!atvIbxHoEqNcAIxYpN:nixos.org

NixOS AWS

64 Members
15 Servers

Load older messages

SenderMessageTime
12 Nov 2024
@luke:vuksta.comLuke set a profile picture.17:35:31
13 Nov 2024
@quyse:matrix.orgquyse
In reply to @arianvp:matrix.org
As soon as they replace T2 with t3 for free tier I'm fine with dropping bios support
there are still some useful bios-only instance types, for example g4ad.* is the only instance type with AMD GPU 		14:36:07
@quyse:matrix.orgquyseI mean, I agree it would be nice to remove bios support. for niche cases it's not hard to make your own .nix config if necessary14:39:21
@commiterate:matrix.orgcommiterateUnfortunately it's not possible to have 1 AMI that works with all instance types. The best we can do for the official NixOS AMI is to make sure it works for commonly used instance types and provide instructions on how to build your own.18:39:35
@commiterate:matrix.orgcommiterate * Unfortunately it's not possible to have 1 AMI that works with all instance types. The best we can do for the official NixOS AMI is to make sure it works for commonly used instance types (probably recently new t, m, and c instance types) and provide instructions on how to build your own.18:39:59
@commiterate:matrix.orgcommiterate * Unfortunately it's not possible to have 1 AMI that works with all instance types. The best we can do for the official NixOS AMI is to make sure it works for commonly used instance types (probably recently new t, m, and c instance types) and provide instructions on how to build your own to cover the rest.18:40:08
@commiterate:matrix.orgcommiterate * Unfortunately it's not possible to have 1 AMI that works with all instance types. The best we can do for the official NixOS AMIs is to make sure it works for commonly used instance types (probably recently new t, m, and c instance types) and provide instructions on how to build your own to cover the rest.18:47:18
@arianvp:matrix.orgArianHmm but GPT/BIOS hybrid image basically covers everything. Except for instances that boot from instance store instead of EBS but I think all those instance types are completely gone these days?18:54:45
@arianvp:matrix.orgArian* Hmm but GPT/BIOS hybrid image basically covers everything. Except for instances that boot from instance store instead of EBS but I think all those instance types are completely gone these days?18:55:00
@commiterate:matrix.orgcommiterateBIOS v. UEFI is a specific case, but there's also other instance types which may need some out-of-tree drivers (e.g. NVIDIA GPU instances) which may need conflicting versions or just don't play nice with each other.18:56:00
@commiterate:matrix.orgcommiterateCPU ISA will always require 1 AMI per ISA anyways but that's whatever18:57:08
@commiterate:matrix.orgcommiterateit probably doesn't make much sense to have base AMIs beyond the CPU ISA permutations for maintenance reasons18:59:19
@arianvp:matrix.orgArianOh yeh 19:00:19
@inayet:matrix.orgInayet joined the room.22:15:53
14 Nov 2024
@arianvp:matrix.orgArian

NixOS tip of the day:

let imds =  ["169.254.169.254" "fd00:ec2::254"]; in
{
  systemd.slices."-".sliceConfig.IPAddressDeny = imds;
  systemd.services.my-service-that-needs-aws.serviceConfig.IPAddressAllow = imds;
}
10:18:18
@commiterate:matrix.orgcommiterateI assume this is to restrict IMDS access.17:29:21
@arianvp:matrix.orgArianYeh 17:49:14
15 Nov 2024
@colemickens:matrix.orgcolemickens Arian: do you have ideas about how to potentially accommodate the EFI change without the change making it to 24.11, and without waiting 6 months for next release? 22:33:05
@colemickens:matrix.orgcolemickensI guess it could just be explicit opt-in until then.22:33:22
@arianvp:matrix.orgArianMaybe we can upload two variants 22:36:58
16 Nov 2024
@arianvp:matrix.orgArian The thing is. Theoretically this isn't a breaking change if consumes all nicely set system.stateVersion in their configs 10:42:15
@arianvp:matrix.orgArian but the problem is: We ship an /etc/nixos/configuration.nix in the base image that doesn't have that set 10:42:35
@arianvp:matrix.orgArianso when people were relying on that; it would break10:42:40
17 Nov 2024
@colemickens:matrix.orgcolemickens Arian: can I ask you some questions about server-optimized/runvf/stuff? Maybe in DM? 02:32:46
@shift:c-base.orgshift
In reply to @colemickens:matrix.org
Arian: can I ask you some questions about server-optimized/runvf/stuff? Maybe in DM?
Moving things to DM is normally discouraged as it means anyone else can't find the solution to the problem. 		17:06:22
@arianvp:matrix.orgArianIt's kind of orthogonal to anything AWS :p17:09:21
@shift:c-base.orgshiftNot really. You make the details specific enough for your case and no more. Keep it in public. Helps others.17:14:48
19 Nov 2024
@commiterate:matrix.orgcommiterate

Nevermind, one of the NixOS systemd maintainers said the [Install] section is completely unused by the NixOS systemd libs.

They recommended just packaging the patched systemd units in the amazon-ec2-net-utils repo into the package's $out and specifying the package in the systemd.packages NixOS option (similar to how udev rules are added).

Checking with them if that will respect [Install].

04:08:39
@commiterate:matrix.orgcommiterate Pre-emptively moved to just adding the systemd units to $out and moved the PR from draft to ready. Just need a maintainer now. 04:24:04
@commiterate:matrix.orgcommiterate Wondering if we should add NixOS tests that just make sure the systemd units are available when the package is added to systemd.packages. IIRC there's some systemd unit helpers in the NixOS test suites. 04:25:41

Show newer messages

Back to Room ListRoom Version: 10