| 4 Aug 2025 |
|  entro joined the room. | 12:30:12 |
 x10an14 | Fixed it, it was the folder tree not having the folder read/execute permission bits set all the way down | 14:36:38 |
 @magic_rb:numtide.com | exactly the same issue as i had | 14:36:56 |
| x10an14 | Now to figure out how to proxy subdomains to ports... | 14:36:57 |
| @magic_rb:numtide.com | also | 14:36:57 |
| @magic_rb:numtide.com | hi from other account :P | 14:37:01 |
 magic_rb | hello to myself | 14:37:25 |
| * x10an14 calls for doctors in white coats carrying straightjackets | 14:38:30 |
| @magic_rb:numtide.com left the room. | 19:49:33 |
 Marcel | IfState PR: https://github.com/NixOS/nixpkgs/pull/431047 | 22:45:51 |
 hexa (clat on linux when) | Redacted or Malformed Event | 22:57:35 |
 emily | boot.initrd.kernelModules should almost never be used fwiw | 23:21:41 |
| emily | it forces module load which is not meant to be necessary | 23:21:50 |
| emily | availableKernelModules is the appropriate thing if we're going to be sniffing the config like that | 23:23:23 |
| Marcel | updated it, thx | 23:36:13 |
| 5 Aug 2025 |
|  isabel changed their profile picture. | 09:49:46 |
| 6 Aug 2025 |
|  Frédéric Christ (🚄 15.09. - 29.09.) changed their display name from Frédéric Christ to Frédéric Christ 🏕️ 15.8.. | 08:28:52 |
| 8 Aug 2025 |
|  problems changed their profile picture. | 01:43:17 |
|  0x4A6F joined the room. | 06:32:20 |
 nikstur | I had some fun and let systemd networkd take care of the ipv6 privacy extensions instead of our custom udev rule: https://github.com/NixOS/nixpkgs/pull/431967 | 17:11:16 |
| emily | shouldn't we maybe be using kernel? | 17:13:30 |
| emily | to match the kernel's default preference | 17:13:34 |
| emily | rather than having two knobs | 17:13:47 |
| emily | also, it can be set in networkd.conf | 17:14:09 |
| emily | so we don't need a separate .network for it | 17:14:16 |
| emily | ah I guess the kernel preference is per-interface | 17:15:41 |
| emily | systemd.network.config.networkConfig.IPv6PrivacyExtensions = lib.mkDefault true; should do it, though | 17:15:50 |
| emily | btw (sorry for doing this on Matrix rather than leaving reviews, I haven't had the time to do a proper substantive review) is there a reason you got bash out of the iptables closure rather than just disabling iptables? it's pretty legacy itself at this point, and systemd is dropping support for it in 259 | 17:17:02 |
| emily | * The legacy iptables support through libiptc will be removed in v259.
Only nftables backend will be supported by systemd-networkd and
systemd-nspawn since v259.
| 17:17:10 |
 ElvishJerricco | I'm pretty sure this doesn't actually work. Have you checked that the expected things actually get set with interfaces that are actually configured with networkd? With networkd, an interface only ever applies a single .network file, and drop-ins for that file; the first one whose Match section matches it. So if I've got a 40-eth0.network, this 99-default-ipv6-privacy-extensions.network won't apply to my eth0 it at all. | 19:29:40 |
