zimbatm
commented
1 day ago Would it be helpful to have access to a FreeBSD machine? We could consider making one available.
Closed artemist closed 1 day ago
zimbatm
commented
1 day ago Would it be helpful to have access to a FreeBSD machine? We could consider making one available.
artemist
commented
1 day ago Unfortunately we haven't fully upstreamed FreeBSD sandboxing to cppnix or lix yet so it's a bit premature for a nix-community FreeBSD builder. I have a fairly powerful x86_64-freebsd machine at home and would be willing to help maintain a community FreeBSD machine once lix is in a good state.
zimbatm
commented
1 day ago Sounds great.
I don't know if sandboxing is a blocker. Even with the sandboxing, local exploits are common.
Our primary defence is that our community members are decent people (luckily :sweat_smile:). And the build boxes don't hold any secrets.
artemist
commented
1 day ago Yeah, that's fair. The sandboxing is less for security here and more for purer builds, since we don't want to mysteriously use the host libc or something
I am working on better support for BSDs in nixpkgs. While this doesn't intentionally affect darwin, sometimes I cause mass rebuilds and would like to be able to test on an
aarch64-darwinmachine. I already havex86_64-linuxmachines so I do not need access to the linux builder.