IRC channel logs

2019-03-14.log

back to list of logs

***vagrantc_ is now known as vagrantc
<marusich>Hello, Guix!
<schematico>marusich: o/
<schematico>our Guix heroes are either resting or hard @ work! ...
<schematico>;o
<marusich>I sometimes try to to both at the same time, with limited success!
<efraim>I tried to build kaldi on my machine and it ate the remaining 30GB of space
***rekado_ is now known as rekado
<rekado>efraim: wow!
<rekado>I built it here on x86_64 (multiple times) but it’s a very slow build.
<rekado>I forgot to install the header files, so maybe we should fix that.
<rekado>I’m now trying to build https://github.com/alumae/gst-kaldi-nnet2-online
<rekado>and then move on to https://github.com/dwks/silvius-backend
<civodul>Hello Guix!
<nckx>o/
<rekado>civodul: hello!
<rekado>one of the items for 1.0 is to replace the big texlive.
<rekado>this is really just the first part, though. We should also make sure that we have enough small texlive packages.
<rekado>there has been talk about an importer but I haven’t seen anything concrete yet
<rekado>I guess it should be possible to do a one-off run through the texlive database file and get it all packaged.
<rekado>the hardest part is to determine if it’s really source code that we’re working with.
<civodul>hey rekado!
<civodul>i omitted this item because i thought it was "mostly" solved anyway :-)
<civodul>i mean the situation isn't perfect but it's much better already
<civodul>now, if we can do such a import, that'd be even better, i agree
<civodul>*an
<efraim>We solved big-qt, so that's also something
<civodul>efraim: indeed! i'm happy we no longer rely on this big package
<rekado>so, I have this LDAP accounts thing for Guix that allows for user authentication against LDAP.
<rekado>the only problem is that “guix system reconfigure” will go horribly wrong in that it tries to delete all accounts from LDAP that are not mentioned in the operating system configuration.
<rekado>oops.
<rekado>I wonder how to avoid this.
<civodul>heheh
<civodul>hmm
<civodul>i think (gnu build activation) would need to be able to distinguish between "local" accounts and LDAP accounts
<civodul>and then it would only pass local accounts to (gnu build accounts)
<civodul>but how would it add LDAP accounts? i don't know
<civodul>perhaps we'd need to revive code that uses useradd & co. (?)
<rekado>yeah, not sure.
<rekado>actually I only wanted it to *authenticate* users against LDAP, not to do user management at all.
<civodul>so all you need is the right entry in nsswitch.conf, no?
<rekado>yes, authentication works. But when it’s set up all user account commands are sent off to LDAP.
<rekado>I’ll try to write a system test for this later. After writing an LDAP service.
<civodul>yes, but since the new account management code doesn't use Shadow at all, perhaps there's no problem?
<rekado>hmm, I’ll give this a try again later.
<nly>To play a file with alsa: `aplay -D aux song.wav`, aux is my alsa device in `.asoundrc`, but when i try `aplay -D rawjack song.wav`, it complains about a missing object file. http://nly.info.tm:9001/error/alsa->jack.txt
<nly>`pidof jack` -> 18411, asoundrc: http://nly.info.tm:9001/error/asoundrc
<nly>am i doing this correctly?
<rekado>nly: what are you trying to do?
<rekado>do we even have a package that provides libasound_module_pcm_jack.so ?
<nly>i am trying to route audio from alsa to jack
<nly>I don't know about the 2nd part but I've installed 'alsa-lib and 'alsa-plugin(:jack and :pulseaudio)
<rekado>ah, good.
<rekado>you will need to let ALSA know that libasound_module_pcm_jack.so is provided by alsa-plugin:jack and not alsa-plugin.
<rekado>you’ll have to specify a directory
<rekado>nly: for bluealsa I had to do the same.
<rekado>the alsa-service doesn’t yet support this, so you need to do this manually
<rekado>(I locally changed the alsa-service to generate the correct file)
<rekado>nly: you might find this useful: http://paste.debian.net/1073113/
<rekado>(It’s on my list to submit patches to alsa-service)
<nly>ohh nice, thanks
<nly>nice, it works
<ng0>I have a couple of commits for gnunet.scm etc lined up for tday
<ng0>I'm pushing to a linux system right now to test them
<ng0>gnunet-gtk 0.10.1 will start failing to build with gnunet 0.11.1. I'll commit them as 2 patches, but in the future I think they should be 1 commit
<bgardner>Good morning guix. I'm trying to install icecat on a machine with about 5.5G free, and I just can't get it to finish. All attempts result in 'no space left on device'. Is this just too litle space to work with or is there anything I can do to make this work?
<nckx>bgardner: And /tmp isn't an even smaller tmpfs or something? Then you're out of luck.
<efraim>I think there should be a substitute available
<nckx>5.5G is a bit low to build a complete operating system or Web browser.
<bgardner>nckx: No, but thanks for the tip - I hadn't actually checked that. /tmp isn't separately mounted, no. Looks like I need to reconfigure my partitions. :P
*civodul plays with PRoot support for "guix pack -R"
<lsl88>hi guix! I have a question regarding my gpg key. I use gmail, and would like to add my public key as a signature. I have browsed the internet to see how to attach the plain text that most of you tend to use but found nothing except an add on to Firefox. May anyone help me with that? I use my email from different computers.
<lsl88>and from gmail site.
<roptat>lsl88, if gmail could sign your email automatically, it means they would have your private key, which is not good ;)
<roptat>I don't know about others, but I use a mail client, so it can have access to the key for signing, and sends the results to my email server
*nckx read it as ‘attach public key text as a regular -- signature’, but doesn't use Gmail.
<nckx>…/fingerprint
<roptat>ah, I misread it
<lsl88>roptat: I only want to have the attachment with my publickey. The only horrible solution I can find is having it in a mail sent to myself and when I want to use it, attach it. But it is a horrible solution.
<roptat>ok, I don't use gmail, so I can't help you then :/
<nckx>lsl88: Ah, so you want to have each e-mail that you send have your pubkey as a MIME attachment?
<lsl88>I cannot stop using gmail, it is sth cultural here. And changing my email account is a mess, for all the people that have it.
<nckx>I'm not sure Gmail even supports that, I don't think many Web-mails do.
<lsl88>I guess the horrible solution would be the best option :/ Some people still use hotmail here, so imagine ...
<nckx>All search results are about encrypting, which is not what you're trying to do.
<nckx>lsl88: My condolences.
<lsl88>nckx: exactly, I just want to attach the public key so that you know that it is me.
<lsl88>nckx: thank you :)
<nckx>lsl88: So you're culturally pressured into using Gmail for yourself? Not just into making sure that you jump through their hoops because it's what everyone else uses (such as here)? Yikes.
<nckx>Condolences++.
<roptat>lsl88, I could attach your public key to my emails though, so it doesn't prove anything :p
<nckx>^
<lsl88>I am cultural pressured to use all Google stack, that was why in Brussels I could not openstreetmap
<nckx>Wow.
<lsl88>roptat: yes, you are right. And also about GNU Linux. It is not the most popular OS here.
<nckx>And yes, the only way to prove it's you is to sign the actual message.
<roptat>it's not popular here either ^^
<lsl88>roptat: ok, then I don't feel THAT bad.
<roptat>but it seems there's more and more interest in OSM here, so that's good
<lsl88>Even I am new to too many things about free as in freedom, I have always supported it, even without knowing that much ;)
<nckx>Google Maps is the default here, but people are either intrigued or neutrally disinterested when I use only OSM.
<roptat>same here
<nckx>I don't think GNU/Linux is the most popular OS anywhere. 'xcept maybe space.
<efraim>I added a custom header, does gmail have that option,
<efraim>s/,/?
<lsl88>efraim: I will look at it in settings and ask you if I can't find it, thank you :)
<nckx>efraim: X-PGP-Key?
<efraim>Yeah, thats a custom header
<nckx>But, like, human-custom, or is there reasonable software support?
<lsl88>I can't find the option, well, nevermind, sorry if I cant add it at the end of my emails :(
<efraim>I found settings -> general -> signature on gmail but not custom headers
<lsl88>efraim: exactly, but you have to copy-paste your key there, right?
<efraim>Yeah
<lsl88>and people will get my big gpg key in plain text instead as an attachment
<roptat>you could put your fingerprint instead
<lsl88>and what will happen is what roptat says, anybody would be able to use it
<lsl88>right?
<roptat>yes
<roptat>that's why you usually sign your messages, instead of attaching your public key
<roptat>but people also usually give their fingerprint so other can know (but not trust) what key they can use to send you encrypted messages
*efraim is on my phone ATM
<roptat>and then you'll have to find a way to decrypt these messages
<efraim>I have my fingerprint in my signature and in my custom header
<lsl88>well,sorry for having to use gmail :(
<roptat>I don't understand, what would happen to you if you stopped using gmail?
<lsl88>oh, I can do that, have my fingerprint in my signature. Then, my other contacts that don't use gpg will see sth weird, but its their problem
<lsl88>roptat: everybody here uses gmail, Facebook stack, and so on. I cannot stop using them because I would miss cultural events for instance, or some shops ask you to follow them in these accounts I use my gmail account as my primary mail for other accounts only in the IT world maybe you can switch to Telegram. Even not using chrome is a problem sometimes.
<lsl88>sorry for missing the periods at the end of the sentences. It is sth cultural in Latin America.
<roptat>I see
<efraim>Same thing here with whatsapp
<lsl88>People are sticked to their phone all the time.
<lsl88>I try not to, and look at it from time to time.
<lsl88>I noticed from most of you in Europe, you use your cellphone like it was here some years ago: to send an SMS and phone calls. I miss when it was like that here.
<roptat>But we're not normal people :p
<nckx>lsl88: So what do people do on it the whole time?
<civodul>roptat: to put it differently, i'd say we're not representative of general phone usage patterns :-)
<nckx>(Sorry for the silly question but I live in a phone-free bubble.)
<roptat>:)
<efraim>Reddit, quassel for irc, Waze while driving, podcasts
<efraim>Mostly reddit
<nckx>I waste enough time on Reddit already, I'd dread having one in my pocket. Nothing would get done.
<nckx>Anyone else getting tonnes of ‘Unbound variable: git-fetch’ errors?
<nckx>I've cloned a clean repo just to be sure and am unable to build anything.
<civodul>-RR like "really relocatable" \o/ https://issues.guix.info/issue/34859
<roptat>civodul, "in the kernel Linux" -> "in the Linux kernel"?
<civodul>roptat: it's on purpose, it's rms parlance :-)
<roptat>this appears multiple times in the manual, but the order feels wrong
<roptat>oh
<civodul>it's valid
<civodul>it's just that "the Linux kernel" is ambiguous
<civodul>it could be understood as "the kernel of Linux"
<civodul>:-)
<roptat>I see
<roptat>also, "relocatable binaries fall to back to PRoot"
<roptat>I think there one "to" that shouldn't be here
<roptat>this is weird, how does proot run in the first place?
*nckx guesses they have a borked guix-daemon.
<roptat>proot = concat (store, PROOT_PROGRAM); looks like you're looking for it in the store
<roptat>so I kind of guess it's included in the tarball, but how is proot relocatable then?
*lsl88 says sorry, went to buy my lunch
<lsl88>roptat: there are no normal people.
<lsl88>here everybody is attached sending voice messages through Whatsapp, instagram a lot and Facebook. I sometimes can't believe how much they use it walking in the street. That is how pickpockets take them away. In the IT world, Telegram. We can't take our computers in a train, for instance. In my case, when I take a bus, I put music and earplugs, in a low volume, and put it inside my bag.
<lsl88>and by the way, thank you for being such a lovely community. Will keep telling that :)
<ng0>civodul: just a general question, don't feel presured to work on this sooner than necessary, but wrt our discussion the other night and the 2 emails I've sent to guix-help, will you consider this for gnutls? Because when I work on guix on netbsd (and other platforms through pkgsrc initially), proper upstream support is the way to go
<rvgn>Hello Guix!
<rvgn>How to add directories in the search path set by the XDG_DATA_DIRS?
<rvgn>I got it.
<rvgn>But I am getting different error while adding remote repo in flatpak
<rvgn>The error is "Can't load uri https://flathub.org/repo/flathub.flatpakrepo: TLS support is not available"
<rvgn>What should I do to make TLS support available?
<rvgn>efraim Have you encountered this before?
<rekado>rvgn-net: you may need to set TLS environment variables. Have you checked the manual?
<quiliro>hello guix!
<quiliro>It is weird. On GSD, Icecat will not open a web page at first as if is not up. But after some time, it would correctly open it. How can I find why?
***rvgn-net is now known as rvgn
<rvgn>rekado I have no idea what "TLS environment variables" mean. Can you please tell me what should I be looking for in the manual?
<lfam>rvgn: I missed the earlier part of your question but you should consult the manual sections X.509 Certificates and also Application Setup: X.509 Certificates: https://www.gnu.org/software/guix/manual/en/html_node/index.html
<lfam>They describe TLS / X.509 setup on the Guix System and Guix on another distro, respectively
<amz3>rvgn: https://www.gnu.org/software/guix/manual/en/guix.html#index-TLS
<lfam>Yes, that's the section for Guix System
<rvgn>Thank you lfam and amz3
<rvgn>lfam My earlier post was: The error is "Can't load uri https://flathub.org/repo/flathub.flatpakrepo: TLS support is not available"
<lfam>rvgn: In what context did you get that error?
<lfam>Like, what did you try to do?
<rvgn>When I tried "flatpak remote-add --if-not-exists flathub https://flathub.org/repo/flathub.flatpakrepo"
<rvgn>I basically tried to add a repository to flatpak
<lfam>Okay. Typically errors of this sort with TLS mean that the program failed to find the X.509 certificate store
<lfam>You'll need to learn about how flatpak looks for certificates. It may use one of the techniques covered in the manual sections I mentioned
<rvgn>I see.
<rvgn>I will look into it now.
<lfam>Let us know what you find. Maybe we can make it "just work" in our flatpak package
<lfam>sneek: later tell rekado: I've pushed the Go build system patches to master so you can remove the wip-go-build-system job from berlin.guixsd.org now. Thanks!
<rvgn>lfam sure, I'll brb
<rvgn>lfam I did whats mentioned in that section of the guide. But getting same error with flatpak.
<lfam>rvgn: Okay, you'll need to find out how flatpak looks for the certificates
<rvgn>lfam LoL. How do I do that? Should I start with reviewing the source of flatpak?
<lfam>rvgn: Did you google the error message?
<lfam>That's always how I start
<rvgn>Yes. But the solution was not helpful.
<rvgn>Some users asked to intall glib-networking.
<rvgn>Tried that too, but not working.
<rvgn>lfam Should I also try installing ghc-tls and gnutls packages?
<lfam>You might also consult the flatpak docs for any mention of "tls" or "https"
<lfam>I think it's unlikely that flatpak uses the Haskell TLS library (ghc-tls)
<rvgn>I see.
<lfam>Not sure about GnuTLS but typically this sort of integration would happen under the hood
<lfam>GnuTLS is a TLS software library, but not a collection of TLS certificates
<lfam>I recommend trying to debug it, but if you can't, please file a bug report at <bug-guix@gnu.org>
<rvgn>lfam I am unable to. The docs has no reference to it and neither does source at repo. I am gonna bug report.
<rvgn>*at github
<lfam>Thanks rvgn
<lfam>Any Go programmers in here? Let's chat about Go in Guix :)
<isengaara-tomoko>I was just reading Guix Days: Bootstrapping ARM
<isengaara-tomoko>The Raspberry Pi has two cores, an ARM core and the VC4.
<jackhill>lfam: I'm not currently a go programmer, but it's cool to see better Go support in Guix. Thanks for your work.
<jackhill>(I might look at go more in the futur because of the improving support ☺)
<isengaara-tomoko>So I thought I could run gcc on the VC4
<rekado>lfam: thanks. I’ll delete the table records from cuirass.
<lfam>jackhill: Thanks! It's still a little rough but it is getting better. And the software *does* work :)
<lfam>I wish I had a Go expert to give advice
<isengaara-tomoko>There is a kernel called X15 (https://www.sceen.net/x15/), that I think I could make it run on the Raspi as a replacement for the non-free ThreadX
<isengaara-tomoko>It could be ported to the VC4 core
<rvgn>lfam Thanks to you too. Btw, bug email sent to bug-guix@gnu.org
*lfam reinstalls a Guix system to see if <https://bugs.gnu.org/30993> persists
<lfam>Recently my workaround (using Shepherd 0.3.0) stopped working, so might as well try the nuclear option!
<lfam>Hopefully just some tricky stateful thing that will be washed away by mkfs
<pinoaffe>Hello everyone! I'm trying to install guix on my t420, but don't have any functional installation media I can boot from around
<pinoaffe>I tried installing guix on my gentoo system, hoping I could use it to bootstrap guixsd in another partition by following https://www.gnu.org/software/guix/manual/en/html_node/Proceeding-with-the-Installation.html#Proceeding-with-the-Installation
<pinoaffe>however, guix doesnot seem to provide the "herd" command - where can I get that
<lfam>pinoaffe: It's in the shepherd package
<pinoaffe>lfam: thanks!
<pinoaffe>the version on the master branch of http://git.savannah.gnu.org/cgit/shepherd.git has a fairly outdated README
<lfam>pinoaffe: Yeah :/
<pinoaffe>it refers to two non-existent files - ./configure and ./INSTALL
<lfam>Help wanted :)
<pinoaffe>yeah thing is I can't really update the build instructions if I don't know how to build it
<lfam>pinoaffe: If you have Guix installed over Gentoo you should just do `guix package --install shepherd`
<lfam>Otherwise, if you need to build Shepherd from source, download the tarballs: https://www.gnu.org/software/shepherd/
<lfam>It will be simpler than building from Git
<lfam>Those files are generated before release, and they are included in the release tarballs
<cvmel>hello
<lfam>Hi cvmel
<cvmel>so i have not een able to verify gpg keys on two machines for the iso.xz download
<lfam>What is the error message?
<cvmel>gpg: WARNING: This key is not certified with a trusted signature!
<cvmel>gpg: There is no indication that the signature belongs to the owner.
<lfam>That is a warning, not an error. You can ignore it
<lfam>It's normal for PGP :/
<lfam>It means that the signature was verified correctly but that you never told PGP whether or not you trust the key
<lfam>In practice it doesn't matter
<cvmel>ok that makes sense because: gpg: Good signature from "Ludovic Courtès <ludo@gnu.org>" [unknown]
<cvmel>cool
<cvmel>ty you a ton
<lfam>You are welcome :)
<pinoaffe>lfam: none of the things you suggested worked :(
<pinoaffe>I'll try to boot the iso in a vm and use that to install to disk
<vagrantc>could document the use of gpg --trust-model=tofu for that basic use-case