Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)S

secana

@ secana @programming.dev

Posts
50
Comments
64
Joined
2 yr. ago

  • Verzögerungen beim Umbau des Stadtparks in Bochum: Stadt musste klagen

    Jump

  • 23 Millionen Euro ist auch eine Ansage. Ob das Geld nicht wonaders in Bochum besser aufgehoben wäre?

  • ForgejoKit - Swift library to interact with Forgejo

    Jump

  • foreach - Bash alias to execute command on each line

    Jump

  • Cool little trick!

  • Rust @programming.dev
    secana @programming.dev

    Kellnr 6.0.0 Released

    kellnr.io /blog/release6

  • Dev tools inside a dev container?

    Jump

  • It sounds like you don’t want a dev container but a dev shell. Have a look at Nix flakes. This allows you to ship your dev environment as code but without the hassle of running inside a container. All your local tools will work and pickup whatever you configured in the flake.

  • Release v0.60.2 · navidrome/navidrome

    Jump

  • Great, will upgrade right away. Thanks for sharing!

  • Rust @programming.dev
    secana @programming.dev

    Kellnr - Review 2025

    kellnr.io /blog/review-2025

  • Kellnr 5.9.1 Release

    Jump

  • Thanks! Happy to hear that!

  • Rust @programming.dev
    secana @programming.dev

    Kellnr 5.9.1 Release

    kellnr.io

  • Claude 4 vs. Gemini 2.5 Pro: A Developer's Deep Dive Comparison

    Jump

  • From everything I’ve tried so far, Claude is by far the best coding AI. Seems like others have the same impression.

  • Kellnr has a new UI

    Jump

  • Many small companies use it for their internal crates, as kellnr builds and host the corresponding rustdocs, too. Another prevalent use-case is as a crates.io cache to speed a build times or lower the network traffic.

  • Rust @programming.dev
    secana @programming.dev

    Kellnr has a new UI

  • Rust @programming.dev
    secana @programming.dev

    Testing Assembly Code with Rust

    kellnr.io /blog/rust-assembly

  • Evolving GitHub Issues (public preview)

    Jump

  • I've the same feeling about sub-issues. I don't want the corporate pain of Jira to be replicated in Github. If you can't structure one issue to be comprehensive, multiple sub-issues won't help you either.

  • Rust @programming.dev
    secana @programming.dev

    Kellnr 5.3.0 released

    kellnr.io

  • How to download files from icloud drive?

    Jump

  • I see. Thanks for the answers. Guess it’s time to spend some money 😔

  • Swift @programming.dev
    secana @programming.dev

    How to download files from icloud drive?

  • How to at an application to "Open at Login" on nix darwin?

    Jump
  • Nix / NixOS @programming.dev
    secana @programming.dev

    How to at an application to "Open at Login" on nix darwin?

  • Rust @programming.dev
    secana @programming.dev

    What are you working on this week? (Okt. 20, 2024)

  • Rust @programming.dev
    secana @programming.dev

    Kellnr v5.2.6 released

    kellnr.io

  • What are you working on this week? (Sep. 29, 2024)

    Jump

  • An honorable goal 😀

  • What are you working on this week? (Sep. 29, 2024)

    Jump

  • Just released Kellnr (https://kellnr.io) 5.2.6 with some bug fixes. I really wish I had more time for new features but at the moment my spare time is rare. If you want to host your own crates on your own infrastructure, check it out.

  • Rust @programming.dev
    secana @programming.dev

    What are you working on this week? (Sep. 29, 2024)

  • Rust @programming.dev
    secana @programming.dev

    What are you working on this week? (Aug. 25, 2024)

  • Nix develop shell not using custom TSL certificates

    Jump

  • Thanks, I'll try that!

  • Nix develop shell not using custom TSL certificates

    Jump

  • Sure. I import the certificates like this:

     nix
        
{ config, pkgs, inputs, ... }:
{
  security.pki.certificateFiles = [
    ./certificates/home.pem
  ];
}

    where home.pem is a default PEM formatted certificate. It works fine to import the cert system wide this way.

    If I enter the flake.nix and run a simple curl against the remote server I get the following, which is typical for a TLS certificate error.

     bash
        
curl https://webpage.home
curl: (35) OpenSSL/3.0.14: error:16000069:STORE routines::unregistered scheme

    So it seems to me that the development shell does not pick up the certificates installed on the system. I can work around that by using an impure shell, but I think that this is not how nix should be used.

  • Nix / NixOS @programming.dev
    secana @programming.dev

    Nix develop shell not using custom TSL certificates

  • What are you working on this week? (Aug. 4, 2024)

    Jump

  • I use that too. Unfortunately it does only work with Docker and on some machines I've only containerd+nerdctl available. Would be cool if test containers supports more than Docker as a runtime.

  • What are you working on this week? (Aug. 4, 2024)

    Jump

  • I reworked the whole CI/CD pipeline for https://kellnr.io. Switched from Ubuntu as the base image to the official Rust (Debian) image. Additionally, musl targets are build and released on github. This should allow kellnr to run out-of-the-box on any Linux distro.

  • Rust @programming.dev
    secana @programming.dev

    What are you working on this week? (Aug. 4, 2024)

  • Issue with transparent cache.nixos.org proxy

    Jump

  • Thanks for the response. You are right, the config was at the wrong path. Unfortunately, the config itself does not work, too. After a bit of testing around this worked for me:

     yaml
        
apiVersion: v1
kind: PersistentVolume
metadata:
  name: nix-cache-volume
spec:
  capacity:
    storage: 500Gi
  storageClassName: manual
  accessModes:
    - ReadWriteOnce
  hostPath:
    path: "/mnt/k8s/nix-cache" # Needs exists before PV is created!
  persistentVolumeReclaimPolicy: Retain
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: nix-cache-pvc
spec:
  accessModes:
    - ReadWriteOnce
  storageClassName: manual
  resources:
    requests:
      storage: 500Gi
---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: nix-cache
spec:
  replicas: 1
  selector:
    matchLabels:
      app: nix-cache
  template:
    metadata:
      labels:
        app: nix-cache
        name: nix-cache
    spec:
      volumes:
        - name: nix-cache-storage
          persistentVolumeClaim:
            claimName: nix-cache-pvc
        - name: nix-cache-config
          configMap:
            name: nix-cache-config
      containers:
        - name: nix-cache
          image: nginx:1.27.0 
          ports:
            - containerPort: 80
          volumeMounts:
            - name: nix-cache-storage
              mountPath: /data
            - name: nix-cache-config
              mountPath: /etc/nginx/nginx.conf
              subPath: nginx.conf
              readOnly: true
          resources:
            limits:
              memory: "512Mi"
              cpu: "300m"
            requests:
              memory: "256Mi"
              cpu: "200m"
---
apiVersion: v1
kind: Service
metadata:
  name: nix-cache
spec:
  selector:
    app: nix-cache
  ports:
    - protocol: TCP
      port: 80
      targetPort: 80
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: nix-cache-ingress
  annotations:
    traefik.ingress.kubernetes.io/router.tls: "true"
spec:
  rules:
    - host: "nix-cache.raspi.home"
      http:
        paths:
          - pathType: Prefix
            path: "/"
            backend:
              service:
                name: nix-cache
                port:
                  number: 80
  tls:
    - secretName: nix-cache-raspi-home-tls
      hosts:
        - "nix-cache.raspi.home"
---
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
  name: nix-cache.raspi.home
spec:
  commonName: nix-cache.raspi.home
  dnsNames:
    - "nix-cache.raspi.home"
  secretName: nix-cache-raspi-home-tls
  issuerRef:
    name: ca-issuer
    kind: ClusterIssuer
---
apiVersion: v1
kind: ConfigMap
metadata:
  name: nix-cache-config
data:
  # See: https://www.channable.com/tech/setting-up-a-private-nix-cache-for-fun-and-profit
  nginx.conf: |
    events {
        worker_connections 1024;
    }
    http {
      proxy_cache_path /data/nginx/cache max_size=500G keys_zone=cache_zone:50m inactive=365d;
      proxy_cache cache_zone;
      proxy_cache_valid 200 365d;
      proxy_cache_use_stale error timeout invalid_header updating http_500 http_502 http_504 http_403 http_404 http_429;
      proxy_ignore_headers X-Accel-Expires Expires Cache-Control Set-Cookie;
      proxy_cache_lock on;

      server {
          listen 80;

          server_name nix-cache.raspi.home;

          location /nix-cache-info {
              return 200 "StoreDir: /nix/store\nWantMassQuery: 1\nPriority: 41\n";
          }

          location / {
              proxy_set_header Host $proxy_host;
              proxy_pass https://cache.nixos.org;
          }
      }
    }

    The config is an adaption from this blog post: https://www.channable.com/tech/setting-up-a-private-nix-cache-for-fun-and-profit

  • Nix / NixOS @programming.dev
    secana @programming.dev

    Issue with transparent cache.nixos.org proxy

  • Rust @programming.dev
    secana @programming.dev

    What are you working on this week? (July. 7, 2024)

  • What are you working on this week? (June. 30, 2024)

    Jump

  • I'm not ML pro and never used Python or Rust for it, but I know that our ML team uses Python extensively for it. My gut feeling is that Python stays the king in the ML field but the underlying libraries are going to progress from C++ to Rust in the future. Or at least, if Rust gets stronger math/statistics libraries. If you get something cool running with Rust and ML, I'm interested to read about it.