<NieDzejkob>nckx: CC when posting to bug-guix or bug-gnuzilla? or perhaps gnuzilla-dev?
<nckx>dadinn: ‘Because Nix did’, and Guix is descended from Nix. You can view the contents yourself with sqlite (or something fancy but completely buggy like sqlcrush), see the schema in nix/libstore/schema.sql.hh, …
<nckx>bandali: NieDzejkob said: I had to set IceCat's security.sandbox.content.read_path_whitelist to /gnu/store/ (in about:config) to make some video codecs work. Any chance of making that the default with some build-time patch?
<bandali>nckx, it’s so damn hard to find any useful docs on firefox
<nckx>bandali: Basically, my worry is that users can ask the daemon to put anything they want into /gnu/store. But maybe that doesn't matter. It all depends on what IceCat expects from a ‘read_path_whitelist’, whatever that is. So yay, I get to shove it your way.
<nckx>Maybe it's not a vector worth worrying about ¯\_(ツ)_/¯
<bandali>mjw, yes, sadly. it’s been doing that for a good while now
<nckx>mjw: Same here. It does that all the time for me.
<mjw>o... It seemed fine yesterday. I guess I should follow the bug mailinglist then.
<nckx>mjw: I don't think there is a bug, it's just ‘generally known’. Some people never have problems. I must be unlucky. I don't think it's a timezone thing.
<grillon>thank you bandali! it works : guix install openjdk@11:jdk
<kirisime>The mypaint package I wrote builds, but when running it crashes due to not finding GdkPixbuf. Does it mean I need to add releavant packages to propagated-inputs or is there a better way?
<bandali>nckx, i think setting security.sandbox.content.read_path_whitelist to /gnu/store/ is a pretty bad idea actually, since it’ll allow firefox’s content process to access all of the store; which will be especially bad if /gnu/store/ contains any “secrets” (i understand it’s world-readable as is right now)
<str1ngs>though keep in mind whatever you hack on will effect the availability of substitutes
<pkill9>is there a function in guix/scripts/build.scm (the module for running `guix build` at the commandline) that lets you give it a package variable and build it, instead of a package name (or more technically, a package specification)?
<str1ngs>pkill9: you can try with guix build -e "the-binding"
<bandali>if what i posted returns ‘/root’, then it means you explicitly need the -E to tell sudo to preserve env vars
<pen14641>Hi, is it possible to use a .ovpn file for configuring OpenVPN in config.scm? This is the only file my VPN-provider provides for OpenVPN, but I don't see how I can use it
<grillon>bandali: this part is really confusing, because I have started using it as root then I do guix pull and sudo guix package reconfigure and meanwhile I did sudo -E package reconfigure...Does it mean I have many profile?
<grillon>bandali: NB :there are days between theses usages...I do not all at once
<str1ngs>grillon: I think you mean guix system reconfigure?
<bandali>also, to my understanding, using sudo -E for reconfigure (i.e. using your own profile) is normally totally fine
<bandali>except that the daemon runs as root, and so as far as i understand, you need to sudo guix pull (without -E, as root) every now and again to have your daemon updated
<bandali>civodul or others vastly more knowledgeable about this please feel free to clarify/correct me if i’m wrong
<cbaines>civodul, I'm not quite sure if I've got everything correct, but I think I've got the Guix Data Service kind of serving substitutes for derivations, as well as some source files referenced by derivations now...
<grillon>it's a little bit confused, is there any side effect using sudo guix pull instead of sudo -E guix pull? If daemon are not updated sudo -E guix pull seems useless
<bandali>i guess ‘sudo -E guix pull’ doesn’t make much sense; since you could just do ‘guix pull’
<bandali>but for reconfiguring, -E does make a difference, i think
<alextee[m]>i just install everything using sudo, im the only user on my machine anyway
<alextee[m]>i noticed that things dont work when you mix both
<str1ngs>you mainly need sudo -E guix when reconfigure or with init
<str1ngs>using sudo guix is not good practice. its not required
<alextee[m]>like if pkgconfig is installed for the root user and you install a library for your user only, pkgconfig won't see it
<grillon>dctrud: have you submitted a patch for py3status? I'm still testing i3lock screen lock in desktop.scm
<lekzikon>I was going to report bugs to Epiphany but the reporting guidelines say that Web content bugs are not Epiphany bugs but WebkitGTK bugs. Which is true in this case, because I get the same buggy behavior in the Next browser.
<grillon>ohh you're right I cannot watch video on the web lekzikon
<kirisime>What browsers are you people using to not be able to watch video?
<lekzikon>str1ngs: Another bug is that, when playing a YouTube video, if I click on another video, the page freezes and I have to finalize the process corresponding to the freezed tab because I can't close the tab manually..
<leoprikler>Basically Guix uses the default configuration of pulseaudio, which causes this weird behaviour in pulseaudio.
<lekzikon>Interacting with YouTube video controls also makes pages freeze.
<KE0VVT>When you add a server to the system, doesn't the reconfigure process interrupt other servers that might be running?
<lekzikon>str1ngs: I didn't know about nomad, sounds interesting because it uses guile.
<KE0VVT>Changing the system declaration seems like it requires restarting everything, short of rebooting.
<JalapenoX>Specifically why an information team would want to use Guix. One thing I though was that Guix could run hostile software safely with it's ad hoc containers. Is it correct to sell Guix like this?
<leoprikler>That's probably one use for it, but you should be careful.
<str1ngs>JalapenoX: I would focus on the repeatable side of guix, since that helps teams the most
<str1ngs>JalapenoX: due to it's functional aspect. given the same package definitions you can easily replicate a defined environment on multiple machines or containers or profiles . not to mention when used with guix-publish deployment is integrated.
<str1ngs>also ESC ESC ESC is derived from the ncurse days IIRC I'll have to see if that translates well to nomad. or visit it when I add ncurse suppport
<str1ngs>not all emacs concepts a easily translated or are good design choices.
<str1ngs>leoprikler: thanks for the feedback I've added this to my TODO
<leoprikler>Well, I personally hit ESC ESC ESC as the first thing when trying to abort stuff and only thing of C-g later.
<str1ngs>keyboard-escape-quit might not be completely the same as keyboard-quit. I suspect keyboard-escape-quite is deal with escaping terminals . so really it's intention is for terminal emacs only. I could be wrong though
<leoprikler>well, they are different but not in the way you think
<leoprikler>escape-quit does not quit ongoing processes, whereas C-g does
<str1ngs>leoprikler: not for sometime the UI is intentionally no frills. currently I have custom GObject classes that are being ported to gobject introspect via g-golf. that is probably a luxury feature at this stage. though once I've ported completely to g-golf things will be more stable from an API perspective.
<str1ngs>headers bars will not translate will to QT or ncurses so it's not something I want to rely on to heavily
<g_bor>But it restarts soon after the message about the finalization thread.
<g_bor>I believe something is missing. Do you have any idea?
<str1ngs>NieDzejkob: check config.log with build build -K it might give more clues as to why it can't detect it
<PotentialUser-52>so I pulled/package -u'd/reconfigured on my desktop and (amd) and it's taking way longer than in virtualbox. It seems to be building more packages than it did in the VM. is this normal/expected?
<NieDzejkob>str1ngs: Thanks! I actually thought of that, but remembered the name as configure.log, and concluded that the log file is not available. The log file made me realize that "none required" means that the feature has been detected without any additional flags...
<str1ngs>NieDzejkob: I'm reading that as XkbGetIndicatorState is not required then?
<nckx>g_bor: You ask the person who's never used the graphical installer or used/modified any default services 😛 (Why o-s-*user*-services anyway? I know that's the correct procedure, but why was it named that way? Anyway, not relevant to your Q.)
<nckx>I'm afraid I can't help you right now but a quick glance at `guix build clutter-gst`/lib/pkgconfig/clutter-gst-3.0.pc shows many Required packages. They aren't all propagated by clutter-gst. It's worth trying to add them all as inputs if you can't find a more detailed build log. Whatever takes less time 😉
<nckx>raghav-gururajan: Maybe! No promises. Good night.
*NieDzejkob has finally submitted the patch to package xsecurelock
<jsrana>there is a hurd package available. for me `guix package -i hurd` fails on the configure step: cannot find mig. does hurd/guix require a call to `guix system reconfigure` with a special config file? or is hurd/guix not really implemented yet? (thanks in advance)