<clever>
noonien: this will do a proper cross-compile, it works great
<noonien>
i'm wondering if i use binfmt, if nix will use the caches from the nix cache servers for aarch64-linux
<clever>
if you use binfmt, then it can use the caches
<noonien>
great, that's what i want!
<clever>
but if its proper cross, it wont have as much cache coverage, but it will compile faster
<noonien>
i've got a few nixosConfigurations in my flake.nix
<noonien>
i can build a system using `nix build --system aarch64-linux '.#nixosConfigurations.<name>.config.system.build.toplevel'` which appears to be extra slow
<clever>
that relies on binfmt
<clever>
or build machines
<noonien>
but it's using binfmt, and I can use the nix caches
Fare has joined #nixos
<noonien>
i'm wondering if i can do proper cross compilation, without binfmt for the nixosConfiguration. i'm also wondering how many cores the binary ran with binfmt uses, when doing nix build, only one core seems to be used
<clever>
proper cross has some minor issues when building full nixos
<clever>
a lot of #!'s for bash, point to the x86 bash
<DigitalKiwi>
is pkgsStatic only what's from the static-haskell-nix project or is it other things too
<noonien>
clever: i see
<noonien>
i would actually prefer to use binfmt, i'm wondering if there's a way to speed it up, it's a bit annoying that only one core is used when building
EmoSpice has joined #nixos
<DigitalKiwi>
i guess i could try a package that i know isn't haskell and find out myself >.>
juboba has left #nixos ["ERC (IRC client for Emacs 27.1)"]
supersandro2000 has quit [Disconnected by services]
supersandro2000 has joined #nixos
<aterius>
tpw_rules: I guess, but then we'd have to do this for every lua plugin for neovim that uses the ffi
<aterius>
Maybe that is the way
KarlJoad has quit [Remote host closed the connection]
Fare has quit [Ping timeout: 260 seconds]
<tpw_rules>
wouldn't you have to patch LD_LIBRARY_PATH for whatever the libraries the FFIs want anyway? the set of libraries is probably smaller than the set of plugins but still
<notgne2[m]>
so if it's acceptable for my osu-lazer fix to spoof the hash to a remote server, it should definitely be acceptable to spoof it locally
srk has quit [Ping timeout: 268 seconds]
srk has joined #nixos
<notgne2[m]>
though I have absolutely no idea why developers think adding those checks is smart to begin with
<notgne2[m]>
if you're going to edit the code to maliciously mislead a user, you can remove the integrity check. if you're going to edit the code to cheat at a game, you can remove the integrity check.
<DigitalKiwi>
heh there are fake websites with hacked versions of that app yeah
<noonien>
i'm trying to build an system configuration with `nix build '.#nixosConfigurations.piprint.config.system.build.toplevel'`, however, it seems to build python27.cffi, which is a requirement for a klipper, however, python27.cffi should already be cached, if i do `nix shell nixpkgs#python27.cffi`, nothing gets built. how can i find out the reason for
<noonien>
which the package is being build? can i get a diff between 2 versions of the derivation?
<DigitalKiwi>
how can i make nix look at the attributes that don't have recurse into :( (i.e. haskellPackages)
<noonien>
what do you mean by "look"?
<DigitalKiwi>
and why aren't they on by default now that it takes 30 seconds to download and parse 20MB of files every time i do anything i don't want to hear that it takes too long
mlen has joined #nixos
lambda-11235 has quit [Max SendQ exceeded]
lambda-11235 has joined #nixos
<DigitalKiwi>
nix search nixpkgs, nix-env -qa, nix flake show nixpkgs --legacy, etc.
<noonien>
AFAIK, atleast for nix flakes, the packages need to be flattened
myscreant[m] has joined #nixos
<noonien>
actually, not sure that's relevant for anything besides `nix flake show nixpkgs --legacy`
gustavderdrache has joined #nixos
<DigitalKiwi>
How do I flatten
<noonien>
i'm not sure you can do it for nixpkgs, for your own flakes, you either do it manually, or use flake-utils
<tpw_rules>
i think your options are to add another channel with nixpkgs-unstable and change the name in the <> or clone nixpkgs and point to it instead of '<nixpkgs>'. but i could be wrong
<energizer>
i want to list all of the sources of everything that went into this binary. is `nix-store -qR --include-outputs` the right query?
<clever>
energizer: that will only show the runtime deps i think
<clever>
energizer: if you run it on the .drv instead, you get the full build-time closure
<infinisil>
siraben: One way is to use `nix-instantiate channel:nixpkgs-unstable -A hello`
sangoma has joined #nixos
<energizer>
clever: thanks
zakame has quit [Ping timeout: 256 seconds]
zakame has joined #nixos
<DigitalKiwi>
firefox is the worst about the password prompt :|
srk has quit [Ping timeout: 268 seconds]
<DigitalKiwi>
"here's a window spawned at a random time that has no identifying marks; please enter your master password"
srk has joined #nixos
<DigitalKiwi>
i closed and reopened it at 3:40 let's see when it asks for it
<Hail_Spacecake>
is there a way to configure nixos to make sure a directory at some path exists with some permissions?
orivej has quit [Ping timeout: 246 seconds]
orivej has joined #nixos
monokrome has joined #nixos
<tpw_rules>
iirc you can put appropriate config files in your output's etc/tmpfiles.d/ directory
EmoSpice has joined #nixos
<Hail_Spacecake>
tpw_rules: what do you mean by your output's etc/tmpfiles.d directory?
<Hail_Spacecake>
the context for this is that I'm trying to create a systemd service that expects a command line argument for a directory /var/cache/<servicename>
<Hail_Spacecake>
I guess this directory doesn't need to be there specifically, it just needs to exist somewhere
<Hail_Spacecake>
so if there's some standard way of creating a cache directory with nixos to give to a custom service, that woudl be fine too
<Hail_Spacecake>
or I could just make sure that /var/cache/<servicename> exists with permissions the process can write to
<DigitalKiwi>
i've seen modules create them with a systemd service i think
<Hail_Spacecake>
DigitalKiwi: is there an example somewhere?
EmoSpice has quit [Ping timeout: 264 seconds]
orivej has quit [Ping timeout: 256 seconds]
<tpw_rules>
yeah you can also do it with systemd. it would be CacheDirectory=whatever if you want /var/cache/whatever. look it up for more info
<Hail_Spacecake>
have any of the maintainers considered redesigning the website so that options are broken out into separate pages?
<Hail_Spacecake>
it's kind of annoying that every single nixos option (as far as I can tell) is dot-separated on one giant page
<tpw_rules>
there is an option search function
sss2 has joined #nixos
<Hail_Spacecake>
often I'm finding I don't know exactly what some option is called, but I know it probably exists in some subsection
<Hail_Spacecake>
so I just want to see every option for that subsection
monokrome has quit [Quit: WeeChat 2.8]
<DigitalKiwi>
oh or create them as a user home dir
<Hail_Spacecake>
like right now, I'm sure there's some option that specifies the nginx root of a vhost, it's probably "root", but I wanna make sure
<Hail_Spacecake>
but it owuld be nice to be able to serach for the string "root" in nginx vhost config without having every other config option on the page show up
<Hail_Spacecake>
also the page is big enough to be slow in my browser
<Hail_Spacecake>
so if a package is marked broken, the expected error when running nixos-rebuild switch is error: undefined variable 'postgrest' at /etc/nixos/configuration.nix:93:6 ?
<Hail_Spacecake>
(or wherever your systemPackages happens to be)
<Hail_Spacecake>
DigitalKiwi: how hard is it to fix?
<Hail_Spacecake>
I saw a closed issue from last year about the package being broken but then fixed
<Hail_Spacecake>
in any case, how do I allow a broken package as a system package?
<Hail_Spacecake>
looks like I can install it successfully with nix-env if I pass that allowBroken option. but I can't figure out where I'd put that in the nixos configuration
<vonfry>
I met `hash mismatch importing path` with my own cache server. Then I found issue https://github.com/NixOS/nix/issues/1885 with the problem. It said rm /nix/var/nix/binary-cache-v3.sqlite can fix the problem, but I don't have that file on my server. Is there a way to fix the problem?
<{^_^}>
nix#1885 (by domenkozar, 2 years ago, open): hash mismatch in downloaded path
nrh^ has joined #nixos
Hank63 has joined #nixos
<Hail_Spacecake>
DigitalKiwi: where should that nix snippet go?
<KarlJoad>
cole-h: I'm using `pkg.fetchurl`, and I'm getting `do not know how to unpack source archive /nix/store/hash-octave-strings-rev.zip`
simba1 has joined #nixos
<cole-h>
KarlJoad: Try `pkgs.fetchzip`
<jmc-figueira>
Hey! I have two quick questions:
<jmc-figueira>
1. Where, exactly, should amdgpu be initialized? `boot.initrd.kernelModules`, `boot.kernelModules` or neither? Yesterday I was told my black screen issue could be caused by this, but both ended up giving me two different but similar issues: one blackscreens at boot (luks prompt), the other blackscreens after plymouth (at the display manager).
<jmc-figueira>
2. How should randomized key encrypted swap be set up? I found out about `swapDevices.*.randomEncryption` but I'm not sure if there's any non-declarative setup I should need to do before. Do I need to create a LUKS container? I doubt it since those need to be created with a specific key, and I'm interested in the randomized key version. Do I just create a partition with mkswap as usual and then specify in
<jmc-figueira>
hardware-configuration.nix that I want random encryption with the aforementioned option?
<Hail_Spacecake>
is the current verison of nixops 1.7 or 2.0?
<DigitalKiwi>
aanderse: i did a git bisect for a problem i've been having and it says you did it :( (but i don't know how this commit could have done it)
<bqv>
energizer: but there is no execute in nix, only eval and build, which are two distinct steps
<DigitalKiwi>
not even sure that computer can run vms lol i'll try
gurki is now known as x64
<energizer>
bqv: i mean build in this case
rymarllon[m] has joined #nixos
<bqv>
Unless there's a dependency between them, builds are always in parallel up to your build capacity
<energizer>
ok
<bqv>
Ke: it solves being able to store secret files versioned as part of your config, and deploy them, without adding almost any infra overhead. Better to have one impure key on persistent storage, not hundreds, right?
<{^_^}>
[nixpkgs] @vbgl pushed commit from @anmonteiro to master « ocamlPackages.mdx: 1.7.0 -> 1.8.0 »: https://git.io/JttUA
<energizer>
how do i convert an attrset to json?
<energizer>
oh
<energizer>
> builtins.toJSON
<{^_^}>
<PRIMOP>
<energizer>
nice
<energizer>
{^_^}++
<{^_^}>
{^_^}'s karma got increased to 227
<DigitalKiwi>
energizer: it doesn't let me login :(
lcvass_ has joined #nixos
<energizer>
DigitalKiwi: might need declarative users with mutableUsers=false. and after changing that you'll need to delete the cow file in your cwd before rebuilding it
Jd007 has quit [Ping timeout: 256 seconds]
lcvass has quit [Ping timeout: 256 seconds]
kwork has quit [Remote host closed the connection]
<Hail_Spacecake>
also how do I make it say something other than "Unnamed NixOps network" in `nixops list`, if it's not `network.description`?
<bqv>
DigitalKiwi: you should clean it up periodically. I only use it as a spooling ground for stuff imma add to my config in the immediate future but need now
<bqv>
I've only had mine at 10-15 max
<DigitalKiwi>
bqv: yeah i usually do
<DigitalKiwi>
most of these are newer than the last time i rebuilt
<Hail_Spacecake>
is something supposed to set NIX_PATH but isn't?
<Hail_Spacecake>
I don't have it set
<Hail_Spacecake>
nix-instantiate --eval -E '<nixpkgs>' doesn't work either
<DigitalKiwi>
export NIX_PATH or use -I ;)
<Hail_Spacecake>
I'm concerned if NIX_PATH is supposed to be getting set by something but isn't
<Hail_Spacecake>
maybe that means other things are broken
Fafnir[m] has quit [Quit: Idle for 30+ days]
doronbehar has quit [Quit: Idle for 30+ days]
<Hail_Spacecake>
I run arch linux and installed nix on that machine from an AUR package
sangoma has quit [Read error: Connection reset by peer]
<Hail_Spacecake>
also I use the fish shell which does things differently than bash-likes
<Hail_Spacecake>
if I set NIX_PATH to "~/.nix-defexpr/channels/nixpkgs", I get the saem error
<bqv>
> pkgs.overlays
zupo_ has joined #nixos
orivej has joined #nixos
zupo has quit [Ping timeout: 272 seconds]
berberman has quit [Ping timeout: 240 seconds]
sangoma has joined #nixos
berberman has joined #nixos
hoijui has joined #nixos
sangoma has quit [Ping timeout: 264 seconds]
lsix has joined #nixos
xeronull has joined #nixos
xeronull has quit [Client Quit]
xeronull has joined #nixos
kaligule has joined #nixos
<kaligule>
Hi, I am currently trying to contribute to the nixos manual. It is really hard though. Can someone tell me why DocBook XML was chosen over asciidoc or markdown for the nixos documentation?
<kaligule>
aterius:Thats great. I will have a look. Thanks
<aterius>
The RFC was already accepted, so it's just a matter of time, I believe there was some concern since nixos has to build it's own manual, and pandoc has a medium impact on closure size
hnOsmium0001 has quit [Quit: Connection closed for inactivity]
<kaligule>
If the RFC is accpted, what is the next step? Is there a place to help? Or should I just update the manual the old way in the meantime?
zupo has joined #nixos
sigmundv_ has joined #nixos
zupo_ has quit [Ping timeout: 256 seconds]
<sterni>
kaligule: mostly potring remaining docbook documentation to commonmark
<MisterMxyzptlk>
what kind of resource would I need to build all of nixpkgs with a hydra instance within a sane timeframe
domogled has joined #nixos
xeronull68 has joined #nixos
xeronull68 has quit [Client Quit]
xeronull has quit [Quit: Connection closed]
pitch has joined #nixos
__monty__ has joined #nixos
<adisbladis>
MisterMxyzptlk: That's a very open ended question
<adisbladis>
What's a "sane timeframe"
<MisterMxyzptlk>
lets say a couple of days
<MisterMxyzptlk>
within a week :D
<MisterMxyzptlk>
I just want a very rough ballpark here
kaligule has quit [Ping timeout: 260 seconds]
<adisbladis>
Hm, I think I can do that on my desktop :)
<adisbladis>
I've never actually tried a full stdenv rebuild, but very close to it
<adisbladis>
That's an AMD Epyc 7551
<adisbladis>
Overclocked to 3.2GHz
<MisterMxyzptlk>
No as bad as I would have thought
<adisbladis>
A hydra eval is ~33k packages iirc
<adisbladis>
Most of those are trivial ones
<adisbladis>
Chromium alone takes a couple of hours even on the beefiest of machines
<adisbladis>
MisterMxyzptlk: I also compile everything entirely in RAM
<adisbladis>
So no disk IO while building
civodul has joined #nixos
<MisterMxyzptlk>
I ask this because I am wondering if if nixpkgs + hydra could make a neat little digital archive of a lot of software utilities that could work offline
<MisterMxyzptlk>
you would curl / clone all source URLs in nixpkgs and host them locally
<MisterMxyzptlk>
(sort of digital prepper thinking here - what if I wanted to make an app after the apocalypse?)
<MisterMxyzptlk>
So in that sense perhaps I was wondering a bit more about disk footprint if all the build requirements are stored
<adisbladis>
MisterMxyzptlk: Right, you wouldn't need to build to achieve that
<adisbladis>
You could mirror sources only
<adisbladis>
If you mirror sources + nixpkgs that should be good enough
<MisterMxyzptlk>
yeah I know, but at some point you wanna build it if you wanna use it
<MisterMxyzptlk>
anyway from what you say it seems a powerful desktop would do the trick
<MisterMxyzptlk>
probably wanna have sizable disk space though
Kozova1 has quit [Quit: Leaving]
EMayej has joined #nixos
ky0ko1 has quit [Quit: killed]
ky0ko1 has joined #nixos
<srk>
MisterMxyzptlk: you can also pull sources from cache.nixos.org since nixos hydra caches all that (they are just derivations like builds)
<srk>
except non-free stuff of course
<MisterMxyzptlk>
oh neat
<MisterMxyzptlk>
good to know
<srk>
it's pretty cool since it wasn't garbage collected yet afaik
<seku>
heh, people actually overclock epycs?
malook has joined #nixos
<Nickli>
they have the thermal capacity :P
<seku>
yeah, they do. i run an 8core epyc too in my fileserver. never thought about OCing it tho :D
<gurki>
why would you have 8 cores in your fileserver
<gurki>
:o
<seku>
smallest Epyc.
<seku>
i wanted the pcie lanes
<seku>
also... playing around with nix, so ill run a few containers sooner or later.
<ehmry>
I shouldn't be so harsh on ipfs, I think the problems are intrinsic to "global" storage, i don't think its practiall to build p2p stuff at global scale. torrents work fairly well, but private trackers will always work best
hoijui has joined #nixos
<edef>
ipfs has the annoying failure mode of working part of the time and/or slowly
<edef>
if you're running a regular web server, it's fairly likely to either be broken or working
Jackneill has joined #nixos
<edef>
and things that are obviously completely broken get filtered out of the world fairly quickly
bqv has quit [Ping timeout: 272 seconds]
* DigitalKiwi
fork it rename KiwiBitcoinTrader
<ehmry>
DigitalKiwi: oh boy
<edef>
ipfs is this weird trap where everyone thinks it's real, working software because it sort of appears to work, and the theory seems sound enough if you leave out all the empirical results
bqv has joined #nixos
<edef>
it's been … 5 years since i first used it, and it hasn't become any more usable in that time
<ehmry>
if was just a CDN thing and the DHT stuff was left out, it'd proabably work, I think they've crammed too many goals onto it
<bqv>
Teehee. My overlay hackery works, now I have a recursively navigable tree of pkgs attrsets
<bqv>
Tl:dr, my pkgs is 2D
<edef>
at this point i consider it a nerd tar pit of sorts
<Taneb>
bqv: I want to know more
domogled has quit [Quit: domogled]
<bqv>
ehmry: people like to bash ipfs but nobody's yet to suggest me anything remotely viable as an alternative...
<ehmry>
bqv: right, there are alternatives, but they weren't viable
MmeQuignon has joined #nixos
<Nickli>
any of the promising+
<lukegb>
edef: can confirm, tried ipfs last week and it still isn't any closer to working well
ahmed_elgabri has quit [Ping timeout: 240 seconds]
<bqv>
Taneb: seems to crash my browser currently... but see my flake.nix around line 200 (github:bqv/nixrc)
<ehmry>
plan9 had some sort of content-addressed storage that worked well, but it wasn't any sort of public facing thing
dandart has quit [Quit: dandart]
<Nickli>
ehmry > saw someone mention something similar in HN about mounting a web page
<V>
I don't think "suggest an alternative" makes any sense when you could equally say that about any of the alternatives
<V>
if everything is broken, there is no default choice
<ehmry>
V: right, but the one with the best marketing rises to the top
ahmed_elgabri has joined #nixos
<V>
marketing says absolutely nothing about the usefulness of a project
<bqv>
Taneb: I replaced my list of permanent overlays with a meta-overlay, which lets me apply and unapply various overlays by attrset indirection
<V>
altcoins get a lot of marketing
<bqv>
E.g. pkgs.withEmacsFlake.pkgsParent.withEmacsFlake.emacs
<bqv>
Which is a pointless roundtrip, but applies the emacs overlay flake's overlay then gets emacs
<edef>
it turns out that "anonymously serve abstract Content to strangers" has zero emotional valence
<bqv>
V: ftr, I don't agree that ipfs is "broken", but I'm loathe to argue it at this point
<bqv>
That's why I ask for alternatives
<ehmry>
I'm working on my onw content-addressed storage now, but I have no intention of making it something that works outside of private groups
<lukegb>
Case in point: I'm trying to run an ipfs mirror of something but a pin operation using the ref impl on the full list of hashes seems to hang indefinitely even if pinning individual things works fine (albeit slowly)
<lukegb>
I want to believe :(
<Nickli>
ehmry > sounds like perkeep
<ehmry>
Nickli: is perkeep a thing? I remember looking at it but I haven't tried it
<marek>
bqv: I did play around with hypercore a little, which is the rework of dat (they have thrown that out of the window)
<marek>
but from experience, ipfs is the only one somewhat-working, depending on the use case
<Nickli>
ehmry > since it is a private thing, i don't know
<bqv>
marek: Ah, yeah I was curious about dat waybackwhen, but yeah that's my conclusion too
ahmed_elgabri has quit [Ping timeout: 264 seconds]
hoijui has quit [Ping timeout: 260 seconds]
ericsagnes has quit [Ping timeout: 260 seconds]
<Nickli>
ehmry > guess it is in the same vein as tahoe-lafs
<marek>
bqv: dat/hypercore tries to have mutable data, but you know, we Nixers just know. :)
gxt has joined #nixos
<Nickli>
hypercore reminds of that distributed website thingy which i can't remember the name of
<bqv>
My shallow interest in mutable data is quenched by ipns and various ipld-based tricks at this point tbh
<marek>
bqv: you might want to check the ipfs cluster project, not sure how far they are tho
<Nickli>
bqv > i didn't quite follow "interested quenched by X" to promoting IPFS, not a wording i'm too familiar with
<bqv>
I mean to say any need I have for mutable-addressed data is satisfied by those now, so I don't feel the need to shop around for things like dat so much
ahmed_elgabri has joined #nixos
<bqv>
And I have little need, at that
ericsagnes has joined #nixos
<ehmry>
Nickli: I tried tahoe-lafs once, but had problems
<edef>
i ran a successful tahoe deployment a decade ago or so
<ehmry>
which I vaguely remember being python related
<edef>
yep
<edef>
i don't recall performance being particularly amazing
<Nickli>
bqv > follow-up qurstion how/what are you using ipns and ipld for?
<edef>
though i do wonder how it'd run on pypy
<edef>
practically, i don't think the NixOS packaging for it is currently working
hiro98 has quit [Ping timeout: 256 seconds]
<ehmry>
I wanted it to work, I was installing it as the police were raiding and pissing in a house down the street
<bqv>
Nickli: again, little need, but it has at least once been handy to have an ipns url for data storage like ipfs cids but mutable. I'm also really keen to make my filesystem entirely virtual, and that'd be a cheeky way to avoid having to constantly save and update hashes for the more volatile data
<Nickli>
and this is why i want to learn emacs and org-mode i come over so many interesting thins :P
<bqv>
90% of my pc is in the nix store and perfectly reproducible from a 10meg repo. The rest is the pesky persistent data, which I'd love to shove on my ipfs-cluster and basically forego the need for a filesystem heirarchy at all besides my nix store and the ipfs cache, but I'm still trying to work out how I might do that
<Nickli>
bqv > do you have a private ipfs-cluster then?
<bqv>
No. That's the biggest issue. Private data is not easy on ipfs, but there are answers, I just don't know if I like them :p
<bqv>
My cluster is public, I just imperatively pin stuff atm
<ehmry>
I would worry that the design of ipfs makes it too difficult to be sure that its running in private mode
<bqv>
That's a teleconference from a day or two ago about that exact topic
<bqv>
And the current solutions, and how to proceed
neiluj has joined #nixos
neiluj has quit [*.net *.split]
CMCDragonkai has quit [*.net *.split]
Quick_Wango has quit [*.net *.split]
philr_ has quit [*.net *.split]
Siyo has quit [*.net *.split]
xanderle has quit [*.net *.split]
laerling has quit [*.net *.split]
Heirlung has quit [*.net *.split]
Swant has quit [*.net *.split]
berber has quit [*.net *.split]
lord| has quit [*.net *.split]
Serus has quit [*.net *.split]
eeva has quit [*.net *.split]
AWizzArd has quit [*.net *.split]
strikerlulu has quit [*.net *.split]
statusfailed has quit [*.net *.split]
puffnfresh has quit [*.net *.split]
sarcasticadmin has quit [*.net *.split]
devalot has quit [*.net *.split]
wolfshappen has quit [*.net *.split]
puffnfresh_ has quit [*.net *.split]
joehh1 has quit [*.net *.split]
bigvalen has quit [*.net *.split]
pieguy128 has quit [*.net *.split]
pareidolia has quit [*.net *.split]
edwtjo has quit [*.net *.split]
liori has quit [*.net *.split]
julm has quit [*.net *.split]
otulp has quit [*.net *.split]
vancz has quit [*.net *.split]
ambroisie has quit [*.net *.split]
dminuoso has quit [*.net *.split]
dev4 has quit [*.net *.split]
inf has quit [*.net *.split]
vk3wtf has quit [*.net *.split]
dfordvm has quit [*.net *.split]
whatisRT has quit [*.net *.split]
fionera has quit [*.net *.split]
thomassgn has quit [*.net *.split]
switchy has quit [*.net *.split]
jD91mZM2 has quit [*.net *.split]
cransom has quit [*.net *.split]
njd has quit [*.net *.split]
davidcl has quit [*.net *.split]
Mrmaxmeier has quit [*.net *.split]
adisbladis has quit [*.net *.split]
jol has quit [*.net *.split]
fps has quit [*.net *.split]
trulsa has quit [*.net *.split]
voidcontext has quit [*.net *.split]
drewr has quit [*.net *.split]
rprosper- has quit [*.net *.split]
euank has quit [*.net *.split]
exarkun has quit [*.net *.split]
Enzime has quit [*.net *.split]
liori has joined #nixos
trulsa has joined #nixos
ambroisie has joined #nixos
strikerlulu has joined #nixos
zupo has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
wolfshappen has joined #nixos
exarkun has joined #nixos
CMCDragonkai has joined #nixos
Enzime has joined #nixos
whatisRT has joined #nixos
berber has joined #nixos
inf has joined #nixos
Mrmaxmeier has joined #nixos
edwtjo has joined #nixos
edwtjo has joined #nixos
edwtjo has quit [Changing host]
vancz has joined #nixos
voidcontext has joined #nixos
Heirlung has joined #nixos
vk3wtf has joined #nixos
davidcl has joined #nixos
AWizzArd has joined #nixos
laerling has joined #nixos
dfordvm has joined #nixos
philr_ has joined #nixos
dev4 has joined #nixos
fionera has joined #nixos
fps has joined #nixos
joehh1 has joined #nixos
bigvalen has joined #nixos
puffnfresh has joined #nixos
njd has joined #nixos
thomassgn has joined #nixos
switchy has joined #nixos
jD91mZM2 has joined #nixos
dminuoso has joined #nixos
pieguy128 has joined #nixos
pareidolia has joined #nixos
neiluj has joined #nixos
neiluj has quit [Changing host]
neiluj has joined #nixos
Quick_Wango has joined #nixos
lord| has joined #nixos
cransom_ has joined #nixos
<Nickli>
so you could in theory have browser tabs permeate on all your installs?
Siyo has joined #nixos
julm has joined #nixos
statusfailed has joined #nixos
puffnfresh_ has joined #nixos
otulp has joined #nixos
Swant has joined #nixos
xanderle has joined #nixos
drewr has joined #nixos
Serus has joined #nixos
<bqv>
don't see why not, not that I browse on more than one machine
euank has joined #nixos
rprospero has joined #nixos
jol has joined #nixos
adamCS has quit [Ping timeout: 264 seconds]
Jackneill has quit [Ping timeout: 256 seconds]
adisbladis has joined #nixos
<wesleyac>
how does one actually for real clear the dns cache on nixos? `ping` fails with "Name or service not known" but `dig` can resolve, trying to figure out what's up. i've tried restarting nscd.service, resolvconf.service, and running `nscd --invalidate hosts`, but no dice. what else should i try?
<bqv>
Stop nscd?
<viric>
nscd -i hosts
<viric>
that invalidates the nscd cache
<bqv>
Then update nixpkgs and start it again. This was a bug in systemd
adamCS has joined #nixos
sarcasticadmin has joined #nixos
<bqv>
I think systemd-274 had it. Any higher (274.1+) is fine
<wesleyac>
cool, trying that. do you have a link to the bug, ooc?
<viric>
do you mean "nscd -i hosts" didn't work?
<bqv>
viric: it was a bug, yes
<viric>
oh.
cole-h has quit [Ping timeout: 240 seconds]
devalot has joined #nixos
<viric>
thank you bqv
<viric>
but nscd is from glibc... how systemd can affectit?
ahmed_elgabri has quit [Ping timeout: 272 seconds]
<Hail_Spacecake>
I'm running into a problem with nixops where it thinks that the option 'virtualisation.oci-containers' doesn't exist, so the deploy fails
<Hail_Spacecake>
I am deploying a configuration containing tha toption
<Hail_Spacecake>
onto a nixos machine that already has that configuration with that option applied
<Hail_Spacecake>
it's literally the same configuration.nix file
teto has joined #nixos
<bqv>
viric: not gonna pretend to understand the syscall tree. Just remembering that that's the bug and stopping nscd was enough to circumvent it for me
<Reventlov>
hey there
<Reventlov>
can I "programmatically" declare nixos profiles that would appear in my grub boot menu, for example ? Like, a "work" profile, and a "personal" profile ?
<bqv>
Reventlov: look at specialisation :)
zakame has quit [Ping timeout: 264 seconds]
<bqv>
It's a nixos option.
<Reventlov>
thanks for the hint
zakame has joined #nixos
hiro98 has joined #nixos
Jackneill has joined #nixos
EmoSpice has joined #nixos
Izorkin_ has joined #nixos
ahmed_elgabri has joined #nixos
Izorkin has quit [Ping timeout: 260 seconds]
Izorkin_ is now known as Izorkin
<wesleyac>
hmmm, i'm seeing this dns problem on 20.09, but it seems like that bug should only affect unstable?
<wesleyac>
but there's also something funny happening with dig, it's talking to my router (which is new and provided by my isp and probably the root of this problem) rather than 8.8.8.8 (which is what i have in my config)
<wesleyac>
(i did try stopping nscd, updating, and restarting, but it didn't fix the problem i'm having)
<Ke>
with nscd I found frequently removing caches was nice
<DigitalKiwi>
adisbladis: i will fix every package!
<wesleyac>
wait why the hell is `nameserver 192.168.1.1` in /etc/resolv.conf?
lsix1 has joined #nixos
<DigitalKiwi>
adisbladis: only 8839 more to go
zakame_ has joined #nixos
MisterMxyzptlk has quit [Quit: Connection closed]
zakame has quit [Ping timeout: 256 seconds]
zakame_ has quit [Client Quit]
<rauno>
Is there a dependecies between nixops, nix and nixos verions? For example if i plan to upgrade, can i do it with one comoponent at a time or from some point i must do all of them together? Current scenario is that there's 1 deployment Nixos which deploys to many servers running nixos with nixops. Everything is quite old..
<supersandro2000>
just merged the tangram PR to fix the eval error
cgfuh has joined #nixos
<infinisil>
,ping
<infinisil>
gchristensen: ^ (not on my side :))
Baerwin has joined #nixos
<Baerwin>
Hi is anyone running virtualbox on nixos? I tried following the wiki however the package virtualbox-modules is marked as broken and in indeed fails to build.
<eyJhb>
But get `error: The option value `nodes.srtutti.configuration.services.dsgplus.package' in `/home/eyjhb/projects/nixos/nixus-setup/modules/dsgplus.nix' is not of type `package'.`
<siraben>
Where's the best place to learn about NixOps? The manual seems to be quite outdated
<dminuoso>
siraben: Mmm, do you need the cloud resource management of nixops?
<siraben>
Not sure, I just want to learn more about it
<DigitalKiwi>
there's a paper on it
<siraben>
Friend was asking about how it compares to ansible
<DigitalKiwi>
i found a blog article about just that
<dminuoso>
supersandro2000: If we look at type theory, we have a pretty exact way to talk about what types are, and what many languages calls "types" (i.e. runtime tagging/classification of values) is not proper types.
<dminuoso>
What Im trying to say here, is that I have something different in mind.
<{^_^}>
[nixpkgs] @SuperSandro2000 pushed 2 commits to master: https://git.io/Jtt2g
<eyJhb>
Also, fixed my issue, needed the {} behind the callpackage thing.....
<supersandro2000>
I don't think nix guess what types things are
<eyJhb>
EHm...
<eyJhb>
> a = 1;
<{^_^}>
error: syntax error, unexpected ';', at (string):75:8
<eyJhb>
> a = 1
<{^_^}>
a defined
<supersandro2000>
b = 2
<supersandro2000>
b
<eyJhb>
^ guess?
<supersandro2000>
> b = 2
<{^_^}>
b defined
<eyJhb>
You don't TELL it what it is. So it does guessing. E.g. that could be a int or a float?
<supersandro2000>
does it differentiate between those two even?
<eyJhb>
Maybe a is a int, a is a bool, a is a float?
<supersandro2000>
it is not a bool but you can map it to one
<supersandro2000>
but whatever
<dminuoso>
`A type system is a tractable syntactic method for proving the absence of certain program behaviors by classifying phrases according to the kinds of values they compute.`
<supersandro2000>
nix with hard types would be worse
<dminuoso>
Is the definition TaPL gives.
<dminuoso>
Note here, the phrase "syntactic"
<eyJhb>
Yeah, but the point still stands :p - I don't disagree on that one. There are pros and cons to it supersandro2000
<supersandro2000>
yeah whatever. I have better things to do then to theorize about type systems
<dminuoso>
supersandro2000: Im just saying, when I say "typed" I mean it in the type theoretic sense.
<attila_lendvai>
how can i access the nixpkgs directory from the buildCommand hook? i want to include a file into $out, but i don't want to deal with the escaping hell. the name of an example to look at is also appreciated.
<{^_^}>
[nixpkgs] @SuperSandro2000 pushed 2 commits to master: https://git.io/Jtti4
<bennofs>
has anyone done the work to patch depot_tools from google enough so it works on NixOS (it bundles python which would need to be patchelfed etc)
<bennofs>
I'm running it in a chroot right now but it'd be nice to run it on native nix
<{^_^}>
[nixpkgs] @SuperSandro2000 pushed 3 commits to master: https://git.io/JttP9
vidbina_ has quit [Ping timeout: 264 seconds]
<wesleyac>
does anyone know of a good overview of what all the moving parts of generating /etc/resolv.conf is? still trying to figure out how the nameservers that aren't in networking.nameservers got in there
davidv7_ has quit [Remote host closed the connection]
<aveltras>
has anyone successfully used something like hdajackretask under nixos (or equivalent workarounds) to get a headset+mic connected through a combo jack working ?
oxalica has joined #nixos
<{^_^}>
[nixpkgs] @nmattia opened pull request #109981 → lsyncd: build on darwin → https://git.io/Jtt1j
<wesleyac>
ugh well i set `name_servers` in networking.resolvconf.extraConfig to 8.8.8.8, which "worked" in that now 8.8.8.8 is first, but the router one is still there which isn't great
ahmed_elgabri has quit [Ping timeout: 260 seconds]
hiro99 has quit [Ping timeout: 264 seconds]
rb2k has joined #nixos
EmoSpice has joined #nixos
zupo has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
karantan has quit [Ping timeout: 240 seconds]
<wesleyac>
ok i just set /etc/resolv.conf to have a static string in environment.etc, and disabled resolvconf with `resolvconf='NO'` in extraConfig. feels gross but it works ¯\_(ツ)_/¯
<gchristensen>
this isn't a troll ... any gnome users using terminals which aren't gnome-terminal? I can't reliably paste in to gnome-terminal (#109826) and kitty and alacritty both completely lock up when I try to paste in to those, too
<{^_^}>
https://github.com/NixOS/nixpkgs/issues/109826 (by grahamc, 19 hours ago, open): GNOME Terminal assumes Dvorak keycodes are QWERTY and converts them to Dvorak for a second time, breaking copy paste and other shortcuts
heyitsrama has joined #nixos
<gchristensen>
ooooh firefox is broken. that is why I can't paste. restarting that might fix it.
<bbigras>
gchristensen: I use alacritty with Gnome. and with sway
<gchristensen>
does your alacritty in gnome have the all black window decorations?|
<lunik1>
is there a way to replace gnu coreutils with e.g. busybox in the user environment?
gianarb has quit [Quit: WeeChat 3.0]
<bbigras>
gchristensen: I think so. I have the border and the header thing with the X button to close it.
tollb has joined #nixos
<gchristensen>
and it is different from all the other windows right?
<tollb>
It looks like the build of mariadb-server-10.4.17 (NixOS 20.09) has been failing on hydra since 2021-01-11 https://hydra.nixos.org/eval/1641311 possibly due to a hash mismatch on the download of the source. This package seems to download and build locally. Is there a way to request that hydra retry the build?
EmoSpice has quit [Ping timeout: 265 seconds]
<ajs124>
gchristensen: you have the power to do that kind of stuff (^), right? I just ran "nix-build -A mariadb.src --check" on release 20.09 and it seems like I did in fact not put a wrong hash for the mariadb src.
<viq[m]>
OK, so regarding my trying to get set up a remote machine with encrypted ZFS: 1) zpool import tries to use /dev/disk/by-uuid/ and needs to be explicitly told to use /dev/disk/by-name 2) turns out, despite everything including nixos wiki saying that for configuring network during boot by passing ip= parameter to kernel you use the old interface names, and only later they get switched to the new "predictable names"... Well, no,
<viq[m]>
nixos even at that stage uses the new format.
respawn_ has joined #nixos
rajivr has quit [Quit: Connection closed for inactivity]
<tpw_rules>
is there a way to turn a nix-shell into a derivation? i want to be able to install a shell so i can run a command and get put into that shell
<{^_^}>
[nixpkgs] @jlesquembre opened pull request #109992 → vimPlugins.nvim-jdtls: init at 2021-01-19 → https://git.io/JttQL
<viq[m]>
srhb: I saw this on a vm on libvirt. I wasn't able to see whether it's the case on the dedicated server I was practicing for, since that one doesn't have a console I can access
<{^_^}>
[nixpkgs] @SuperSandro2000 pushed 3 commits to master: https://git.io/Jtt72
Dotz0cat has quit [Ping timeout: 246 seconds]
Dotz0cat has joined #nixos
<{^_^}>
[nixpkgs] @vcunat opened pull request #109996 → gperftools: drop an option that seems no longer supported → https://git.io/Jtt7V
morr has quit [Ping timeout: 272 seconds]
<{^_^}>
[nixpkgs] @peti pushed to haskell-updates « Consistently use 'lib' instead of 'stdenv.lib' in the Haskell infrastructure. »: https://git.io/Jtt7i
ransom_ has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
hnOsmium0001 has quit [Quit: Connection closed for inactivity]
teto has quit [Ping timeout: 260 seconds]
rnea has quit [Ping timeout: 260 seconds]
<{^_^}>
[nixpkgs] @github-actions[bot] pushed 132 commits to staging-next: https://git.io/Jttde
hiro98 has joined #nixos
<{^_^}>
[nixpkgs] @github-actions[bot] pushed 133 commits to staging: https://git.io/Jttdv
<{^_^}>
[cabal2nix] @peti pushed to ci « Replace Travis-CI configuration with Github actions. »: https://git.io/Jttdf
g-w1 has joined #nixos
<g-w1>
hi, is there anything special I need to use dkms. I want to use v4l2loopback, is it as easy as `nix-env -iA nixos.linuxPackages.v4l2loopback`, or do I need to do other things?
<{^_^}>
[cabal2nix] @peti opened pull request #478 → Replace Travis-CI configuration with Github actions. → https://git.io/Jttdm
<g-w1>
its not working now, so I assume I need to at least reboot
chour has quit [Quit: WeeChat 3.0]
ransom has joined #nixos
diamondburned has joined #nixos
tdeo has joined #nixos
meh` has quit [Ping timeout: 265 seconds]
ransom has quit [Read error: Connection reset by peer]
ransom has joined #nixos
diamondburned has quit [Remote host closed the connection]
tdeo has quit [Remote host closed the connection]
<bennofs>
g-w1: are you on nixos?
<g-w1>
yes
lsix1 has quit [Ping timeout: 260 seconds]
<bennofs>
g-w1: I think you need to add it to boot.extraModulePackages in your configuration.nix
<bennofs>
like boot.extraModulePackages = [ pkgs.linuxPackages.v4l2loopback ];
<g-w1>
ok, do I also need to do nix-env -iA or just put it there
<bennofs>
no need to nix-env
<g-w1>
ok thx
<{^_^}>
[nixpkgs] @holymonson opened pull request #110001 → darwin.ps: update to newer unstuck version → https://git.io/JttdE
diamondburned has joined #nixos
tdeo has joined #nixos
<pinpox>
how do I place a file or directory (e.g. from a github repo) in /var/lib/something declaratively? I can only find home.file = {} and xdg.file options, is there a more "general" one to place files anywhere?
<bennofs>
pinpox: you might be able to use systemd.tmpfiles.rules
<bennofs>
pinpox: but i think there isn't anything more general (there's environment.etc for /etc as well)
<pinpox>
bennofs: Okay hadn't thought of that. Is that the preferred way of doing that? The goal is to deploy a static website
<pinpox>
guess I *could* just put it in /etc
dbmikus has joined #nixos
<bennofs>
hmm for deploying a static website, usually it's best to keep the files of the website in /nix/store/... and then just configure your webserver to look there
asheshambasta has quit [Ping timeout: 272 seconds]
<pinpox>
how do I do that in my configuration.nix? Is there a simpler way than writing a package?
berberman has quit [Ping timeout: 264 seconds]
berberman_ has joined #nixos
<bennofs>
pinpox: you can just do something like: (pkgs.fetchgit { src = ...; rev = ...; sha256 = ... }) and that'll expand to a path in /nix/store with the contents of that git repo
work_ has joined #nixos
<pinpox>
can I just: "let mywebsite = fetchGit = {...} in " and then set the webroot of the server to ${mywebsite} ?
ransom has quit [Read error: Connection reset by peer]
<bennofs>
yeah exactly
<pinpox>
bennofs: ok, got it
<pinpox>
thanks
<g-w1>
oh and bennofs, since the word dynamic is in dkms, do I have to reboot or not?
<bennofs>
g-w1: reboot should not be necessary AFAIK. DKMS is usally just a term for building the kernel module against the currently installed kernel. I don't think this concept exists in NixOS as such, in NixOS the system configuration always specifies the kernel so the module can be built against that kernel directly.
<g-w1>
ok thanks
<bennofs>
g-w1: however, if you booted a different kernel than the version that your system config specifies, then you'd need to reboot probably
<bennofs>
g-w1: actually, I just noticed that you probably want to configure it like this: boot.extraModulePackages = [ config.boot.kernelPackages.v4l2loopback; ]; Using config.boot.kernelPackages instead of pkgs.linuxPackages ensures that the kernel module is built for the correct kernel
Darkmatter66 has joined #nixos
xelxebar has joined #nixos
<{^_^}>
[nixpkgs] @dali99 opened pull request #110004 → matrix-synapse-rest-password-provider: init at unstable-2020-08-02 → https://git.io/JttFz
<victorbjelkholm>
is there any successor to https://github.com/lexleogryfon/de-generate? Seems like there has to be some stable and maintained version for automatically getting binaries to work on nixos with manual digging for libraries
<mica[m]>
nix is a package manager, and nixpkg is a set of packages.
<jive>
o ok i use windows
<shapr>
jive: there are many friendly IRC channels on freenode, mostly about open source software and operating systems.
ManiacOfMadness has quit [Ping timeout: 256 seconds]
<jive>
sharp what chanel is this?
<colemickens>
Hm. I am reading luksroot.nix and it seems like it uses the shell's `read` to read the passphrase. When I boot, I am unable to enter a "blank" password, but when I try the same `read` commands (even in busybox's ash) I am able to press "enter" to provide no input.
<{^_^}>
[nixpkgs] @SuperSandro2000 pushed 2 commits to master: https://git.io/Jttxz
<colemickens>
It might not matter, since my goal is to add a tryBlankPassword anyway (mirroring systemd-cryptsetup).
kgriffin has quit [Ping timeout: 240 seconds]
<colemickens>
But that is also challenging, crytsetup luksOpen really does not want to accept an empty key-file.
<lordcirth>
jive, this is #nixos.
jive has left #nixos [#nixos]
<lordcirth>
colemickens, what is the purpose of using an empty key?
<colemickens>
lordcirth: mostly avoiding repartitioning a remote machine
<shapr>
perhaps jive landed somewhere unexpected?
wizeman[m] has joined #nixos
aveltras has quit [Quit: Connection closed for inactivity]
<lordcirth>
colemickens, why do you want to move away from luks?
<lordcirth>
Want it to boot unattended?
<colemickens>
lordcirth: I guess it's a somewhat fair question, I was going to do the whole dropbear thing instead and keep luks in place.
<colemickens>
but, I've already become entirely addicted to tailscale in like an hour, so I will be sad to have to navigate firewalls again to remote unlock it.
<colemickens>
which then makes me want to work on systemd for nixos init, but I'm already down a few rabbit holes :)
EmoSpice has joined #nixos
<lordcirth>
lol aren't we all
jlle[m] has joined #nixos
sleepyMo1 has quit [Quit: WeeChat 2.9]
<shapr>
colemickens: I'd scheduled a whole saturday to install and setup tailscale
dbmikus has quit [Read error: Connection reset by peer]
dbmikus has joined #nixos
sleepyMonad has joined #nixos
justan0theruser has joined #nixos
kgriffin has joined #nixos
gentauro has quit [Read error: Connection reset by peer]
gentauro has joined #nixos
sigmundv_ has quit [Read error: Connection reset by peer]
<{^_^}>
[nixpkgs] @vcunat merged pull request #109996 → gperftools: drop an option that seems no longer supported → https://git.io/Jtt7V
puffnfresh has joined #nixos
<KarlJoad>
I want a mkDerivation-wrapper function to use the stdenv.patchPhase when the user doesn't provide a patchPhase to my function. Is that possible? If so, how?
ransom has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
Darkmatter66 has joined #nixos
<matthewcroughan>
lordcirth: what even is an mdraid?
ManiacOfMadness has quit [Ping timeout: 244 seconds]
<lordcirth>
matthewcroughan, raid, using mdadm. raid1, in the case that you want to boot from it.
<lordcirth>
mdadm raid1 sda1 and sdb1 into a / partition, put grub on both devices, that should do it
kgriffin has quit [Ping timeout: 264 seconds]
<matthewcroughan>
yeah but uh, how does that work with zfs?
<lordcirth>
matthewcroughan, well if you are using ZFS, then you probably don't need mdraid.
<matthewcroughan>
lordcirth: but how do you do a mirrored bootloader on zfs
<matthewcroughan>
it doesn't sort this out automatically for you
kgriffin has joined #nixos
<lordcirth>
matthewcroughan, is your /boot on ZFS or not?
<matthewcroughan>
EFI has never worked on this board, there's even stuff from 2009 that claims windows doesn't install either. It simply fails when trying to write EFI vars.
<matthewcroughan>
I can boot the EFI NixOS USB media though
<matthewcroughan>
same bootloader layout as that media = nothing
<lordcirth>
Wait, the board is from <2009 ?
<matthewcroughan>
ya
<lordcirth>
Well, that's pretty ancient
Alexander has joined #nixos
Alexander is now known as Guest65743
hiro98 has quit [Remote host closed the connection]
<lordcirth>
Are the drives as ancient? Modern SSDs are probably more reliable than that motherboard, so trying to get mirrored boot is probably not worth it.
<{^_^}>
[nixpkgs] @fabaff opened pull request #110019 → pwdsafety: init at 0.1.4 → https://git.io/Jtqfb
fresheyeball has quit [Quit: WeeChat 2.9]
rick has joined #nixos
rick is now known as mindavi
<mindavi>
ls
<mindavi>
Hey, I'm looking for a way to write a single file to the nix store (I want to use it in a nixos test), how can I do that? I know there's writeText, but the file is rahter long
ManiacOfMadness has joined #nixos
<dminuoso>
What's wrong with writeText?
<mindavi>
Can I pass it a file path? Or should I embed the whole contents in the writeText call?
lsix has quit [Ping timeout: 264 seconds]
<cole-h>
If you refer to the file with `./path`, it will be automatically imported into the store.
<mindavi>
Ah ok, that's nice! Thanks for the information :) I was looking at the definition (in nixpkgs), but it wasn't fully clear to me
<mindavi>
I've seen some people do this, so I'll try it too: cole-h++
<neiluj>
hi! set up my server with an empty root password to login more easily into it via ssh (initialHashPassword set to "") and also openssh.permmitRootLogin set to "prohibit-password", but now that i removed these two lines, i can still login to root via ssh without entering the password
<KarlJoad>
I want a mkDerivation-wrapper function to use the stdenv.patchPhase when the user doesn't provide a patchPhase to my function. Is that possible? If so, how?
<gchristensen>
fwiw it turned out to be a bit of confusion around authorized_keys on the root account vs. other accounts :)
Thra11 has quit [Quit: WeeChat 3.0]
<bqv>
And people wonder why I despise that guy
<cole-h>
gchristensen: SSH working as intended bites again :-P
<bqv>
But let's not open that can of worms again..,
<KarlJoad>
I want a mkDerivation-wrapper function to use the stdenv.patchPhase when the user doesn't provide a patchPhase to my function. Is that possible? If so, how?
fendor has quit [Remote host closed the connection]
<infinisil>
energizer: Ah, so I guess you could have different servers, and you want to access them with different public keys?
<energizer>
yeah
<infinisil>
Hmm I see, and I guess ideally you wouldn't want to put all the users public keys into the servers, only the ones you choose
<infinisil>
I guess that's not easily supported with the current nixus module
<energizer>
infinisil: btw i found out that there's an (undocumented?) feature of openssh where you can pass the **public** key in IdentityFile=~/.ssh/my.pub and it will look in the ssh-agent for the corresponding private key, so i can rm the private key file as long as keepassxc adds the key to ssh-agent
<infinisil>
Neat
ransom has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
<energizer>
the way it usually works is i go `Host github.com-energizer; IdentityFile=...` and git remote add origin git@github.com-energizer:...
<infinisil>
Ohh, I need to redesign the ssh module there
<infinisil>
It's totally wrong
<energizer>
(that's in .ssh/config)
<infinisil>
Well, not completely, but like it could be a lot better, supporting also what we talked about