| 27 Oct 2024 |
 Randy Eckenrode | Speaking of emulators, I need to set up an emulator for x86_64-darwin on aarch64-darwin. That’s why I updated system_cmds a while back (to get access to arch as an “emulator”).
| 23:13:21 |
 emily | I don't think we need that emulator? because it canExecute, right? | 23:13:39 |
 Artturin | Arch has 45 patches https://gitlab.archlinux.org/archlinux/packaging/packages/unzip/-/blob/main/PKGBUILD?ref_type=heads | 23:13:40 |
| emily | I guess maybe it can't because Rosetta 2 isn't always installed. | 23:13:46 |
| Randy Eckenrode | In reply to @emilazy:matrix.org
I don't think we need that emulator? because it canExecute, right? Will be false without an emulator. | 23:13:52 |
| Randy Eckenrode | Or some other configuration. | 23:13:57 |
| emily | In reply to @artturin:matrix.org
Arch has 45 patches https://gitlab.archlinux.org/archlinux/packaging/packages/unzip/-/blob/main/PKGBUILD?ref_type=heads do we have all the security ones at least? 😬 | 23:14:04 |
| Artturin | Let's ping unzip maintainer and ask him for more patches | 23:14:45 |
| Artturin | Tristan Ross: More patches plox? | 23:14:51 |
| Artturin | https://github.com/NixOS/nixpkgs/blob/master/pkgs/tools/archivers/unzip/default.nix | 23:15:12 |
 Tristan Ross | In reply to @artturin:matrix.org
Tristan Ross: More patches plox? If they're needed, sure | 23:16:57 |
| emily | it's not clear to me that we have those zipbomb fixes? | 23:17:51 |
| Artturin | Web page last updated 2009 | 23:18:04 |
| Tristan Ross | Idk either | 23:18:05 |
| Tristan Ross | I'm just making sure unzip works lol | 23:18:15 |
| Tristan Ross | It didn't have a maintainer before in like forever | 23:18:36 |
| Tristan Ross | Was thinking of eventually doing some nice changes like final attrs and move to by name | 23:20:41 |
| emily | how do people feel about setting ulimit -n 1024 in setup.sh? it's the default for Linux and it would be helpful for Darwin. | 23:20:51 |
| emily | not sure if that's the right place for it. | 23:20:57 |
| Artturin | https://github.com/NixOS/nixpkgs/issues/173657 | 23:23:46 |
| Artturin | https://github.com/NixOS/nix/issues/6557 | 23:24:04 |
| emily | hm, so the ulimits are not inherited by child processes in general on Darwin? or just the launchd setting doesn't propagate to children somehow? | 23:25:44 |
| Artturin | Setting the ulimit higher in preCheck works so the first shouldn't be true | 23:27:12 |
| emily | right. | 23:27:18 |
| emily | it seems like it would be more expedient to add this to stdenv for now than to spend ages trying to figure out why it's not working in Nix and how it should handle it and getting a PR in to do that. | 23:27:53 |
| emily | what's the default inside the Nix sandbox on Linux? is there systemd stuff to up it from 1024 there? | 23:28:09 |
| Artturin | https://github.com/NixOS/nixpkgs/blob/e4735dbdda8288aef24141f3ae8848a14f06fe08/nixos/modules/services/system/nix-daemon.nix#L200
1048576 | 23:31:12 |
| Artturin | https://github.com/NixOS/nix/blob/master/misc/systemd/nix-daemon.service.in | 23:31:44 |
| emily | sadly kern.maxfilesperproc is 122880 by default on Darwin 😅 | 23:32:15 |
| Artturin | https://github.com/NixOS/nix/commit/2320a2f93e0aa61e8d45dcfb3fb536361a1fcb6f | 23:32:28 |
