| 10 Nov 2023 |
 bendlas | so stc would be the action I called nixos.legacy/activate-system. | 22:20:55 |
| bendlas | and according to my reverse-engineered deployment script, these are the two necessary actions, to emulate nixos-rebuild:
deploy-ssh-for = {
type = "app";
program = toString (pkgs.writeScript "deploy-ssh-for" ''
#!${pkgs.stdenv.shell}
set -eux
configName=$1
remote=root@$2
action=$3
shift 3
if [ gc = "$action" ]
then ssh -C $remote nix-collect-garbage "$@"
exit 0
fi
configuration=$(nix build .#nixosConfigurations.$configName.config.system.build.toplevel --print-out-paths --no-link -L)
nix-copy-closure $(if [ "''${1-}" != --direct ]; then echo --use-substitutes; fi) --gzip --to $remote $configuration
if [ dry-run = "$action" ]
then set +x
echo "[dry-run] Would run these commands:"
echo " ssh -C $remote nix-env --profile /nix/var/nix/profiles/system --set $configuration"
echo " ssh -C $remote $configuration/bin/switch-to-configuration $action"
else if [ build = "$action" ]
then ssh -C $remote nix-env --profile /tmp/nixos-system --set $configuration
else if [ boot = "$action" -o switch = "$action" ]
then ssh -C $remote nix-env --profile /nix/var/nix/profiles/system --set $configuration
ssh -C $remote $configuration/bin/switch-to-configuration $action
else echo "Unknown action '$action'. Use one of: dry-run, boot, switch"
fi fi fi
'');
};
| 22:24:25 |
| bendlas | (line 24-25) | 22:26:03 |
 raitobezarius | Right | 22:38:46 |
| raitobezarius | Let's move this to 24.05 though | 22:38:54 |
| raitobezarius | And we still need to focus on the immediate problem :) | 22:39:04 |
| bendlas | hehehe, I'm actually kind of tempted to prove the concept by implementing the postgresql downgrade ... also because I feel like I can't do much better than https://github.com/NixOS/nixpkgs/pull/266270 in the local optimum | 22:45:10 |
| bendlas | but no worries, if I decide to attempt it, it's on me against your advice. No expectations attached | 22:46:32 |
| bendlas | also if you have an Idea for something more productive right now, I'm also happy to help | 22:47:13 |
| 11 Nov 2023 |
 Vladimír Čunát | FYI, 23.11 schedule, TL;DR from #staging:nixos.org:
we merged staging to staging-next now, as almost full linux rebuild was unavoidable anyway. | 16:16:38 |
| Vladimír Čunát | So that iteration is delayed but will contain more things. | 16:17:23 |
| Vladimír Čunát | * So that iteration is delayed but will at least contain more things. | 16:17:27 |
| Vladimír Čunát | * So that iteration is delayed but will at least contain more (recent) things. | 16:17:36 |
| raitobezarius | figsoda: we need to discuss delaying the branch off of some days | 17:41:45 |
| 12 Nov 2023 |
|  @lehmanator:gnulinux.club joined the room. | 12:03:38 |
| 13 Nov 2023 |
| raitobezarius | ahem | 13:29:37 |
| raitobezarius | so mastodon is still not upgraded from what I see | 13:29:42 |
 hexa | no response from kerstin on matrix | 13:30:16 |
| hexa | try mastodon: drop next | 13:30:47 |
| raitobezarius | I will do it myself | 13:30:49 |
| raitobezarius | I guess :D | 13:31:31 |
| raitobezarius | in the time being, I would appreciate if you could add to postgresql tests to test our big NixOS modules heavily relying on ensureXYZ with postgresql | 13:32:18 |
| raitobezarius | so any change to postgresql would catch them | 13:32:23 |
| raitobezarius | upgraded | 13:39:44 |
| raitobezarius | but now I am running into the PostgreSQL debacle | 13:39:53 |
| raitobezarius | OK, my decision is the following:
- we deprecate
ensurePermissions and leave the code alone, with a very big warning annoying message saying this option will be deleted in 24.05 if nothing is done to maintain it in a serious countenance, this buy 6 months to anyone who want to keep using this broken option, in the meantime, if anyone comes to complain about it to PGSQL maintainers who wanted to delete it will gently be told to send a fix rather than to complain. ensureDBOwnership should probably be mutually exclusive with ensurePermissions on the relevant pieces.
- we migrate everything inside nixpkgs to not use
ensurePermissions and we write migration guide from ensurePermissions using initialScript but also postStart as replacements with common snippets for the classical GRANT stuff.
| 13:43:59 |
| raitobezarius | We need to write:
- documentation for migration
- send an announcement for unstable users
- release notes for 23.11
ASAP
| 13:44:28 |
| raitobezarius | I will do the modifications to Ma27's PR to go with this | 13:44:42 |
| bendlas | good call! | 13:47:10 |
| bendlas |
- let's please steer users away from
initialScript. Maybe even deprecate as well (remember, this is only run once for the whole cluster, so huge pitfall when adding new DBs)
| 13:49:18 |
