Fixing GCC-14-related build failures in Nixpkgs

polygon · March 7, 2025, 3:32pm

A while back, nixpkgs changed stdenv to default to GCC-14. This version changed some warnings to errors by default which caused plenty of builds to fail and I noticed that a lot of them are still broken today. I did some Hydra-mining and found 297 packages that broke after the stdenv change, are still broken now, and whose logs indicate build failures caused by bespoke changes in GCC-14.

I compiled these into a list: Fixing broken builds after change to GCC14

Potential fixes to this issue (roughly in order of preference), thanks to @emily:

Check if the issue is fixed upstream and we are just missing an update. If so, bump the version, check that everything builds/works and it should be good to go.
Search for existing patches (other distros have the same issues) or write your own, fixing the cause of the warnings. Consider contributing the patch upstream. Fix the package by adding the patches to the derivation.
If patching the code for some reason is too much effort, you can disable the errors and turn them back into warnings. This is done by adding something like this to the derivation:

env.NIX_CFLAGS_COMPILE = lib.concatStringsSep " " [
  "-Wno-error=int-conversion"
  "-Wno-error=incompatible-pointer-types"
  "-Wno-error=implicit-function-declaration"
];

Changing to stdenv with older GCC (e.g. gcc13Stdenv). This should almost never be needed and only a last resort (like hitting a compiler bug, and if you do, please report it).

So, if you want to help out Nixpkgs or are looking to get some experience with contributing to Nixpkgs while having plenty of examples how to fix similar issues already in place, this is a good opportunity. Help out a package in need.

To find commits where others fixed the issue, you could run

git log --oneline | grep gcc14

to find plenty examples.

thefossguy · March 9, 2025, 2:44pm

I think we should employ a Linux-Kernel-like model. “If your change breaks any other ~~subsystem(s)~~ package(s), you should be the one to fix it.”

emily · March 9, 2025, 3:32pm

I am happy to see people work on fixing these issues! But I would kindly but firmly request this happen in the opposite order. Pinning an old compiler version should never happen unless absolutely necessary (and requires care to handle non‐GCC platforms), and we should always prefer updating or fixing to silencing errors when possible – especially as those flags are likely to persist even if the issues are fixed upstream. These errors to catch invalid code were added for a reason!

There’s also another intermediate step after updating but before writing patches ourselves – getting patches from other distros, multiple of which have already moved to GCC 14 and handled a substantial amount of the fallout. Fetching those patches is often an easy and quick way to handle these failures.

This could work for, say, packages that have 50 others depending on them. For compiler upgrades, the affected packages are literally every package in Nixpkgs. If you demanded that bumping the default GCC version never broke a package, we would be on a version of GCC from 2006.

The work that the people involved in the staging cycle do to handle changes to core packages like GCC, glibc, curl, OpenSSL, etc. necessarily affects more packages than any one person can possibly take responsibility for. Yet it’s also work that is absolutely critical to the health of NixOS and our ability to support new versions of leaf packages, keep on top of the most critical security fixes, and so on. It also disproportionately falls on a small number of people to do: I’d say a dozen would be an overly optimistic estimate for the number of people active in staging work.

As the person who made the PRs to bump to GCC 14 and LLVM 19, and helped shepherd the immediate work to fix the problems that resulted, I can say that we did a lot of work to test and fix builds before Hydra even started building packages. You can see some of that work in the LLVM 19 PR, though there were lots of follow‐ups from the same few people as well. GCC 14 had been partially prepared for before the last release before we had to roll it back, and then had follow‐up work in separate PRs this time, so it’s harder to pull up exhaustive links, but it was still a handful of people fixing a large number of packages before anyone even knew anything was broken. We had people building their entire system configurations with the new compilers before that point. But we have tens of thousands of packages, and at some point you have no choice but to distribute the effort for the long tail.

Are there process improvements we could make? Sure – e.g. if we could ping maintainers when their package breaks during staging-next then more things would probably get fixed before hitting the channels. OTOH, we have no expected SLA for maintainers and often the listed maintainers are not who actually takes care of a package, which is its own problem. You would be surprised how many packages are effectively unmaintained but continue to stay just above water because of the work of a very small number of people who handle issues in packages they don’t use or care about when they come up during staging-next. In some cases I suspect those packages may have no users at all…

I find this work fun, but it can be very burnout‐inducing. I know we have had a Rust maintainer put huge amounts of individual effort into mitigating the fallout of two Rust changes that caused mass problems with packages across the tree and still mostly get a negative response for the things that were left over both times. People don’t understand just how much bigger the task is than something one person can achieve, don’t understand how unsuitable much of our tooling is for these kinds of changes, don’t understand how much work gets done by individuals all the same, and then usually the only reaction from users and downstream package maintainers is annoyance that their builds broke and asking why it was allowed to happen. Here’s a loooong comment I wrote a while back about the amount of work that goes into these migrations and the degree to which taking the easy way out as a downstream package maintainer amplifies the already large burden of working on these mass upgrades further.

Anyway, I appreciate the effort people put in to fix these things, and if you would like to help out with the early stages of the next compiler bump, please join the staging room on Matrix!

Sigmanificient · March 9, 2025, 6:35pm

I also think it’s fantastic to see this kind of initiatives in nixpkgs! I’ve created a tracking PR to monitor the progress:

github.com/NixOS/nixpkgs

Tracking: package failing with GCC 14

opened 12:55PM - 08 Mar 25 UTC

Sigmanificient

3.skill: sprintable 0.kind: regression 5. scope: tracking

While browsing on [zh.fail](https://zh.fail//failed/by-maintainer/_.html), I not…iced a bunch of packages that seems to fail to compile with the newer GCC version. This tracking issue aims to regroup them together to have a broader on affected packages. ## Thanks to @polygon for providing a full list of remaining packages https://polygon.github.io/fix-nixpkgs-gcc14/ ### Progression (11/298) +13 ongoing - [ ] SDL_gpu - [x] ace-of-penguins #384293 - [ ] aewan - [ ] afpfs-ng - [ ] agrep - [ ] alan_2 - [ ] alliance - [ ] amd-libflame - [ ] apacheHttpdPackages_2_4.mod_timestamp - [x] aprx #388549 - [ ] as31 - [ ] ats - [ ] ax25-apps - [ ] axmldec - [x] beecrypt #388495 - [ ] bic - [ ] bluefish - [ ] bootil - [ ] bristol #388486 - [x] bviplus #388491 - [ ] castget - [ ] cde - [ ] cdesktopenv - [ ] centerim - [ ] chickenPackages_5.chickenEggs.epoxy - [ ] chickenPackages_5.chickenEggs.expat - [ ] chickenPackages_5.chickenEggs.gl-math - [ ] chickenPackages_5.chickenEggs.mdh - [ ] clamsmtp - [ ] clean - [ ] clpeak - [ ] convertlit - [ ] crackxls - [ ] cramfsprogs - [ ] cups-bjnp - [ ] cyclone - [ ] dap - [ ] darling-dmg - [ ] dbench - [ ] dd_rescue - [ ] denemo - [ ] dillo-plus - [ ] dirdiff - [ ] directvnc - [ ] dirt - [ ] dispad - [ ] dlx - [ ] dmitry - [ ] dog - [ ] dozenal - [ ] drip - [ ] dsview - [ ] dvd-vr - [ ] ecopcr - [ ] edbrowse - [ ] elvis - [ ] eresi - [ ] est-sfs - [ ] eztrace - [ ] fasthenry - [ ] fileshare - [ ] firebird_2_5 - [ ] firebird_3 - [ ] freeswitch - [ ] gatling - [ ] gaw - [ ] gdl - [ ] gerbil - [ ] gerbil-unstable - [ ] gftp - [ ] ggobi - [ ] git-annex-utils - [ ] gmni - [ ] gmnisrv - [ ] gnu-smalltalk - [ ] goocanvas - [ ] goocanvas3 - [ ] grun - [ ] gtkdialog - [ ] gtkextra - [ ] guile-reader - [ ] gwc - [ ] gxmatcheq-lv2 - [ ] hdf5-blosc - [ ] hfst - [ ] httping - [ ] hyenae - [ ] ibniz - [ ] industrializer - [ ] io - [ ] iotools - [ ] iv - [ ] j - [ ] jack_rack - [ ] jamin - [ ] jbofihe - [ ] jikespg - [ ] kamid - [x] kermit #388486 - [ ] kssd - [ ] lasso - [ ] lesstif - [ ] libast - [ ] libchop - [ ] libkkc - [ ] liblcf - [ ] libpromhttp - [ ] librdf_raptor - [ ] libtcod - [ ] lifelines - [ ] linuxKernel.packages.linux_5_4.perf - [ ] linuxKernel.packages.linux_5_4.v86d - [ ] linuxPackages_5_10_hardened.ajantv2 - [ ] linuxPackages_5_10_hardened.rtl8852au - [ ] linuxPackages_5_10_hardened.rtl8852bu - [ ] linuxPackages_5_10_hardened.tuxedo-keyboard - [ ] linuxPackages_5_10_hardened.v86d - [ ] linuxPackages_5_15_hardened.ajantv2 - [ ] linuxPackages_5_15_hardened.rtl8852au - [ ] linuxPackages_5_15_hardened.rtl8852bu - [ ] linuxPackages_5_15_hardened.v86d - [ ] linuxPackages_6_11_hardened.system76-acpi - [ ] linuxPackages_6_11_hardened.v86d - [ ] linuxPackages_6_1_hardened.dddvb - [ ] linuxPackages_6_1_hardened.v86d - [ ] linuxPackages_6_6_hardened.system76-acpi - [ ] linuxPackages_6_6_hardened.v86d - [ ] linuxPackages_xanmod.v86d - [ ] linuxPackages_zen.digimend - [ ] linuxPackages_zen.rtl8188eus-aircrack - [ ] linuxPackages_zen.rtl8189es - [ ] linuxPackages_zen.rtl8189fs - [ ] linuxPackages_zen.rtw88 - [ ] litemdview - [ ] lttv - [ ] lxdvdrip - [ ] lxpanel - [ ] macopix #388566 - [ ] maiko #388559 - [ ] mailcore2 - [ ] mailsend #388552 - [ ] mairix #388550 - [ ] mandelbulber - [ ] mcrypt #388546 - [ ] mdk3-master #388527 - [ ] mdk4 #388460 - [ ] medusa - [ ] milu - [ ] mkclean - [ ] mlv-app - [ ] mmh - [ ] mni_autoreg - [ ] modsecurity_standalone - [ ] mosdepth - [ ] msieve - [ ] nabi - [ ] neocomp - [ ] netboot - [ ] netcdf-mpi - [ ] netkittftp - [ ] netsurf.libcss - [ ] netsurf.libdom - [ ] nettee - [ ] nfft - [ ] nibtools - [ ] nmh - [ ] notion - [ ] nvi - [ ] odyssey - [ ] offrss - [ ] om4 - [ ] openct - [ ] openvas-smb - [ ] otpw - [ ] pacparser - [ ] paps - [ ] pdisk #388480 - [ ] perl538Packages.AuthenKrb5 - [ ] perl538Packages.MathPari - [ ] perl538Packages.NetFreeDB - [ ] perl538Packages.TextUnaccent - [ ] perl538Packages.WWWCurl - [ ] perl538Packages.Wx - [ ] perl538Packages.mod_perl2 - [ ] perl540Packages.AuthenKrb5 - [ ] perl540Packages.MathPari - [ ] perl540Packages.NetFreeDB - [ ] perl540Packages.TextUnaccent - [ ] perl540Packages.WWWCurl - [ ] perl540Packages.Wx - [ ] perl540Packages.mod_perl2 - [ ] pesign - [ ] petidomo - [ ] pies - [ ] pilot-link - [ ] plasma5Packages.kdb - [ ] ploticus - [ ] pnfft - [ ] pngnq - [ ] pod2mdoc - [ ] pong3d - [ ] popa3d - [ ] pptpd - [ ] prelink - [ ] prism-model-checker - [ ] pxlib - [ ] python312Packages.curve25519-donna - [ ] python312Packages.opensfm - [ ] python312Packages.pybullet - [ ] python312Packages.pygsl - [ ] python312Packages.pyjnius - [ ] python312Packages.pylzma - [ ] python312Packages.pypcap - [ ] python312Packages.sabyenc - [ ] python312Packages.uamqp - [ ] python313Packages.cassandra-driver - [ ] python313Packages.curve25519-donna - [ ] python313Packages.cyclonedds-python - [ ] python313Packages.jsonnet - [ ] python313Packages.opensfm - [ ] python313Packages.pybullet - [ ] python313Packages.pyfuse3 - [ ] python313Packages.pygsl - [ ] python313Packages.pyjnius - [ ] python313Packages.pylzma - [ ] python313Packages.pypcap - [ ] python313Packages.pysqlcipher3 - [ ] python313Packages.sabyenc - [ ] python313Packages.streaming-form-data - [ ] python313Packages.uamqp - [ ] qnial - [ ] quesoglc - [ ] quicksynergy - [ ] radiance - [ ] rdrview - [ ] recoverdm - [ ] redfang - [ ] rl_json - [ ] rs - [ ] rxp - [ ] samplebrain - [ ] sblim-sfcc - [ ] scrounge-ntfs - [ ] sgrep - [ ] slrn - [ ] smatch - [ ] socklog - [ ] space-orbit - [ ] stardust - [ ] streamripper - [ ] suidChroot - [ ] sumalibs - [ ] sylpheed - [ ] t1lib - [x] tboot #388574 - [ ] tcp-cutter - [ ] telepathy-gabble - [ ] telepathy-logger - [ ] texinfo413 - [ ] tilda - [ ] tilem - [ ] tinyfugue - [ ] tinymembench - [ ] tla - [ ] transcode - [ ] ttf2pt1 - [ ] uae - [ ] unclutter - [ ] unfs3 - [ ] unicon-lang - [ ] unnethack - [ ] untie - [ ] unzoo - [ ] uucp - [ ] vbetool - [ ] vncrec #388570 - [ ] vobcopy - [ ] wdt - [x] wily #388486 - [ ] winhelpcgi - [ ] x11idle #388568 - [ ] xbattbar #388567 - [ ] xbps #388558 - [ ] xbursttools - [x] xcftools #388213 - [ ] xcircuit - [x] xearth #388565 - [ ] xmlroff - [ ] xmountains #388563 - [ ] xprompt - [ ] xpwn - [ ] xtreemfs - [ ] zabbix50.server - [x] zgv #372721 - [x] zssh #388185 - [ ] zsv - [ ] zsync2 - [ ] zzuf

vcunat · March 9, 2025, 8:06pm

No, that won’t work for a distro that accepts about any package. (even from very low quality upstreams)

polygon · March 11, 2025, 11:37am

You are completely correct. These were the things that came to mind first, but I should have spent the time to put them into proper order. I updated that section of the initial post.

Many thanks for the insights into the world of Nix staging development. I want to say that making and publishing this list was in no means meant to be accusatory or to facilitate blame. I just noticed very similar issues in a number of packages, decided to take a closer look and found quite a few packages more than I could tackle myself. So I made this list for fellow “nixpkgs janitors” as a guideline.

What you wrote about keeping (effectively) unmaintained packages alive resonated well with me. A lot of fixes I do are for packages that I have no interest in using myself. But the act of fixing it is engaging, educational, curious, strangely relaxing, and sometimes leads to discovery of a software Gem. It’s my way of giving back since the time I can spend on nixpkgs is very spotty.

However, I’d be very happy to join efforts (similar to ZHF) of fixing packages on the fringes of nixpkgs due to larger changes in staging. I’m not sure if a list of volunteers or just an announcement in the forums (like ZHF) would be best, tho. Right now I don’t really notice what’s going on in staging-next until it hits master.

Many thanks for that tracking PR. I was pondering how to keep that list up-to-date, but I’ll just link there instead.

emily · March 11, 2025, 2:35pm

No worries at all I didn’t get that from your post in the slightest and I appreciate you doing this! I’ve just written out the response to “can’t we just make sure updates don’t break any package?” so many times now that it’s something of a reflex.

There’s a cycle every few weeks so unfortunately I think the only real way to keep on top of things is to hang out on Matrix and use the reports. That’s quite high‐commitment, which is unfortunate. I really would like a system where maintainers get early warning of build failures on staging-next, but it’d take a lot of work to make that happen in a sensible way.