#nixos — irc logs

19:19 <clever> services.nginx.appendHttpConfig = "server_names_hash_bucket_size 64";

19:18 <clever> services.nginx.appendHttpConfig

19:18 <clever> Zajcev: appendHttpConfig is the nixos option to add things to that area

19:17 <clever> Zajcev: from http://nginx.org/en/docs/http/server_names.html

19:17 <clever> If a large number of server names are defined, or unusually long server names are defined, tuning the server_names_hash_max_size and server_names_hash_bucket_size directives at the http level may become necessary.

19:15 <clever> Zajcev: nginx: [emerg] could not build server_names_hash, you should increase server_names_hash_bucket_size: 32

19:13 <clever> Zajcev: journalctl -u nginx | tail -n30

19:11 <clever> Zajcev: how are you testing it, and how is it not working?

18:50 <clever> pip3000: looks like nixos-unstable should have 13

18:37 <clever> lfish: when done, you can ./result/bin/switch-to-configuration boot, to update the bootloader

18:37 <clever> lfish: yep

18:25 <clever> lfish: nix-store -r /nix/store/aj8yk779bng82q1z6a0i6mn2sv590dxm-nix-2.0.4 ; /nix/store/aj8yk779bng82q1z6a0i6mn2sv590dxm-nix-2.0.4/bin/nix-build '<nixos/nixos>' -A system

18:24 <clever> infinisil: ah yeah, and i have sorta messed up my laptop before, by installing nix master

18:16 <clever> lfish: you need to use the version {^_^} gave, after applying the variable expansion

18:11 <clever> lfish: can you gist the whole error, and the cmds you ran?

18:11 <clever> samueldr: yeah, it will need to be documented properly, it doesnt matter that much that the nix2 is recent, just that it can parse the nixpkgs

18:10 <clever> samueldr: using the cmd {^_^} just gave, you should be able to upgrade almost anything

18:10 <clever> --fast stops nixos-rebuild from trying to build the "right" nix, and just uses whatever is in PATH

18:09 <clever> > "lfish, try doing: nix-store -r ${nix} ; PATH=${nix}/bin:$PATH nixos-rebuild boot --fast"

18:09 <clever> lfish: oh oops, let me fix a typo

18:09 <clever> > "lfish, try doing: nix-store -r ${nix} ; nixos-rebuild boot --fast"

18:08 <clever> gchristensen: but checking the source, i can see that @nix_x86_64_linux@ isnt baked into the nixpkgs, so the cmd i gave lfish above likely wont work

18:08 <clever> but if your nixos-rebuild is too old, it wont have the safety

18:08 <clever> gchristensen: which will just use `nix-store -r` to download a compatible nix

18:07 <clever> gchristensen: the error is refering to the safety code in here: https://github.com/NixOS/nixpkgs/blob/master/nixos/modules/installer/tools/nixos-rebuild.sh#L263-L299

18:06 <clever> lfish: what happens if you run `sh ~/.nix-defexpr/channels/nixos/nixos/modules/installer/tools/nixos-rebuild.sh build` ?

18:05 <clever> gchristensen: the safety in nixos-rebuild requires the new nixos-rebuild with the safety

02:55 <clever> when previously, it wasnt getting that far

02:54 <clever> it probably got past cabal2nix and passed a bottleneck, then tried to download 5 things at once from your cache

02:49 <clever> i cant think anything else to check

02:48 <clever> ah

02:48 <clever> if you re-add that, it can get cabal2nix from there, but the problem will remain for anything you built yourself

02:47 <clever> one minor thing, cache.nixos.org is missing from your binary cache list

02:47 <clever> doesnt matter which core it locks

02:39 <clever> if you re-run the last command with --repair, it will repair them

02:38 <clever> nothing at all should have been modified

02:34 <clever> run `nix-store --verify --check-contents` on the server

02:33 <clever> `_: is curl returning the same sig for that path?

02:19 <clever> with the right path

02:19 <clever> `_: try adding nix.extraOptions = "secret-key-files = /etc/nix/keys/secret-key-file"; to configuration.nix on the server

02:05 <clever> `_: cant remember if it needs to be configured or not, check the curl i gave above, on the hydra domain, and see what it says

01:56 <clever> yep

01:55 <clever> if its enabled

01:55 <clever> the hydra UI also includes a nix-serve compatible cache, so you can also just use hydra.example.io as a cache

01:54 <clever> ah

01:54 <clever> `_: will this machine be running hydra?, some of the config implies it is

01:54 <clever> `_: it repeats one of the steps twice when signing, and creates invalid signatures

01:54 <clever> `_: oh right, there is a bug in nix-serve at one point

01:50 <clever> what does `nix-store -r -vvvvv /nix/store/aqhld814irl57k6fbj5szh4ds4hkzai0-cabal2nix-2.9.2` output?

01:48 <clever> double-check that the pubkey in the server matches the pubkey in nix.conf

01:47 <clever> i cant see mistakes like that when its censored

01:47 <clever> and does the domain actually match what is in nix.conf on the client machine?

01:46 <clever> what does the Sig: header in the narinfo say?

01:43 <clever> does the nix-serve user have permission to read the private key?

01:42 <clever> `_: what does `curl https://cache.example.io/aqhld814irl57k6fbj5szh4ds4hkzai0.narinfo` return?

01:41 <clever> `_: the public key is in nix.conf

01:33 <clever> can you pastebin the contents of configuration.nix and /etc/nix/nix.conf ?

01:32 <clever> did you nixos-rebuild after editing it?

01:32 <clever> thats what configuration.nix should be doing

01:31 <clever> `_: and they appear in /etc/nix/nix.conf as well?

01:29 <clever> `_: for example: https://github.com/cleverca22/nixos-configs/blob/master/iohk-binary-cache.nix

01:28 <clever> `_: you must add both the URL and the pubkey in configuration.nix

01:25 <clever> `_: and does the local machine have the public in `nix.conf` ?

01:25 <clever> `_: grep NIX_SECRET_KEY_FILE /etc/systemd/system/nix-serve.service

01:25 <clever> one

01:25 <clever> `_: ah wait, on min

01:24 <clever> `_: what does `ps aux | grep nix-serve` show?

01:22 <clever> `_: nix-serve does not support the signatures managed by `nix sign-paths`, you must give nix-serve the path to the secret, and it will sign things on-demand

22:53 <clever> kiloreux: probably

22:45 <clever> it allows you to do .foo on the derivation to get the value, but the derivation itself has no clue its there, the value wont impact the computation of $out, and it doesnt have to be a flat string

22:44 <clever> kiloreux: passthru is basically the same as (stdenv.mkDerivation { ... }) // { foo = "bar"; }

22:31 <clever> -f is a path

22:30 <clever> bgamari: -f tells it to load the expression from a file

22:27 <clever> bgamari: bugs in the `nix build` arg parser not detecting invalid choices

22:25 <clever> -p generates a derivation to shell into, but a path points to one

22:25 <clever> bgamari: you cant mix paths and -p

22:23 <clever> can mostly ignore those

22:21 <clever> kini: try `nixos-rebuild test --fast --option substituters ""`

20:20 <clever> Zajcev: you would use whatever nix file you originally gave to `nixops create`

20:09 <clever> nixops will then save that -I flag in the state file, and you dont have to remember to `export NIX_PATH` every time you deploy

20:09 <clever> Zajcev: i generally do `nixops modify -I nixpkgs=https://nixos.org/channels/nixos-unstable-small/nixexprs.tar.xz ./deployment.nix`

19:11 <clever> jtojnar: you could use LD_LIBRARY_PATH to inject the debug version of it into the search path

18:41 <clever> yeah

18:40 <clever> Lisanna: you uninstall by name, not attributepath

18:40 <clever> Lisanna: once installed, nix-env has no clue what channel or attribute it came from

18:15 <clever> michas: yeah, then you should be on the version you linked from github

18:14 <clever> mpickering: what does `nix-channel --list` show for root?

16:59 <clever> ,pills

16:58 <clever> nefix: pop that into shell.nix, and then just run nix-shell with no args

16:58 <clever> with import <nixpkgs> {}; stdenv.mkDerivation { name = "foo"; buildInputs = [ go ]; }

16:58 <clever> nefix: make a shell.nix file

16:51 <clever> --delete-generations just gets rid of the GC root, so you can delete it

16:51 <clever> if you want to actually remove the path from the store

16:50 <clever> yeah, some of the command like stuff is a bit buggy with names

16:50 <clever> then you can `nix-store --delete` it

16:50 <clever> `nix-env --delete-generations 12` will get rid of generation 12

16:48 <clever> nix-env -e /nix/store/hash-foo

16:48 <clever> using the full storepath can make it simpler

16:48 <clever> but .'s in the name can confuse nix-env

16:48 <clever> the name is what is returned by -q

16:47 <clever> d1rewolf: use -e with either the same storepath, or the name

16:46 <clever> check nix-env -q to see it

16:46 <clever> yep

16:45 <clever> its in your current generation, you need to first uninstall it with nix-env -e

16:45 <clever> ls -l /nix/var/nix/profiles/per-user/d1rewolf/profile

16:44 <clever> ah, its in use by a generation of nix-env

16:42 <clever> d1rewolf: and then run `nix-store --delete` on the path?

16:41 <clever> d1rewolf: you want nix-store --query --roots

09:44 <clever> its nearly 7am, i should get back to bed

09:40 <clever> ldlework: *eyes line 8*

09:39 <clever> its how the pkgs arg is even getting passed to you

09:39 <clever> that should work on both nixos and home-manager

09:38 <clever> ldlework: then just { yourthing, pkgs, lib, ... }: everywhere

09:38 <clever> ldlework: also, _module.args.yourthing = import ./it_once.nix;

09:38 <clever> nefix: oh, yeah, i see that now

09:38 <clever> ldlework: this allows you to create your own set of functions, that use overlay syntax, but are not mutating pkgs

09:37 <clever> and you can call .extend on the result of extend, to add more overlays

09:37 <clever> so your overlay can mutate what self is (both for the initial self: {} and other overlays)

09:37 <clever> and .extend will insert an overlay between the return-value of that function, and the self value

09:37 <clever> lib.makeExtensible takes a function in the form of (self: { }), and will add a .extend method to it

09:36 <clever> > ( (lib.makeExtensible (self: {})).extend (self: super: { a = "foo"; }) ).a

09:36 <clever> ldlework: lib.makeExtensible (self: {}) may be of interest to you

09:34 <clever> ldlework: possibly

09:32 <clever> ldlework: i think the value of nixpkgs.config depends on services.xserver.enable, which depends on pkgs, which depends on nixpkgs.config

09:32 <clever> ldlework: which depends on services.xserver.enable

09:31 <clever> ldlework: which depends on nixpkgs.config

09:31 <clever> line 66 of the error says that _module.args depends on the nixos option nixpkgs.pkgs, which makes sense

09:30 <clever> and mine on line 27 (39 of the gist) depends on pkgs

09:29 <clever> ldlework: and on line 44, you can see _module.args

09:29 <clever> ldlework: yeah, the problem is when trying to compute pkgs

09:28 <clever> ldlework: ah, then its not it

09:27 <clever> nvme will enable nvme+uefi in justdoit, and qemu

09:27 <clever> uefi_sata for example, will enable uefi in qemu and justdoit, and use a sata disk

09:26 <clever> and each one, changes the config for justdoit, and the qemu config

09:26 <clever> adamantium: the first one boots the kexec kernel+initrd, with justdoit, and a hdd, the 2nd boots with just the hdd

09:26 <clever> adamantium: each attribute in this set, generates a pair of bash scripts

09:26 <clever> adamantium: https://github.com/cleverca22/nix-tests/blob/master/kexec/simple-test.nix#L62-L68

09:25 <clever> adamantium: let me also link my test utils

09:25 <clever> adamantium: sure

09:25 <clever> ldlework: it has to eval config.mine's keys, to know if this should enable or not

09:25 <clever> ldlework: i think the problem could be https://gist.github.com/dustinlacewell/54d0829d3426209a87bc566f676f0a70#file-2_modules_workstation-nix-L19

09:23 <clever> adamantium: mine though has uefi, nvme, and luks support

09:22 <clever> adamantium: it looks like your script has more runtime configurability, while mine needs all inputs to be set in nix and rebuilt with nix-build

09:21 <clever> ldlework: https://github.com/NixOS/nix/issues/2381

09:20 <clever> jtojnar: check $dev instead of $out ?

09:20 <clever> hmmm, but you said postFixup, so it should exist

09:20 <clever> jtojnar: if you assign fixupPhase to a string, then the fixupPhase() function will never run

09:19 <clever> adamantium: dont see how it could have caused that, try adding -vvvv to the command?

09:17 <clever> nefix: you usually want types.str

09:17 <clever> adamantium: its probably working, check `top` in another terminal

09:17 <clever> nefix: also, the string type is not what you want: https://github.com/NixOS/nixpkgs/blob/master/lib/types.nix#L210-L212

09:16 <clever> dont think its related

09:15 <clever> jtojnar: put an `ls -l $out` in postfixup

09:14 <clever> nefix: line 230 appears to deal wit the options tree

09:14 <clever> https://github.com/NixOS/nixpkgs/blob/master/lib/modules.nix#L230

09:11 <clever> yep

09:11 <clever> need to force it to concat before it reads the dir

09:11 <clever> adamantium: getDir (dir + "/${file}")

09:11 <clever> adamantium: ah, oops, made the same mistake when testing locally

09:10 <clever> nefix: i prefer gist.github.com

09:09 <clever> nefix: can you pastebin your modules?

09:07 <clever> dir = ./.;, yeah, that looks fine

09:07 <clever> adamantium: i think so, but it depends on how recimport is called

09:06 <clever> nefix: can you paste the --show-trace and your code?

09:03 <clever> you would add it to your livecd image when building it

09:02 <clever> justdoit.nix is a nixos module, that adds the compiled script into systemPackages

09:02 <clever> and this gist will generate an aws AMI image with a zfs based install

09:02 <clever> https://gist.github.com/cleverca22/7b55b992c86ef931e2520005652d5f89

09:02 <clever> this bash script will do the entire install with a single command

09:01 <clever> https://github.com/cleverca22/nix-tests/blob/master/kexec/justdoit.nix

09:00 <clever> adamantium: try just editing the nix then

08:59 <clever> then getDir dir + "/${file}"

08:59 <clever> just stop quoting the dir and the problem will go away

08:59 <clever> (./. + "/kexec") does not fail, but "${./.}/kexec" does

08:59 <clever> adamantium: also, there is a better fix, i confirmed what i said above

08:58 <clever> yes, there is a space there

08:57 <clever> other way around, from /mnt to /

08:57 <clever> adamantium: in your case, it would be: nix copy --from local?root=/mnt/ --to local /nix/store/gby17w2w1f35ab099khkf1wcblxx7ddi-modules

08:55 <clever> adamantium: this worked on my end

08:55 <clever> [root@amd-nixos:~]# nix copy --from local?root=/home/clever/fakeroot/ --to local /nix/store/c755gda2r90mhsrz1k6fd8w62ffvshyb-nix-tests

08:55 <clever> adamantium: i was doing it from memory, let me confirm it on this end

08:54 <clever> adamantium: https://github.com/NixOS/nix/issues/2381

08:51 <clever> but dir + "/${file}" wont copy it, and will preserve the original path, and then work, possibly

08:51 <clever> "${dir}/${file}" will copy dir to /mnt/nix/store, then nix2 tries to read it from /nix/store and it fails

08:50 <clever> change it to: then getDir dir + "/${file}"

08:50 <clever> then getDir "${dir}/${file}"

08:50 <clever> adamantium: it might be possible to work around it entirely

08:50 <clever> adamantium: the problem, is when you try to readDir a storepath when nix2 is chrooting

08:49 <clever> adamantium: and i can confirm the problem on this end

08:48 <clever> i think that will work around it for now

08:48 <clever> adamantium: nix copy --from local?root=/mnt /nix/store/gby17w2w1f35ab099khkf1wcblxx7ddi-modules --to local

08:48 <clever> adamantium: no, its likely a bug within nix 2

08:47 <clever> testing it locally

08:45 <clever> but some parts of the code forget to prefix the paths with /mnt/

08:45 <clever> nix 2.0 lets you act on a store like /mnt/nix/store without doing a real chroot

08:45 <clever> adamantium: its possible that the chroot stuff in nix2 is breaking

08:43 <clever> adamantium: what about in /mnt/nix/store/ ?

08:43 <clever> adamantium: what about the modules dir above it?

08:42 <clever> adamantium: ls -lh /nix/store/gby17w2w1f35ab099khkf1wcblxx7ddi-modules/nixos

08:36 <clever> its probably from https://github.com/a-schaefers/nix-config/tree/master/modules/home

08:35 <clever> adamantium: does the path /nix/store/1f17y165kcd82dyhig5iychb2j60l058-modules/home exist?

08:35 <clever> nikivi: no idea whats wrong there

08:34 <clever> nikivi: thats not the real error

08:32 <clever> adamantium: can you also pastebin recimport.nix ?

08:31 <clever> adamantium: add --show-trace and re-paste the error

08:31 <clever> it returns glibc on linux, and some darwin stuff on darwin

08:30 <clever> pkgs.libiconv is an alias to deal with this exact problem

08:30 <clever> then you should be able to just nix-env -iA postgis -f '<nixpkgs>'

08:30 <clever> nikivi: put this into config.nix: https://gist.github.com/cleverca22/a673a02d5e7b10df068016c1b6f2a896

08:25 <clever> adamantium: yeah, i would try to always use relative imports, since absolute mess with the chroots during install

08:25 <clever> nikivi: step 2 is to then add one of those with an override

08:25 <clever> nikivi: to see what packages contain iconv.h

08:23 <clever> nikivi: that ls command wont change anything

08:22 <clever> adamantium: curl https://github.com/nix/install | sh i believe

08:22 <clever> nikivi: quick&dirty first step, `ls -l /nix/store/*/include/iconv.h`

08:22 <clever> nikivi: youll need to find out what package provides it, and then create an override to fix it

08:21 <clever> nikivi: on linux, iconv.h is part of glibc, but darwin doesnt use glibc

08:20 <clever> adamantium: ive made 2 of those

08:20 <clever> and there should be a more detailed error above that one

08:19 <clever> i'm guessing it will fail at some point, and reveal why it was marked as linux-only

08:19 <clever> i made a typo above

08:19 <clever> postgis isnt spelled right

08:19 <clever> yeah, that should also force it to build

08:18 <clever> i prefer nix-build when testing things, since nix-env persists more, and has generations

08:18 <clever> nikivi: nix-build will just build and create a result symlink, nix-env will build and add it to ~/.nix-profile/

08:16 <clever> nikivi: that supplies the contents of config.nix directly on the cmd line

08:16 <clever> nikivi: nix-build '<nixpkgs>' -A postgix --arg config '{ allowUnsupportedSystem = true; }'

08:16 <clever> ldlework: yep

08:16 <clever> nikivi: yep, thats it

08:16 <clever> ldlework: and only once it knows what root-level keys each module returns, can it know which module provides the value of _modules

08:15 <clever> nikivi: try the above nix-build first

08:15 <clever> ldlework: and for the nixos module system to merge all modules together, it must know what keys every module is returning

08:15 <clever> ldlework: the problem, is that pkgs comes from the config._modules.args.pkgs setting

08:15 <clever> nikivi: `nix-build '<nixpkgs>' -A postgis` will explain how to set allowUnsupportedSystem

08:13 <clever> nikivi: its currently tagged as being linux only, but you can set allowBroken to bypass that

08:13 <clever> nikivi: https://github.com/NixOS/nixpkgs/blob/fde2012519999145c541547bce310f327080e997/pkgs/development/libraries/postgis/default.nix#L100

08:11 <clever> once some of the prefix is constant, it can lazily skip your code until later

08:11 <clever> so you need to do config = mkIf config.mine.workstation.enable { mine = ...; };

08:11 <clever> it must know the keys your config= defines, to be able to find pkgs

08:11 <clever> due to how pkgs works

08:10 <clever> ldlework: oh, one theory, the keys within config= might not be allowed to depend on pkgs

08:10 <clever> yeah, the traces are a bit cryptic

08:07 <clever> yeah, it is strange that its failing like that

08:05 <clever> ldlework: try using self to get at lib functions?

08:04 <clever> ah, that one doesnt exist

08:04 <clever> > lib.traceShow "traceme" "returnme"

08:02 <clever> but the bot cant show trace output

08:02 <clever> > lib.traceShowVal "foo"

08:02 <clever> ldlework: there is also a lib.traceShowVal

08:01 <clever> ldlework: i run builtins.toJSON over it

07:53 <clever> bkchr[m]: patchShebangs should be ran over the scripts to fix that up

07:53 <clever> bkchr[m]: id say its a bug to be using /usr/bin/env in any finished build on nix

07:52 <clever> bkchr[m]: ah, that package needs to be fixed to patchShebangs its own scripts

07:51 <clever> bkchr[m]: run patchShebangs before attempting to use that script

07:50 <clever> bkchr[m]: if the sandbox is enabled, it wont exist

07:49 <clever> ldlework: the problem appears to be near config.news, which isnt in the gist

07:46 <clever> adisbladis: yeah

07:45 <clever> hmmm, that doesnt look like a package

07:45 <clever> > mate

07:44 <clever> > mate.meta.description

07:15 <clever> yeah

07:14 <clever> baimafeima: guixe uses nix-daemon, but has a different language in place of nix, and only allows free software

07:12 <clever> baimafeima: the github repo that describes all packages, https://github.com/nixos/nixpkgs/

07:11 <clever> baimafeima: the livecd has some nonfree firmware enabled, and all of the nonfree stuff is described in nixpkgs, but will only install if you enable unfree

07:09 <clever> baimafeima: if you leave allowUnfree at the default of false, it will only allow you to install free software

07:07 <clever> hyper_ch2: though, that is just how to patch the pre-built firefox, there is a second nix file for actually building it

07:02 <clever> hyper_ch2: i have previously done my own re-encoding to watch things on an android tablet, and i found some of them recently, and they sounded like shit, lol

07:01 <clever> hyper_ch2: it feels like the plex pass would unlock more features, and also avoid the problem of having to buy the app on every platform

06:54 <clever> LnL: one area ive noticed where plex may still require payment, the android app stops playback after 90 seconds

02:01 <clever> ,libraries

01:22 <clever> DenialAdams: nix-env -e

23:52 <clever> koselig: youll want to check for and maybe file a bug on nixpkgs then

23:45 <clever> koselig: it looks like a bug within systemd.network, until its fixed you will want to set its enable to false

23:44 <clever> koselig: and what does `sudo nix-channel --list` report?

23:34 <clever> koselig: what does it output if you use --show-trace and can you pastebin your configuration.nix?

23:21 <clever> > builtins.isFloat 3.14

23:21 <clever> it would be in the nix manual

23:20 <clever> > builtins.typeOf 3.14

23:20 <clever> nefix: https://github.com/NixOS/nix/blob/master/src/libexpr/primops.cc#L255

22:27 <clever> v0|d: `Hint: Run "cryptsetup benchmark" to see which one is fastest on your machine`

22:26 <clever> v0|d: thats an example, not the default

22:25 <clever> Thra11: yeah

22:24 <clever> v0|d: https://nixos.org/nixos/options.html#randomencryption is probably better

22:24 <clever> hmmm wait no

22:24 <clever> v0|d: https://nixos.org/nixos/options.html#encrypted.enable

22:23 <clever> v0|d: do you want hibernation?

22:23 <clever> Thra11: then why was the version= bumped?

22:22 <clever> leotaku: your nix version is too new, you need to temporarily put the same nix version as the remote end in PATH

22:21 <clever> Thra11: yeah, id say thats wrong, the url doesnt match the version

22:00 <clever> if you try to nix-env -iA a set, it will install every package in the set, and they are installed "normally" so they show up in nix-env -q and can be updated/removed seperately

22:00 <clever> johnny101: just do mystuff = { inherit (pkgs) firefox chromium; }; in your override

22:00 <clever> johnny101: but there is a change you can do to get that data back, use a bare set instead of a buildEnv

21:59 <clever> johnny101: there is no difference between installing and updating

21:41 <clever> johnny101: nix-env -iA nixos.thatbuildenv --dry-run

17:46 <clever> joko: i just switch back to nix-build when i want that

17:37 <clever> ixxie: nixops always uses root

12:42 <clever> ldlework: substituteAll accepts an isExecutable flag, no need for writeScript

07:02 <clever> the all variant just uses env vars at build-time

07:02 <clever> check nixpkgs for examples

07:02 <clever> ldlework: this is a function that calls substituteInPlace for you

2018-08-31

2018-08-30

2018-08-29

2018-08-28