix 2 requires the "ssh://" prefix for remote builders, but that broke Hydra, because it still uses Nix 1 syntax
graphene has quit [Remote host closed the connection]
hxrts_ has joined #nixos
<dhess>
and sometimes I like to nix-build interactively from my Hydra machine, and I wanted to be able to use the same remote builders that Hydra uses
graphene has joined #nixos
<dhess>
so now I have a Nix 2-compatible /etc/nix/machines file, and a separate machines file for Hydra, because of that syntax change.
hxrts_ has quit [Client Quit]
hxrts_ has joined #nixos
<nschoe>
My command needs to setup some things in /etc/, so it tells me it has permission denied :/
rsa has quit [Ping timeout: 240 seconds]
<dhess>
Taneb: well I'm not sure this is your problem, but I do remember having very strange permissions issues on the store when I switched from Nix 1 to Nix 2. I believe there was a workaround posted in a GitHub issue, but unfortunately I don't recall exactly what it was.
<dhess>
so you could poke around in issues for something like "nix 2 permissions" and see if that uncovers anything.
<dhess>
Taneb: however this might just be a red herring and nothing to do with the actual problem you're having. Sorry I can't be more specific or helpful.
cherrybl0ss0m_ has quit [Remote host closed the connection]
<Taneb>
Ugh, I've made a new error happen
<Taneb>
Now the hydra evaluator can't see the github token. This is a new one.
<hxrts_>
hii, sorry to interrupt, but I'd be incredibly appreciative if someone could point me to a config with a solid trackpad calibration for Gen 5 Thinkpad X1 Carbon. ty!
<Taneb>
Ah, that was because I turned sandboxed builds back on
telent has joined #nixos
remmster has joined #nixos
civodul has quit [Quit: ERC (IRC client for Emacs 26.1)]
vmandela has quit [Quit: Leaving]
<remmster>
Hey I have a question. If I want to do a substituteInPlace, with the same substitutions, on multiple files, what's the best way to do that?
cryp7nix has joined #nixos
<Taneb>
remmster: I'd use a bash for-loop
<Taneb>
for $FILE in file1 file2 file3; do substituteInPlace whatever $FILE; done
<remmster>
Ah ok
<remmster>
Thanks
<Taneb>
There may be a better way, don't take what I say as gospel
<remmster>
Aha ok - I think it's good enough for now, just to get it to build
<remmster>
Then I'll refactor if I need to
knupfer has quit [Remote host closed the connection]
doyougnu1 has joined #nixos
wpcarro has quit [Remote host closed the connection]
<jbetz>
after wiping out `~/.cabal` I started getting compiler errors about not having the `dyn` libraries installed for a package in a nix-haskell project. does nix use `~/.cabal` for anything? and if not, what else might have caused this?
hxrts__ has quit [Client Quit]
hxrts__ has joined #nixos
<johnw>
it shouldn't
<johnw>
did you also wipe ~/.ghc?
<johnw>
I've regularly wiped both without trouble
<jbetz>
nope, just `~/.cabal`
hxrts__ has quit [Client Quit]
<gchristensen>
lewo``: novaimage + glance works a charm! thank you!
fendor has quit [Ping timeout: 244 seconds]
<jbetz>
johnw: could installing a package directly with cabal interfere with nix at all?
<cocreature>
remmster: afaik you have to exist and reenter the shell
hxrts_ has quit [Quit: Leaving]
hxrts_ has joined #nixos
d1rewolf has joined #nixos
mariatsji has quit [Remote host closed the connection]
<teozkr>
is import-from-derivation broken on Travis? o.O
mariatsji has joined #nixos
<d1rewolf>
hi guys. I'm just getting started with nixos and have done my first install. however, I notice that useradd is pointing to /etc/skel as the default skeleton dir, but this doesn't exist. is this expected?
armin has left #nixos ["WeeChat 2.1"]
mariatsji has quit [Ping timeout: 240 seconds]
xy2_ has joined #nixos
graphene has quit [Remote host closed the connection]
<d1rewolf>
anyone? ;)
graphene has joined #nixos
<teozkr>
d1rewolf: generally you don't want to use useradd with NixOS
<d1rewolf>
teozkr, hmm....this is straight from the manual's installation instructions
<d1rewolf>
Quoting: " You’ll probably want to create some user accounts as well, which can be done with useradd: "
<teozkr>
but yeah, weird that it the install guide mentions the imperative tools :/
<d1rewolf>
teozkr, does using the declarative style handle skeletons properly
<d1rewolf>
?
<teozkr>
I don't belive I've had any skeleton errors with that
nschoe has quit [Ping timeout: 276 seconds]
<teozkr>
but it's not exactly a feature I use constantly
halfbit has quit [Ping timeout: 265 seconds]
<d1rewolf>
teozkr, also, I note that the default configuration generated uses the syntax "users.extraUsers" instead of users.users (as in the user mgmt guide). what's the difference? Which should I use?
<teozkr>
it used to be called `extraUsers` back when it could only add new users, and not remove old ones
<teozkr>
these days they're synonyms, so it doesn't matter which you use
<d1rewolf>
teozkr, well, in my case, switching from ubuntu, I'm used to /etc/skel providing the default .bashrc, .bash_logout, and .profile files. For some reason I'm not seeing this on nixos, but I'd expect it to be there
halfbit has joined #nixos
pie_ has quit [Ping timeout: 256 seconds]
ydlr has joined #nixos
<teozkr>
d1rewolf: the default bashrc is in `/etc/bashrc`, it doesn't seem to add any per-user settings by default
humanoyd has quit [Quit: WeeChat 2.1]
<d1rewolf>
once becoming familiar with nixos concepts, how does one put together the packages necessary, say, for a X window manager? for example, I personally use i3 and would like to install it, but aside from installing that deriviation, I know there has to be other packages to install, right?
graphene has quit [Remote host closed the connection]
Copenhagen_Bram has quit [Ping timeout: 260 seconds]
<gchristensen>
for nixos you'd enable the i3 module
<d1rewolf>
gchristensen, so how would one know the various options typically needed for an xserver? for example, I wouldn't have know by default that I'd need to setup libinput
Copenhagen_Bram has joined #nixos
igo95862 has joined #nixos
<gchristensen>
you don't need it, anyway
<d1rewolf>
is it just finding a config file from someone else which works and then keeping it giong?
<gchristensen>
you can run `man configuration.nix` to explore, or read the configuration.nix generated when you install nixos, or explore here: https://nixos.org/nixos/options.html#
* goibhniu
just ran `nix-collect-garbage -d` inside a container, and it seems to have garbage collected the host :/
graphene has quit [Read error: Connection reset by peer]
<d1rewolf>
gchristensen, ok, thanks. I've got some reading, learning and exploring to do
humanoyd has joined #nixos
<gchristensen>
goibhniu: oh my
graphene has joined #nixos
xy2_ has quit [Ping timeout: 276 seconds]
<remmster>
is there any way I can pass substituteInPlace to xargs?
Judson has joined #nixos
<remmster>
In the nix-shell, `which substituteInPlace` gives me "which: no substituteInPlace in ..."
<gchristensen>
no
Judson is now known as Guest21266
<iqubic>
What happens if I try to use "npm" in a nix-shell and tell it to install a thing globally? Will that work in the way I want it too?
<gchristensen>
you have to use it in a for loop, it is a bash function not a program in the PATH, and xargs can only call programs
gtklocker has quit [Ping timeout: 256 seconds]
<iqubic>
As in, let me use that executable outside of a nix-shell.
<d1rewolf>
is there a defacto way to install an oracle jdk on nix, or would I have to create my own package for this?
<goibhniu>
I installed nix-env in the host, but when I try to use `nix-channel --update` I get "error: unable to download 'https://nixos.org/channels/nixos-unstable': Problem with the SSL CA cert (path? access rights?) (77)", any idea how to make that happy?
<tilpner>
(But it can't build automatically due to licensing foo)
<d1rewolf>
tilpner, when I do nix-env -qa | grep jdk, all I see is openjdk. Is there another channel I'd get that from? sorry if that's the wrong terminology....still coming up to speed
<d1rewolf>
is environment.systemPackages where you'd put all the various programs you wish installed by default?
<tilpner>
d1rewolf - What do you mean by that? All of the entries of systemPackages will be installed, always, globally, for every user
<tilpner>
(Minus collisions, I guess)
halfbit has joined #nixos
<d1rewolf>
tilpner, well, I'd like to have a set of packages installed every time I build a new nix system. for example, my preference of a terminal (terminator), things like that
<tilpner>
d1rewolf - That is exactly what systemPackages does
<d1rewolf>
ideally I'll have one config I can copy to many machines, run nixos-install, and have my environment set up the ay I want
<iqubic>
tilpner: What part of that do you want to draw my attention to?
<d1rewolf>
ok, thanks. just making sure
<tilpner>
iqubic - The highlighted part
<iqubic>
Yeah. joepie91 did "npm set prefix ~/.npm-global"
<iqubic>
Is that helpful here?
<tilpner>
d1rewolf - I prefer users.users.myuser.packages for those
xy2_ has joined #nixos
<tilpner>
iqubic - Yes
<tilpner>
Read up and down a few lines
<d1rewolf>
tilpner, ok...so that isolates it to just that user? sounds good to me
<tilpner>
d1rewolf - Exactly. Not every system user needs to have a browser, etc. in its PATH
<d1rewolf>
tilpner, cool, thank you
<iqubic>
Well, I see how that works.
wucke13 has joined #nixos
<iqubic>
Will it work if I have only ever installed npm via nix-shell?
<goibhniu>
I tried downloading the cacert.pem from mozilla and setting CURL_CA_BUNDLE to point to it, but that doesn't seem to work.
igo95862 has quit [Quit: igo95862]
* goibhniu
wonders if nix-install would help
<goibhniu>
*nixos-install*
<srk>
check `date`
<ben>
Fri: command not found
<ben>
rip
<srk>
it happens when your time is way off
mariatsji has joined #nixos
<iqubic>
> date
<{^_^}>
undefined variable 'date' at (string):154:1
Jason_Grossman has quit [Ping timeout: 260 seconds]
<LnL>
can you link me the commit of the channel before you updated?
* goibhniu
will post the revision details when it's back up, in case that's of interest
erickomoto has quit [Ping timeout: 240 seconds]
<goibhniu>
I know it was the nixos-unstable channel from ~ 3 days ago
stepcut has joined #nixos
xy2_ has quit [Ping timeout: 240 seconds]
Jason_Grossman has joined #nixos
hxrts__ has joined #nixos
Jason_Grossman has quit [Client Quit]
Jason_Grossman has joined #nixos
cransom has quit [Quit: WeeChat 2.0]
cransom has joined #nixos
Jason_Grossman has quit [Remote host closed the connection]
Jason_Grossman has joined #nixos
<manveru>
anyone know how to fix the dhall-to-nix package? it depends on hnix, which is marked as broken
<manveru>
i can get it from the 18.03 channel, but that's using an ancient version of dhall
<grp>
What's the least clumsy way to actually package something in nix? I've been struggling with packaging an app that must have some hardcoded stuff among other quirks, and writing the default.nix, then runinng nix-build and see it fail miserably doesn't cut it. I mean, there's -K, but I'd like to have a shell in the very build environment to test a few things with everything correctly setup for the build process.
<grp>
I recall this is possible with nix-shell, but still can't get it to work.
* grp
would be ok with just a link to some up-to-date tutorial
<dtz>
nh2: one sec I've been poking at this I have goodness for you :3
<nh2>
nice
mariatsji has quit [Remote host closed the connection]
mariatsji has joined #nixos
tzemanovic has joined #nixos
<iqubic>
Does nix-shell inherit the $PATH of the shell that calls it?
<LnL>
yes, unless you use --pure
<iqubic>
Cool. That's what I want.
winem_ has joined #nixos
<iqubic>
Now I need to figure out how to add ~/.npm-global/bin to the $PATH of the emacs eshell.
mariatsji has quit [Remote host closed the connection]
tzemanovic has quit [Ping timeout: 256 seconds]
mariatsji has joined #nixos
mariatsji has quit [Ping timeout: 256 seconds]
<stepcut>
when I submit a bug to nixpkgs regard a haskell package -- is there anything special I should be doing to tag it so that haskell people might see it?
Jason_Grossman has quit [Ping timeout: 240 seconds]
rihards has joined #nixos
winem_ has quit [Ping timeout: 240 seconds]
tenten8401 has joined #nixos
* goibhniu
ritually sacrifices a jellyfish for good luck ... and reboots
erickomoto has joined #nixos
erickomoto has quit [Client Quit]
ashkitten has quit [Remote host closed the connection]
erickomoto has joined #nixos
ashkitten has joined #nixos
goibhniu1 has joined #nixos
coot_ has quit [Quit: coot_]
goibhniu has quit [Ping timeout: 265 seconds]
<goibhniu1>
LnL: The host NixOS was using revision 2a8a5533d18b22ed983a1fe526ec16b801cbcd97
* goibhniu1
checks if it has the relevant commit
<dtz>
nh2: sorry, will be pushing shortly hopefully-- but in case I don't the answer is just remove that libiconv line :)
<dtz>
on nixpkgs master "libiconv" is basically just the iconv header from musl itself
<goibhniu1>
LnL: my system does not include your changes to curl
xy2_ has quit [Ping timeout: 268 seconds]
<LnL>
yeah, I think it might even still be in staging
<goibhniu1>
ah, cool
<goibhniu1>
thanks for adding a note to the ticket about containers too
raynold has joined #nixos
<LnL>
hopefully nobody else runs into this :)
<LnL>
using the nix-daemon socket from the host should work fine as an alternative and is much safter
<gchristensen>
#nixos is lucky 888 right now
<goibhniu1>
oh, to build the container generation from the host?
<samueldr>
gchristensen: 888th channel? I see 902 users here
<goibhniu1>
that would be a lovely way to manage imperative containers in general ... (IIUC)
<gchristensen>
huh, I see 888
<LnL>
I also see 888
<LnL>
goibhniu1: try adding a bind mount for /nix/var/nix/daemon-socket/socket
Copenhagen_Bram has quit [Read error: Connection reset by peer]
<samueldr>
my client mus be out of sync with something :/
<LnL>
that should enable nix inside the container to communicate with the daemon, similar to how it works for your local user
<goibhniu1>
nice, cheers!
radisson has quit [Quit: Page closed]
<LnL>
I think it's also possible to use a different path with NIX_REMOTE=daemon?socket=/foo or something
kristoferus75 has quit [Quit: WeeChat 2.1]
doyougnu has joined #nixos
Copenhagen_Bram has joined #nixos
<{^_^}>
[nixpkgs] @jb55 opened pull request #43494 → clipmenu: init at 5.4.0 → https://git.io/fNqxP
<LnL>
ah no, just unix:///foo
<ben>
://////
muzzy_ has joined #nixos
<LnL>
sorry you have to escape backslashes here
<ajs124>
I'm trying to use mysql ensureUsers + ensurePermissions right now, but the user does not seem to be created or granted permissions. Any idea what I might be doing wrong?
<ajs124>
my config looks like "services.mysql.ensureUsers = [ { name = "test"; ensurePermissions = { "*.*" = "ALL PRIVILEGES"; }; } ];"
mariatsji has joined #nixos
Copenhagen_Bram has quit [Read error: Connection reset by peer]
philippD has joined #nixos
crmlt has joined #nixos
doyougnu has quit [Quit: WeeChat 2.0]
Copenhagen_Bram has joined #nixos
halfbit has quit [Ping timeout: 256 seconds]
<tenten8401>
hey, so if I have an application that I try to download, and they only offer an unversioned download link, what would be the best way to go about including it in a package?
<tenten8401>
is there a way to skip the sha256sum?
<tenten8401>
would it be better to try pulling the release from github and building the .jar from source?
halfbit has joined #nixos
<samueldr>
if you can build the .jar from source, it's always the right solution
<samueldr>
else, check if the unversioned URL redirects (through http probably) to a versioned URL
<samueldr>
tenten8401: if you tell us what it is exactly, I can take a peek and see if there is a stable URL to use
<d1rewolf>
is there a way to allowUnfree in configuration.nix?
<d1rewolf>
I have packages I wish to include in my users.users.d1rewolf.packages
muzzy_ has quit [Ping timeout: 240 seconds]
<d1rewolf>
well, damn it
<d1rewolf>
never mind. it's right there in front of me
graphene has quit [Remote host closed the connection]
wpcarro has joined #nixos
graphene has joined #nixos
<Lisanna>
*depsHostTarget to buildInputs
<d1rewolf>
holy batman...I think nixos is actually going to be the os I've always dreamed of. I switch machines so regularly...being able to store my os (sorta) in one file is awesome :)
<infinisil>
\o/
<clever>
:D
<tenten8401>
it's great, using it on a desktop and a server at the moment
<tenten8401>
still figuring out the whole package management thing currently
<clever>
d1rewolf: i now have nixos on my desktop, 2 laptops, NAS, router, and a raspberry pi
<tenten8401>
it runs on a raspberry pi?
wpcarro has quit [Ping timeout: 256 seconds]
<clever>
tenten8401: yeah, but there is no binary cache support, so it takes a lot fo compiling
zugzug has quit [Ping timeout: 244 seconds]
<tenten8401>
wasn't there some way to designate a computer as a build slave? could you compile in arm with qemu?
<clever>
tenten8401: yeah, and with qemu-user, you can do it without emulating the kernel
<clever>
tenten8401: qemu-user lets an x86 machine run arm binaries
rardiol1 has quit [Remote host closed the connection]
<samueldr>
(there is binary cache support for the aarch64 raspberry pi 3)
<clever>
ive not tried aarch64 yet
<tenten8401>
most of the raspberry pis I own are pi 3s
<tenten8401>
so I wouldn't have to compile too much if I'm using that?
mariatsji has quit [Remote host closed the connection]
<clever>
yeah
<tenten8401>
ah well that should be nice, I'll have to try it later
<samueldr>
there are some packages that don't build for aarch64, so it's not 1:1 support, but everything that does is built by hydra
mariatsji has joined #nixos
<d1rewolf>
clever, nice ;-)
<samueldr>
(so, if you enable something huge and it starts building, it may mean that it doesn't build on hydra either)
<d1rewolf>
I'll be starting replacement of my various boxen this weekend ;)
<tenten8401>
should be fine for the most part, I assume things like KDE Plasma are already built
<samueldr>
one thing I liked with nixos, d1rewolf, I had an issue with my work computer, I was able to spin up a temporary VM that was a complete working clone, in under one hour (including download time)
<samueldr>
I was ready to work while I was still searching how to RMA the SSD at the time :)
<tenten8401>
yeah, just the other day I accidentially killed my OS install with a bad package I was testing
<tenten8401>
booted the NixOS installer, cloned my config from github and had a pretty much identical system in like 30 minutes
<tenten8401>
granted I did need to clone a few of my projects down from gitlab but still worked really well
<infinisil>
There should be a default "reproducible template" for nixos installations (and maybe even nixops)
<infinisil>
So you can start with such a repo as your initial config and work your way up from there
<manveru>
though i should probably try putting my home-manager config into my nixos config at some point...
<tenten8401>
home-manager is a good concept, but I wish there was something official
rardiol1 has quit [Client Quit]
<manveru>
what does official mean?
<tenten8401>
part of nixpkgs by default
<manveru>
well, i guess it could finally be added to nixpkgs, it doesn't change much anymore
<manveru>
but that's up to rycee :)
<d1rewolf>
anyone using i3-gaps on nixos here?
<logzet>
Just out of interest: How do you sync your nixos config using git? By just turning /etc/nixos into a git repo? By using a script to copy the config ~ to /etc?
<ldlework>
there's no licecap package?!
drakonis has joined #nixos
<logzet>
d1rewolf: I did for some time
<manveru>
d1rewolf: i do
<clever>
logzet: a git repo at /etc/nixos/nixcfg/
<samueldr>
tenten8401: if I understand correctly, you want /etc/skel since you want to use software which creates users imperatively, right?
Copenhagen_Bram has quit [Read error: Connection reset by peer]
<clever>
manveru: i keep the bare minimum required to boot in configuration.nix, and put the rest into what you have named kappa.nix
<logzet>
I actually thought about making /etc/nixos a hardlink into $HOME
<d1rewolf>
manveru, I have this in my config: services.xserver.windowManager.i3.package = pkgs.i3-gaps;
<clever>
so if i spin up a second machine with slightly different boot config, it cant conflict
<d1rewolf>
but when I login, I still have regular i3
<d1rewolf>
even tho nixos-rebuild switch works
<d1rewolf>
is there something else to do?
Copenhagen_Bram has joined #nixos
<logzet>
d1rewolf: How do you tell? By using i3-gap features and they are not working?
<d1rewolf>
logzet, ah...now...that's probably my problem. I just assumed gaps would appear, but I'll bet theres configuration to be had. I'll take a look
<manveru>
d1rewolf: i use home-manager for configuring i3, so i'm not sure
<logzet>
d1rewolf: iirc gaps does look the same if you don't use gaps features
<manveru>
yeah
<d1rewolf>
logzet, cool, thanks
<d1rewolf>
manveru, you store your entire i3 config in home-manager? how does that end up working, out of curiosity? Can you share a config?
<iqubic>
Well, looks like nix-shell isn't getting the right path.
<samueldr>
as for the push messages, what was talked before were the individual commits summary (last three iirc) which is already done
wpcarro has joined #nixos
<samueldr>
mapping a push event with a pr close is hard (but not impossible) with the webhooks api
<iqubic>
Ignore me. I haven't set the path correctly.
<infinisil>
samueldr: Ah I also thought I saw some conversation about removing the push ones as well though, oh well, I don't mind them
<samueldr>
what was proposed was to do some kind of throttling, on event X, wait Y seconds/minutes and bunch up all messages into a digest
<samueldr>
but the response wasn't great, it'd lose much of what's of value here
<samueldr>
(though, merging the push/PR close messages is still on the table)
<leotaku>
What do I have to look out for when contributing to nixpkgs? How do I make sure everything will work? Are there any resources?
<grp>
finally managed to get this app packaged, builds allright. However, there's a quirk that's bugging me: when I fix some hardcoded paths in a postUnpack hook, I get an error that the makefile is older than the conf script but with preConfigure hook works fine... wtf? isn't postUnpack an even earlier stage than preConfigure?
logzet has quit [Remote host closed the connection]
<{^_^}>
[nixpkgs] @xeji pushed commit from @timokau to master « pythonPackages.cypari2: 1.1.4 -> 1.2.1 (#43496) »: https://git.io/fNmtG
<tobiasBora>
I'd like to deploy the configuration of my raspberry pi 3B+ using nixops. I looked at the documentation, and it looks pretty easy to set things up, however, I'm not sure to know whether I should also include in the local nixops configuration all the rasp-linked stuff, like swapDevices, fileSystems, boot.kernelPackages...
<{^_^}>
[nixpkgs] @xeji pushed commit from @leenaars to master « orthorobot: 1.0 -> 1.1.1 (#43495) »: https://git.io/fNmtK
<iqubic>
Can I use sudo inside a nix-shell?
infinisil has quit [Quit: Configuring ZNC, sorry for the joins/quits!]
<clever>
iqubic: probably
<bachp>
tobiasBora: It's some time back I used the none target but I believe to remember that I had to provide the complete configuration including things like partition. Not sure this is still the case. Best to try it out.
mkoenig has quit [Remote host closed the connection]
<tenten8401>
related to ATLauncher earlier, I've made some progress on building the jar from source, but it keeps failing because there's no pom.xml apparently, despite it being in the GitHub repo, and I have no clue why. If anyone could take a look at https://hastebin.com/zehodiqiwo.bash and help me figure out what I'm doing wrong, it'd be greatly appreciated. It's a mix of my non-building ATLauncher package and this: https://github.com/NixOS/nixpkgs/blob/master/
<tenten8401>
pkgs/servers/exhibitor/default.nix -- I'm not familiar with Maven at all
mkoenig has joined #nixos
<tenten8401>
I see there's mvn2nix as well, but I'm not sure if that's the right way to do it based on the other packages in the nixpkgs repo
sbdchd has joined #nixos
genesis has quit [Read error: Connection reset by peer]
<tobiasBora>
Hum... I don't understand why, but nixops is basically redownloading all the very basic utils on my local computer, while I basically used the configuration file that is already deployed on the raspberry pi...
andymandias has quit [Ping timeout: 265 seconds]
<tobiasBora>
Why does it try to download this locally, while anyway the raspberry does not need it???
<clever>
tobiasBora: it doesnt know what the pi needs until after it has recreated the entire os
<clever>
tobiasBora: and all dependencies must exist before it can create something that depends on them
<tobiasBora>
really? So the binary he is downloading locally are the aarm64 binaries?
tzemanovic has joined #nixos
<clever>
tobiasBora: yeah
<clever>
tobiasBora: if youve set the arch right in nixops
init_6 has joined #nixos
<tobiasBora>
I never setup any arch in nixops ^^'
<tobiasBora>
copying path '/nix/store/qwrdb0agi8gjgbmdfllfabcrdnc6nnwx-ca-certificates.crt' from 'https://cache.nixos.org'...
<tobiasBora>
ops
<tobiasBora>
oups*
<clever>
tobiasBora: if you can paste the storepath of one of the programs it downloads, i can check its arch
<tobiasBora>
but I don't understand why it does not simply copy the configuration on the rasp, and then run locally the changes
<clever>
tobiasBora: if you set the rpi up as a binary cache, it can
<tobiasBora>
ok, then the above one is one of these
<tobiasBora>
clever: so setting up the rpi as a binary cache would not download anything on my laptop ?
<clever>
it would download from the rpi->laptop
<clever>
which may be faster if your internet modem is the bottleneck
<{^_^}>
[nixpkgs] @xeji pushed commit from @geistesk to master « openrct2: 0.1.2 -> 0.2.0 (#43386) »: https://git.io/fNmmn
<tobiasBora>
but why does the laptop needs it? The raspberry pi won't need it anyway? And what happends if the binary is not available on the binarycache? My computer won't be able to compile it as it's not an arm device
andymandias has joined #nixos
<clever>
when building any derivation, all of its inputs must exist
tzemanovic has quit [Ping timeout: 264 seconds]
<clever>
so when building something like the system-path directory, it must have a copy of every program in system-path
coot_ has quit [Quit: coot_]
<tobiasBora>
clever: but why does the laptop needs to build anything? It's not the goal of the rasp already? What's wrong with just "copy this nix file on /etc/nixos/configuration.nix on the rasp, and then run nixos-build switch on the rpi"?
<clever>
tobiasBora: and this includes config files, which must be built on an arm device
<clever>
tobiasBora: nixops builds it locally (or on a build slave), after evaling it locally
<tobiasBora>
I still don't get the "why"
<clever>
thats just the way nix and nixops work
init_6 has quit [Ping timeout: 260 seconds]
erickomoto has joined #nixos
<tobiasBora>
well I guess that the developpers are not crazy, and they don't do this strange thing just for fun, do they?
rardiol1 has quit [Remote host closed the connection]
<clever>
the machine running nixops will usually also be caching everything, so it only has to happen once
sam__ has joined #nixos
<tobiasBora>
sure, but it takes useless place. For example if I want to install a full crazy heavy program on my server, I'll also have it installed on my laptop??
<clever>
yeah
<tenten8401>
doesn't it just store it there until GC gets run?
<clever>
if you dont enable rollback support, then it can be GC'd
stepcut has quit [Remote host closed the connection]
<{^_^}>
[nixpkgs] @xeji merged pull request #43415 → termite: Add support for macOS → https://git.io/fNLwu
<{^_^}>
[nixpkgs] @xeji pushed commit from @Enzime to master « termite: Add support for macOS (#43415) »: https://git.io/fNmmo
Copenhagen_Bram has quit [Read error: Connection reset by peer]
<tobiasBora>
it seems so un-natural to me... And I don't even understand how it can be useful at some place, because I guess that during the deployement the raspberry will download it one more time right?
stepcut has joined #nixos
<clever>
tobiasBora: if you are deploying to 2 raspberry pi's, the laptop will download it once, then copy it to both pi's
<tenten8401>
^ and then you can either run garbage collection manually or set up the automatic GC
<tobiasBora>
clever: if my laptop is not on the raspberry pi network, I'm not sure we gain anything out of this...
<tobiasBora>
tenten8401: well garbage collection is not a solution, because next time you will want to do a modification on the raspberry pi, it will still download the full OS
<clever>
tobiasBora: nixops is also specialized a bit more around the machine running nixops being able to do builds, but it can also use build slaves in the case where you cant
<tenten8401>
tobiasBora: yeah, I agree it's not a solution, but it'd keep say the old package versions out that aren't in use anymore
<tobiasBora>
clever: well anyway here I'm pulling from a binary cache the images, so my laptop will never do any build, so I don't see how build slaves help here...
bmikedesk_ has joined #nixos
<clever>
tobiasBora: it must still build config files like /etc/hosts
stepcut has quit [Ping timeout: 240 seconds]
<clever>
tobiasBora: no mater what, it must build at least a few of the files
<tobiasBora>
clever: and for that I need an arm device?
<clever>
yes
<tobiasBora>
that's insane
bmikedesk has quit [Ping timeout: 276 seconds]
<tobiasBora>
so to sum up:
<clever>
or you can try the cross-compiling stuff, which is a bit more untested
init_6 has joined #nixos
<tobiasBora>
to install program P on raspberry pi A from my laptop B, if P is not in my binary cache, B will ask to A to build the program, it will receive the program and send it back to A...
<tobiasBora>
And still worse, if I don't setup A as a build machine, then B will cross-compile the program very slowly, and with a good chance to fail, and then will send this to A...
<clever>
it will only crosscompile if you configure nixops to crosscompile
<clever>
and then it will crosscompile EVERYTHING
<tobiasBora>
by default it asks to the rasp to compile?
<clever>
if you have set the arch to arm, yeah
<tobiasBora>
clever: how do you set the arch? I can't find any reference to arch in the nixops manual
<clever>
nixpkgs.localSystem.system = "aarch64-linux"; i think
<tobiasBora>
in the same block as deployment.targetHost?
Guest21266 has quit [Ping timeout: 240 seconds]
<clever>
yeah
erickomoto has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
<clever>
also of note, if your nixpkgs rev is different, then it will be upgrading the rpi, so it has to download everything anyways
<tobiasBora>
clever: so it means that I also need to have the exact same nixpkgs rev?
<clever>
yeah
<tobiasBora>
so if, say, I deploy from several computers, everytime I want to do a minor change to the rasp, I need to do a full upgrade of the raspberry
<clever>
thats why i pin the nixpkgs in the deployment config
<infinisil>
78GB for my /nix, but only 35GB compressed :D
<tenten8401>
ZFS does compression?
<infinisil>
If you tell it to
<tenten8401>
how much of a performance impact does it have?
<tobiasBora>
hum... maybe I should give a try to zfs at some point. But now first try to deal with nix deployement
<clever>
tenten8401: then steam does a multi-threaded disk write to download a game, it cripples my machine :P
<clever>
tenten8401: but no other program does that, they seem to all do single-threaded writes
<infinisil>
Should be pretty unnoticeable in general
<infinisil>
CPU's are fast yo
<clever>
infinisil: and in this summer weather, the cpu load from steam downloading a game managed to put me into thermal shutdown, lol
<tenten8401>
now I wonder if it'd be worth the effort to try zfs
<infinisil>
Weeee
<clever>
tenten8401: you can freely turn compression on and off without reinstalling
<clever>
tenten8401: so if you dont like the cost, just turn it back off
<tenten8401>
ah alright
<tenten8401>
I'm currently using ext4 so it'd need a reinstall
<clever>
just keep in mind that it only effects the writes that occur when enabled
<clever>
i just noticed that my /nix/ had compression off, so all of my recent downloads have been uncompressed
<infinisil>
clever: Will it slowly uncompress everything as you use the data?
<clever>
nope
<clever>
it will leave it compressed
<clever>
it will only update if you re-write the data to disk
<clever>
and nix wont let you delete things that are inuse, or write to them again
<tenten8401>
kinda defeats the purpose of being able to turn it off without a reinstall
<clever>
it will stop affecting all future writes
<clever>
and after a nix channel update, it has to replace everything
<clever>
it will also cache reads, so the read side is less of an issue
<tenten8401>
yeah but then you're stuck with this mess of compressed and uncompressed files
<infinisil>
tenten8401: Well, you can just create a new dataset and move everything over to "redo" it, but that requires the same amount of extra free space the uncompressed files have
<infinisil>
But that's as good as you're gonna get it in any other file system, can't get around that
<infinisil>
afaik
<tobiasBora>
So I still don't understand why we need to download locally stuff on nixops... And for me it breaks all the logic of nix: nix should be deployable by sending a single file, that should describe the system. Nixops completely forget about it, and redownloads all the system, and mix the description with the action... So I guess that it's not really imaginable to deploy anything using nixops when you have several
<tobiasBora>
developers...
<infinisil>
It's pretty simple to do in ZFS thoug
<tobiasBora>
Ok, here are the errors... error: build of '/nix/store/nid064laqa84bl1lg2ynhjw7pzakf6vp-nixops-machines.drv' failed
<Lisanna>
How does Hydra determine what order jobs in a jobset should be evaluated? Can I specify a build priority in the jobset definition?
<clever>
tobiasBora: the real error is above that
<tobiasBora>
grrrrrrrr : preallocating file of 18240 bytes: No space left on device
<Lisanna>
I've got some long running tests that I would really love to always start running first, because they usually end up getting queued last causing the build to take a lot longer than necessary
<gchristensen>
anyone have chromecast working via chrome?
<clever>
tobiasBora: there may also be a lot of wasted space in /nix from old nixos builds, can you pastebin du --max=1 -hc /nix/store/ | sort -h
jluttine has quit [Ping timeout: 240 seconds]
jluttine has joined #nixos
<Lisanna>
Answer: meta.schedulingPriority
<gchristensen>
nice!
<clever>
Lisanna++
<{^_^}>
Lisanna's karma got increased to 2
<Lears>
I did at some point, gchristensen, though I don't have a chromecast to test on at the moment. To get it to work I had to disable networking.firewall (or allow certain ports).
<gchristensen>
ouch
ntqz has joined #nixos
goibhniu1 has quit [Ping timeout: 240 seconds]
<tobiasBora>
I garbage, and I saved 2Gb... But I think that nixops is not the tool for me, I think it's completely insane to copy on a laptop all the data, and I just can't accept this. Actually, I used before a script that was basically syncing the local configuration with the rasp configuration, and then run remotely the nixos-build... and I think I'll jump to that 40 line script, it's much more efficient, and closer to
<tobiasBora>
my need...
<clever>
tobiasBora: what is the output of the above du command?
hxrts_ has quit [Ping timeout: 276 seconds]
<tobiasBora>
clever: you want everything? Here are the last two lines: 230M /nix/store/21ymadblbmsbb2bk4q7gl4kjasp8zmgd-binutils-2.30
<tobiasBora>
clever: well I reinstalled from scratch nix a few weeks ago, and I use nix-env only when the package I'm looking for is not alreay in the debian repo
<clever>
tobiasBora: ah, and 2gig isnt much, i think you just need more free space
<clever>
tobiasBora: what about if you do nix-store --optimize ?
erickomoto has joined #nixos
<tobiasBora>
clever: yes, but I have only 65Go available on my computer, so I can't really give free space to nix, especially if it want's to waste it in an inneficient and inapropriate way...
<iqubic>
What's the right way to set the $PATH on nixos?
<gchristensen>
nix uses disk space to provide additional sanity, it is a fundamental trade Nix makes
fdafdsafdsa has joined #nixos
<fdafdsafdsa>
*test*
fdafdsafdsa has quit [Client Quit]
<iqubic>
I use ZSH and want to set my $PATH
<tobiasBora>
Do you know any other alternative software to nixops that do not require the laptop do download anything?
<infinisil>
iqubic: A bit more specific?
<gchristensen>
nixos-rebuild supports --target-host and --build-host, tobiasBora
<{^_^}>
[nixpkgs] @volth opened pull request #43503 → bazel: use per-user tmp directory to avoid conflict with other builders → https://git.io/fNm3g
<tobiasBora>
gchristensen: I do not mind to lose some space because I need to maintain several versions of a given library for sanity. But I don't want to lose some space just because a program (nixops) asks to my laptop to do some crazy useless stuff
manny has quit [Ping timeout: 240 seconds]
<tobiasBora>
gchristensen: hum, so you need to have a nixos laptop to have nixos-rebuild command available no?
<iqubic>
infinisil: Doesn't nixos have a mechanism to set my $PATH?
<tobiasBora>
clever: new error: error: a 'aarch64-linux' is required to build '/nix/store/p6lici7b718wsc8x5qa686jlbnji2w90-append-initrd-secrets.drv', but I am a 'x86_64-linux'
<gchristensen>
you do
<infinisil>
iqubic: Of course it does, and you already have a set path, so I'm asking you to be a bit more specific, what do you want?
<clever>
tobiasBora: now you need to setup a build slave
<clever>
tobiasBora: is this on debian or nixos?
<tobiasBora>
debian
<clever>
tobiasBora: you need to create a /etc/nix/machines file with a line like this:
<clever>
tobiasBora: that is a user@host, the arches it supports, the path to an unencrypted ssh private key, and then how many parallel builds it can support, the relative speed, and features
<tobiasBora>
so I need root access??
<clever>
it can also be done with a --option flag, but i havent used that one much
<kalbasit>
how to run tests in `nixos/tests` ?
<tobiasBora>
ok thanks
igo95862 has quit [Quit: igo95862]
<clever>
kalbasit: they are attributes on nixos/release.nix
<iqubic>
Is there a way to set my $PATH before my window manager starts up?
<clever>
kalbasit: run nix repl on that file and eval tests to poke around