| 16 Aug 2023 |
 m1cr0man | weird did you grab the logs before that by any chance? | 20:04:37 |
 hexa | In reply to @hexa:lossy.network
saved to https://gist.github.com/mweinelt/0bf207904ea0a32e30f0aadd3e0b1bba should be this | 21:44:19 |
| 17 Aug 2023 |
 K900 ⚡️ | In reply to@m1cr0man:m1cr0man.com
weird did you grab the logs before that by any chance? Yep what @hexa linked | 05:38:50 |
| K900 ⚡️ | It flakes like that every once in a while | 05:38:58 |
| 18 Aug 2023 |
| K900 ⚡️ | New flake: https://hydra.nixos.org/build/231859621/nixlog/56/tail | 05:59:02 |
|  thomaslepoix joined the room. | 07:23:23 |
|  Xandor Schiefer joined the room. | 09:17:13 |
| m1cr0man | that one I'm aware off - I need to wrap that curl in some retries | 18:52:40 |
| 19 Aug 2023 |
| K900 ⚡️ | In reply to@k900:0upti.me
New flake: https://hydra.nixos.org/build/231859621/nixlog/56/tail -small hit this again | 07:27:04 |
| K900 ⚡️ | I kicked it but you know | 07:27:08 |
| m1cr0man | God damn acme tests | 18:46:57 |
| m1cr0man | I'm gonna fix that add-a right now | 18:47:02 |
|  cel 🌸 left the room. | 18:56:00 |
| m1cr0man | here we go https://github.com/NixOS/nixpkgs/pull/250260 | 21:43:25 |
| 22 Aug 2023 |
| m1cr0man | Any comments from people on the locking PRs? Discussion here. Would appreciate an arbiter/voting on the preferred solution. | 18:21:42 |
 raitobezarius (DECT 2128) | Personally, I'd prefer to see this solved in systemd | 19:32:27 |
| raitobezarius (DECT 2128) | And used in NixOS | 19:32:29 |
| raitobezarius (DECT 2128) | Rather than solved in NixOS | 19:32:32 |
| raitobezarius (DECT 2128) | As you said it, we have too much complexity in our NixOS module | 19:32:54 |
| raitobezarius (DECT 2128) | Because we don't have enough good primitives for this | 19:32:59 |
| raitobezarius (DECT 2128) | systemd is in the good position to create the right primitive | 19:33:05 |
| raitobezarius (DECT 2128) | Meanwhile, an official patch can be blessed | 19:33:12 |
| raitobezarius (DECT 2128) | And can be applied to nixpkgs | 19:33:17 |
| raitobezarius (DECT 2128) | https://github.com/systemd/systemd/issues/28075 | 19:33:38 |
| raitobezarius (DECT 2128) | As the OP is interacting here, I'd just encourage to push through | 19:33:49 |
| raitobezarius (DECT 2128) | And coordinate with NixOS systemd folks if help is needed | 19:33:56 |
| raitobezarius (DECT 2128) | It's not like anyway we don't need that feature for something else than ACME | 19:35:56 |
| raitobezarius (DECT 2128) | So I wish we don't see hacks to generalize this behavior everywhere | 19:36:03 |
| m1cr0man | I do agree this should be solved upsream. I don't know if you clicked in but the "competing" PR (my one) is a pure systemd + nix implementation with arguably less overheads. | 20:26:48 |
| m1cr0man | It's annoying to add more complexity but personally I am trying to keep the diff and unique code low where possible. Both lego and systemd could do with upstreamed features to help us out. For example, if lego had an "offline ok" flag for checking renewal that would remove all the openssl shenanigans. I did plan to upstream that at one point but just never had the time | 20:29:25 |
