| 8 Nov 2024 |
 K900 ⚡️ | It doesn't | 23:37:24 |
 m1cr0man | I could do something really smart and find the webserver that serves port 80 and only mark the HTTP-01 certs as requiring that webserver as necessary. Infact, that's not even a big stretch given the existing complexity 🙃 | 23:52:17 |
| 9 Nov 2024 |
 emily | can we just integrate this into the web server modules? | 04:40:42 |
| emily | they support useACMEHost etc., could the logic be there? | 04:40:54 |
| emily | I really don't want to see more magic | 04:40:59 |
| K900 ⚡️ | In reply to@emilazy:matrix.org
they support useACMEHost etc., could the logic be there? It should be there, yeah | 06:30:17 |
| K900 ⚡️ | I guess I can just make the test wait for the server to start for now | 06:30:31 |
| K900 ⚡️ | OK so | 06:50:27 |
| K900 ⚡️ | https://github.com/NixOS/nixpkgs/pull/354629 | 06:50:27 |
| K900 ⚡️ | I added a commit that makes it work for now | 06:50:34 |
| K900 ⚡️ | webserver # [ 426.884702] (es-start)[2816]: acme-lockfiles.service: Changing to the requested working directory failed: Permission denied
webserver # [ 426.934208] (es-start)[2816]: acme-lockfiles.service: Failed at step CHDIR spawning /nix/store/n24xs3nmndyyivq3q5w52f7aqlb06hqh-unit-script-acme-lockfiles-start/bin/acme-lockfiles-start: Permission denied
| 08:03:11 |
| K900 ⚡️ | You fucking what | 08:03:13 |
| K900 ⚡️ | https://hydra.nixos.org/build/278094707/log | 08:05:12 |
| K900 ⚡️ | Also this thing | 08:05:13 |
| K900 ⚡️ | What is even happening anymore | 08:05:18 |
| K900 ⚡️ | OK looks like that machine is just hella overloaded | 08:06:32 |
| m1cr0man | Looking into that ^ The acme-lockfiles.service is configured in a less than stellar manner. Working directory is /run/acme, but it is managed by tmpfiles instead of RuntimeDirectory, despite being RemainAfterExit (so the runtime dir should not get deleted). Gonna fix all of this now. | 21:06:42 |
| K900 ⚡️ | https://hydra.nixos.org/eval/1809873 | 21:57:20 |
| K900 ⚡️ | More ordering nonsense | 21:57:24 |
| K900 ⚡️ | If anyone wants to look into it | 21:57:30 |
| K900 ⚡️ | It's funny how adding more synchronization uncovers more and more weird behaviors | 21:58:31 |
| K900 ⚡️ | Just because tests that used to insta-fail on slow machines don't anymore | 21:58:43 |
| m1cr0man | Did I miss it? Looks like it passed | 22:20:42 |
| K900 ⚡️ | I restarted it | 22:21:12 |
| K900 ⚡️ | Without really thinking | 22:21:43 |
| K900 ⚡️ | My bad | 22:21:44 |
| m1cr0man | No worries. What was the gist of it? | 22:24:00 |
| K900 ⚡️ | Two different failures | 22:24:33 |
| K900 ⚡️ | On aarch64 and x86_64 | 22:24:41 |
| K900 ⚡️ | Did not look closely | 22:24:44 |
