| 10 Apr 2022 |
 tilpner | * yes, I wouldn't be brave enough to do completely unattended deployments with an unlocked nixpkgs input. at least with application inputs, someone pushed the commit to the application repo that triggered the deployment and would probably notice breakage and fix it quickly, but changes to nixpkgs happen all day, even at night, and there'd be no way to react to a broken deployment :c | 16:41:29 |
 cransom | i'd be ok if we had a staging environment where those tests happend and if passed, it goes to production. i don't have that, but that's not a nix/nixpkgs problem. i'd love automatic deployment for any random security vulns/bug fixes that come up. | 16:45:59 |
 bitmapper | In reply to @ma27:nicht-so.sexy
I implemented https://github.com/NixOS/hydra/pull/919 for private projects a while ago i ended up just setting up a cloudflare firewall | 23:43:13 |
| 11 Apr 2022 |
 @ulrikstrid:matrix.org | Was there a PR fixing hydra on unstable? | 07:23:39 |
| @ulrikstrid:matrix.org | Maybe a better question, is there a nice way of getting hydra than just using the standard package in unstable? | 07:27:41 |
 Rick (Mindavi) | There's this: https://github.com/NixOS/nixpkgs/pull/160202 | 07:38:24 |
| Rick (Mindavi) | In reply to @ulrikstrid:matrix.org
Maybe a better question, is there a nice way of getting hydra than just using the standard package in unstable? You could use the flake, if you don't mind using them | 07:38:59 |
| @ulrikstrid:matrix.org | I'm on flakes already so I'm trying to figure out how to use that currently :) | 07:39:23 |
| @ulrikstrid:matrix.org | Well, I'm using flakes for my configuration(s), so I'm trying to figure out how to use the hydra flake is what I meant | 07:39:47 |
| @ulrikstrid:matrix.org | I'm trying to build a repo that uses a bunch of fetchurl so I set my extraConfig to this:
extraConfig = ''
using_frontend_proxy 1
base_uri hydra.example.com
allowed-uris = https://github.com
'';
But I still get failures because I can't access urls in restricted mode. Is this the wrong config?
| 11:49:48 |
| tilpner | In reply to @tomberek:matrix.org
another possibility.... what is the thing that watches the jobsets and triggers a deployment to prod? tomberek: do you still remember what you were going to suggest here? I'm curious about any options I might've missed :) | 14:48:42 |
| tilpner | In reply to @bitmapper:amber.tel
i ended up just setting up a cloudflare firewall doesn't that mean your hydra could still be accessed directly (bypassing cloudflare) without login? unless you're using some tunnelling solution, and it's not publicly accessible... | 14:49:27 |
 ma27 | In reply to @bitmapper:amber.tel
i ended up just setting up a cloudflare firewall that's perfectly fine as long as you'd like to protect your entire instance. I explicitly wanted to have both public and private things. | 18:21:11 |
|  @pedrohlc:mozilla.org left the room. | 19:29:07 |
| bitmapper | In reply to @tilpner:tx0.co
doesn't that mean your hydra could still be accessed directly (bypassing cloudflare) without login? unless you're using some tunnelling solution, and it's not publicly accessible... aws is only allowing access to cloudflare | 23:28:18 |
| 12 Apr 2022 |
|  @linus:schreibt.jetzt joined the room. | 18:47:16 |
| 13 Apr 2022 |
|  lexi mattick joined the room. | 02:32:11 |
|  @linus.heckemann:matrix.mayflower.de left the room. | 07:59:45 |
| @ulrikstrid:matrix.org | How can I evaluate a hydra job locally?
I'm getting error: attribute 'override' is a function, which is not supported and want to debug where it's coming from | 08:58:06 |
| 14 Apr 2022 |
 das_j | ma27 grahamc (he/him): Has there been any progress on the maintainer search? | 12:02:02 |
 @grahamc:nixos.org | I think I'm waiting on ma27 | 12:03:24 |
| ma27 | In reply to @grahamc:nixos.org
I think I'm waiting on ma27 that's correct though there's quite much to do these days for me and I'm also sick currently, so no guarantees that we'll have it ready soonish | 13:47:44 |
| das_j | In reply to @ma27:nicht-so.sexy
that's correct though there's quite much to do these days for me and I'm also sick currently, so no guarantees that we'll have it ready soonish get well soon! I might be able to hack some alternative for the time being | 14:53:07 |
| das_j | it's also some time until ZHF | 14:53:10 |
 Amanda (she/her) | ZHF = Zero Hydra Failures? | 18:49:09 |
| das_j | In reply to @amanda:camnet.site
ZHF = Zero Hydra Failures? Yes | 18:50:23 |
| Amanda (she/her) | ah | 18:50:29 |
| 15 Apr 2022 |
| @ulrikstrid:matrix.org | Trying to have hydra build stuff using my m1 but I'm getting this error and I can't reproduce when I ssh into the machine:
‘hydra@192.168.1.254’: error: cannot connect to ‘hydra@192.168.1.254’: zsh:1: command not found: nix-store any ideas? | 19:50:06 |
| @ulrikstrid:matrix.org | Looks like my exact issue is described here: https://nixos.org/manual/nix/stable/advanced-topics/distributed-builds.html | 19:56:34 |
| @ulrikstrid:matrix.org | With that fixed, now I'm getting ‘hydra@192.168.1.254’: error: unexpected end-of-file any idea how to debug this? | 20:34:32 |
