| 17 Jan 2025 |
 phaer | ah right, that's a good tip thanks. Just read that after quickly rebuilding with sshd though, so heres the full thing https://gist.github.com/phaer/97bfce477b81c0247d79517fc7c1e2f2 | 16:50:24 |
 @elvishjerricco:matrix.org | phaer: That log makes it look like it never starts activation or switch-root | 16:56:08 |
| phaer | Ah right, I should see initrd-switch-root.service. Probably botched up the tmpfs root or something. will check out. Just weird that i end up in a state where systemctl status doesn't complain about anything and all my stage2 services are running 🤯 | 20:15:08 |
| @elvishjerricco:matrix.org | sounds like it did activate and switch-root, but for some reason it's just not in the journal? That doesn't make sense to me, but it's the only explanation I can think of | 20:38:08 |
| phaer | Thanks for the help so far, I'll take another look later this evening. If anyone here is curious enough, https://github.com/phaer/nixos-vm-on-macos/tree/cmdline-creds contains one nixosConfiguration. That's the one i am trying to boot here. With a custom system.build.vm attr. Maybe it's something in there 🤔 | 20:45:39 |
| @elvishjerricco:matrix.org | phaer: I wonder if the reason your journal seems cut short is just because journald fails to start in stage 2 or something. | 20:53:21 |
| @elvishjerricco:matrix.org | that seems extremely unlikely, but it would explain what we're seeing | 20:53:42 |
| @elvishjerricco:matrix.org | phaer: Can I run that repo on my M1 Pro MacBook? Like is it currently in a state where like nix run . will work or something? You've nerd sniped me on this :P | 20:58:31 |
| phaer | In reply to @elvishjerricco:matrix.org
phaer: Can I run that repo on my M1 Pro MacBook? Like is it currently in a state where like nix run . will work or something? You've nerd sniped me on this :P Haha, awesome 😅 yeah, the nix run command in the readme should start the VM. Only ran it on my M2 air so far, but it should even work on x86 macs | 21:00:21 |
| @elvishjerricco:matrix.org | phaer: huh, vfkit tells me rosetta is not installed, but it totally is... | 21:12:10 |
| phaer | Hm.. that worked for me without a hitch. But the VM itself doesn't need rosetta, so should also work if you disable it in base.nix | 21:13:27 |
| @elvishjerricco:matrix.org | Yea I dunno why your journal seemed very incomplete; everything I was expecting is there when I run this VM myself. | 22:00:43 |
| @elvishjerricco:matrix.org | As far as I can tell reading the systemd source, the only reason the log would like the way it does in stage 2 is because CREDENTIALS_DIRECTORY or ENCRYPTED_CREDENTIALS_DIRECTORY is set on PID 1 as it starts | 22:01:21 |
| @elvishjerricco:matrix.org | which doesn't make any sense; I don't know why those would be set | 22:01:31 |
| @elvishjerricco:matrix.org | I feel like it's gotta be something to do with the fact that initrd-nixos-activation.service moves some mounts around like /run, which I think systemd kind of expects to be in charge of. But I just cannot figure out why that would matter... | 22:03:30 |
| 18 Jan 2025 |
 Arian | Phaer note that some things can get quite wonky with mounting MacOS nix store on linix | 00:19:05 |
| Arian | Due to use-casehack | 00:19:11 |
| Arian | I saw some really weird shit break in really obscure ways | 00:19:25 |
| phaer | I didn't solve it yet, but there's indeed something fishy in initrd-switch-root. switch_root.conf is empty while it shouldn't be and looks the closure is okay. But I need to dig deeper and it's 1:22 am here. So not today | 00:22:52 |
| @elvishjerricco:matrix.org | I thought the installer created a case sensitive APFS volume these days. | 00:45:12 |
| @elvishjerricco:matrix.org | note that switch-root.conf only exists during stage 1 and isn't populated till fairly late in the stage 1 process | 00:46:54 |
| phaer | Yes, I am cat'ing it straight in the (patched) unit | 00:48:43 |
| @elvishjerricco:matrix.org | oh, then that is indeed very weird, assuming you put the cat command at the right time | 00:51:46 |
| Arian | So system creds are borked currently basically? | 10:16:26 |
| Arian | That's what I read between the lines. | 10:18:55 |
| phaer | At least when passed (insecurely) via kernelParam. We don't seem to test that scenario yet | 12:46:53 |
 emily | it does not | 14:02:53 |
| emily | it should, but it requires some more work around /tmp | 14:03:08 |
|  syd installs gentoo (they/them) changed their display name from syd 9291 (they/them) to syd installs gentoo (they/them). | 16:26:38 |
| @elvishjerricco:matrix.org | In reply to @arianvp:matrix.org
So system creds are borked currently basically? Maybe? I need to do more testing outside of this one repo | 19:28:03 |
