!lymvtcwDJ7ZA9Npq:lix.systems

Lix Development

415 Members
(Technical) development of Lix, the package manager, a Nix implementation. Please be mindful of ongoing technical conversations in this channel.139 Servers

Load older messages

SenderMessageTime
29 Jul 2025
@weethet:catgirl.cloudWeetHetIs https://gerrit.lix.systems/c/lix/+/2906 outdated now that https://gerrit.lix.systems/c/lix/+/3765 is merged?12:07:40
@raitobezarius:matrix.orgraitobezarius
In reply to @weethet:catgirl.cloud
Is https://gerrit.lix.systems/c/lix/+/2906 outdated now that https://gerrit.lix.systems/c/lix/+/3765 is merged?
U tell me :D 		12:09:31
@raitobezarius:matrix.orgraitobezariusTest it and let us know if this fixes your usecases!12:09:37
@raitobezarius:matrix.orgraitobezariusNormally, this was tested on Darwin × Linux across the sandboxed/unsandboxed variants, except for sandboxed Darwin12:10:12
@raitobezarius:matrix.orgraitobezarius
In reply to @aloisw:julia0815.de
raitobezarius could you also add ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKIpTTvk49u7dyv/HFFBfShNeXnM0woKC0XtBpLCfLEK root@exodus so that I can do remote builds without bypassing the local daemon? No hurries though, I won't need it today anyway.
done! 		12:10:28
@raitobezarius:matrix.orgraitobezarius
In reply to @k900:0upti.me
@raitobezarius bonk https://gerrit.lix.systems/c/lix/+/3826 pls
not needed anymore 		12:10:39
@k900:0upti.meK900Yeah noticed12:10:49
@raitobezarius:matrix.orgraitobezarius fwiw, we will be trying to land slowly https://gerrit.lix.systems/c/lix/+/3822/3 12:11:03
@raitobezarius:matrix.orgraitobezariuswhich contains some spicy async changes12:11:09
@raitobezarius:matrix.orgraitobezariusif you have time to test the tip of this chain and notice any regression before the merge, that's greatly appreciated12:11:31
@raitobezarius:matrix.orgraitobezarius (the most dangerous change is https://gerrit.lix.systems/c/lix/+/3819/3) 12:11:52
@weethet:catgirl.cloudWeetHet

I seem to be missing something:

# WARNING: this file is generated from the nix.* options in
# your nix-darwin configuration. Do not edit it!
allowed-users = *
auto-optimise-store = false
build-users-group = nixbld
builders = 
cores = 0
experimental-features = nix-command flakes
max-jobs = auto
require-sigs = true
sandbox = true
sandbox-fallback = false
substituters = https://cache.nixos.org/
trusted-public-keys = cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY=
trusted-substituters = 
trusted-users = @admin root
use-xdg-base-directories = true
extra-sandbox-paths = 
build-dir = /tmp
ssl-cert-file = /etc/ssl/certs/ca-certificates.crt

with import <nixpkgs> { };
stdenv.mkDerivation {
  name = "fod-read-ca-cert";
  buildCommand = ''
    touch $out
    line=$(head -n 2 "$NIX_SSL_CERT_FILE" | tail -n 1)
    echo $line > $out
  '';
  outputHashMode = "recursive";
  outputHash = "sha256-Hgw28osQssCD3MDpYMsHKRbklbiHxDQbVv9TrKSh35c=";
}

$ nix-build
this derivation will be built:
  /nix/store/z8mbxhgwqyv9w1gfx0bxgfad5613ymlc-fod-read-ca-cert.drv
building '/nix/store/z8mbxhgwqyv9w1gfx0bxgfad5613ymlc-fod-read-ca-cert.drv'...
head: cannot open '/no-cert-file.crt' for reading: No such file or directory
error: builder for '/nix/store/z8mbxhgwqyv9w1gfx0bxgfad5613ymlc-fod-read-ca-cert.drv' failed with exit code 1;
       last 1 log lines:
       > head: cannot open '/no-cert-file.crt' for reading: No such file or directory
       For full logs, run 'nix log /nix/store/z8mbxhgwqyv9w1gfx0bxgfad5613ymlc-fod-read-ca-cert.drv'.
15:57:38
@raitobezarius:matrix.orgraitobezariuscool15:58:08
@raitobezarius:matrix.orgraitobezarius this was the usecase i never tried 15:58:12
@raitobezarius:matrix.orgraitobezariuscan you disable the sandbox and check if it works?15:58:19
@raitobezarius:matrix.orgraitobezariusjust pass --no-sandbox15:58:34
@raitobezarius:matrix.orgraitobezariuson the nix build15:58:35
@weethet:catgirl.cloudWeetHetIt works yea15:58:51
@weethet:catgirl.cloudWeetHet* It works yeah15:59:04
@weethet:catgirl.cloudWeetHet ssl-cert-file = /etc/ssl/certs/ca-certificates.crt should be unnecessary as well, it's set by me since I thought that it might fix this 16:00:09
@emilazy:matrix.orgemily what is echo $NIX_SSL_CERT_FILE 16:04:32
@weethet:catgirl.cloudWeetHet 
$ echo $NIX_SSL_CERT_FILE
/etc/ssl/certs/ca-certificates.crt
16:17:56
@emilazy:matrix.orgemily er well sorry I meant inside the build, but you'd need it before stdenv clobbers it 16:18:17
@emilazy:matrix.orgemilytry with a custom builder maybe?16:18:23
@emilazy:matrix.orgemily with import (builtins.getFlake "nixpkgs") { }; derivation { name = "test"; builder = lib.getExe bash; args = [ "-c" "echo $NIX_SSL_CERT_FILE; exit 1" ]; system = builtins.currentSystem; } or something 16:20:33
@weethet:catgirl.cloudWeetHet 
$ nix-build --no-out-link --log-format raw                                             19s
this derivation will be built:
  /nix/store/pn49f92bjpwfqlx300wyhx7akcly7ark-test.drv
building '/nix/store/pn49f92bjpwfqlx300wyhx7akcly7ark-test.drv'...
error: builder for '/nix/store/pn49f92bjpwfqlx300wyhx7akcly7ark-test.drv' failed with exit code 1;
       last 1 log lines:
       > SSL_FILE is
       For full logs, run 'nix log /nix/store/pn49f92bjpwfqlx300wyhx7akcly7ark-test.drv'.
16:22:22
@emilazy:matrix.orgemily🤔16:22:34
@emilazy:matrix.orgemilyand without sandbox it gets set?16:22:38
@weethet:catgirl.cloudWeetHetYes16:22:45
@emilazy:matrix.orgemilyyour daemon is definitely on the new version, not just client?16:23:00

Show newer messages

Back to Room ListRoom Version: 10