| 11 Dec 2024 |
 p14 | I'm not clear how a http proxy helps matters? Wouldn't that again have the effect of concentrating requests to go through one IP and requiring that they're authenticated? Since it uses https I don't see how the proxy could even provide the authentication if I was inclined to go that route. | 14:59:36 |
| p14 | Having a store on the machine could work, but I need to persuade nix not to query the github API at all. | 14:59:55 |
| p14 | (a store = a copy of a nixpkgs tree) | 15:00:08 |
| p14 | But there is still the secondary problem of user flakes: those will contain references to nixpkgs, and those references also need to be acquired. This also generates a similar problem that needs solving | 15:00:44 |
 Sandro 🐧 | I personally follow nixpkgs on every flake input | 15:01:45 |
| p14 | I suppose in this latter case, at if the user has a locked flake, it's possible (maybe?) to substitute the nixpkgs tree from a substituter, which would be acceptable. But that's only fine so long as they have a locked flake and breaks if they want to nix flake update. | 15:01:49 |
| p14 | Right, but nixpkgs will still be locked into the flake as github:nixos/nixpkgs, no? | 15:02:02 |
| Sandro 🐧 | yeah, basically | 15:02:12 |
| p14 | Really I need some way of telling nix 'these things are available from this other place'; and for nix to query for example what the latest commit is from that place, and not github. | 15:03:30 |
| p14 | The problem is that many obvious places to put a git repository don't provide an efficient way to acquire a checkout tree of nixpkgs at a specific commit. | 15:04:18 |
| p14 | (e.g, I don't think gerrit provides an equivalent of github's /archive/) | 15:04:32 |
 Alyssa Ross | Gerrit is usually paired with gitiles, which dose. | 15:05:59 |
| p14 | Right but can nix fetch a tree through it? | 15:06:17 |
| Alyssa Ross | * | 15:06:19 |
| p14 | (and better, can I redirect requests to github to a gitiles instance?) | 15:06:38 |
| Alyssa Ross | I don't think so, although it could — we have a gitiles fetcher in Nixpkgs. | 15:06:42 |
| p14 | Right, fetching via gitiles could work. But I don't see a fetcher in nix? (No grep hits, no PR hits). And even if there was, there would also need to be a redirection mechanism in nix | 15:12:28 |
| p14 | So, I think I have a sort-of route. 1) we’d need a gitiles fetcher. 2) the machines which can’t access github can have a registry pin for nixpkgs which points them to the private gitiles mirror. Minor detail that a gitiles would be needed.
And the other minor detail that any flake lockfiles made on those machines would end up referencing the mirror, and not the original github repository as you would probably want. | 17:30:43 |
| p14 | An additional annoyance is that the mirror actually has different URLs in different contexts. So you’d really not want to write those into lockfiles if possible. | 17:33:57 |
| 12 Dec 2024 |
|  query.roads joined the room. | 19:44:36 |
| 13 Dec 2024 |
|  @alethkit:matrix.org left the room. | 10:34:07 |
| 14 Dec 2024 |
|  sinan changed their profile picture. | 03:00:24 |
|  @domagojding:matrix.org left the room. | 10:29:50 |
|  @silasdavis:one.ems.host left the room. | 11:13:44 |
|  @hbakardzhiev:matrix.org left the room. | 13:08:16 |
| 16 Dec 2024 |
|  @ole6edev:matrix.org left the room. | 02:54:55 |
|  thangqt joined the room. | 15:26:35 |
|  @jolly.roberts:matrix.org left the room. | 15:36:02 |
| 18 Dec 2024 |
|  EndureAhead joined the room. | 13:43:17 |
|  tim126 joined the room. | 15:50:30 |
