| 5 Dec 2023 |
|  @federicodschonborn:matrix.org changed their profile picture. | 00:38:02 |
| 7 Dec 2023 |
|  @mutantmell:helveticastandard.com left the room. | 03:55:45 |
| 11 Dec 2023 |
 ari ❄ | colmena, when used in a flake, requires that one sets colmena.meta.nixpkgs, and that definition typically takes the system argument. I have a flake with configs for aarch64-linux and x86_64-linux, generating the nixosConfigurations entries using nixpkgs.lib.nixosSystem that also takes the system argument. now, if I don't additionally explicitly set nixpkgs.system for all the hosts, building the configs using nixos-rebuild or nix build or whatever works correctly, but colmena appears to set the system for all the hosts to whatever is passed as system argument to colmena.meta.nixpkgs (colmena eval -E '{ nodes, ... }: nodes.scylla.config.nixpkgs.system' returns wrong value).
Is there a workaround for that, that wouldn't involve setting nixpkgs.system explicitly, or adding nodeNixpkgs = builtins.mapAttrs (name: value: value.pkgs) conf; (this duplicates contents of nixpkgs.overlays which can cause other issues)?
| 14:34:17 |
|  Jasom joined the room. | 23:20:53 |
| Jasom | Colmena is stateless; nixops carries a small amount of state (e.g. system.stateVersion, ssh keys). I happen to like having that state managed for me, and it shouldn't be too hard to make an external tool to do this. Has someone written a tool to do so with Colmena, or should I write one? | 23:50:17 |
| 12 Dec 2023 |
 Wanja Hentze | not to my knowledge | 01:51:27 |
| Wanja Hentze | sounds lime a good thing to have available though! | 01:51:36 |
| Wanja Hentze | * sounds like a good thing to have available though! | 01:51:56 |
 ibizaman | Jasom can you elaborate on what this state management or I guess the lack of thereof means in practice? I don’t remember ever having to deal with that. | 01:58:42 |
| Jasom | In reply to @ibizaman:matrix.org
Jasom can you elaborate on what this state management or I guess the lack of thereof means in practice? I don’t remember ever having to deal with that. The system.stateVersion is the biggest one; if it goes in your configuration, then if you wipe a VM (or machine for that matter) and reprovision, it will be wrong if you've ever upgraded nixos to a new release. If it's not in your configuration then it will be wrong as soon as you upgrade to a new release. Nixops kept track of this (and some other state). IIRC it gave each machine a unique ID, checked that it hadn't changed and stored the information in an SQLite database in ~/.nixops. It also performs ssh key management for you, generating (and storing) a private key for each machine and adding the public key to the authorized_keys on the remote. I suspect there's other things it does as well, but I haven't dug too deeply. | 04:11:05 |
| Jasom | To clarify, I think Colmena not doing these things is the right choice, since e.g. auto-provisioning new VMs in the cloud is out-of-scope and silently storing unencrypted keys that allow root access to servers in the user's home directory is a ... suboptimal default. However authentication still needs to happen, so I'm pondering a tool that would work along-side Colmena to do some of these things. | 04:15:31 |
| ibizaman | I see, indeed I needed to do some manual work to generate a ssh key and add it to the target. | 04:17:20 |
| ibizaman | I remember reading about stateVersion, it makes sure you're introducing only backwards compatible changes and you can update it when you went through all the manual steps outlined in the release notes. | 04:18:17 |
| 16 Dec 2023 |
|  Dennis Stengele changed their profile picture. | 18:17:13 |
| 17 Dec 2023 |
|  NixOS Moderation Bot banned  David Arnold (blaggacao) (true). | 17:51:29 |
| 19 Dec 2023 |
|  @areskul:matrix.org joined the room. | 04:59:03 |
| @areskul:matrix.org | Jasom: I need a tool like this too! I am open to contribute! | 05:04:04 |
|  @the_observer:fairydust.space left the room. | 10:34:24 |
| 20 Dec 2023 |
|  @julian:nekover.se changed their display name from June to June 📞 5863. | 23:31:29 |
| 21 Dec 2023 |
| @julian:nekover.se changed their display name from June 📞 5863 to June. | 14:13:55 |
| 22 Dec 2023 |
|  Sylvie (she) ⚡️ joined the room. | 06:58:40 |
| 23 Dec 2023 |
| @julian:nekover.se changed their display name from June to June 📞 5863. | 01:55:58 |
|  raitobezarius changed their display name from raitobezarius to raitobezarius (DECT 2128). | 22:21:50 |
| 24 Dec 2023 |
|  Tammi (ey/em) changed their display name from Tammi (she/ey) to Tammi (ey/em). | 14:03:45 |
| Tammi (ey/em) changed their profile picture. | 14:03:51 |
| 25 Dec 2023 |
|  @lab-cat:ag-link.xyz changed their display name from lab-cat to lab-cat (DECT 3655). | 00:02:48 |
