<oriansj>note it is possible for improperly setup linux systems to execute programs without read permissions and just dump that process memory into a file (thus defeating that missing read permission bit)
<ulfvonbelow>yes, but executing a directory doesn't create a process image at all.
<oriansj>ulfvonbelow: true but I am just talking about the files themselves
<oriansj>the execute bit in directories is actually the search bit and means that entries within the directory can be accessed
<oriansj>well assuming one doesn't need to know the contents of the directory (ls -hal /$path would break) it would continue to function as long as guix doesn't need to know the contents of the directories for previously built packages
<RavenJoad>So I am having the same issue that yewscion had on 2023-07-22, where guix home was propagating a guix install (which does not respect things). They removed guile-imanifest, but I do not have that. Can I see which package is requesting that the guix binary be installed into that profile?
<lilyp>RavenJoad: you can use guix graph to visualize it, but I'm not sure whether manifests support --path
<RavenJoad>lilyp: That is quite a large graph. I am using "~/.config/.../bin/guix graph guix | xdot -", like the manual suggests. Is there a better way? Just bisect the package list to narrow it down?
<lilyp>use each root in the manifest to construct the path maybe?
<iyzsong>i have the shutdown issue too, thinking it as linux kernel's fault, maybe i'm wrong😂
<mobius_>so i got protonvpn up and running. protonvpn-cli is a guix package, but there's no instructions on how to configure, even on website. i figured it out though if anyone's interested. pretty simple really
<pjals_fox>ooh, let me guess, you made a protonvpn-service-type?
<mobius_>nope, you just have to initialize from the binary executable directory with: protonvpn init
<mobius_>there might be a simplier way, but i'm brand new to guix
<mobius_>like maybe putting the binary in the path or something
<mobius_>then once you initialize, just follow the instructions for protocol (tcp/udp) and login credentials, which can be found by logging into your proton account.
<xelxebar>mobius_: Oh cool! Good work. Sounds like a perfect fit for a service. Have you written package definitions before? Service definitions are pretty darn easy, too.
<xelxebar>If you can figure out what the init command does (like just setting up a config file?) and map that to some protonvpn-configuration structure, then I'm sure people would be willing to help you with converting it into a service.
<pjals_fox>if your gonna make a service, make sure to make it a home service, not a system service :P
<mobius_>over my beginner's head people lol. let me write some of what you said down though so i can figure it out more
<mobius_>as far as converting it into a service, what do you mean?
<abcdw> I'm proxying ci.guix.gnu.org via ci.guix.trop.in and ci.guix.ygg.trop.in, so people in countries where it's blocked can access substitute server, but ci.guix.gnu.org is blocking my vps. Can we workaround it somehow?
<cbaines>abcdw, I doubt ci.guix.gnu.org is blocking anything, but I know that the MDC (which provide hosting) do block things
<cbaines>from my experiences talking to issues.guix.gnu.org (which is on the same machine), the blocking is dependent on opening new connections, so maybe you could configure your reverse proxy to keep connections open/reuse them?
<cbaines>anyway, bordeaux.guix.gnu.org generally has more substitutes, as well as a faster and unrestricted internet connection
<abcdw>cbaines, ok, I'll try to add keepalive to nginx config, thank you for the tip.
<efraim>I actually moved my substitutes list around to check bordeaux before ci
<minima>hi, i'm looking at ublock-origin-chromium, the package description mentions Icecat, as well as chromium of course; am i understanding correctly, does that imply i should be able to use the plugin with Icecat too?
<minima>i tried to manually feed the plugin's js blob to Icecat but it didn't seem to like it, it muttered something about invalid format or something
<nckx>uBlock Origin supports both, and there's a non-public ublock-origin package, but ublock-origin-chromium is the Chromium plug-in.
<nckx>I don't know why the main package isn't public.
<nckx>You could build it with ‘guix build -e '(@@ (gnu packages browser-extensions) ublock-origin)'’ and see if you manually feed the -firefox output.
<minima>hey nckx, thanks! sorry, what do you mean by non public exactly? oh and brilliant re the 'guix build' command, i'll try that straightaway
<minima>oh, non public as in not exposed by the guile code?
<RavenJoad> I ran into this yesterday where the guix-data-service package is using guix as a propagated-input, which was made as a change during an update. Should a package ever have guix as a propagated-input?
<RavenJoad>jpoiret: guix-lint does not catch that either. Perhaps a pass that checks propagated-inputs and puts out a warning message asking the packager to think about what they are doing? Since there is no way to always say that guix should not be propagated.
<podiki[m]>is someone able to cancel the current mesa-updates build? looks like it wants to build more than expected so I might as well throw in some more patches and mesa just updated again today
<mfg[m]>has someone tried to sue xournalpp with guix? It doesn't start for me and i believe this is due to missing icons in the adwaita theme. Would be nice if this is actually the case or something else
<nckx>podiki[m]: Eh, I tried, but now builds are going from the Failed state back into Pending, one by one. Weird.
<podiki[m]>what do you think then? patches waiting would be to ungraft mesa (change in master), again update mesa, and I see libdrm, libva and maybe others waiting (though those are bigger than mesa's graft)
<cbaines>it's really up to you. bordeaux has build pretty much everything for aarch64-linux and armhf-linux, but the builds for other systems are going to take a long time to happen regardless
<podiki[m]>qa page isn't loading for me currently, but that was for the most recent version of mesa-updates right? (there was a graft on master so I updated the branch)
<podiki[m]>anyway, if it is all the same I guess I might as well do the merge (I was just going to cherry pick the 2 commits from mesa-updates) and then start on the next version with these other patches later
<podiki[m]>cbaines: thanks for the guidance, I'll figure it out later today then
<Guest28>Does AMD iGPU require additional drivers? I booted a guix system image which outputs errors from amdgpu and the desktop isn't in high resolution. I thought stuff like this is automatically loaded from the kernel and amd has open drivers
<apteryx>Guest28: amdgpu requires blobs... it's sad
<Guest28>Ah, so it is like nouevau? Requires proprietary code to load the actual driver?
<apteryx>you've fallen for the 'open drivers' catch (I did once too). Free drivers tightly couple to nonfree proprietary firmware blobs that the kernel needs to load.
<apteryx>nouveau doesn't require proprietary code for old cards, I guess it does for newer ones.
<apteryx>I'm running a very old 'GTS 8800' on linux-libre
<Guest28>Okay, good to know. Does that mean with linux libre I can't use AMD AND Nvidia gpus?
<apteryx>the best resources to know is mesa3d.org or h-node.org, IIRC
<Guest28>This community (whole GNU) is in my opinion not small and has so many talented people. I never understood why we can't develop our own hardware. Sure, those companies have big fabs, but you need to start somewhere
<Guest28>My naive point of view leads to a strong motivation
<glin76[m]>Hello, does someone know how to toggle on NumLock at the login page of Guix ? I use numlockx to toggle it when launching i3, but I don't know how to do for the login screen
<RavenJoad>glin76[m]: There is usually a BIOS/UEFI option for that, in my experience.
<RavenJoad>Guest28: As someone who has some knowledge in this area, the problem I see is the lack of a unified goal. HW design is slow, hard to get right, and rife with anachronisms. All of that combined with no single vision for a product complicates things.
<Guest28>RavenJoad: That thing with the unified goal was my theory as well. I wonder how this puzzle can be solved. Especially with so many people with different opinions on what is right or wrong, like you mentioned. (isn't the same with software as well? I mean how did Guix or Emacs manage it?)
<bjc>the startup costs for software are effectively 0
<Guest28>Yes, this is an additional problem. Finance. I read that Google fabs CPUs for free. You need to have a good idea and if they like it, they apparently produce it. I mean. better than nothing I guess.
<apteryx>Guest28: my opinion is that free hardware will really take off when we aren't bound to fabs anymore (e.g. a chip or circuit can be cheaply produced at home via 3D printing, say)
<bjc>we are a long, long, long way away from 3d printing something like a cpu
<RavenJoad>Guest28: I would say Emacs and Guix managed to handle everyone's wildly different opinions by using an easily understood language, that allows for easy rewriting and extension, whose extensions become the same class citizens as the original, along with providing well-thought-out APIs for common usage.
<cnx>is guixsd getting zenbleed workaround patches anytime soon? linux-libre has released them for 6.4 and all LTSes
<viaken>Is there a Guix equivalent to arch-chroot?
<viaken>apteryx: If we don't demand current-gen performance, hobby/small-scale fabs are workable.
<glin76[m]>I am sorry : is my question is inapropriate in this room ?
<viaken>glin76[m]: Seems fine, but I'm not sure how to help you. Which login manager are you using?
<jpoiret>however, arch-chroot is pretty easy to replicate
<grim`>Good evening. I'm planing to submit some packages I've been used on my personal machine. If among those packages I want to commit 2 sddm themes should they be in separated commits or could they be in the same one?
<jpoiret>you only have to bind mount /dev /sys and /proc iirc
<jpoiret>grim`: they should be in separate commits
<nckx>grim`: Use something like (let ((version "0.0.0") (revision "0") (commit "abcd…")) (package … (version (git-version version revision commit)) …). If you grep for ‘(revision "0")’ in the repository you'll find examples.