#nixos — irc logs

07:01 <clever> timestamp on that file?

07:00 <clever> jD91mZM2: is xorg actually working?

06:58 <clever> jD91mZM2: you need to check the logs for Xorg to see which drivers it used: sudo journalctl -u display-manager -b 0

06:58 <clever> jD91mZM2: the vesa drivers will be available even if your not using them

06:56 <clever> jD91mZM2: nix-store -qR /run/current-system | grep packagename

06:44 <clever> warnings can usually be ignored

06:43 <clever> or is it another warning?

06:43 <clever> is it actually having an error?

06:43 <clever> your already root

06:43 <clever> you dont need sudo on that 2nd one

06:43 <clever> and your user hasnt used nix-channel

06:42 <clever> its probably just using the NIX_PATH from your normal user when ran directly with sudo

06:41 <clever> Izorkin: looks entirely normal, what if you do `sudo -i` then `nixos-rebuild switch` ?

06:39 <clever> Izorkin: sudo ls -lah /root/.nix-defexpr/channels/

06:37 <clever> also, that was not an error either, that was another warning

06:37 <clever> Izorkin: what does nix-channel --list say when ran as root?

06:36 <clever> Izorkin: what was the error?

06:31 <clever> nix should also normally setup that dir on the first login

06:30 <clever> Izorkin: thats a warning, and it happens if you have never ran nix-channel

04:49 <clever> you could also set the sha256 directly, if you add another larger nix file into the mix, but then <nixpkgs> entries in nixpkgs (which is a bug) would fail

04:49 <clever> so if 2 URL's give binary-identical .tar.gz files, it can reuse the -unpacked variant

04:48 <clever> which is based on a hash of the .tar.gz the url gave

04:48 <clever> and if things are unpacked, there is also a hvm7h0ydc68hqa9x5657f5h8lh8437cr-4975378b2139f24b1368f44e9e3d44e34c3e48ad.tar.gz-unpacked symlink

04:48 <clever> and based on the metadata in the .info, it will know how old the -file is, and if it should check again, and what cache-control magic is at play

04:47 <clever> 0lmg3b0f50wmfbh3fgbfz80g2lhzjy04cps1mm2ziyxmafkiqlmp.info and 0lmg3b0f50wmfbh3fgbfz80g2lhzjy04cps1mm2ziyxmafkiqlmp-file are based on a hash of the URL, and contain metadata on it

04:47 <clever> achambe: nix uses this directory to cache the results of fetching such things

04:47 <clever> [clever@amd-nixos:~]$ ls -ltrh ~/.cache/nix/tarballs/

04:46 <clever> achambe: but as long as github isnt cheating, it will return the exact same thing every time

04:46 <clever> achambe: when using a URL like that, it is technically impure, nix will check for updates if it has been over an hour since you last used it

04:44 <clever> -I nixpkgs=https://github.com/nixos/nixpkgs/archive/${gitrev}.tar.gz

04:44 <clever> but you coudl give it a url including a git rev

04:44 <clever> yeah

04:43 <clever> NIX_PATH= nixos-rebuild build -I nixos-config=./configuration.nix -I nixpkgs=/home/clever/apps/nixpkgs

04:43 <clever> as a way of doing things in a more pure manner

04:42 <clever> so only configuration.nix and nixpkgs themselves are loaded from NIX_PATH

04:42 <clever> those values must instead be defined in the configuration.nix

04:42 <clever> achambe: of note, nixos already forces nixpkgs to use nixpkgs.config and nixpkgs.overlays for the config and overlays, so the users config.nix and overlays wont apply

04:29 <clever> hmmm, actually, where is the xmonad binary?, it doesnt exactly obey nix generations

04:29 <clever> you can also manually run the older xmonad without rebooting

04:24 <clever> jD91mZM2: what happens if you restart xmonad after turning on the monitor?

04:17 <clever> jD91mZM2: i'm guessing that xmonad isnt aware of the screen changing size?

04:12 <clever> > pkgs.pkgs.pkgs.pkgs.pkgs

04:06 <clever> so it needs to know the attribute names for every config value, before it can compute pkgs

04:06 <clever> and the pkgs and lib args for all modules depends on config._modules.args

04:01 <clever> and an mkIf would isolate it some

04:01 <clever> though config can depend on options

04:00 <clever> i suspect that imports cant depend on options either

02:41 <clever> johnw: hydra does support building PR's and posting status to github

02:40 <clever> johnw: and hydra does the same job as travis, so why even use travis at that point?

02:40 <clever> johnw: you have to manually configure nix.conf to use a hydra server you have building it elsewhere

01:29 <clever> then it will be in PATH for you

01:29 <clever> iqubic: systemd.services.foo.path = [ pkgs.git ];

01:29 <clever> iqubic: there is a .path option on the service itself

01:07 <clever> tnks: what happens if you dont use -i?

00:53 <clever> id say its a typo in cabal2nix

00:52 <clever> or cabal2nix is refering to something that never existed

00:51 <clever> it might be in nix-prefetch-scripts

00:51 <clever> mightybyte: you need to provide nix-prefetch-zip in $PATH before you run cabal2nix

00:48 <clever> so it fails, rather then silently using the wrong nixpkgs

00:48 <clever> thats also why i always test things like this after `unset NIX_PATH`

00:48 <clever> that makes it fairly difficult to pin the nixpkgs version

00:48 <clever> yeah, i would also call that a bug

00:40 <clever> and wrap it with ( and ) because it was in a list

00:39 <clever> you want nixPkgs + "/nixos/modules/virtualisation/google-compute-image.nix"

00:38 <clever> achambe: it uses the pinned nixpkgs for everything, except google-compute-image.nix

00:38 <clever> achambe: oh wait, slight correction

00:38 <clever> achambe: that should use the pinned copy

00:33 <clever> the same way

00:32 <clever> iqubic: cd will normally go into $HOME if you dont give it a path

00:25 <clever> yeah

00:24 <clever> nix will preserve the newlines

00:22 <clever> /home/clever/foo.nix expects it in my home

00:22 <clever> ../foo.nix expects it one dir up

00:22 <clever> imports = [ ./foo.nix ]; expects it in the current dir

00:22 <clever> put that file into imports

00:21 <clever> iqubic: that looks good at a glance

00:20 <clever> and you need to delete the generation first with a nix-env command

00:20 <clever> some paths may still be in use by other generations, ignore the warning when it complains about those

00:19 <clever> sir_guy_carleton: run nix-store -qR on the system profile, and then run nix-store --delete on each path in it

00:15 <clever> concatime: you give ia a yarn.lock and a package.json, and it does everything for you

00:15 <clever> concatime: https://github.com/input-output-hk/daedalus/blob/develop/yarn2nix.nix

00:15 <clever> concatime: you want to use yarn2nix

00:14 <clever> concatime: why does it need access to the internet?

00:13 <clever> zybell: at that point, you might as well just make a bash while true; loop, and sleep 3600 inside it

00:13 <clever> nix1 didnt have a seperate fetchTarball originally

00:13 <clever> oh, the default actions may have changed between nix1 and nix2

00:11 <clever> import (builtins.fetchTarball https://github.com/NixOS/nixpkgs-channels/archive/nixos-unstable.tar.gz) { }

00:10 <clever> so import is trying to parse the .gz

00:10 <clever> fetchurl doesnt unpack it

00:10 <clever> jtojnar: you want fetchTarball

00:09 <clever> and confusingly, a rollback would put you back on 45

00:09 <clever> so the rebuild would switch you from 44 to 46

00:08 <clever> yeah

00:08 <clever> and also the current nixpkgs

00:07 <clever> which will upgrade things again

00:07 <clever> sir_guy_carleton: it would build a new one based on the current configuration.nix

00:02 <clever> codygman: make it fixed-output, by telling nix what the hash of the result is

00:01 <clever> codygman: you need to use .overrideAttrs

00:00 <clever> which is why i mentioned needing 2 service entries

00:00 <clever> maybe

00:00 <clever> that tells systemd that it exits when its done "starting", and is then "running" without any process open

00:00 <clever> .serviceConfig.Type = "oneshot";

23:59 <clever> oh, and systemd expects the service to stay running, so if your script returns, systemd will try to restart it

23:59 <clever> it needs display-manager.serice and wantedBy = [ "multi-user.target" ]; also

23:55 <clever> i think before + wantedby will run it before X, and you can optionaly also use startat to run it at intervals

23:55 <clever> https://nixos.org/nixos/options.html#systemd.services.%3Cname%3E.wantedby

23:55 <clever> https://nixos.org/nixos/options.html#systemd.services.%3Cname%3E.before

23:53 <clever> iqubic: https://nixos.org/nixos/options.html#systemd.services.%3Cname%3E.startat

23:53 <clever> iqubic: one min

23:52 <clever> iqubic: nixos also has an option to define timer flags on the service alone

23:51 <clever> iqubic: having it in multi-user.target and flagged as before display-manager should do it

23:50 <clever> src*

23:50 <clever> codygman: you need to override both name and rc

23:48 <clever> only things that are part of multi-user.target are ran on bootup

23:48 <clever> ive not tried that specific combination before

23:47 <clever> you also need to make it part of multi-user.target, the same as anything else that runs on bootup

23:47 <clever> you can try that, but i'm not sure what systemd will do

23:46 <clever> and then both of them run the same cmd

23:45 <clever> only thing i can think of is to have a second service with before=["display-manager.service"] on it

23:44 <clever> iqubic: this is an example of how to run something hourly

23:44 <clever> iqubic: https://github.com/cleverca22/nix-tests/blob/master/kexec/autoreboot.nix

23:40 <clever> iqubic: what do you want to do with the timer?

23:30 <clever> codygman: the package is called chromedriver, not chromeDriver, thats why nix cant find it

23:30 <clever> apps/nixpkgs/pkgs/top-level/all-packages.nix: chromedriver = callPackage ../development/tools/selenium/chromedriver { gconf = gnome2.GConf; };

23:28 <clever> codygman: where should chromeDriver come from?

23:17 <clever> cryp2nomicon: gcc will often re-order things, so with smaller code blocks, it can be pretty unpredictable

23:15 <clever> though that doesnt work in my setup, because i use screen heavily

23:14 <clever> then it will cause the local gpg instance to ask

23:14 <clever> elvishjerricco: if you instead use `ssh -A`, the local agent will be forwarded

23:12 <clever> cryp2nomicon: did you compile it with -Og ?

23:01 <clever> changing the expire timeout also helps

23:01 <clever> depending on which host the cmd ran on

23:01 <clever> so it mostly just acts like a 4 monitor setup, and gpg asks on one of 2 monitors

23:01 <clever> i also have synergy configured, and i treat the laptop like an extra monitor for the desktop

22:58 <clever> so the only anoyance is when i ssh into the laptop i left upstairs, and it asks in another room

22:58 <clever> yeah, ive configured it to always ask on :0 of xorg

22:57 <clever> elvishjerricco: dont know

22:56 <clever> to the pinentry runs on a random ssh session, and pops up on the wrong pc

22:56 <clever> that auto-runs a similar command every time you login over ssh

22:55 <clever> and the gpg service in nixos is disabled

22:55 <clever> elvishjerricco: i have `gpg-connect-agent /bye` in my `.xsession`

22:20 <clever> nix-env wont install headers

22:20 <clever> 2018-05-06 19:19:41 < {^_^}> Don't install libraries through nix-env or systemPackages. See https://nixos.wiki/wiki/FAQ/Libraries for details.

22:20 <clever> you are you using nix-shell?

22:20 <clever> which headers are missing and when?

22:19 <clever> and that

22:19 <clever> !library

22:19 <clever> ,library

22:19 <clever> split outputs and .dev, and nixpkgs mostly handles it automatically, so things just work

21:42 <clever> one per line

21:42 <clever> justanotheruser: it takes the form of <accessid> <accesssecret> <name>

21:39 <clever> i havent used nixops with ~/.aws/credentials

21:39 <clever> justanotheruser: and normally, it refers to a name from ~/.ec2-keys

21:39 <clever> justanotheruser: i think it defaults to that when unset

21:34 <clever> stephenjudkins: its an array containing either strings or attr sets

21:34 <clever> stephenjudkins: https://nixos.org/nixos/options.html#services.xserver.xrandrheads

21:09 <clever> > let foo = "bar"; in { ${foo} = 42; }

21:08 <clever> yeah, it only works on http and https

21:08 <clever> ambro718: transparent proxies do that all the time

21:07 <clever> ambro718: tor can then use the Host: header and SSL SNI to figure out what host to connect to

21:07 <clever> ambro718: ah, yeah, using iptables, you can force the browser to connect to the "wrong" ip

21:06 <clever> ah, it doesnt

21:06 <clever> > { ''key.with/funnychar'' = "value"; }

21:06 <clever> > { "key.with/funnychars" = "value"; }

21:05 <clever> zybell: yeah

21:04 <clever> zybell: an attrset must always be in the form of { key = value; }

21:02 <clever> ambro718: ive only messed with layer3 VPN in detail, so i'm not sure how to configure that tor stuff

20:29 <clever> ambro718: you could potentially access the wpa_supplicant unix socket between namespaces

20:28 <clever> ambro718: yep

20:27 <clever> ambro718: and in theory, you could maybe create such a router with virtualbox, or network namespacing in linux

20:26 <clever> ambro718: https://www.raspberrypi.org/magpi/tor-router/

20:23 <clever> ambro718: my rough idea, is what if i make a 2nd computer, with 2 interfaces, that will only apply the tor routing to packets coming in on eth1, and eth0 is the wan

20:21 <clever> ambro718: it would only force tor on things coming into a given interface, and not force tor on itself

20:21 <clever> ambro718: yeah, one option is to have a second network namespace (either a vm, namespace, or 2nd machine), that acts as a gateway

20:20 <clever> ambro718: openvpn and android vpn's get around the issue by specially routing the ip of the vpn server to not go thru the vpn, and relying on the server having 1 ip

20:17 <clever> MichaelRaskin: russia has banned a fairly massive chunk of the internet

20:13 <clever> [root@amd-nixos:~]# zfs destroy amd/root@zfs-auto-snap_daily-2018-05-05-00h00

20:13 <clever> iqubic: run zfs destroy on the full name including the timestamp

20:09 <clever> iqubic: replace that with a dataset whose snapshots your wanting to list

20:09 <clever> iqubic: yeah

20:06 <clever> and save them for later, they help to diagnose low disk space issues

20:06 <clever> yeah

20:06 <clever> the 2nd shows the snapshots for it

20:06 <clever> the first shows every filesystem, and how much it consumes in snapshots

20:06 <clever> these 2 commands are also handy

20:06 <clever> 2018-05-01 13:05:36 <@clever> zfs list -t snapshot -r -o name,used,refer,written naspool/root

20:06 <clever> 2018-05-01 13:05:27 <@clever> zfs list -t filesystem -o name,used,usedbysnapshots

20:05 <clever> and also check the timeframe variants to verify they dont eixst

20:03 <clever> iqubic: zfs get com.sun:auto-snapshot pool -t filesystem

20:03 <clever> iqubic: i would also add `-t filesystem` to that, the value of the snapshot param on snapshots doesnt matter

19:58 <clever> not off the top of my head

19:57 <clever> the nixos module framework may delete the null

19:54 <clever> inherit also has -r, to recursively apply it to all children

19:53 <clever> run inherit on those param names

19:53 <clever> yeah

19:52 <clever> `If the property is not defined in any parent dataset, it is removed entirely.`

19:52 <clever> iqubic: man page claims `Use the zfs inherit command to clear a user property.`

19:51 <clever> iqubic: i think that might disable all timeframes

19:51 <clever> tmplt: use mapAttrs or map to run a function over everything

19:50 <clever> i'm not sure how to unset those non-standard options

19:49 <clever> *doh*, `zfs get all amd/root -s local` saves you the grep

19:47 <clever> so if you grep for 'local' you should see everything that has been set and can be undone with inherit, up to the root node

19:47 <clever> dedup is inherited from the amd level, while compression is set locally on amd/root

19:46 <clever> amd/root compression gzip-9 local

19:46 <clever> amd/root dedup off inherited from amd

19:46 <clever> NAME PROPERTY VALUE SOURCE

19:46 <clever> [root@amd-nixos:~]# zfs get all amd/root

19:46 <clever> iqubic: check `zfs get all dataset` as well

19:45 <clever> iqubic: not sure

19:44 <clever> that will inherit the value from its parent in the dataset tree

19:44 <clever> `zfs inherit optionname dataset`

19:42 <clever> otherwise, it keeps backups of everything you try to garbage collect

19:42 <clever> id also recomend doing zfs set com.sun:auto-snapshot=false poolname/nix

19:41 <clever> then it does all of them

19:41 <clever> services.zfs.autoSnapshot.enable = true; and zfs set com.sun:auto-snapshot=true poolname

19:38 <clever> https://nixos.org/nixos/options.html#services.zfs.autosnapshot

19:38 <clever> and the 15 min ones dont overlap with the hourly

19:37 <clever> nixos has a service to do all of those out of the box

19:37 <clever> never bothered to change the defaults, and the high rate ones expire faster, so they arent much of an issue

19:37 <clever> i have monthky, weekly, daily, hourly, and 15min snapshots

19:30 <clever> nh2[m]: so you can just take out the log device and see how much worse things get

19:30 <clever> nh2[m]: zfs is also a lot more flexible, you can add and remove the log device without reformating the system

19:27 <clever> nh2[m]: not sure i have any sizeable spinning rust disks that are unused

19:22 <clever> nh2[m]: i also have statsd utils that can monitor zfs and iostat, and confirm if something like an L2 cache or a log device are doing anything useful

19:22 <clever> nh2[m]: i use zfs on my NAS, laptops(2 of them), and my primary desktop

19:17 <clever> nh2[m]: and ive only seen one other nixos user having it fail, and he was having an NVME drive fail with unreadable sectors, and he had zero redundancy in his array config

19:17 <clever> nh2[m]: ive never had it fail on me

19:15 <clever> nh2[m]: zfs can already do that by setting the log device to an ssd

19:15 <clever> nh2[m]: external journal on an ssd?

19:14 <clever> ive got a fork where it just doesnt create a user namespace for root

19:14 <clever> currently, it starts a new user namespace, and that drops all capabilities, so even when ran as root, and having uid0 in the namespace, you cant mount anything or kexec

19:14 <clever> ive also recently been experimenting with nix-bundle, and getting it to work as root

19:13 <clever> nh2[m]: if your not limited to Anaconda, you can just pick another tool, and have nix generate its config, or just have nix generate a script that partitions things directly

19:12 <clever> tilpner: or b: delete /boot, shift / 200mb forwards (ouch!), make a new /boot at the start, then expand /

19:12 <clever> tilpner: i would have to either a: move /boot to the end of the bigger drive, and then resize the / before it

19:10 <clever> tilpner: i also try to avoid doing things like /boot after /, because then you can never resize the / partition

19:09 <clever> nh2[m]: and then have a derivation that can read the nix, and generate whatever you need, like an Anaconda Kickstart

19:09 <clever> nh2[m]: yeah

19:08 <clever> so it can eat whatever is left

19:08 <clever> tilpner: and also require that the size="remaining" one be last in priority

19:08 <clever> tmplt: nixpart.priority = 1; maybe

19:08 <clever> tmplt: all of the buildInput values come into play at bash time, not nix time, so you still need to pass the value in at the nix level

19:07 <clever> nh2[m]: then a script can extract the labels, types, and sizes, create them, and nixos will already know the labels and where to mount

19:06 <clever> nh2[m]: something else ive thought about before, what if we had a way to do: fileSystems = { "/" = { fsType = "ext4"; device = "LABEL=nixosroot"; nixpart.size = "remaining"; }; "/boot" = { fsType = "ext4"; device = "LABEL=nixosboot"; nixpart.size = "200m"; }; };

19:04 <clever> "/home/clever"

19:04 <clever> nix-repl> builtins.getEnv "HOME"

19:02 <clever> nh2[m]: and that tarball, once ran, would do the entire install, and leave you with root ssh to nixos

19:02 <clever> nh2[m]: i'm not sure how it would interact with the rescue system, but an extreme option you could do, is to just upload the kexec tarball, and run it with something a bit higher level then deployment.hetzner.partitioningScript

18:57 <clever> just needs an if around line 94-104

18:56 <clever> nh2[m]: currently, it only supports zfs, but it could be augmented to also support ext4

18:55 <clever> nh2[m]: that handles automated partitioning, formatting, and installing

18:54 <clever> nh2[m]: yep

18:53 <clever> ccache would be an impurity, nixpkgs needs a fairly heavy redesign to cache .o files properly in a pure manner

18:49 <clever> nh2[m]: have you seen my justdoit script?

02:26 <clever> you currently only have a single sink, number 0

02:26 <clever> iqubic: thats a list of every sink and source in your current pulseaudio daemon

02:14 <clever> i have 12 input sinks

02:14 <clever> try `pactl list`

02:14 <clever> and then scroll thru that

01:58 <clever> and it needs to translate to irc color codes

01:58 <clever> i think the error was truncated

01:57 <clever> > builtins.fetchurl "https://nixos.org/nixos/nixpkgs/archive/master.tar.gz"

01:15 <clever> hodapp: or just nuke all samples

01:14 <clever> hodapp: try running patchelf --shrink-rpath on it after you chmod +w

01:12 <clever> yeah, it must only ever be modified from inside a derivation

01:11 <clever> hodapp: the file your trying to open isnt writable

01:07 <clever> systemd should save stdout and stderr to the journal

01:06 <clever> samueldr: oh

01:06 <clever> or the journal for that unit

01:06 <clever> read the unit file nixos generated in /etc/systemd/system/

00:57 <clever> i ran into trouble with that initially

00:57 <clever> i think an xfce power util has to be running

00:57 <clever> oh

00:57 <clever> my laptop runs xfce, and the brightness control keys open a gui that shows the brightness as they adjust it

00:54 <clever> read its man page for the exit sequence

00:53 <clever> and be careful, xorg may not get any keys once started

00:53 <clever> there is also a program readkeys, ran as root, that intercepts things before xorg gets it

00:51 <clever> grep -r --color build /nix/store/87lnwkwz6h8738v68kza1dv887zp567i-draftsight-2018-SP2

00:50 <clever> hodapp: and you can do it purely with nix-build, the invalid output is left in /nix/store so you can grep it

00:50 <clever> hodapp: you need to grep the output path for /build, and match run patchelf --shrink-rpath on the binary

00:50 <clever> so genericBuild cant fail with that

00:49 <clever> hodapp: ah, nix checks that after the build has finished

00:49 <clever> how did it fail with nix-build?

00:46 <clever> genericBuild should try to run all the steps, and stop when it fails

00:46 <clever> or run nix-build directly so nix does it all for you

00:46 <clever> just running genericBuild, without root, should do it all

00:44 <clever> it may also be in the nixpkgs manual

00:44 <clever> the file i linked has an example of dealing with a .deb file

00:44 <clever> `phases="unpackPhase" genericBuild` runs the new one you define

00:43 <clever> also, unpackPhase in the shell runs the original, not the redefined one

00:43 <clever> hodapp: redefine the unpackPhase: https://github.com/NixOS/nixpkgs/blob/29d726bae1934a719cb8a4277325eb78ca2171a0/pkgs/tools/misc/bdf2psf/default.nix#L17

00:42 <clever> you have to `switch` or `boot` for it to persist across a reboot

00:42 <clever> Ben_______: `nixos-rebuild test` wont persist after a reboot

20:32 <clever> ixxie: oops, that was for infinisil

20:29 <clever> ixxie: then they are in your configuration.nix, and you need internet access to rebuild the config, to get internet access

20:25 <clever> ghostyy: it should be possible purely with nix scripting, no need to modify nix itself

20:24 <clever> then you can just boot into a customized env, that already has the secrets in the right spots, and just: cp /etc/wpa_supplicant.conf /mnt/etc/wpa_supplicant.conf

20:24 <clever> and you can just have a fully working nixos install on USB

20:24 <clever> also of note, you can aim nixos-install at a usb stick

2018-05-07

2018-05-06

2018-05-05