| 29 Jul 2021 |
 aanderse | andi-: with tmpfiles 😐️ | 17:23:24 |
 andi- | So what's the problem? :) | 17:23:57 |
| aanderse | given how the systemd folks don't want to promote the use of tmpfiles i think a new set of directives should be added
LogsDirectoryACLs or something maybe | 17:24:02 |
| aanderse | * given how the systemd folks don't want to promote the use of tmpfiles for simple things like provisioning log/state/cache directories i think a new set of directives should be added
LogsDirectoryACLs or something maybe | 17:24:34 |
| 30 Jul 2021 |
|  em0lar // Leo changed their profile picture. | 10:28:55 |
 gdamjan | well there's *Mode and SupplementalGroups - depending what your goal is, those can do | 17:44:27 |
| aanderse | gdamjan: unfortunately that is the flip side of what i want to do | 18:12:46 |
| 1 Aug 2021 |
|  Jamie joined the room. | 08:05:36 |
| 7 Aug 2021 |
|  raitobezarius joined the room. | 17:40:35 |
| 9 Aug 2021 |
|  Xe (xe/they) changed their display name from Xe to Xe (xe/they). | 23:03:59 |
| 12 Aug 2021 |
|  nullrequest joined the room. | 09:47:25 |
| 13 Aug 2021 |
 timstott | Hello, I'm going through grahamc's https://grahamc.com/blog/erase-your-darlings and running into problems with symlinks to unit's StateDirectory
Example, the acme units have the StateDirectory at /var/lib/acme which is a symlink to /persist/var/lib/acme.
When the unit starts systemd attempts to enforce permissions (declared by StateDirectoryMode) and the operation fails with:
Failed to set up special execution directory in /var/lib: Not a directory
Any ideas on how to work around this?
I have a candidate solution with bindmounts but I am hoping for a better solution.
fileSystems.acmeBindMount = {
mountPoint = "var/lib/acme";
device = "/persist/var/lib/acme";
options = [ "auto" "nofail" "bind" ];
};
| 15:46:49 |
| timstott | * Hello, I'm going through grahamc's https://grahamc.com/blog/erase-your-darlings and running into problems with symlinks to unit's StateDirectory
Example, the acme units have a StateDirectory at /var/lib/acme which is a symlink to /persist/var/lib/acme.
When the unit starts systemd attempts to enforce permissions (declared by StateDirectoryMode) and the operation fails with:
Failed to set up special execution directory in /var/lib: Not a directory
Any ideas on how to work around this?
I have a candidate solution with bindmounts but I am hoping for a better solution.
fileSystems.acmeBindMount = {
mountPoint = "var/lib/acme";
device = "/persist/var/lib/acme";
options = [ "auto" "nofail" "bind" ];
};
| 15:47:20 |
 Arian | Hmm | 17:49:10 |
| Arian | I don't know. It might require a patch in systemd. Idk if they'd accept it though | 17:49:37 |
| Arian | The error message is a bit odd | 17:50:26 |
| 14 Aug 2021 |
| andi- | Anyone willing to debug why system v249 never continues reaching multi-user.target? I've been starring at tracing logs of systemd and I can't find what is blocking it. The PR https://github.com/NixOS/nixpkgs/pull/131618 has a hydra jobset so you can try it out locally (in a VM test; not your systems) without having to rebuild everything from scratch. | 17:00:13 |
| 15 Aug 2021 |
 ElvishJerricco | Awesome. I got my systemd initrd separated into an opt-in nixos option. Only problem is now the qemu-vm.nix module only works for the systemd initrd :P | 00:08:07 |
|  papojari changed their display name from papojari 🏳️🌈 to papojari. | 09:49:15 |
| papojari changed their profile picture. | 09:50:38 |
| papojari changed their display name from papojari to fritz. | 10:07:05 |
| papojari changed their display name from fritz to papojari. | 10:07:19 |
| andi- | ElvishJerricco: do you have a writeup how you envision this to go into nixos? I've had some discussion around the topic in the past and would like to coordinate efforts a bit better. There have already been three attempts to do that inside and outside of nixpkgs. | 12:06:13 |
| papojari left the room. | 15:46:24 |
| Arian | Is anybody else here going to oceansprint? | 18:33:54 |
| Arian | I definitely want to use the winter to work on systemd initrd. Either getting into ElvishJerricco 's work or cleanup my stupid little fork (sorry Andi- for having it out of tree :')) | 18:34:36 |
| andi- | I will be going there and one of my goals for that sprint is exactly that | 18:35:15 |
| andi- | and if that turns out to be too easy I want to use NixOS as boot loader :) | 18:35:28 |
| andi- | Apparently we aren't the only ones with systemd v249 issues.. There is a similar issue with Gentoo and I just added more details to the issue: https://github.com/systemd/systemd/issues/20003#issuecomment-899095461 | 18:58:10 |
| Arian | Interesting | 19:00:19 |
