!VRULIdgoKmKPzJZzjj:nixos.org

Nix Hackers

955 Members
For people hacking on the Nix package manager itself200 Servers

You have reached the beginning of time (for this room).

SenderMessageTime
12 Nov 2024
@mschwaig:matrix.orgMartin Schwaighofer
In reply to @Ericson2314:matrix.org
Hi @mschwaig:matrix.org have you looked at CA derivations? From a lightening quick skim of your paper, sounds like we've had some similar ideas on how to retrofit the benefits of content addressed derivation outputs for input-addressed derivation outputs

Yes I have looked at CA derivations! 😊
In fact they close T3 in my threat model. To make what I am proposing work with input addressed derivations as well, it would be necessary to retrofit some of their benefits in terms of trust onto input addressed derivations by making dependency resolution a bit more strict, which I think would be possible.

I'd be interested in you ideas on this topic and how similarly/differently we see those things!

If you're looking for specifics in the paper, I think besides T3/M3 the sections relevant to the content addressing vs input addressing issue are 6.3.2, the first half of 6.4.2, and 4.1.1.

02:07:32
@mschwaig:matrix.orgMartin Schwaighofer
In reply to @Ericson2314:matrix.org
I would be happy to talk to you about this more
Sounds great, let's do that. 😊 		02:08:05
@pfhuh:matrix.orgpfhuh joined the room.05:53:47
@jade_:matrix.orgjade_
In reply to @vcunat:matrix.org
Any idea: build input /nix/store/foo does not exist (link)
That's... some Nix bug?
can happen if the scheduler fucks up (we had this bug in lix HEAD recently because of a big scheduler refactor) 		09:47:49
@jade_:matrix.orgjade_also maybe a remote builds GC related bug09:48:02
@jade_:matrix.orgjade_since the remote build system does not keep paths live properly09:48:14
@jade_:matrix.orgjade_ * since the remote build system does not keep paths live properly often09:48:16
@jade_:matrix.orgjade_https://git.lix.systems/lix-project/lix/issues/505 see09:50:48
@hexa:lossy.networkhexaI did run a full GC in the mac builders last night09:52:12
@joerg:thalheim.ioMic92 hexa: maybe we need to take out machines out of hydra when doing a GC. Machines are under load when this happen anyway. 11:45:10
@p14:matrix.orgp14I am having a problem with a http tarball URL used as a flake input somehow resulting in an incomplete unpack on disk. Are there known bugs in this area? Out of 70k files I am missing 1k in the unpack; these are present if I run ‘tar xf’ manually but not in the nix store for the flake input outPath.12:26:07
@p14:matrix.orgp14It is repeatable in that the same problem seems to have occurred with two different tarballs12:51:32
@puck:puck.moepuckare the files in the tarball ordered?15:04:05
@azahi:azahi.ccazahi changed their profile picture.18:51:18
@jade_:matrix.orgjade_
In reply to @joerg:thalheim.io
hexa: maybe we need to take out machines out of hydra when doing a GC. Machines are under load when this happen anyway.
unless the gc system was rewritten in cppnix, it is merely running one deleter thread and is not going to be loading the machine that hard 		22:03:56
@jade_:matrix.orgjade_but yes, probably would not be too absurd to take machines out while gc'ing them22:04:14
@hexa:lossy.networkhexayeah, it didn't seem to affect the mac much22:04:16
@hexa:lossy.networkhexaand all other builders regularly run gcs as well22:04:51
@hexa:lossy.networkhexaif this was a substantial problem we'd know22:05:07
@jade_:matrix.orgjade_i have a prototype for multithreaded gc deletion in lix, but i haven't finished it. it is an area where nix scales badly, anyhow.22:04:58
@jade_:matrix.orgjade_the gc root bug has affected lix's CI infrastructure pretty badly, but it is somewhat unclear if it is fully resolvable without either significant perf problems or protocol changes (which in the lix case are impossible)22:06:08
@jade_:matrix.orgjade_since you would have to potentially send a gcroot request for every build input of a derivation which would be a nasty latency stackup22:06:34
@jade_:matrix.orgjade_ alternative is to send the .drv file or something else that has the things as dependency and have that cause gcroots 22:07:01
@jade_:matrix.orgjade_ (the specific problem is that nix copy and its backend operations do not keep the full closure alive on the remote end) 22:07:24
@jade_:matrix.orgjade_ * (the specific problem is that nix copy and its backend operations do not keep the full closure alive on the remote end after checking for common paths) 22:07:32
@p14:matrix.orgp14
In reply to @puck:puck.moe
are the files in the tarball ordered?
Not sure what you’re asking, mind elaborating? 		22:18:38
@trofi:matrix.orgtrofi nix-2.25.0 does not build against latest release of libgit2 as src/libfetchers/git-utils.cc:288:13: error: ‘git_mempack_write_thin_pack’ was not declared in this scope. It looks like it depends on unreleased feature: https://github.com/libgit2/libgit2/commit/f9c35fb50998d1c9d26293a18ade3d7c32f6ecb0. Is it intentional? I would hope for a silently disabled feature rather than hard build failure. 22:47:47
@enzime:nixos.dev@enzime:nixos.devis there a URL where I can access the Nix manual for 2.25?23:53:02

Show newer messages

Back to Room ListRoom Version: 6