@sandro@c3d2.social avatar

sandro

@sandro@c3d2.social

Some lefti :AFD:, NixOS :nixos:, Linux :tux:, Chaos :fairydust:

Don't be afraid of colorful flags :progress_pride: 🏳️‍🌈🏳️‍⚧️🚩🏴

This profile is from a federated server and may be incomplete. Browse more on the original instance.

sandro, to NixOS
@sandro@c3d2.social avatar

👀

sandro, to random
@sandro@c3d2.social avatar

Today I enabled tcp fastopen in nginx together with deferred and backlog and either my imagination is fooling me or my nextcloud is really opening noticeable faster. I read in a paper that tcp fastopen alone can improve connection times by ~15% or so. I was a bit lazy to do proper testing but I take the result.

sandro, to NixOS
@sandro@c3d2.social avatar

TIL: You can enter a a process' exact namespace with the following command to debug systemd hardening with ease:
nsenter --all --target $PID

Why did no one tell me this earlier!?

sandro, to random
@sandro@c3d2.social avatar

Today was a productive day and I finally finished some really long taking projects. I am now hosting my own Knot DNS server and finally migrated off Cloudflare. Their DNS servers still respond with old NS records even over a day after deleting the domain from their service. Other DNS server respond with the correct one by now. Let's see when that stops.
I also migrated some mail addresess off GSuite (Google workspace they are called now I think) which triggered that journey

sandro, to NixOS
@sandro@c3d2.social avatar

Everything I manage in my free time is now on postgres 16. My upgrade script now also handles postgres extensions and jit. https://github.com/SuperSandro2000/nixos-modules/blob/master/modules/postgres.nix
Pretty damn easy with

sandro, to random
@sandro@c3d2.social avatar

People often tell me that the doc is not that great but compared to the secrets operator from it is fantastic. There are like no explanations of things, mostly API docs. https://developer.hashicorp.com/vault/docs/platform/k8s/vso

There is also a "tutorial" which mostly consists of copy pasting commands and in the end you have a small example that works but you didn't really learn something.
https://developer.hashicorp.com/vault/tutorials/kubernetes/vault-secrets-operator

Or maybe someone needs to point my nose on the right things.

sandro, to NixOS
@sandro@c3d2.social avatar

nix-output-monitor is recommend by Sandro: "I recommend it"

https://cdn.infobeamer.com/dynimg/blob/image

sandro, (edited ) to NixOS German
@sandro@c3d2.social avatar

Sometimes I want a reproducibility nightmare in #NixOS : apply a set of changes but only when the derivativion is rebuilt anyway.

sandro, to NixOS
@sandro@c3d2.social avatar

And c3d2.social is on mastodon version 4.1.3 and we kept our custom UI theme thanks to overlays

sandro, to random
@sandro@c3d2.social avatar

The entire nixfmt project recently has been a big disappointment for me. nixpkgs-fmt would have been a good starting point, having a balance between enforcing rules and allowing some freedom. While nixfmt initially started with outdated ideas like 80 line length and ill fitted tries to enforce that. Adding new lines before long strings like URLs, sometimes nudging people to split them with a + which makes greping for them unnecessarily hard. They didged that which is good.

sandro,
@sandro@c3d2.social avatar

But at the same time adding rules, especially around lib.optional*, which often results in ugly formatted code that has strange line breaks and the general placement of the entire structure feels wrong.

Also that just appending something to a list like structure can result in the reformat of the entire thing which can make a simple one line change be blown up in the diff to many more lines.
At least an issue for that exists after arguing with them for a bit.

sandro,
@sandro@c3d2.social avatar

Does it matter in the end? Probably not that much but it will create a lot of noise on the way and will make my live of cherry-picking specific changes from master to the stable branch probably a lot more miserable and with lots more merge conflicts to solve.

Usually people are very focused to reduce churn but looking at the formatting topic some people seem to completely thrown that mindset overboard.

sandro, (edited ) to NixOS German
@sandro@c3d2.social avatar

Das Hacking area/Hackcenter auf den nimmt Form an.

hexa, to NixOS
@hexa@chaos.social avatar

#NixOS 24.05 branch-off happened. Snuck in a small reformat of the python packages at the last minute.

https://github.com/NixOS/nixpkgs/pull/313628

Currently, evaluations are running, nixos-24.05-small has already completed eval and is building.

https://hydra.nixos.org/jobset/nixos/release-24.05-small

It will be mostly cached from nixos-unstable-small anyway, so its channel should be available within the next two hours.

sandro,
@sandro@c3d2.social avatar

@hexa We should have waited another 6 months. There are still glaring issues around lib.optional/s wild formatting.

sandro, (edited ) to random
@sandro@c3d2.social avatar

Mate ist definitiv beliebt
@c3d2

sandro, to NixOS German
@sandro@c3d2.social avatar

My 23.12 upgrade story for all the servers and VMs I manage:

Let's start with the terrible. Grafana crashed because it is missed a directory when using provisioned dashboards. Fix is in https://github.com/NixOS/nixpkgs/pull/272564

Then I searched an hour for a faulty change I did two days ago where I didn't think about split Portunus LDAP server and applications and needed to move a mkIf.

That's two |s done. The next two just worked without any changes and nothing broke (so far?).

sandro, to NixOS German
@sandro@c3d2.social avatar

Replaced an unbound today with knot resolver daemon or kresd. Was super easy to port with and also create two PRs along the way: updating it to 5.7.2 and adding the missing psl Lua package to nixpkgs and kresd.
Next step is to replace the second and last bind with knot.

sandro, to random
@sandro@c3d2.social avatar

might be gone much worse with the next bigger mastodon update :( https://github.com/mastodon/mastodon/pull/23989
@astro

sandro, to random
@sandro@c3d2.social avatar

🥲🫠

sandro, to random
@sandro@c3d2.social avatar

story of this afternoon:

  • wifi being very flaky
  • ran into ssh rate limits
  • soft reseted the wrong server with production services on it
  • updated the wrong ceph component

Upsi...

sandro, to random
@sandro@c3d2.social avatar

I stumbled upon the mesa shader cache bug again today https://github.com/NixOS/nixpkgs/issues/244742

After doing some research I found that Ubuntu is supposed to have a workaround for it https://bugs.launchpad.net/ubuntu/+source/mesa/+bug/2020604

But I just can't find the actual code change they did. Neither launchpad nor their git process is doing me any favor in making it easier to find things.

sandro, to NixOS
@sandro@c3d2.social avatar

I got a hydra that can build ca-derivation based on the current hydra version deployed! 🎉 🚀

https://github.com/NixOS/hydra/pull/1228#issuecomment-1826467256
https://github.com/SuperSandro2000/hydra/commits/ca-derivations-reprise

sandro, to random German
@sandro@c3d2.social avatar

Eine Distanzierung auf dem Theaterplatz ist aus der vorbeifahrenden Straßenbahn nicht zu erkennen. Ganz im Gegenteil man steht in einer Menge mit den Verfassungsfeinden der Freien Sachsen und zeigt deren Fahne.

Aus dem Augenwinkel hab ich noch eine schwarze Fahne vermeintlich erkannt, aber ohne Logo. Man ahnt nichts gutes.

sandro, to random
@sandro@c3d2.social avatar

zweite Versuch erfolgreich

sandro, to NixOS
@sandro@c3d2.social avatar

I think me and @sophie got https://github.com/NixOS/nixpkgs/issues/39356 fixed this evening 🎉

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • kavyap
  • DreamBathrooms
  • InstantRegret
  • magazineikmin
  • osvaldo12
  • mdbf
  • Youngstown
  • cisconetworking
  • slotface
  • rosin
  • thenastyranch
  • ngwrru68w68
  • khanakhh
  • megavids
  • ethstaker
  • tacticalgear
  • modclub
  • cubers
  • Leos
  • everett
  • GTA5RPClips
  • Durango
  • anitta
  • normalnudes
  • provamag3
  • tester
  • lostlight
  • All magazines
    •