status-im/status-react
2
0
Fork 0
mirror of https://github.com/status-im/status-react.git synced 2025-01-09 10:42:53 +00:00
Code Issues Projects Releases Wiki Activity
status-react/nix/KNOWN_ISSUES.md
Jakub Sokołowski 6f8dc27282
nix: fix applying nix.conf by using correct env var 
According to this line from the docs:

>The system-wide configuration file sysconfdir/nix/nix.conf (i.e. /etc/nix/nix.conf),
>or $NIX_CONF_DIR/nix.conf if NIX_CONF_DIR is set. Values loaded in this file are not
>forwarded to the Nix daemon. The client assumes that the daemon has already loaded them.

https://nixos.org/manual/nix/stable/command-ref/conf-file.html#description

Our usage of `NIX_CONF_DIR` has been wrong for a while now.
The correct way of applying this config is using `NIX_USER_CONF_FILES`.

In addition the `extra-substituters` no longer exists in the docs.
Use of `trusted-substituters` is necessary according to:

>At least one of the following conditions must be met for Nix to use a substituter:
>
>- the substituter is in the trusted-substituters list
>- the user calling Nix is in the trusted-users list

https://nixos.org/manual/nix/stable/command-ref/conf-file.html#conf-substituters

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2023-06-20 13:55:07 +02:00

3.1 KiB
Raw Blame History

Known Issues

Ignoring Untrusted Substituter on NixOS

When using our setup on NixOS users can see this warning:

warning: ignoring untrusted substituter 'https://nix-cache.status.im/', you are not a trusted user.

Which is due to incorrect trusted-users setting:

> grep trusted-users /etc/nix/nix.conf
trusted-users = root

Which can be extended using the nix.settings.trusted-users option.

Too many open files

Single-User Installation

Nix can open a lot of files when fetching things for /nix/store which can cause

Too many open files"

The temporary way to fix this is set a new limit for current session using ulimit:

ulimit -n 131072

To increase limit permanently system-wide edit /etc/sysctl.conf:

fs.file-max = 131072

And use sudo sysctl --system to load these new settings.

Multi-User Installation

This has been fixed in Nix 2.9.0:

Cache Downloads Timing Out

If copying from Nix Cache times out you can adjust the timeout by changing nix/nix.conf:

stalled-download-timeout = 9001

NDK Bundle Download Failures

There is a known issue(#11111) where the fetching of Android NDK Bundle from our own cache host fails in various different ways:

unable to download 'https://nix-cache.status.im/nar/64g5wharwjj040rg1v8jnc5qhv1hkgds.nar':
  HTTP error 200 (curl error: Stream error in the HTTP/2 framing layer)

unable to download 'https://nix-cache.status.im/nar/64g5wharwjj040rg1v8jnc5qhv1hkgds.nar':
  HTTP error 200 (curl error: Transferred a partial file)

NAR for '/nix/store/psx79cnz1khfjlzkw3j8x9sb1jhk1v1a-ndk-bundle-21.0.6113669' fetched from 'https://nix-cache.status.im' is incomplete

Currently the simplest temporary solution is to edit nix/nix.conf and comment out the extra-substituters line. This should allow Nix to download the NDK Bundle directly from Google servers rather than from our own cache.

extra-sandbox-paths Is a Restricted Setting

When building Android on NixOS you might encounter the following error:

ignoring the user-specified setting 'extra-sandbox-paths', because it is a restricted setting and you are not a trusted user

You can mitigate this by setting the nix.trustedUsers property.

NixOS Prioritizes System Config

Currently on NixOS NIX_CONF_DIR is being ignored in favor of the default /etc/nix/nix.conf. This will be possible to fix once Nix 2.4 comes out with support for NIX_USER_CONF_FILES.

For more details see https://github.com/NixOS/nix/issues/3723.

Extra Sandbox Files Not Available

It's possible that on a multi-user installation files provided to the build sandbox using the extra-sandbox-paths option will ne be available, unless the current user is added to trusted-users in nix.conf file.

Issues: