#nixos — irc logs

19:47 <clever> srk: i wrote a nixos module for iscsi root support

19:46 <clever> srk: the iscsi was full nixos

19:46 <clever> srk: the tftp setup is not-os

19:46 <clever> pip3000: nope, you need to manually track its changes and undo it yourself

19:46 <clever> srk: and i have also made them boot entirely with tftp, with only a bootcode.bin on the SD card

19:46 <clever> srk: ive gotten my raspberry pi's to iscsi boot before

19:46 <clever> FS overhead and FS compression can result in it gaining too much free space

19:45 <clever> optimize can result in a GC deleting something and gaining nothing, but still stopping early

19:44 <clever> srk: ignoring savings from --optimize, fs overhead, and fs compression, it will hit max-free bytes free when done

19:44 <clever> srk: once it does trigger, it will compute max-freed - current-free, and run nix-collect-garbage --max-freed 1234 on the result

19:42 <clever> 205 max-free = ${toString (1024*1024*1024*6)}

19:42 <clever> the above is for 3gig

19:42 <clever> you can also just have nix do the math for you

19:42 <clever> 204 min-free = ${toString (1024*1024*1024*3)}

19:42 <clever> srk: that is set to trigger a GC when you have under 2mb free

19:41 <clever> srk: what did you set the values to?

19:41 <clever> srk: it will check any time nix adds anything to the store

19:41 <clever> srk: any time the free space goes under min-free, it will run a garbage collection, aiming to hit max-free bytes free

19:40 <clever> srk: nope

19:27 <clever> mkaito: an example of one is on lines 14-27

19:26 <clever> mkaito: i believe you give it the same function you would have given to filterSource

19:26 <clever> mkaito: https://github.com/NixOS/nixpkgs/blob/4e78aeb441075872c07e6d6dc45f2045a3d87e41/lib/sources.nix#L31-L47

19:23 <clever> mkaito: i think builtins.cleanSourceWith lets you extent the filter

19:23 <clever> cocreature: why cant you just sign things on the cache?

19:18 <clever> nh2[m]: nix1 didnt save the cache.nixos.org signatures, but nix2 can

19:18 <clever> nh2[m]: nix verify can also check signatures, and nix copy-sigs can download signatures from the binary cache

19:15 <clever> nh2[m]: run it with --help to see the args

19:15 <clever> rindolf: that has to eval all of nixpkgs to find everything by name, and can use a lot of ram

19:15 <clever> nh2[m]: nix sign-paths

19:15 <clever> rindolf: what command ran out of ram?

19:13 <clever> only root needs read access to the secret

19:13 <clever> nh2[m]: with that set, nix can sign things it builds

19:13 <clever> nh2[m]: and you need to set secret-key-files = /etc/nix/signing.sec

19:13 <clever> nh2[m]: you have to generate your own keypair, thats described in the nix-store man page

19:11 <clever> nh2[m]: this key? https://github.com/NixOS/nixpkgs/blob/release-18.03/nixos/modules/services/misc/nix-daemon.nix#L361

19:11 <clever> nh2[m]: one sec

19:10 <clever> but thats all i can think of right now

19:10 <clever> chpatrick: i have plans to make a tool to generate an A+B cabal file, that you can then treat as 1 package

19:10 <clever> chpatrick: when changing B, you must re-open the nix-shell, which does a full rebuild of B

19:09 <clever> chpatrick: ah, nix doesnt really play nicely with that model at all

19:08 <clever> chpatrick: this is a derivation that gives you ghc + ghci, that supports datadog, lens, and data-default

19:08 <clever> chpatrick: https://github.com/cleverca22/arcstats/blob/master/default.nix

19:08 <clever> chpatrick: or ghcWithPackages

19:08 <clever> chpatrick: you need to use haskellPackages.mkDerivation, not shellFor i believe

19:05 <clever> you need to change the configuration.nix option that installed it

19:05 <clever> rindolf: then its installed via configuration.nix, not nix-env

19:04 <clever> rindolf: what does `type khelpcenter` return?

19:03 <clever> rindolf: kde is also not present there

19:03 <clever> rindolf: qt isnt installed in nix-env, so it cant be removed

19:02 <clever> that bug also broke the ability to rollback via the grub menu

19:01 <clever> then all of the users with nixpkgs-unstable came out of the woodwork :P

19:01 <clever> nixos-unstable correctly refused to update

19:01 <clever> about a year ago, grub was broken, and corrupted the grub config file

19:01 <clever> PyroLagus: and if you install nixos from nixpkgs-unstable, you risk breaking the install

19:00 <clever> PyroLagus: yeah

19:00 <clever> t

19:00 <clever> PyroLagus: nixos-unstable only does linux testing, and tests more OS related things, to ensure nixos can still boo

19:00 <clever> PyroLagus: thats nixpkgs-unstable, which is used outside of nixos (ubuntu, debian, darwin, and so on)

18:58 <clever> rindolf: can you gist the output of `nix-store -qR ~/.nix-profile` ?

18:57 <clever> rindolf: remove every package that depends on QT

18:55 <clever> rindolf: only names listed in `nix-env -q` can be removed with `nix-env -e`

18:37 <clever> but --delete said it had roots keeping in in-use

18:37 <clever> which lead to confusion, nix-store --query --roots said a path had no roots

18:37 <clever> manveru: nix1 did it, but silently didnt tell you about them

18:33 <clever> rindolf: root is needed for -d to get rid of all unused paths

18:08 <clever> cocreature: but Setup.hs will always use the library that the nix-shell provided, so its always perfect

18:07 <clever> cocreature: id expect it to only break a few years down the road, when the cabal in nix-env has aged, and your using a much newer nixpkgs for the nix-shell

18:07 <clever> cocreature: i have seen it break for others before, when they manually installed cabal-install with nix-env, and then tried to manually build in a shell

18:05 <clever> cocreature: but if you ignore the Setup.hs entirely, and run `cabal configure` + `cabal build`, it may be the wrong version of cabal

18:03 <clever> that can break things, because it wont be the same version as what the nix expressions want

18:02 <clever> `runhaskell Setup.hs test`

18:02 <clever> either `runhaskell Setup.hs configure` or compile it with ghc, then run it

18:01 <clever> gchristensen: that only has the cabal library, not the binary, you need to run Setup.hs

18:00 <clever> gchristensen: are you in a shell from haskellPackages.mkDerivation?

17:56 <clever> mplayer too

17:56 <clever> sphalerite: i think vlc can do it

16:31 <clever> you need to partition, format, and mount everything under /mnt, then run nixos-generate-config --root /mnt, edit /mnt/etc/nixos/configuration.nix, and then nixos-install --root /mnt

16:30 <clever> shapr: that has to be done manually

16:29 <clever> shapr: id also recomend that the efi sys partition be at least 512mb, maybe 1gig

16:26 <clever> blob_: https://nixos.org/nixos/options.html#fonts

16:26 <clever> uefi boot from the installer on usb, and then do a normal uefi install against the "new" drive

16:25 <clever> yeah

16:25 <clever> just a normal uefi install

16:23 <clever> and then it always comes up as an option

16:23 <clever> so the uefi firmware will think its a usb stick

16:23 <clever> shapr: if you set this flag, then it will configure the drive as a removable one

16:23 <clever> https://nixos.org/nixos/options.html#installasremov

16:22 <clever> but there is a removable option to get around it

16:22 <clever> uefi is a pain like that

16:22 <clever> so another machine will refuse to boot it by default

16:22 <clever> it relies in the efi vars in the nvram being setup right

16:21 <clever> if using uefi, then you can just entirely ignore the ubuntu drive, give nixos its own efi system partition and rootfs, and then youll have an option for both in the UEFI menu

16:20 <clever> shapr: uefi or legacy booting?

00:12 <clever> so it hard-coded itself to open the path "unknown" at runtime

00:12 <clever> the nix sandbox had none of the options

00:11 <clever> the package was testing for things like /etc/mtab, to detect what your distro is doing

00:11 <clever> rotaerk: the problem was that the nix sandbox broke the package, and i had the sandbox off at the time

00:10 <clever> rotaerk: it turns out, anything not in the cache worked, and anything in the cache failed, so the bisect just failed to locate the problem entirely

00:10 <clever> rotaerk: i once did a bisect like that, and ran into all kinds of trouble

23:58 <clever> IN_NIX_SHELL=impure

22:46 <clever> kalbasit: its meant to be edited manually

22:34 <clever> Ralith: the entire config set is untyped and ignores any undefined options

22:33 <clever> Ralith: overlays is its own attribute, beside config, not inside

22:19 <clever> check the above issue

22:19 <clever> tobiasBora: https://github.com/NixOS/nixpkgs/issues/9884

22:18 <clever> nope

22:17 <clever> tobiasBora: the nixos container framework assumes the host also runs nixos, so its tricky to get the kernel to run

22:14 <clever> and its difficult to run it under a container as well

22:13 <clever> tobiasBora: yeah, you have to replace the OS

21:55 <clever> there are several utils to handle that

21:55 <clever> for that, you would need to install nixos to the machine first

21:52 <clever> tobiasBora: just make sure nix-channel is using a channel that starts with nixos

21:52 <clever> tobiasBora: nixops should work on any machine nix works on

21:24 <clever> but i never recreated it on nixos

21:24 <clever> ive tied dhcpcd into bind before on gentoo

21:15 <clever> kalbasit: let bazel_0_14_1 = ...; in pkgs.mkShell { ...

21:15 <clever> kalbasit: move it into a let block to make it into scope

21:05 <clever> i never use network manager

21:01 <clever> pie___: why not use bind then?

15:43 <clever> srk: both are in bytes, in nix.conf

15:42 <clever> srk: nix now has a min-free and max-free config flag, for auto-gc

14:57 <clever> tank/nix 52G 45G 7.2G 87% /nix

14:57 <clever> /dev/disk/by-uuid/3c21b4a1-bc19-449b-815f-60c66ba23bdf 74G 53G 18G 76% /

14:57 <clever> naspool/root 56G 52G 4.2G 93% /

14:57 <clever> amd/nix 65G 60G 4.5G 94% /nix

14:57 <clever> Filesystem Size Used Avail Use% Mounted on

00:16 <clever> qualiaqq: $QT_PLUGIN_PATH

00:16 <clever> qualiaqq: it needs an env var related to QT to be set

22:33 <clever> and if your output refers to that path, it becomes a runtime dependency

22:33 <clever> $src will always point to the result fetchurl made

22:33 <clever> it references the copy in the store

22:32 <clever> you can just -jar $src directly

22:32 <clever> tenten8401: you also dont need to copy $src to $out

22:29 <clever> that suffix is inside the double-quotes of something else

22:28 <clever> not several

22:28 <clever> your passing a single arg to makeWrapper

22:28 <clever> i think you need to adjust the double quotes

22:25 <clever> tenten8401: you may need \$HOME

22:19 <clever> tenten8401: i think you want what i just typed

22:18 <clever> > '' --working-dir "\''${XDG_DATA_HOME:-\$HOME/.local/share}/atlauncher" ''

22:18 <clever> tenten8401: which ends the string

22:18 <clever> tenten8401: thats because you have an extra '' at the end

22:18 <clever> > '' --working-dir "\\''${XDG_DATA_HOME:-\$HOME/.local/share}/atlauncher" ''

22:17 <clever> and you dont nsee the }\''/atlauncher escape

22:17 <clever> so now ${XDG_DATA_HOME:-$HOME} will appear in the bash script its generating

22:16 <clever> which escapes it so that bash doesnt eval it

22:16 <clever> which results in \${ at the bash level

22:16 <clever> and then \\ is the nix level escape for \

22:16 <clever> ''${ is the nix level escape to make a ${

22:15 <clever> nope

22:14 <clever> tenten8401: try \\ for that one

22:14 <clever> tenten8401: i think the \' escaped the ' and then the '${ wasnt an escape

22:14 <clever> jgt: how did it not work?

22:13 <clever> \$HOME

22:11 <clever> tenten8401: can you gist what your wanting to do?

22:09 <clever> jgt: its applied the same as justStaticExecutables

22:09 <clever> jgt: haskell.lib.dontCheck

22:09 <clever> jgt: or

22:09 <clever> jgt: overrideCabal

21:17 <clever> > '' ''${ to escape a $ and {, then ''' to escape double single''

21:16 <clever> tenten8401: depends on if its a " or '' string

20:58 <clever> tenten8401: should be as simple as swapping out the jar and renaming it

20:57 <clever> tenten8401: https://gist.github.com/938d02f8830c0a4f0df4e1b77299ad93

20:56 <clever> minecraft is also already packaged

20:56 <clever> you have to patch the package to setup LD_LIBRARY_PATH when running it

20:55 <clever> ,library

20:55 <clever> tenten8401: installing libraries wont help on nix

19:39 <clever> clefru: that looks like it should be safe

18:48 <clever> waynr: nix-env -q

18:48 <clever> waynr: that just means hydra is going to have to (re)build dnscrypt-proxy2 on linux and darwin

04:12 <clever> did you nixos-rebuild?

04:11 <clever> ps aux | grep ssh

04:11 <clever> blu3r4d0n: is it running?

02:16 <clever> jtojnar: `type git`

02:10 <clever> samueldr: try what infinisil said

02:10 <clever> yeah

02:09 <clever> git probably looks in its own libexec for utils like that

02:08 <clever> nix does away with directories like /usr, /usr/local, and /sbin

02:05 <clever> not sure where it would be documented

02:02 <clever> it has to install to $out/bin/thd, not $out/usr/bin/thd

02:02 <clever> install -D thd /nix/store/w5fii7yk82qadgh1ls5bqkrdr3p1qw7q-hello-2.10//usr//bin//thd

02:02 <clever> NoOneRules: oh, i see your problem

02:02 <clever> NoOneRules: and if you ls -l ~/.nix-profile/ ?

02:00 <clever> and what did it output?

02:00 <clever> NoOneRules: did you re-run nix-env after editing it?

01:15 <clever> unknown

01:14 <clever> jtojnar: so if you just ask pkgconfig to find its .pc file

01:14 <clever> jtojnar: those packages should already be in scope

01:12 <clever> jtojnar: it might help if pkgconfig has a fixup hook, that scans the requires fields, and populates the propagated-inputs under $out/nix-support/

00:21 <clever> Ralith: so i always make my /boot pretty large, and i can also recover from almost any failure

00:21 <clever> Ralith: it puts the entire nixos installer into /boot, at the cost of about 400mb

00:21 <clever> Ralith: i also use this on most of my machines: https://github.com/cleverca22/nixos-configs/blob/master/rescue_boot.nix

00:17 <clever> that order complicates the logic a lot more

00:17 <clever> Ralith: if you delete old kernels, plan to copy in new ones, but crash, it wont be able to boot

00:17 <clever> Ralith: you need to copy in the current kernels before you can safely delete old ones

00:15 <clever> it shows generation numbers, date/time stamps, and paths to the files it uses

00:15 <clever> read the grub config file

00:14 <clever> if you delete the wrong one, it will just replace it when you nixos-rebuild

00:13 <clever> you need to manually deleted 1 or 2 kernels before it can switch and delete old ones

00:13 <clever> Ralith: by default, it will setup 100 generations in the grub menu, along with any kernels those 100 refer to

00:13 <clever> Ralith: https://nixos.org/nixos/options.html#configurationlimit

00:12 <clever> grub or systemd-boot?

00:11 <clever> you can also manually delete some kernels

00:11 <clever> you have to GC some system generations, then nixos-rebuild

00:11 <clever> Ralith: and /boot is only updated upon nixos-rebuild, even after a GC

00:11 <clever> Ralith: from rebuilds prior to the last boot

00:07 <clever> import ./foo.nix will be identical to just pasting the contents of foo.nix in at that location

00:06 <clever> pretty much

00:05 <clever> bpye: you can just make your own nix file containing a set { smtp_server = "foo"; } and then import it

23:52 <clever> Ralith: setup.sh i think is the only place

21:14 <clever> you can grep nixpkgs for examples, and how it works

21:14 <clever> illegalprime[m]: adding cmake to the buildInputs will automatically change the default configurePhase, and the new one obeys that var

21:13 <clever> illegalprime[m]: that would go under cmakeConfigureFlags i believe

19:49 <clever> illegalprime[m]: you can also set installFlags = [ "prefix=$out" ];

19:47 <clever> illegalprime[m]: headers would be in $out/include/

19:47 <clever> illegalprime[m]: it needs to install everything to $out

19:25 <clever> fasdfadsfadasd: you can also nix-env -f foo.nix -iA attribute

16:44 <clever> __monty__: ive tried, for avahi doesnt listen on that interface for me

16:42 <clever> __monty__: then configure nginx to mux it out to the right LAN ip on the remote end

16:41 <clever> __monty__: put a /etc/hosts entry to map many subdomains to the toxvpn ip

16:37 <clever> socat can just blindly forward it, nginx can be setup as a reverse proxy and inspect the Host: header to redirect it inteligently

16:36 <clever> __monty__: so port 80 on the toxvpn host redirects to 80 on the http server

16:36 <clever> __monty__: you might also be able to use a tool like socat or nginx to create a transparent proxy

16:28 <clever> __monty__: the other option is to run toxvpn on the http server

16:28 <clever> __monty__: i have plans to get routing working over toxvpn, but havent gotten around to testing them

16:28 <clever> __monty__: currently, you would need to run something like squid on the remote toxvpn machine, then use its tox ip to connect to the squid proxy

15:53 <clever> mahagad: an override in config.nix

15:47 <clever> so your better off with { pkgs ? <nixpkgs> }:

15:46 <clever> gchristensen: oh, and line 2 re-imports a 2nd nixpkgs, and doesnt set system

15:46 <clever> gchristensen: i think for nixpkgs itself, you just use system = "x86_64-darwin";, i'm not sure why nixos wants to call it something different

15:43 <clever> gchristensen: i think localSystem is for native builds but platform is for cross-builds

15:21 <clever> yeah

15:20 <clever> without that, it knows localhost cant build, and has no choice

15:19 <clever> jgt: because you used --option system, it assumed that localhost can build faster then nix-docker, so it just did that

15:16 <clever> jgt: nixpkgs.localSystem.system = "x86_64-linux";

15:15 <clever> jgt: that was renamed recently

15:14 <clever> jgt: that lies to nix and claims your machine can run linux binaries

15:14 <clever> jgt: dont yse --option system

15:11 <clever> jgt: near the top, does it mention any warnings about failing to reach a remote system?

15:08 <clever> jgt: it should context the nix-daemon that runs as root, which will do the ssh from root

15:08 <clever> jgt: a normal user

15:07 <clever> jgt: and then if you try the nix build again?

15:07 <clever> jgt: run it under a proper root shell, sudo -i

15:06 <clever> jgt: then your ssh keypair isnt working right

15:05 <clever> jgt: ssh nix-docker -i /etc/nix/docker_rsa

15:05 <clever> jgt: and if you try to ssh into it as root, what happens?

15:04 <clever> jgt: did you configure the build slave in /etc/nix/machines ?

14:27 <clever> Taneb: should have worked like that

14:26 <clever> Taneb: did you dd to sdb or sdb1?, how big is the usb stick?

14:24 <clever> Taneb: how did you create the bootable usb stick?

14:18 <clever> jtojnar: call evalModules with a custom list of modules, https://github.com/cleverca22/not-os/blob/master/default.nix#L12-L34

13:37 <clever> how is it only 1? lol

13:35 <clever> jgt: then cachix can cache the output of that, and nixops can import it

13:35 <clever> jgt: you can also create a new nix file, that imports haskell-packages.nix with a specific version of nixpkgs, and also builds it staticly

13:34 <clever> nix-repl> python3.sitePackages

13:34 <clever> "lib/python3.6/site-packages"

13:34 <clever> jgt: ive not tried cachix yet, so i'm not sure

13:32 <clever> jgt: it will only find it on the cache if the cache has a copy that was previously built staticly, with the same <nixpkgs>

13:28 <clever> riskbook = pkgs.haskell.lib.justStaticExecutables (import ./haskell-packages.nix { inherit pkgs; }).riskbook;

13:27 <clever> no need to re-import a 2nd pkgs

13:27 <clever> jgt: also, you may want to switch that to just { inherit pkgs; }

13:26 <clever> jgt: ah, then youll want riskbook = pkgs.haskell.lib.justStaticExecutables (import ./haskell-packages.nix { pkgs = import <nixpkgs> { system = "x86_64-linux"; }; }).riskbook;

13:24 <clever> jgt: if you gist the nix expressions near systemPackages and riskbook i can help with that

13:22 <clever> jgt: if you turn off isLibrary, it will be a dynamic ghc binary, and it will refer to other libraries and have the same issue

13:22 <clever> jgt: justStaticExecutables will override that

13:20 <clever> building it with haskell.lib.justStaticExecutables will solve that

13:20 <clever> it contains dynamic libraries that refer to ghc

13:19 <clever> riskbook is to blame

13:15 <clever> you may also need to restart the nix-daemon service with launchctl

13:12 <clever> to upgrade, sudo -i ; nix-channel --update ; nix-env -iA nixpkgs.nix

13:12 <clever> and grep for paths

13:12 <clever> for nix 1, you have to nix-store -q --tree, then manually follow the lines

13:12 <clever> jgt: you can upgrade to nix 2 easily

13:11 <clever> yeah, nix 2

13:10 <clever> the above will tell you why it depends on ghc

13:10 <clever> ahh

13:10 <clever> jgt: nix why-depends /nix/store/2ags0gq0l8q20kdy3r6dmxc50k7gzrn3-nixops-machines /nix/store/wdph2s4xzz4dkrw31cgby2l53892il0c-ghc-8.2.2

13:09 <clever> jgt: sort -h and du -h make it a lot more readable

13:00 <clever> in my case, current-system is 9.5 gig, with go bloating it a lot

12:59 <clever> 1.1G /nix/store/360zh9xvnqzvzvl567b43960fhgq90dw-go-1.10.3

12:59 <clever> 9.5G total

12:59 <clever> 449M /nix/store/d7qiksl0hzk4kl43j57f0cxscb7zdls8-chromium-67.0.3396.87

12:59 <clever> jgt: and if you run this on any storepath (or symlink to one), it shows its parts, sorted by size

12:59 <clever> [clever@amd-nixos:~]$ du --max=0 -hc $(nix-store -qR /run/current-system) | sort -h

12:59 <clever> jgt: a command like this will give a storepath on the local machine that includes every machine: nixops dump-nix-paths -d mainnet

12:58 <clever> jgt: you cant easily see what its copying, but you can look at the closure for the entire deployment, one min

19:07 <clever> LnL: its just "source" for a src = fetchFromGithub build

19:06 <clever> source root is source

19:06 <clever> [nix-shell:~/iohk/iohk-nixops-devops-923]$ nix-store -l /nix/store/zf78hk92a6jx2s4wglp872yxx6ynrp6m-nix-memoise | grep 'source root is'

19:06 <clever> https://github.com/NixOS/nixpkgs/blob/master/pkgs/stdenv/generic/setup.sh#L861-L875

19:04 <clever> LnL: though sourceRoot tends to be a relative path, and wont be right once the stdenv has cd'd into it

19:01 <clever> kalbasit: the source has also already been unpacked to the working directory

19:00 <clever> kalbasit: the working directory

18:58 <clever> LnL: i think the act of setting LC_ALL causes bash to reload locales, but glibc only reads LOCALE_ARCHIVE once at startup

14:59 <clever> but you can also -f '<nixpkgs>'

14:58 <clever> by default, it uses ~/.nix-defexpr/

14:58 <clever> rrnewton: nix-env is the only tool within the set that has that weird interface

14:56 <clever> rrnewton: try instead with `nix-env -f https://github.com/NixOS/nixpkgs-channels/archive/nixos-18.03.tar.gz`

14:56 <clever> rrnewton: nix-env ignores $NIX_PATH by default

12:54 <clever> infinisil: hadnt looked into why it vanished

2018-07-10

2018-07-09

2018-07-08

2018-07-07

2018-07-06