| 12 Mar 2025 |
|  @jgarte:matrix.org left the room. | 01:49:44 |
|  vidariondr joined the room. | 21:07:57 |
| 13 Mar 2025 |
|  @tulili:matrix.org left the room. | 05:54:08 |
|  @0rzklv:matrix.org joined the room. | 07:47:17 |
| 14 Mar 2025 |
 steveej | does anyone happen to know whether nixos works well on hetzner's physical ARM machines RX170 or RX220? | 15:28:47 |
 hexa | it does | 15:33:43 |
| hexa | we have both machines in our nixos infra inventory | 15:33:54 |
| steveej | thanks! | 15:36:40 |
| steveej | i can't build mongodb on the biggest ARM VPS. maybe there's a smarter option than just a bigger machine, however it'd be a nice upgrade | 15:37:16 |
 sophie | In reply to @steveej0:matrix.org
i can't build mongodb on the biggest ARM VPS. maybe there's a smarter option than just a bigger machine, however it'd be a nice upgrade the mongodb-ce package is in the cache if that helps | 19:35:26 |
| steveej | that's good to know. i'll take a look if that has all the features that i need for the tests i'm writing | 19:57:16 |
| steveej | * that's good to know. i'll take a look if that has all the features that i need for the tests i'm writing. thank you! | 19:57:23 |
| 15 Mar 2025 |
|  @hurdpublic:pub.solar left the room. | 04:11:21 |
|  @rasmus:fricloud.dk joined the room. | 13:02:55 |
|  agausmann joined the room. | 22:42:54 |
| 16 Mar 2025 |
|  super_fluffy joined the room. | 10:19:31 |
|  @federicodschonborn:matrix.org changed their display name from This Federico Damián is licensed under the terms of the he/him or they/them pronouns, at your choice to This LEGO® Worm™ is licensed under the terms of the he/him or they/them pronouns, at your choice. | 15:12:04 |
|  rattboi joined the room. | 21:25:59 |
| 18 Mar 2025 |
|  Schromp joined the room. | 15:56:45 |
| 19 Mar 2025 |
| steveej | is anyone here interested in rootless nixos-containers? | 10:04:27 |
 ElvishJerricco | steveej: I definitely would be | 10:05:26 |
| ElvishJerricco | oh, wait a sec, from systemd-nspawn's man page section on unprivileged operation:
Only disk image based containers are supported (i.e. --image=). Directory based ones (i.e. --directory=) are not supported.
When running in unprivileged mode, some needed functionality is provided via systemd-mountfsd.service(8) and systemd-nsresourced.service(8).
that sucks
| 10:07:20 |
| ElvishJerricco | and it's really weird because you wouldn't need mountfsd (and the authentication craziness it entails) if you did directory based containers | 10:10:22 |
| steveej | maybe the systemd folks are open to implementing the gap. i'd be surprised as there doesn't seem to be much demand for systemd-nspawn in general | 10:14:53 |
| ElvishJerricco | systemd-nspawn and systemd-vmspawn were designed first and foremost as tools to test an OS with, not so much a proper containerization / virtualization framework | 10:16:16 |
| ElvishJerricco | of course nspawn has evolved a lot since | 10:16:37 |
| ElvishJerricco | But yea I don't really understand why directory based nspawn isn't possible unprivileged. That really does seem like the easier thing to do unprivileged | 10:17:46 |
| ElvishJerricco | so I bet it just wasn't the priority of whoever implemented unprivileged operation so they didn't do it | 10:18:08 |
 magic_rb | Wouldnt it be better to just use runc for this? I do use nspawn but like, runc exists | 10:18:48 |
| ElvishJerricco | well, if you wanna rewrite the nixos containers system with runc then be my guest :) | 10:19:42 |
