<qyliss>
ryantm: the libvirt module exposes a package option, so in that case I think you could do services.libvirtd.package = libvirt.override { enableIscsi = true; };
<qyliss>
if I understand your question correctly
orivej has joined #nixos
ahmedelgabri has joined #nixos
akaWolf has joined #nixos
rj has joined #nixos
<ryantm>
qyliss: Thank you, that seems to be working!
ahmedelgabri has quit [Ping timeout: 250 seconds]
<ryantm>
qyliss++
<{^_^}>
qyliss's karma got increased to 139
ddellacosta has joined #nixos
<pennae>
ryantm: since we see you, i think you inverted the umask in agenix by accident
<ryantm>
pennae: Could you be more specific what you mean about "inverted"?
pushqrdx has joined #nixos
<pennae>
as it stands it'll clear the owner-read bit and leave all others untouched
<pennae>
either we can't brain right now or you probably meant 0177
ddellacosta has quit [Ping timeout: 252 seconds]
ddellac__ has quit [Ping timeout: 240 seconds]
<jasom>
my nix searching is failing me; can someone point me to a nix derivation for a binary-only cups driver I can crib off of for making one for my printer?
<ryantm>
pennae: I think you're right; thanks for letting me know. I'll look into fixing it.
apache8080 has quit [Ping timeout: 240 seconds]
<pennae>
also there might be a bug with a root secret "something.tmp" and a non-root secret "something" that'll delete the root secret? not sure about that tho
scott has joined #nixos
m0rphism has quit [Ping timeout: 252 seconds]
<ajs124>
ryantm: you're using iscsi in libvirt? That was one of my first contributions to nixpkgs :D
<ajs124>
I've stopped using it since, though. Nice to see it still works and is potentially useful to someone.
<hrnz>
is there some kind of mechanism to place files at an arbitrary location in the file system (like environment.etc, but not limited to /etc) or do I have to roll out my own oneshot service?
xcmw has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
ddellacosta has quit [Ping timeout: 240 seconds]
Synthetica has quit [Quit: Connection closed for inactivity]
<infinisil>
hrnz: What's the use case?
<infinisil>
There's nothing general for that built into nixos
<qyliss>
what about systemd tmpfiles?
<hrnz>
I want to install a ~/.forward for a user (which I really don't want to use home-manager for)
<hrnz>
qyliss: I could do that, but these don't update when the file changes :-(
<qyliss>
hrnz: doesn't L+ do what you want?
xcmw has joined #nixos
<hrnz>
let's try
<hrnz>
I used C - - - - - "${pkgs.writeText "foo" "bar"}"
<hrnz>
which after replacing bar with baz did not redeploy the file
<hrnz>
which kind of sucks
<qyliss>
yeah, C doesn't replace if it already exists
<qyliss>
but L+ does
<hrnz>
that's perfect, thanks a lot
<qyliss>
i'm assuming a symlink is fine
* colemickens
is drowning in "unexpected EOFs" today
<hrnz>
should be
<hrnz>
unless postfix is really picky
<pennae>
hrnz: theres userActivationScripts, maybe writeText something and copy it there
* colemickens
needs to learn tmpfiles better
<wrkzk[m]>
Hey guys anyone here know how to make a custom lua package
<wrkzk[m]>
I am trying buildLuarocksPackage but it says attribute missing in modules.nix
<wrkzk[m]>
I am a noob so forgive if this is a stupid mistake
ahmedelgabri has joined #nixos
<simpson>
What have you tried so far? Could you show us?
<simpson>
wrkzk[m]: Looks pretty good. You'll need to ask for the various parameters, by starting the expression with something like `{ lib, lua, luaposix, buildLuarocksPackage }:`
<Reventlov>
So I configured some printer a while ago, it was working, but now as the status in cups I get this:
<Reventlov>
Idle - "File "/nix/store/fy60i1hz5m468q2964cllfgr6dnpagz9-cups-toshiba-estudio-7.89/lib/cups/filter/est6550_Authentication" not available: No such file or directory"
z0k has joined #nixos
stree has quit [Ping timeout: 246 seconds]
<Reventlov>
and indeed now it's like /nix/store/hg2r11zdkxq4fvx9jh18f1xihp7hcarp-cups-toshiba-estudio-7.89/lib/cups/filter/est6550_Authentication or /nix/store/cik73vsr3g36i5y304phwk2kli8ip36s-cups-toshiba-estudio-7.89/lib/cups/filter/est6550_Authentication
<cub3s_>
Similarly, if I use nix-shell (on the shell.nix in the same directory), I get a Nix shell containing those useful binaries in $PATH.
<cub3s_>
But how can I use nix-env within this directory to install these binaries globally? I'm having a hard time with it.
<ixxie>
cheers dminuoso
<ixxie>
atralheaven: I don't wanna go that far
<cub3s_>
Running "nix-env -i -f ." just gives me "error: cannot auto-call a function that has an argument without a default value ('callPackage')"
iori has quit [Ping timeout: 252 seconds]
<dotlambda>
Does someone know what "Use StateDirectory=, CacheDirectory= and LogsDirectory= in order to assign a set of writable directories for specific purposes to the service in a way that they are protected from vulnerabilities due to UID reuse" means? See https://www.freedesktop.org/software/systemd/man/systemd.exec.html#DynamicUser=. In particular, does systemd ensure not to reuse a UID that own a StateDirectory or how is it ensured that no other unit
<dotlambda>
with DynamicUser=yes can read thesef files?
jgt_ has joined #nixos
riksteri has joined #nixos
ddellacosta has joined #nixos
zupo has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
<Luker>
Anyone here has a bit of experience with uboot? I can't seem to boot drives > 2TB, I tried recompiling with CONFIG_LBA48=1 CONFIG_SYS_64BIT_LBA=1, no luck
<fuzzypixelz>
Hello. I have this CMakeLists.txt https://bpa.st/LU7Q file for a university project and from about 2 hours of googling I can tell that it's very unconventional (it doesn't use find_package and insead hardcodes the FHS path of sdl, for exampke). Now I really don't have any experience with cmake nor the nix way of doing cmake. I basically got stuck
<fuzzypixelz>
when making a nix-shell with sdl didn't work. This might be asking a lot but I really need this CMakeLists file to work so I can get on with the project ...
romildo has joined #nixos
romildo has left #nixos [#nixos]
zupo_ has joined #nixos
<fuzzypixelz>
I might only need instructions for how to rewrite it
beertoagunfight has quit [Ping timeout: 246 seconds]
<cub3s_>
sterni, is this a general bash feature rather than a nix-env feature?
<qyliss>
pipelines are a shell feature, but the "-" is a convention that many programs (including nix-env) follow, but not all
<cub3s_>
qyliss, so "-" is a convention saying "instead of filepath, use stdin"?
<qyliss>
exactly :)
<cub3s_>
nice, thank you
<__monty__>
Is there something like why-depends that you can use on something that doesn't build?
<qyliss>
cub3s_: if a program doesn't support it, you can usually use /dev/stdin, which is a magic path provided by the kernel, that points to the stdin of the process accessing it
andycandy has quit [Quit: Connection closed]
Gooberpatrol66 has quit [Remote host closed the connection]
<qyliss>
__monty__: I don't think so (except for build dependencies), but I wonder if in your case there's something we could do temmporarily to tell Nix not to do the disallowed references check...
<__monty__>
fuzzypixelz: Maybe take a look at buildFHSUserEnv.
<qyliss>
__monty__: can you remind me what your exact error is?
<__monty__>
qyliss: To get it to build and then use why-depends?
<abathur>
it seems like if it can eval it should be answerable :/
<__monty__>
Right? "You can't tell me why you need this? No. Then how do you know you need this!?"
<__monty__>
(╯°□°)╯︵ ┻━┻
<srhb>
stevenroose: Is your questions how to mount some partition on some drive on your particular OS, or do you know how to do this if nix were not involved? :)
hiro98 has quit [Ping timeout: 260 seconds]
<abathur>
I guess even better would be a flag that causes the will-be-fetched/will-be-built sections to be a tree
<srhb>
on some directory*
<abathur>
hehe
Gooberpatrol66 has joined #nixos
<stevenroose>
infinisil, srhb I don't want to dedicate the entire drive to nix, just a folder in the drive
<stevenroose>
like /media/drive/nix
<l-as>
you can just do a bind mount
ddellacosta has quit [Ping timeout: 268 seconds]
fuzzypixelz57 has quit [Quit: Connection closed]
<l-as>
You can put it in your /etc/fstab
<stevenroose>
l-as: how does that work?
<stevenroose>
is that a way to mount a directory?
<l-as>
bind mounts basically just map some path to another path transparently
<__monty__>
l-as: Do note that providing a local path doesn't necessarily prevent nix from copying it to the store.
<l-as>
That's unfortunate
<l-as>
I guess it makes sense, since it wants to avoid writes to it while it's being used
aw has joined #nixos
stree has joined #nixos
spacefrogg has joined #nixos
<l-as>
I suppose btrfs would solve that problem though
qyliss has quit [Quit: bye]
spacefrogg has quit [Remote host closed the connection]
aw has quit [Remote host closed the connection]
<__monty__>
l-as: Also, unless you provide a hash nix can't check whether what's in the store matches what you expect so it'll always redownload/copy.
<__monty__>
By passing a hash you should at least prevent copying to the store multiple times.
<__monty__>
IIUC
<l-as>
__monty__: but I can't pass a path using `nix build`, can I?
<l-as>
path -> hash
qyliss has joined #nixos
<__monty__>
I don't see why not. I'm not too familiar with the new cli but I'm sure it has an -E flag like nix-build does?
<__monty__>
The hash is just another argument to fetch*.
satoshi[m]1 has joined #nixos
aw has joined #nixos
spacefrogg has joined #nixos
<l-as>
Ah, that is true, I had not thought of that.
<qyliss>
the new CLI doesn't use -E -- you do nix build '((import <nixpkgs> {}).hello)' etc
<qyliss>
the outer parentheses are mandatory
<barahir84>
hey ! so I'm writing some modules with pkgs passed as an argument but I get "error: attribute 'pkgs' missing" when I load them with evalModules
<barahir84>
i'm confused because usually this is not a problem, when i write modules for my nixos config for example
<barahir84>
is there something i'm missing about which arguments a module can accept ?
<fuzzypixelz>
_monty_: thank you, I tried it before coming here but I forgot to select the .dev attribute in sdl (these things aren't very discoverable are they ...)
<barahir84>
it seems the error occurs when importing ocaml.nix
ddellacosta has joined #nixos
zupo_ has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
jmeredith has joined #nixos
ddellacosta has quit [Ping timeout: 252 seconds]
<{^_^}>
[nixpkgs] @sternenseemann opened pull request #121798 → top-level/release-haskell.nix: also support aarch64-linux and x86_64-… → https://github.com/NixOS/nixpkgs/pull/121798
ddellacosta has joined #nixos
ddellacosta has quit [Remote host closed the connection]
mayhew has joined #nixos
cub3s_ has quit [Quit: Leaving]
<stevenroose>
Hmm, so while trying before to move the /nix dir, I fucked up my nix installation, so I tried to remove everything. The systemd stuff is all gone, but the installer keeps telling me to remove directories that don't exist. I checked them one by one.
attila_lendvai_ has joined #nixos
attila_lendvai has quit [Ping timeout: 260 seconds]
<fuzzypixelz>
__monty__: if by that you mean run it with nix-shell, yes?
<ak>
Arya K:
<ak>
i want to install a custom build of dmenu but it cant find xlib.h
<ak>
0x0.st/-Bi3.bin
<ak>
Output of make install
ddellac__ has joined #nixos
ak has quit [Client Quit]
ak has joined #nixos
barahir84 has quit [Quit: Connection closed]
<__monty__>
fuzzypixelz: buildFHSUserEnv is not mkShell, don't expect them to work the same. What I'm talking about is using mkShell as you would otherwise and using (buildFHSUserEnv ...).env as an input.
ddellac__ has quit [Ping timeout: 240 seconds]
<fuzzypixelz>
__monty__: I really don't know how to that ...
<{^_^}>
[nixpkgs] @sternenseemann pushed to haskell-updates « haskell.packages.ghc901.lens: bump to 5.0.1 »: https://git.io/J3olr
<__monty__>
Just keep in mind that if you'll spend a lot of time on this project it might be worth the effort to tweak the build to work without FHS hacks.
<gleber>
Hey folks. I am looking at a package (specifically Erlang OTP release generated with rebar3/relx), which I want to put into a Nix derivation. The binary in there is adamant about changing files in it's own directory. I can't patch it. Is there a nixpkgs-standard way to copy content of a Nix derivation into e.g. /opt/ and launch it from there?
<dminuoso>
Yes
<gleber>
dminuoso: Is it codified in a library function in nixpkgs maybe? Do you know a name? Or an example of a nixpkgs packages which does it?
<dminuoso>
gleber: You could use systemd-tmpfiles
<dminuoso>
To set up a directory in which the binary and mutable file resides
<dminuoso>
And then create a stub binary that calls that
<lunik1>
gleber: does it need to remember these changes on the next launch?
<gleber>
Yes, it is a statefull app
ddellaco_ has quit [Remote host closed the connection]
<pie_>
dunno if this is a good idea but you could also try some ld_preload hacks for rewriting accesses to its own director yto another directory
<phalrax>
Hi, I configured this in networking.extraHosts = ''argocd.lain localhost \n lain localhost''; (split with actual new lines, this is just for brevity here) and I can ping lain just fine, but I get unknown host for argocd.lain, any ideas what the issue might be?
<phalrax>
lain works without the entry anyway, since that's my hostname. just checked /etc/hosts and this line was added: argocd.lain localhost, so not sure why it's not working
erasmas has joined #nixos
andycandy has quit [Quit: Connection closed]
<{^_^}>
[nixpkgs] @sternenseemann merged pull request #121798 → top-level/release-haskell.nix: also support aarch64-linux and x86_64-darwin → https://github.com/NixOS/nixpkgs/pull/121798
saschagrunert has quit [Remote host closed the connection]
tbreslein has quit [Quit: tbreslein]
<dotlambda>
mjlbach: Nice find! Sounds like most services we have should switch to DynamicUser and LoadCredential, though that's probably tough to do in a backwards compatible way.
<mjlbach>
To be fair, it was a systemd person who pointed me to it 😆
<dotlambda>
I figured.
judson_ has joined #nixos
<mjlbach>
But I agree this seems like it addresses the issue, it's on the user to set the permissions of the file but that seems like a reasonable compromise
<dotlambda>
I mean systemd is bloated but that also means there's a solution to most problems created by systemd :D
<mjlbach>
Having nixos generate the keys for services feels weird to me, I'd rather have them age/gpg encrypted and backed up
<mjlbach>
I think in the case of matrix regenerating the keys would also mean reverifying the home server
<dotlambda>
You could still back them up and just create them if they don't exist. But I think it's fair to put the burden of creating them on the user.
phalrax has quit [Quit: Connection closed]
<dotlambda>
I meant: The service generates a key only if the file doesn't exist yet.
<dotlambda>
Regarding permissions, a warning in the option's description is usually a good idea.
<mjlbach>
Yeah, that service can always come later, when I introduced it there were concerns about the complexity, but I still have the old version I could reintroduce
<mjlbach>
Yeah I can put that, I added the snippet for generating the key with nix-shell so I can just add the appropriate command in the doc under that
<{^_^}>
[nixpkgs] @sternenseemann pushed to haskell-updates « haskellPackages: mark pkgs failing eval as unsupported on aarch64 / darwin »: https://git.io/J3KkH
dev_mohe has joined #nixos
<hexa->
dotlambda: did you move away from home automation entirely or just migrate elsewhere?
<dotlambda>
I have the (typical?) student's dilemma: Not much to automate in your tiny flat, not worth it for a temporary residence. So I played with Home Assistant at my parents' place but that's just a hassle without being there.
dev_mohe has quit [Quit: dev_mohe]
exondation has quit [Ping timeout: 250 seconds]
exondation has joined #nixos
ixxie has joined #nixos
<HedgeMage>
Maybe work on a project that's not home automation? In addition to the unnecessary attack surface, I realized as I got older and more decrepit that every automation I add would only make me move less, which just quickens one's stumble toward the grave.
cptchaos83 has joined #nixos
<hexa->
dotlambda: okay, I know that one too well
<hexa->
I do maintain my parents home-assistant setup, and a swarm of esphome based roller snuters
<hexa->
shutters*
<simpson>
Maybe Home Assistant isn't good. The IOT devices are already well-known to be problematic.
<hexa->
heh
<hexa->
that is totally orthogonal to the question I asked initially
<simpson>
dotlambda: Maybe take a step back. What do you *want* to monitor? What do you *want* to automate? Don't let these lists be filled out by IOT manufacturers.
<simpson>
Well, to run with a common complaint, what *is* the burden of maintainership? There's enough broken plugins for HA that it's clearly not *that* big of a deal.
<dotlambda>
I'm the exact opposite of the type of guy that gives control to other people/companies.
<dotlambda>
simpson: And that's Nixpkgs' fault?
<simpson>
dotlambda: No, it's not nixpkgs' fault that you're taking control away from your parents, I think. Or maybe I'm misparsing?
<hexa->
wat
<dotlambda>
simpson: Yes, totally :D
<dotlambda>
The situation is: I started the home-assistant package and module, as well as the esphome package in Nixpkgs. But I'm not using them anymore because it was no fun to do it remotely.
<dotlambda>
My parents are fine without the added benefit of Home Assistant, they don't even want the added benefit of Linux ;-)
<dotlambda>
Also there is, to me, more useful things to work on right now, like privacy preserving phones.
<dotlambda>
So I'm glad other people took on the task of maintaining the Home Assistant ecosystem in Nixpkgs.
<jgillberg>
+1 for privacy preserving phones
griff_ has quit [Quit: griff_]
<jgillberg>
(also, I'm making progress on the R package stuff, for anyone who was interested: https://github.com/NixOS/nixpkgs/issues/121808). Turns out yes, to update a Cran R Package you should bump all of Cran in nixpkgs, and when you don't, you might break the "all of cran" update script.
<{^_^}>
#121808 (by Jake-Gillberg, 1 hour ago, open): R package update not working
<dotlambda>
On that note: https://grapheneos.org/ has been a light in the dark for years, but who wants to write for the JVM?
griff_ has joined #nixos
waleee-cl has joined #nixos
<simpson>
dotlambda: We can ask DigitalKiwi about the philosophy of maintainers, but I'm pretty sure that maintainership doesn't matter, so don't worry about it.
<cransom>
if you are starting a new server, you should be able to go straight to hydra-unstable.
neiluj has joined #nixos
neiluj has joined #nixos
<cransom>
i have one right now with the very latest hydra from git master, i dropped the db, re-created, let hydra-init run again and it's up and functional.
tarruda3 has quit [Remote host closed the connection]
respawn_ has joined #nixos
seven_three has joined #nixos
<seven_three>
if I install nixos with no knowledge of nix how long will I need before my computer is in a useable state? I have a week off from needing to do anything important with my computer. Id consider `a useable state` to be having emacs, web browser, and email client working just like it does on my computer now.
respawn_ has quit [Remote host closed the connection]
<andi->
if by email client you mean thunderbird and by webbrowser firefox that should be quick. As you probably know emacs elisp it might not be that hard to understand Nix.
<SumnerEvans[m]>
seven_three: Also, you can start off slow, just install everything you need using `environment.systemPackages` and then start to use the various different options that NixOS provides to make your configuration cleaner.
stteevveen has joined #nixos
ddellac__ has quit [Remote host closed the connection]
<seven_three>
andi-: what is a high level overview of setting up emacs on nixos? Now I just install emacs from my package manager and then stick my emacs config into a directory and start up emacs and everything works.
<stteevveen>
HI! Do anyone here is used to the library Haskell.Nix from https://input-output-hk.github.io/haskell.nix/reference/library/ - when doing the nix-shell of the project plutus, I get an error on a line calling in let pkg-set = mkCabalProjectPkgSet in the file ..../overlays/haskell.nix and I wonder if I'm not missing its definition for
<stteevveen>
some reason or another. I wonder if it can be a common error for people that start using this library. anyone any idea ?
<stteevveen>
I mean the definition of mkCabalProjectPkgSet
<stteevveen>
Maybe I was too fast in reading the error message, it says error evalutatin buildPackages.haskell-nix.compiler."${(((plan-pkgs).pkgs hackage)).compiler.nix-name}".version when calling mkCabalProjectPkgSet
<seven_three>
is there any downsides to using ext4? The manual uses ext4 and doesn't mention any advantages/disadvantages. In other linux distros I use btrfs but my use case for btrfs is already covered by nixos implicitly.
<{^_^}>
[nixpkgs] @jonringer pushed 443 commits to gnome-40: https://git.io/J3K5w
sangoma has joined #nixos
<SumnerEvans[m]>
What is the logic behind when stable releases happen? I note that last year it was in March (20.03), but this year, it's in May (21.05). Also, at what point in the month is the cutoff for 21.05?
<simpson>
It's whenever the release managers feel like it. It used to be every 6mo in the Before Times.
<qyliss>
SumnerEvans[m]: they're every six months, but it was decided to move from a March/September release cycle to a May/November one, so 20.09 was exceptionally extended by two months
<{^_^}>
[nixpkgs] @sternenseemann pushed to haskell-updates « hedgewars: portability is limited by fpc »: https://git.io/J36ex
leotaku has joined #nixos
<SystemD_IsGood>
cransom: None the less their developers do. What is NixOS's stance on the developments surrounding Richard M. Stallman? And the FaceBook data leak?
<pie_>
Hmhm does anyone know anything like a hex editor that shows structs?
petar has quit [Remote host closed the connection]
jasom has quit [Ping timeout: 245 seconds]
jasom has joined #nixos
neiluj has quit [Quit: leaving]
<cransom>
SystemD_IsGood: i don't think there will be an answer. there are thousands of contributors and each will have a different opinion on any topic you ask about. you can ask about any one persons particular opinion, but i don't think nixos has put out any particular statement regarding RMS or facebook. i would be surprised if it did.
<MichaelRaskin>
SystemD_IsGood: 1. sounds like #nixos-chat more than #nixos topic. 2. please take a look at NixOS/RFCs repos, pay attention to timestamps, and make an inference how eager we are to invest comparable amount of time into coordinating a «project» stance on non-technical issues.
<{^_^}>
[hydra] @cole-h opened pull request #962 → Project: delete the `.jobsets` jobset if project is no longer declarative → https://github.com/NixOS/hydra/pull/962
<{^_^}>
Found in packages: toybox, busybox, dos2unix
petar has joined #nixos
<{^_^}>
[nixpkgs] @Infinisil merged pull request #114955 → lib/modules: provide a better error message when "imports" contains a list → https://github.com/NixOS/nixpkgs/pull/114955
<pennae>
andi-: we just ran into extraConfig being deprecated, but we lots of local zones. is our best option really to throw lots of lists of single-entry attrsets at settings? :/
supersandro2000 has quit [Killed (beckett.freenode.net (Nickname regained by services))]
supersandro2000 has joined #nixos
WinchellsM has quit [Quit: Lost terminal]
jgt_ has quit [Ping timeout: 260 seconds]
<andi->
pennae: yeah... I also don't like the new settings RFC because it comes with a bunch of churn.. also mkDefault lists seem to be merged with the non-mkdefault values or something weird.. I ended up with tons of duplicate settings where I previously only had one instance.
<andi->
Probably yet another module that I vendor into my repo
<pennae>
andi-: ended up just dumping a lot of stuff into the store through writeText and including that
<pennae>
too bad the unbound module doesn't allow path options either
<infinisil>
If so, I'd like to hear more, as I'm not entirely sure what the problems you're describing are
<{^_^}>
[rfc39-record] @grahamc pushed commit from rfc39 to main « Automated team sync results. »: https://git.io/J368I
luxemboye has quit [Remote host closed the connection]
luxemboye has joined #nixos
<pennae>
infinisil: unbound has a config file that's almost-but-not-really yaml. you often have to repeat keys (eg when configuring a local zone you add multiple local-data: keys to the server section)
<pennae>
that doesn't mesh so well with the way the module is written right now
<pennae>
earlier you could just add another server: section, now you're forced to merge into the existing section. which is clunky at best
<infinisil>
Hmm that doesn't seem much worse to me, or does this not show the full picture?
thc202 has quit [Quit: thc202]
<infinisil>
Oh right but these strings inside yaml seem very weird
<pennae>
infinisil: if you want to configure multiple local zones you need to add many sets of local-data:, but you can't easily sequester them unless you're willing to do tricks like server={}//zipAttrsWith (_:flatten) [ <attrset per localzone> ]
attila_lendvai_ has quit [Quit: Leaving]
<pennae>
strings in the unbound config are a bit odd at times, yes
<infinisil>
Hmm I'm still a bit confused
<infinisil>
pennae: Is the example I linked representative of what you mean?
<pennae>
as a first approximation, yes
<pennae>
now imagine you have large local zones that are split into different .nix files
<infinisil>
I guess you'd assign local-data = [ <one part of the split> ]?
exondation has quit [Ping timeout: 260 seconds]
<infinisil>
In each of the files
shibboleth has quit [Quit: shibboleth]
<pennae>
if each file assigns directly to config.unbound.settings.server that'll work, if you just want to put a fragment there without assigning it gets hairy
melg8 has quit [Quit: Connection closed]
jgt_ has joined #nixos
<infinisil>
And that worked better with the extraConfig?
ddellaco_ has joined #nixos
a_______a[m] has joined #nixos
<pennae>
well, sorta. you could just readFile each fragment into the extraConfig
<pennae>
there's no insurmountable problem here, it's just ... odd. feels like the model is not a good fit for unbound
<infinisil>
Oh well you can do exactly the same with the settings option no?
<pennae>
with the zipAttrsWith line above, yes
<infinisil>
Ah I see what you mean now
<infinisil>
You would define a `local-data: ...` in each of those files, and you could just read them all into a single string just using builtins.readFile's
<infinisil>
But since local-data is now a structural value you need to actually remove the `local-data:` from these files and transform them a bit for it to work
gustavderdrache has joined #nixos
<pennae>
pretty much
<pennae>
each local-zone has a local-zone key, some local-data keys, and a few other local-* keys. those all have to be flattened before splicing them into .server