| 26 Nov 2025 |
 Mic92 | It's like having /run being used for many modern services, except that we don't want to use /run because we would likely have builds that won't fit into memory. | 12:44:27 |
 Jens Petersen | Okay I see thank you! I will try 25.11pre - starting to make sense now - I think I got my answer 🙏 | 12:45:23 |
| Jens Petersen | * Okay I see thank you! I will try 25.11pre - starting to make sense now - I think I got my answer 🙏
(I was looking at 25.05) | 12:46:50 |
| Jens Petersen | * Okay I see thank you! I will try 25.11pre - starting to make sense now - I think I got my answer 🙏
(I was looking at 25.05) -- anyway I will try the other matrix channel next time | 12:47:41 |
| Jens Petersen | So actually then for older nix, /nix/var/nix/builds/ is not needed then I guess, right? | 12:55:50 |
| Jens Petersen | * So actually then for older nix, /nix/var/nix/builds/ is not needed then I guess, right?
(For Fedora EPEL I am targeting < 2.30) | 12:56:28 |
 hexa | it does have security implications, I'll suggest reading through https://lix.systems/blog/2025-06-24-lix-cves/ | 12:58:19 |
| Jens Petersen | (Okay indeed nixos-25.11pre has builds/ dir 👍️) | 12:58:43 |
| Mic92 | Jens Petersen: I would be interested, how it came about that Fedora now started packaging Nix, if you want to tell. | 13:32:05 |
| Mic92 | It seems like you put quite a bit of effort into it following the upstream nix history for it. | 13:32:34 |
| Jens Petersen | Mic92: hahaha - well other distros have nix packaged of course - so I think there was a sense we were missing it and also users seem to want to have it available... I had a user repo for a long time, but the /nix was kind of a blocker - but just recently we got an exception to allow use of /nix by nix in fedora.... Coincidently RPM (C version) just turned 30 years recently 😂 | 13:37:00 |
| Mic92 | Nix is also not much younger than that. | 13:37:34 |
| Jens Petersen | But I am not actually a heavy or experienced nix user - but somehow I stepped because I packaged in a user repo and that was quite popular | 13:37:39 |
| Jens Petersen | * But I am not actually a heavy or experienced nix user - but somehow I stepped up because I packaged in a user repo and that was quite popular | 13:37:49 |
| Jens Petersen | * But I am not actually a heavy or experienced nix user - but somehow I stepped up because I packaged it in a user repo and that was quite popular | 13:38:39 |
| Mic92 | Yeah that's always a bit of a challenge with packaging in other distros. Packagers are often not deeply invested, because otherwise they would likely run NixOS. | 13:39:00 |
| Mic92 | * Yeah that's always a bit of a challenge with packaging in other distros. Packagers are often not deeply in the Nix ecosystem, because otherwise they would likely run NixOS. | 13:39:16 |
| Jens Petersen | I hope it settles down because it has been plenty of work both upstream and downstream | 13:39:18 |
| Jens Petersen | Indeed | 13:39:33 |
| Jens Petersen | At least I think we have better manpages than upstream now haha | 13:40:11 |
| Mic92 | I can potentially also include in security announcements in the future. What is the normal fedora workflow for this? | 13:40:14 |
| Mic92 | * I can potentially also include you in security announcements in the future. What is the normal fedora workflow for this? | 13:41:18 |
| Jens Petersen | Good question - we kind of have our own security (Red Hat) but it is more focused on RHEL packages of course | 13:41:19 |
| Jens Petersen | * Good question - we kind of have our own security team (Red Hat) but it is more focused on RHEL packages of course | 13:41:30 |
| Jens Petersen | Mic92: but yeah heads-up would be appreciated sure | 13:42:21 |
| Mic92 | Do you have access to infra where you can prepare builds/patches in private in Fedora/ | 13:43:10 |
| Jens Petersen | Mic92: I need to check but not that I am aware of for fedora - I guess we would just hold back up until embargo is lifted | 13:44:33 |
| Mic92 | Okay, with nixos we are in a similar situation. | 13:45:00 |
| Jens Petersen | Okay right | 13:45:13 |
| Mic92 | what we did so far is using a seperate nix org that we invited people into | 13:45:14 |
