Commit graph

1327 commits

Author SHA1 Message Date
Florian Klink
b0edb870ee chore(3p/agenix): bump
This was still using substituteAll, which got removed in the following
nixpkgs bump.

Change-Id: Ia07e2fce8a405973234f2c0d247579f68679446c
Reviewed-on: https://cl.snix.dev/c/snix/+/30629
Autosubmit: Florian Klink <flokli@flokli.de>
Tested-by: besadii
Reviewed-by: Ryan Lahfa <ryan@lahfa.xyz>
2025-07-31 15:44:56 +00:00
Raito Bezarius
abb2daa4ae feat(modules/monorepo-gerrit): 3.11.0 -> 3.12.0
Changelog: https://www.gerritcodereview.com/3.12.html

We are skipping over the 3.11.1, 3.11.2, 3.11.3 minor releases which
remains available.

This bump was already tested on another Gerrit instance.

No manual intervention is required.

Change-Id: Ia3ce1f1cda36abe6da4edd4210260f664f7b3672
Signed-off-by: Raito Bezarius <raito@lix.systems>
Reviewed-on: https://cl.snix.dev/c/snix/+/30576
Autosubmit: Ryan Lahfa <ryan@lahfa.xyz>
Tested-by: besadii
Reviewed-by: Florian Klink <flokli@flokli.de>
2025-06-22 17:55:52 +00:00
Florian Klink
5b41ae66eb chore(3p/chicago95): remove
This caused spurious fetching errors, and isn't used anywhere. Drop.

Change-Id: I338217b96d95e19084e7cba38270dd35f19c2b29
Reviewed-on: https://cl.snix.dev/c/snix/+/30543
Autosubmit: Florian Klink <flokli@flokli.de>
Tested-by: besadii
Reviewed-by: Ryan Lahfa <ryan@lahfa.xyz>
2025-05-28 15:21:06 +00:00
Florian Klink
8bb8400304 chore(3p/nixpkgs): bump channels (2025-05-13)
Change-Id: I4a212e710957621c09e7aa7ee1e40bea7a7bf633
Reviewed-on: https://cl.snix.dev/c/snix/+/30536
Autosubmit: Florian Klink <flokli@flokli.de>
Tested-by: besadii
Reviewed-by: Ryan Lahfa <ryan@lahfa.xyz>
2025-05-16 21:29:29 +00:00
Florian Klink
f20ab5c9af chore(3p): cleanup unused napalm dep
This isn't referenced anywhere.

Change-Id: Iffb5631073bd181dc1adc1e732ba86f2efea5b9d
Reviewed-on: https://cl.snix.dev/c/snix/+/30535
Autosubmit: Florian Klink <flokli@flokli.de>
Tested-by: besadii
Reviewed-by: Ryan Lahfa <ryan@lahfa.xyz>
2025-05-16 21:29:29 +00:00
Florian Klink
8035195939 chore(3p/nix-gerrit): bump
Change-Id: I839d006e85726bffe62d59fdef1765cadffe63ce
Reviewed-on: https://cl.snix.dev/c/snix/+/30524
Autosubmit: Florian Klink <flokli@flokli.de>
Reviewed-by: Ryan Lahfa <ryan@lahfa.xyz>
Tested-by: besadii
2025-05-16 09:15:26 +00:00
Florian Klink
c9a77e5b58 feat(ops/meta01): deploy irccat
This deploys irccat, connected to the #snix channel.

We drop the custom irccat third_party, it's 2 years older than the
latest version in nixpkgs.

The irccat.nix module file contains some of the code present in the TVL
version, it however moves the secrets merging to ExecStartPre=,
given https://github.com/systemd/systemd/issues/19604#issuecomment-989279884
has been fixed for almost a year.

Contrary to the setup there, we don't let irccat connect to ZNC, but
hackint directly (so make use of the secrets logic).

We also drop the network-online.target, and make this overall more
tolerant by using Restart=on-failure.

Change-Id: Ieac3b744b7ea58b8dddf1cdc37a8bc057b205b1b
Reviewed-on: https://cl.snix.dev/c/snix/+/30504
Autosubmit: Florian Klink <flokli@flokli.de>
Reviewed-by: Ryan Lahfa <ryan@lahfa.xyz>
Tested-by: besadii
2025-05-15 14:31:42 +00:00
Florian Klink
853754d25f feat(ops/modules/www/git.snix.dev): block AI scrapers
This blocks a bunch of AI scrapers from Forgejo, which seems to be
particularly attractive.

Especially meta-externalagent has been scraping very excessively.

The list comes from https://github.com/ai-robots-txt/ai.robots.txt,
let's see how often this needs updating.

Change-Id: I55ae7c42c6a3eeff6f0457411a8b05d55cb24f65
Reviewed-on: https://cl.snix.dev/c/snix/+/30370
Autosubmit: Florian Klink <flokli@flokli.de>
Tested-by: besadii
Reviewed-by: edef <edef@edef.eu>
2025-05-01 14:57:44 +00:00
Florian Klink
dcadf3cb5b fix(3p/overlays): downgrade hugo
Without this, the website just shows a white page with a "This line is
from …" message. Downgrading hugo to 0.145.0 fixes it.

Change-Id: I5a4e2b5d00d3772580daf8d863375471979a5825
Reviewed-on: https://cl.snix.dev/c/snix/+/30368
Autosubmit: Florian Klink <flokli@flokli.de>
Reviewed-by: Bence Nemes <nemes.bence1@gmail.com>
Tested-by: besadii
2025-05-01 07:36:08 +00:00
Florian Klink
11b1f8b304 chore(ops/modules): drop unused NixOS modules
Change-Id: I043fea952df5498cd3e831b479220b1025a295fa
Reviewed-on: https://cl.snix.dev/c/snix/+/30338
Tested-by: besadii
Autosubmit: Florian Klink <flokli@flokli.de>
Reviewed-by: Ilan Joselevich <personal@ilanjoselevich.com>
2025-04-29 10:05:23 +00:00
Florian Klink
f630ce9b93 chore(3p/nixpkgs): bump channels (2025-04-21)
* Update Snix' verify-lang-tests to 2.28, as 2.25 has been removed
   from nixpkgs
 * Update snix/cli integration tests, iso_gnome is called iso_graphical
   (again?)
 * Address clippy lints
 * Regenerate go bindings
 * Remove grpc-health-check from our overlay, it's long been merged

Change-Id: I9d33cabdd3e7065a1f28bcccf4f979f08a456f88
Reviewed-on: https://cl.snix.dev/c/snix/+/30333
Reviewed-by: Ilan Joselevich <personal@ilanjoselevich.com>
Autosubmit: Florian Klink <flokli@flokli.de>
Tested-by: besadii
2025-04-24 08:42:42 +00:00
Paul Meyer
bfd948c6e2 fix(treewide): remove trailing whitespace
Change-Id: I3116d3f397ba309be2418e188327143c7187b789
Reviewed-on: https://cl.snix.dev/c/snix/+/30235
Reviewed-by: Florian Klink <flokli@flokli.de>
Tested-by: besadii
Reviewed-by: Paul Meyer <katexochen0@gmail.com>
Autosubmit: Paul Meyer <katexochen0@gmail.com>
2025-03-22 17:29:59 +00:00
Florian Klink
f5c23c5935 chore(3p/python/broadlink): drop
We probably don't need to control Broadlink IR/RF controllers to develop
Snix.

Change-Id: I97a5c8b22830dcb8fe649727f16a461dd6ebb92c
Reviewed-on: https://cl.snix.dev/c/snix/+/30246
Tested-by: besadii
Reviewed-by: Ilan Joselevich <personal@ilanjoselevich.com>
2025-03-22 17:09:30 +00:00
adisbladis
0959faf056 chore: Remove buildGo and supporting infrastructure
It's no longer in use.

Change-Id: Ie84ab1d9c75be79a25ee976575660ee1484e17bb
Reviewed-on: https://cl.snix.dev/c/snix/+/30187
Tested-by: besadii
Reviewed-by: Florian Klink <flokli@flokli.de>
2025-03-21 09:58:25 +00:00
adisbladis
b69cd940cf feat(ops/secrets): Use korora for type checking secrets
Type checking of secrets was removed in cff6575948 to get rid of yants.
This adds back type checking using Korora.

Fixes https://git.snix.dev/snix/snix/issues/71
Change-Id: I27cd47b7e1810be5c4cd5d86366e860ca217f9c4
Reviewed-on: https://cl.snix.dev/c/snix/+/30118
Tested-by: besadii
Reviewed-by: Ryan Lahfa <masterancpp@gmail.com>
Reviewed-by: Florian Klink <flokli@flokli.de>
2025-03-20 21:25:05 +00:00
Florian Klink
37513fb3f2 chore(third_party): remove some unused code
Change-Id: I5d083926c6af328b65d82e1cadfebe992bece867
Reviewed-on: https://cl.snix.dev/c/snix/+/30167
Tested-by: besadii
Autosubmit: Florian Klink <flokli@flokli.de>
Reviewed-by: Ryan Lahfa <masterancpp@gmail.com>
2025-03-20 12:21:44 +00:00
adisbladis
726ce7ca9b chore(web): Build website using importNpmLock from nixpkgs
This allows us to remove npmlock2nix as a dependency.

Change-Id: Ic08a2ba082618292c6ea34141bcaeb3b04a306a9
Reviewed-on: https://cl.snix.dev/c/snix/+/30117
Tested-by: besadii
Reviewed-by: Florian Klink <flokli@flokli.de>
2025-03-19 12:16:24 +00:00
Ilan Joselevich
dd1ba855e2 chore(third_party/sources): Update
- Apply new clippy lints

Change-Id: I4beb7c0b4d92a2cdcfcb6fa89d24cade2379a5b7
Reviewed-on: https://cl.snix.dev/c/snix/+/30121
Tested-by: besadii
Reviewed-by: Florian Klink <flokli@flokli.de>
Autosubmit: Ilan Joselevich <personal@ilanjoselevich.com>
2025-03-18 23:23:16 +00:00
Florian Klink
dcbe231825 deps(third_party/npmlock2nix): add
This adds npmlock2nix. Cannot use upstream npmlock2nix due to
https://github.com/nix-community/npmlock2nix/issues/194.

Change-Id: I00a54dceb854b51ede3c2cb42bbbd9360cc5d76f
2025-03-17 17:15:08 +00:00
Florian Klink
001556aa30 feat(tools/cheddar): drop
We don't use this anymore.

Change-Id: Ief97047b28659a8f312217511c240d9d6b8744de
2025-03-17 17:15:08 +00:00
Florian Klink
a52ea3675c feat(*): initialize new Snix infrastructure
Co-Authored-By: edef <edef@edef.eu>
Co-Authored-by: Ryan Lahfa <raito@lix.systems>
Change-Id: Ica1cda177a236814de900f50a8a61d288f58f519
2025-03-17 17:15:07 +00:00
Florian Klink
df4500ea2b chore(*): drop everything that is not required for Tvix
Co-Authored-By: edef <edef@edef.eu>
Co-Authored-By: Ryan Lahfa <raito@lix.systems>
Change-Id: I9817214c3122e49d694c5e41818622a08d9dfe45
2025-03-17 16:18:26 +00:00
sterni
e812e0514d chore(3p/lisp/cl-date-time-parser): use nixpkgs/quicklisp src
Change-Id: Ic242b5e9d0dfac12f5f68243380d1dbc4c9f18df
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13231
Autosubmit: sterni <sternenseemann@systemli.org>
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2025-03-15 15:47:01 +00:00
sterni
f0d5201018 chore(3p/lisp/trivial-ldap): use src from nixpks tracked quicklisp
Change-Id: I364f9d1f5ffb6647bc8bf2a98c18667654b55cef
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13232
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: sterni <sternenseemann@systemli.org>
2025-03-15 15:47:00 +00:00
sterni
0bcd5a82d4 chore(3p/sources/cl-yacc): bump source
No substantial changes, just some documentation updates.

Change-Id: I96e27d8c59e4cfb9a34750dbd10f4d3e51e36619
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13233
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
Autosubmit: sterni <sternenseemann@systemli.org>
2025-03-15 15:46:30 +00:00
sterni
fa336d98b0 chore(3p/lisp/easy-routes): get src from nixpkgs tracked quicklisp
Change-Id: I87cebcab7b98284ce1481fd4fd04f643d93ea87d
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13227
Tested-by: BuildkiteCI
Autosubmit: sterni <sternenseemann@systemli.org>
Reviewed-by: tazjin <tazjin@tvl.su>
2025-03-15 15:46:30 +00:00
sterni
6374725b17 chore(3p/lisp/cl-unicode): get src from nixpkgs tracked quicklisp
Change-Id: I3ba44109ed8988142ec7a5d188686c3654ceb34c
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13234
Autosubmit: sterni <sternenseemann@systemli.org>
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2025-03-15 15:46:29 +00:00
Vincent Ambo
067458873d fix(3p/overlays): revive home-manager 2.3 compat fix
A similar fix was indeed merged upstream a year ago, but later partially reverted.

Change-Id: I9c0ed259507511ca4e3180f752ba527ea9bca4f8
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13241
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
2025-03-11 08:53:59 +00:00
sterni
25d28cb1d5 chore(3p/sources): bump channels & overlays (2025-03-07)
* Bump Emacs 29 to 30 to address CVEs in prior versions:
  https://github.com/NixOS/nixpkgs/pull/386174

* //3p/overlays/tvl:

  - Drop upstreamed fix for buildkite-agent
  - Drop tpm2-pkcs11 patch for an issue that has been
    addressed in 1.9.1.
  - Drop Nix 2.3 patch for home-manager. An alternative
    to it has been upstreamed in
    <https://github.com/nix-community/home-manager/pull/5067>.

* //users/flokli/presentations: disable derivations that have
  been failing since the latest chromium upgrade (presumably).
  reveal-md … --print fails to export a PDF. Enabling debug
  output reveals that a timeout in pupeteer is hit.

Change-Id: Id83eb5e5fe2db77e648817c5c737b2f95b43deeb
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13217
Autosubmit: sterni <sternenseemann@systemli.org>
Reviewed-by: sterni <sternenseemann@systemli.org>
Reviewed-by: flokli <flokli@flokli.de>
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2025-03-11 07:28:19 +00:00
sterni
93282ac6f0 chore(3p/lisp/lass): get src from nixpkgs tracked quicklisp
Upstream has removed its fancy support for units and calculations. It
appears panettone does not rely on this at all.

Change-Id: I9ee3637ba44d1d3c225e6bbfc02b820f3a7d028c
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13230
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
Autosubmit: sterni <sternenseemann@systemli.org>
2025-03-11 07:20:47 +00:00
sterni
379e50ba53 chore(3p/lisp/qbase64): get src from nixpkgs tracked quicklisp
Change-Id: I1f310982087daed0ce90f7aa99e8480116ec4fd6
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13229
Autosubmit: sterni <sternenseemann@systemli.org>
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2025-03-11 07:20:47 +00:00
sterni
8e93f2ac6d chore(3p/lisp/routes): get src from nixpkgs tracked quicklisp
Change-Id: I1d8030fb0446e7aee952aa31c8ca9ed2b962b439
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13228
Tested-by: BuildkiteCI
Autosubmit: sterni <sternenseemann@systemli.org>
Reviewed-by: tazjin <tazjin@tvl.su>
2025-03-11 07:20:47 +00:00
Vincent Ambo
b32a95c206 fix(3p/overlays): correctly assert tdlib<>telega.el matches
Extracts the required version out of the telega.el Dockerfile (this seems to be
the authoritative source), and matches that against what nixpkgs has.

In a future commit I'll improve this to reduce the likelihood of blocking a
channel bump (by also pinning tdlib, and issuing warnings when nixpkgs has a
newer telega/tdlib).

Change-Id: I1129c1f6b38aa58eb8661f2ad9bc6fa19382d81c
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13220
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2025-03-08 10:47:44 +00:00
Profpatsch
f5c7f9e666 chore(third_party/overlays/haskell): use newest ihp-hsx
Change-Id: If9b9b939fb2e32dbcd1dbc3a0737a1877a026ab1
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13214
Tested-by: BuildkiteCI
Reviewed-by: Profpatsch <mail@profpatsch.de>
2025-03-07 15:22:58 +00:00
Vincent Ambo
d76d699a53 fix(3p/overlays): work around buildkite agent issues with nixpkgs
Buildkite introduced a weird check that determines whether the bootstrap agent
path (?) matches the binary that the agent was started from:

https://github.com/buildkite/agent/pull/3123

They did this to work around some internal development flow problems. However,
this check is toggled by whether or not the `buildNumber` compile-time variable
is set to the special `x` sentinel value.

In their publicly released binaries (which we do not use, of course), this is
set to some other value. In Nix builds they are at the default sentinel value,
causing crashes at startup because of the wrapper script not matching the binary
path:

```
buildkite-agent: fatal: check binary paths: mismatched buildkite-agent paths: host="/nix/store/rmp9g00bppi8yimr0ngnx6490w196in8-buildkite-agent-3.89.0/bin/.buildkite-agent-wrapped" bootstrap="/nix/store/rmp9g00bppi8yimr0ngnx6490w196in8-buildkite-agent-3.89.0/bin/buildkite-agent"
```

To work around this we just set the build "number" to `nix`.

Change-Id: I794861aeaf63764689148cae841ce56f88752186
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13205
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: sterni <sternenseemann@systemli.org>
Tested-by: BuildkiteCI
2025-03-02 21:18:40 +00:00
sterni
3f94a09648 chore(ops/modules): use smtprelay from nixpkgs
This upgrades smtprelay from 1.7.0 -> 1.11.2:

- https://github.com/decke/smtprelay/releases/tag/v1.8.0
- https://github.com/decke/smtprelay/releases/tag/v1.9.0
- https://github.com/decke/smtprelay/releases/tag/v1.10.0
- https://github.com/decke/smtprelay/releases/tag/v1.11.1
- https://github.com/decke/smtprelay/releases/tag/v1.11.2

Change-Id: Ia0641f67fcc4672302a51b3ad422e447ea32b203
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13115
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2025-03-02 21:16:00 +00:00
Vincent Ambo
f3ca96eccc feat(3p/overlays): build Nix 2.3 from TVL maintenance branch
Our maintenance branch includes additional concurrency fixes which are not in
the upstream 2.3 branch.

These issues are fixed in C++ Nix HEAD, but in a more invasive way (by removing
the second set of locks completely).

This also retains additional debug information in the built binaries to make
future issues easier to debug.

Change-Id: I4e7a8baabd059c96404822d9634df52c403a869f
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13135
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
2025-03-02 16:28:03 +00:00
sterni
13723eb45f chore(3p/lisp/ironclad): reorder srcs to match order in asd file
Change-Id: Icd12b80a442d4067217670e31ca57087e4205d02
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13183
Autosubmit: sterni <sternenseemann@systemli.org>
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2025-03-02 13:50:48 +00:00
sterni
f3a844f1be chore(3p/nixpkgs): take mypaint & gdmap from unstable again
Change-Id: I9b07185ca885a82dfb0582b228cc3977142e8dd7
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13181
Reviewed-by: flokli <flokli@flokli.de>
Autosubmit: sterni <sternenseemann@systemli.org>
Tested-by: BuildkiteCI
2025-03-02 13:02:05 +00:00
sterni
3bf6612a70 chore(3p/sources): Bump channels & overlays (2025-03-02)
* //tvix/*-go: regenerate protobuf files

* //tvix/boot:

  - Explicitly set compression method of mkBinaryCache which has
    made this configurable and (at the same time) changed the default.

  - Adjust to change of extension of the nar files from .nar.xz to
    plain .xz.

Change-Id: Ie79ea8e0ac8fe04ae01f5558bffca93e9314f56d
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13174
Autosubmit: sterni <sternenseemann@systemli.org>
Tested-by: BuildkiteCI
Reviewed-by: flokli <flokli@flokli.de>
2025-03-02 13:01:34 +00:00
sterni
d42784eb48 chore(3p/lisp): port to new new lisp-modules set
Build //3p/lisp from pkgs proper, i.e. nixpkgs' nixos-unstable channel
instead of nixos-23.11 (yikes).

Basically, multiple package sets are attached to the different lisp
implementations now instead of having a “generic” lispPackages
set (which defaults to sbcl). We can just use that instead even though
it looks a bit weird having `srcOnly sbcl.pkgs.foo` everywhere when the
packages is not necessarily related to SBCL.

We could in theory create a source only package set by abusing how the
infrastructure works internally, but it's probably somewhat brittle:

  callPackage (pkgs.path + "/pkgs/development/lisp-modules/imported.nix") {
     build-asdf-system = { src, ... }: src;
  }

Since we do a pretty hefty jump in package versions, many packages have
to be adapted to internal changes and restructuring:

- bordeaux-threads
- cffi
- cl-colors2 (which has been deprecated, but is still required by other
  packages)
- cl-smtp
- cl-plus-ssl
- cl-prevalence
- hunchentoot (compiling the asd file no longer seemed to work)
- ironclad (fixes for SBCL compiler warnings caused a CCL compiler
  warning)
- nibbles (revert the only commit to sbcl-opt/x86-vm.lisp that's new
  compared to canon since it broke compilation for unknown reasons)

The following new packages had to be added as existing packages added
new dependencies:

- frugal-uuid, frugal-uuid/non-frugal
- trivial-clock

Change-Id: I8b94894df0357907cf2b27cf1e34a7e804b68e02
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13134
Autosubmit: sterni <sternenseemann@systemli.org>
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2025-02-27 14:51:41 +00:00
Vincent Ambo
deae47c7cb fix(3p/overlays): fix home-manager compatibility with Nix 2.3
Change-Id: I769204dc480531d3d40b3907c583a1114dde0a20
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13169
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
2025-02-23 10:58:10 +00:00
Vincent Ambo
6046ff9f25 chore(3p/sources): bump channels & overlays (2025-02-09)
Included changes:

* targeted primary NixOS channel back at `nixos-unstable`

* //3p/chicago95: disable new broken symlink check

* //tvix: omit unnecessary lifetime clippy recommends

* //users/sterni/blipqn: wait a bit for data to arrive in test so it
  succeeds under load.

* //fun/paroxysm: force pkg-config flag of pq-sys by adding a bogus
  dependency on it. Otherwise, pq-sys will try to use pg_config
  which does not work correctly in pkgs.libpq at the moment.

* //users/flokli/keyboards/dilemma: disable temporarily

Change-Id: I6d53bd7bca6886f3457e1f41505e97314f4cd191
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13119
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
Reviewed-by: flokli <flokli@flokli.de>
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: aspen <root@gws.fyi>
Reviewed-by: sterni <sternenseemann@systemli.org>
2025-02-18 15:07:10 +00:00
Vincent Ambo
5f17df8548 chore(3p/sources): bump channels & overlays (2025-02-02)
Included changes/fixes:

* bumped all `wasm-bindgen` usages again
* regenerated protobuf files
* keycloak terraform provider has been migrated to new name
  This also included a state migration in the bucket, which I've already
  performed.
* tvix/boot: disable tests that are broken in CI
* users/aspen/yeren: avoid upgrading kernel to 6.12
  digimend depends on a fix: https://github.com/NixOS/nixpkgs/pull/378830/

Change-Id: I657dcf5c4d0d08f231bfe30e37c8062bfcfaaa32
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13098
Reviewed-by: aspen <root@gws.fyi>
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
Autosubmit: tazjin <tazjin@tvl.su>
2025-02-09 09:00:22 +00:00
sterni
1a0d20b417 feat(3p/bqn-libs): init
Change-Id: Ibbc152e782027de6eda9fba5c628f3d4fc227370
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13019
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: sterni <sternenseemann@systemli.org>
2025-02-08 21:18:59 +00:00
Florian Klink
9e89d2d88e fix(third_party/smtprelay): stop using URL literals
These have been deprecated for a while.

Change-Id: Iafeac725c84d6c5cae42dd7acdf01239bbcfdd96
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13114
Tested-by: BuildkiteCI
Autosubmit: flokli <flokli@flokli.de>
Reviewed-by: sterni <sternenseemann@systemli.org>
2025-02-07 19:43:04 +00:00
Vincent Ambo
c49297d9ad chore(3p/sources): bump channels & overlays (2025-01-12)
This (temporarily) bumps the nixpkgs channel to nixos-unstable-small, because it
has an update I really want, and also to stress-test the new builders.

Included fixes:

* disabled tests in niri to avoid a flaky test; this is fixed upstream already,
  but the change is still percolating through
* regenerated Go protobufs

Change-Id: Ia09fdc38f620fe8301c2111b0e4c142f37df2dd5
Reviewed-on: https://cl.tvl.fyi/c/depot/+/12991
Reviewed-by: sterni <sternenseemann@systemli.org>
Tested-by: BuildkiteCI
Autosubmit: tazjin <tazjin@tvl.su>
2025-01-15 11:57:22 +00:00
Vincent Ambo
83b22e177b fix(3p/overlays): revert harmonia back to 1.0.2
Change-Id: I2c895f91da271b61e10ea216957832a129febd20
Reviewed-on: https://cl.tvl.fyi/c/depot/+/12985
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
Autosubmit: tazjin <tazjin@tvl.su>
2025-01-14 11:34:33 +00:00
sterni
767d6fdf78 feat(.envrc): only gcroot explicitly specified 3p/sources
Not all dependencies in //third_party/sources are equally important for
evaluation, some are never used (e.g. rustsec-advisory-db is re-fetched
using fetchFromGitHub). It seems to be a good idea to make it
configurable what to gcroot and thus unconditionally download as soon
as .envrc is loaded for the first time.

This frees //third_party/sources to be used more extensively, e.g. for
managing third_party dependencies that aren't used at eval time.

This commit is very conservative and only gcroots:

- nixpkgs, nixpgs-stable (obviously)
- rust-overlay (applied to our nixpkgs instance unconditionally)
- home-manager (used in //third_party/overlays/tvl)

I'm open to re-enabling gcrooting of the following other sources which
are only necessary to evaluate some targets:

- agenix (obvious candidate, widely used in depot)
- naersk (used for many targets)
- napalm (used in //users/Profpatsch and //users/sterni)
- impermanence (only used in //users/tazjin)

Change-Id: I39eef14d08bec6857499655e30ecf47d5fdd1260
Reviewed-on: https://cl.tvl.fyi/c/depot/+/12965
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2025-01-11 16:04:43 +00:00
Vincent Ambo
4d2d33ce2b chore(3p/sources): update niv scaffolding
The Nix code used to access niv's pins has changed and now deals with plain git
dependencies slightly differently.

This change should be no-op functionally.

Change-Id: I6834594d10078b03f23252901143c941ff523cdf
Reviewed-on: https://cl.tvl.fyi/c/depot/+/12946
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
Autosubmit: tazjin <tazjin@tvl.su>
2025-01-03 12:14:08 +00:00