Frustrations about splicing

AndersonTorres · July 25, 2024, 4:43am

I made splicing (nativeDrv and crossDrv are older, but were done
differently). Splicing is bad. I never wanted it. I causes major
headaches when getting anywhere near bootstrapping. It is gross. It is
probably slow. It should be removed.

https://github.com/NixOS/nixpkgs/issues/204303#issuecomment-1383282367

Splicing is too magical. Probably three people really understand it.
Dozens of people think they understand it but really don’t, and get
pissed off when it breaks in weird ways. This is a major part of why
people hate on cross compilation.

https://github.com/NixOS/nixpkgs/issues/227327

Frustration

A long time ago I bumped with this PR: https://github.com/NixOS/nixpkgs/issues/204303

The explanation sent me to one of the darkest and uncannier corners of Nixpkgs: the Splicing.

What I understood about splicing is that a spliced package acts like it was two slightly different packages; one of them is to be put at buildInputs and the other at nativeBuildInputs.
It can be noticed e.g. when building packages that depend on SDL.

Usually, splicing can be ignored without too much consequences, since most of the time we deal with leaf packages, and the hardcore machinery is mostly taken for granted.

However, I have bumped again with this idiosyncrasy when I adopted waf. Using waf.hook somehow breaks cross-compilation, however using a green alias wafHook = waf.hook magically works.

Indeed I inserted these three links in Nixpkgs so that I could return to them later:

https://github.com/NixOS/nixpkgs/issues/204303
https://github.com/NixOS/nixpkgs/issues/211340
https://github.com/NixOS/nixpkgs/issues/227327

Another annoying and stressful situation happens when a certain code is rejected and ruled unsuitable and prejudicial because “it breaks splicing”. This is doubly irritating:

If the code indeed breaks splicing, it requires patching the work in order to get rid of the offending code.
- Example: the wafHook case above
If the code does not break splicing, it implies losing hours or even days in convoluted and stressful discussions.
- Example that made me literally sick (I wanted to hit myself with a hammer to stop the headache): duckstation: 0.1-6292 -> 0.1-6658 by AndersonTorres · Pull Request #309064 · NixOS/nixpkgs · GitHub

And this source of disappointing and draining stress is precisely the dark-magic nature of splicing: anything said about splicing is treated with a huge shot of blind faith, since you most certainly are not one of the ones that really understand splicing.

This situation will become more and more ridiculous, given that huge mass migrations are being promoted via RFC 140. Luckily they do not break splicing by themselves (they are a mere callPackage hidden), however they can possibly break splicing when changing a top-level expression that uses a non-standard callPackage.

Venting a decade-old frustration, I have less than love for that less than beautiful dark-magic-accepted-by-blind-fanaticism thing called “splicing”.

It is not surprising that I agree with the quotes at the top…

Speculation

Since I am not so versed on those highly low-level things, I am a mere observer with a bit of interest (and a bucket of anger).

From the proposals I have seen, my feeling is that all of them pivot in a common motto: a new builder function. In other words, a callPackage2 (I like to call it build-package).

This build-package would receive a complete description of what should be “installed” in each machine of the host-build-target triplet.
Since the idea is to treat cross-compilation as first class, with native compilation as a particular case, the elements of the triplet should be pairwise distinct.

Most certainly this function will not be directly employed in all its grandeur. Most of the time it will be indirectly employed via wrappers to describe environments, to hide details for those not interested in so much detail.

References

List of GitHub issues related to and/or affected by the splicing incident

github.com/NixOS/nixpkgs

Discourage/prohibit inheriting from package sets in callPackage

opened 03:35PM - 03 Dec 22 UTC

Artturin

6.topic: cross-compilation significant

in all-packages.nix when something is inherited (ex, `{inherit (pkgs.darwin.appl…e_sdk.frameworks) Security;}`) in a `callPackage` invocation the inherited attr will not have `__spliced` and so won't be cross-compilation compatible. one way to fix this would be to change the `with pkgs;` in all-packages to `with pkgs.__splicedPackages` like tried in #58327 however that will result in other issues like infinite recursion. ``` $ nix build ".#pkgsCross.aarch64-multiplatform.bash" error: infinite recursion encountered ``` other way to work around it would be to to inherit from the `__splicedPackages` set (ex, `{inherit (pkgs.__splicedPackages.darwin.apple_sdk.frameworks) Security;}`) the way i prefer would be to just not inherit from package sets Demo: `show-splices.nix` ```nix let pkgs = import ./. { }; pkgsCross = pkgs.pkgsCross.aarch64-multiplatform; workingSplices = pkgsCross.callPackage ({ darwin, xorg }: { d = darwin.apple_sdk.frameworks.Security.__spliced; x = xorg.libX11.__spliced; }) { }; notWorkingSplices = pkgsCross.callPackage ({ Security, libX11 }: { d = Security.__spliced; x = libX11.__spliced; }) { inherit (pkgsCross.darwin.apple_sdk.frameworks) Security; inherit (pkgsCross.xorg) libX11; }; in { # for --json to work workingSplices = removeAttrs workingSplices [ "override" "overrideDerivation" ]; notWorkingSplices = removeAttrs notWorkingSplices [ "override" "overrideDerivation" ]; } ``` working: ``` $ NIXPKGS_ALLOW_UNSUPPORTED_SYSTEM=1 nix eval -f show-splices.nix workingSplices --json | jq { "d": { "buildBuild": "/nix/store/ls83bixygn2bzqq1w2z66dyccfn61wic-apple-framework-Security", "buildHost": "/nix/store/ls83bixygn2bzqq1w2z66dyccfn61wic-apple-framework-Security", "buildTarget": "/nix/store/ls83bixygn2bzqq1w2z66dyccfn61wic-apple-framework-Security", "hostHost": "/nix/store/vhqjns1zfab6cnv2lbkr6gff1fa8n3kw-apple-framework-Security-11.0.0", "hostTarget": "/nix/store/vhqjns1zfab6cnv2lbkr6gff1fa8n3kw-apple-framework-Security-11.0.0" }, "x": { "buildBuild": "/nix/store/w3zzhfl4a7xp0xfflz2gawv02y8ba9z8-libX11-1.8.1", "buildHost": "/nix/store/w3zzhfl4a7xp0xfflz2gawv02y8ba9z8-libX11-1.8.1", "buildTarget": "/nix/store/w3zzhfl4a7xp0xfflz2gawv02y8ba9z8-libX11-1.8.1", "hostHost": "/nix/store/gjh7n6myi7miwprjkk4lll8cp1j7kmz8-libX11-aarch64-unknown-linux-gnu-1.8.1", "hostTarget": "/nix/store/gjh7n6myi7miwprjkk4lll8cp1j7kmz8-libX11-aarch64-unknown-linux-gnu-1.8.1" } } ``` broken: ``` } $ NIXPKGS_ALLOW_UNSUPPORTED_SYSTEM=1 nix eval -f show-splices.nix notWorkingSplices --json | jq error: attribute '__spliced' missing at /home/artturin/nixgits/my-nixpkgs/show-splices.nix:5:74: 4| workingSplices = pkgsCross.callPackage ({ darwin, xorg }: { d = darwin.apple_sdk.frameworks.Security.__spliced; x = xorg.libX11.__spliced;}) { }; 5| notWorkingSplices = pkgsCross.callPackage ({ Security, libX11 }: { d = Security.__spliced; x = libX11.__spliced;}) { inherit (pkgsCross.darwin.apple_sdk.frameworks) Security; inherit (pkgsCross.xorg) libX11; }; | ^ 6| in { "d": null } ``` related issues: https://github.com/NixOS/nixpkgs/issues/49526

github.com/NixOS/nixpkgs

Package sets within derivations (i.e. `python3.pkgs`) are not spliced

opened 06:57AM - 18 Jan 23 UTC

rrbutani

0.kind: bug 6.topic: python 6.topic: cross-compilation architecture

I ran into this while trying to get LLVM to eval under cross-compilation as [par…t](https://github.com/NixOS/nixpkgs/pull/194634/commits/888f966869d66b85042dc0971d1fc046578bf6f9) of #194634. Apologies if this has already been addressed elsewhere; I know @Artturin has been working on fixes and cleanup for splicing recently but I didn't see this _specific_ issue brought up in any of the existing issues and PRs. ## Problem As detailed in https://github.com/NixOS/nixpkgs/pull/194634/commits/888f966869d66b85042dc0971d1fc046578bf6f9, packages that are in package sets within derivations (i.e. the `psutil` package within `python3.pkgs` where `python3` is a derivation) do not get spliced. This can be observed via `__splicedPackages` (I know this is meant to be an implementation detail but it _is_ the attrset that [top-level `callPackage` draws from](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/pkgs/top-level/splice.nix#L128-L169) and it's handy for debugging): ``` > np = (import <nixpkgs> { }).pkgsCross.aarch64-multiplatform > np.__splicedPackages.hello ? __spliced true > np.__splicedPackages.python3Packages.psutil ? __spliced true (!!) > np.__splicedPackages.python3.pkgs.psutil ? __spliced false ``` Note that accessing the python package set via `python3Packages` in the above **does** give you spliced packages. --- This happens because of the way splicing operates on derivations: https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/pkgs/top-level/splice.nix#L47-L82 Only the output attributes of a derivation are spliced; all other attributes are passed through as is. Attrsets, on the other hand, are spliced recursively (on all attributes): https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/pkgs/top-level/splice.nix#L83-L98 --- Tying this back to the example above, `python3Packages` (despite being [defined as an alias to `python3.pkgs`](https://github.com/NixOS/nixpkgs/blob/a23d4a7d6f92cca057db14766e703803b2973c76/pkgs/top-level/all-packages.nix#L16361)) **is** spliced because the splice function is passed that attrset when recursively processing the top-level package attrset (whereas when the slice function encounters `python3` it does not recurse into `python3.pkgs` because `python3` is a derivation). ## Potential Solutions ### 1: Have `pkgs` be already-spliced in such places i.e.: instead of relying on the [top-level splicing](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/pkgs/top-level/splice.nix#L169) to splice such package sets, have this be the responsibility of the package set's scope. #### Tangent: Splicing and Scopes There's already _some_ precedent for this; today scopes that use [`makeScopeWithSplicing`](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/pkgs/top-level/splice.nix#L150) are automatically given a [`newScope` and a `callPackage`](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/lib/customisation.nix#L292-L293) that contains [spliced versions of the packages in the scope](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/lib/customisation.nix#L282-L290): https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/lib/customisation.nix#L280-L305 Here's how the python scope is set up, for example: - the set of python overlays and the python package sets from the other `pkgsBuildBuild`, `pkgsBuildHost`, etc. sets are given to `makeScopeWithSplicing`; this yields the `pythonPackage` fixed point: https://github.com/NixOS/nixpkgs/blob/7f6ecd4237de0369562dd120fb774467d0845819/pkgs/development/interpreters/python/default.nix#L43-L77 - that's then exported as a passthru on the `python3` derivation as `pkgs`: https://github.com/NixOS/nixpkgs/blob/7f6ecd4237de0369562dd120fb774467d0845819/pkgs/development/interpreters/python/default.nix#L97 Crucially, the spliced packages `makeScopeWithSplicing` produces are _not_ made available in the actual scope (i.e. the package set; `python3.pkgs` in the above) itself but _are_ made available to packages within the scope via the `callPackage` machinery. This actually means that the contents of scopes like `python3Packages` (i.e. scopes that _are_ exposed directly – not via a derivation – and are spliced at the top-level) are actually spliced "twice": once as part of the `makeScopeWithSplicing` call (accessed by members of the scope) and then again at the top-level (accessed by members of the outermost scope, the top-level). It would be nice if we could reuse the splicing. Using the outer scope's splicing within the inner scope is easy to do: - we can: + pass in the path to the scope being constructed + `__splicedPackages` to [this function](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/lib/customisation.nix#L280) + and then use `__splicedPackages. ...` in lieu of `spliced0` But this is problematic in cases where the scope is overriden (i.e. `overrideScope`) _outside_ of an overlay-like context (where the top-level binding of that scope is also updated). In such cases, the scope's `callPackage` will continue using the original pre-`overrideScope` version of the packages within the scope because the splicing would still be pulling things from the top-level `__splicedPackages`. Put another way: `overlays = [(f: p: { python3Packages = p.python3Packages.overrideScope (_: _: { ... }); })]` would be okay because `nixpkgs.python3Packages` is updated to point to the overriden scope but just doing `(nixpkgs.python3Packages.overrideScope (_: _: { ... })).some-package` would not be okay. Going the other way (using the scope's splicing for the top-level) seems a little trickier but wouldn't have this issue. We'd need to have the `makeScopeWithSplicing` [expose](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/lib/customisation.nix#L291) the spliced attrset with something like a `__splicedPackages` attr and we'd then want [`spliceReal`'s handling of attrset](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/pkgs/top-level/splice.nix#L84) to check for such an attr and use it instead of redoing the splicing itself. I don't _think_ this runs into any recursion issues but I have not tested this yet. Ultimately this (splicing scopes multiple times) is somewhat orthogonal to this issue but the above has some overlap with the potential solutions below and might influence a decision there. --- Now that we know how scopes get spliced: The most straight-forward way to have our scope yield an already-spliced `pkgs` attr is probably to get `makeScopeWithSpliced` to give us it's spliced attrset. We can modify [`makeScopeWithSpliced`](https://github.com/NixOS/nixpkgs/blob/6796675202b8d32e151a31ec71218cff04b2447a/lib/customisation.nix#L280) to expose the attrset as `__splicedPackages = spliced` (as discussed above) and then swap out this line: https://github.com/NixOS/nixpkgs/blob/7f6ecd4237de0369562dd120fb774467d0845819/pkgs/development/interpreters/python/default.nix#L97 for `pkgs = pythonPackages.__splicedPackages`. We would also have to replicate this change for all other users of `makeScopeWithSpliced` that export their package set as part of a derivation's attrs. ### 2: Adjust `spliceReal`'s handling of derivations Recursing on all of the attributes of every derivation seems fraught but maybe it's safe to recurse on `drv.passthru` or an opt-in list of attributes (i.e. we could have `spliceReal` look for a passthru attr named `__spliceRecurseAttrs` on derivations) or maybe even just `pkgs` (since that seems to be the convention used). This has the benefit of not requiring any changes from users of `makeScopeWithSpliced` and handling splicing for packages that are referenced via a derivation's attrs (depending on how general we adjust `spliceReal` to be on derivation attrs). ### 3: Discourage using package sets like `python3.pkgs` "directly" (and instead push people to use `python3Packages`, `lua5Packages`, etc. in nixpkgs) This seems suboptimal, both because this will be [another](https://github.com/NixOS/nixpkgs/issues/204303) thing that'd need to be enforced in nixpkgs to have cross work for packages and because the `foo.pkgs.bar` pattern (where `foo` is a derivation) seems pretty pervasive in nixpkgs (`python`, `lua`, `perl`, `postgresql`, etc.). --- A version of option 2 (with the `__splicedPackages` attr for deduplicating the work of splicing scopes as a follow-up PR if it doesn't cause breakage) seems like the least-worst fix to me but I'm not particularly satisfied with any of these solutions; hopefully there's a more elegant solution that I'm missing 🤞. cc: @Artturin

github.com/NixOS/nixpkgs

simpler, saner cross-compilation

opened 07:57PM - 20 Apr 23 UTC

ghost

0.kind: enhancement 6.topic: cross-compilation 6.topic: developer experience 6.topic: stdenv significant

This is a long-term goal; none of this can happen overnight. This is also an in…complete work-in-progress. ## TL;DR: Short Example ```nix { pkgsOnHost # simple dependencies , pkgsOnBuild # build tools that don't emit code (`grep`, `jq`...) , pkgsOnBuildForHost # build tools that emit code for the hostPlatform }: { # setup.sh will put this stuff in the $PATH at compile time depsInPATH = with pkgsOnBuild; [ cmake makeWrapper pkgsOnBuildForHost.gfortran # to compile fortran code for use at run time ]; # setup.sh will not put any of this stuff into the $PATH deps = with pkgsOnHost; [ openssl ]; } ``` ## Wishlist #### Eliminate splicing > I made splicing (nativeDrv and crossDrv are older, but were done differently). Splicing is bad. I never wanted it. I causes major headaches when getting anywhere near bootstrapping. It is gross. It is probably slow. It should be removed. -- https://github.com/NixOS/nixpkgs/issues/204303#issuecomment-1383282367 Splicing is too magical. Probably three[^1] people really understand it. Dozens of people think they understand it but really don't, and get pissed off when it breaks in weird ways. This is a major part of why people hate on cross compilation. Eliminating splicing likely means that package expressions will need to take package sets explicitly as top-level arguments. See next section. #### Eliminate special exceptions to `depsFooBar` naming Basically, do this ([thanks](https://github.com/NixOS/nixpkgs/issues/227327#issuecomment-1518507274) @Artturin): - https://github.com/NixOS/nixpkgs/issues/28327 #### `targetPlatform==null` for packages that do not emit code The vast majority of packages in nixpkgs don't emit code. Instead of setting their `targetPlatform` equal to their `hostPlatform`, we should set it to `null`. Using `targetPlatform==hostPlatform` erases the distinction between packages that emit code for their `hostPlatform` and packages that don't emit code. It also creates ambiguity: these packages can be moved freely between (say) `depsBuildHost` and `depsBuildTarget` with no change in behavior, so the difference between `depsBuildHost` and `depsBuildTarget` is harder for people to learn. #### Prefix *all* binaries that have a targetPlatform AKA resurrect this PR: - https://github.com/NixOS/nixpkgs/pull/44583 Right now we have an artificial distinction between: 1. `pkgsBuildTarget` for build=X target=Y 2. `pkgsHostTarget` for host=X target=Y The first kind won't have a `aarch64-linux-` prefix on their code-emitting binaries (like gcc). The latter kind will. This is silly. Prefix all the binaries, eliminate the distinction. For compilers (clang, rust) that have a single binary entry point for all platforms and use some kind of `--target=` flag, we simply wrap that entry point with a wrapper for each `targetPlatform` which adds the `--target=` flag. #### Use the pythonPackages `onBuildForHost` naming `pkgsFooBar` is extremely unergonomic. Nobody can remember what `Foo` is for and what `Bar` is for. These should be changed to `pkgsOnBuildForHost` like `pythonPackages` does; with `pkgsOnFooForBar` least that way there is a reminder of what `Foo` and `Bar` are: `pkgsOnFooForBar` runs *on* `Foo` and emits code *for* `Bar`. Packages with no target (see previous heading) get shorter names: `pkgsOnBuild` and `pkgsOnHost`. #### No more `depsOnXForY`, only `pkgsOnXForY` The distinction between the various `depsFooBar` attributes of a derivation serves two purposes: 1. "Desplicing" the correct derivation from the spliced package 2. Ensuring that only `depsBuildX` stuff goes in the `$PATH` at build time Instead of (six? more?) different derivation attributes we only need two: ``` depsInPATH = [ ... ] # stuff that is put into $PATH deps = [ ... ] # stuff that is not put into $PATH ``` ## Long Example This example might look complicated, but it exercises *all possible* arguments and attributes. Think about that. **This is the most complicated attrset you'll ever see.** Non-code-emitting packages will only have, at most, the first five attributes (one of which is never used in practice). In practice most packages will have only three arguments: `pkgsOnHost`, `pkgsOnBuild`, and `pkgsOnBuildForHost`. ```nix { pkgsOnHost # simple dependencies , pkgsOnBuild # build tools that don't emit code (`grep`, `jq`...) , pkgsOnBuildForHost # build tools that emit code for the hostPlatform # the three arguments above are enough for nearly all packages in nixpkgs , pkgsOnHostForHost # theoretical possibility only: zero uses in nixpkgs , pkgsOnBuildForBuild # build tools that emit code for the buildPlatform # **only code-emitting packages** (compilers) will have the following: , pkgsOnHostForTarget # theoretical posibility only: canadian cross , pkgsOnBuildForTarget # e.g. the bintools used to link the libraries bundled with gcc , pkgsOnTarget # target libraries bundled with the compiler (eg libstdc++) , pkgsOnTargetForTarget # code-emitting target libraries (JITs), like libgccjit }: { # setup.sh will put this stuff in the $PATH at compile time depsInPATH = with pkgsOnBuild; [ cmake makeWrapper pkgsOnBuildForHost.gfortran # to compile fortran code for use at run time pkgsOnBuildForBuild.stdenv.cc # to compile+run a C program at build time ]; # setup.sh will not put any of this stuff into the $PATH deps = with pkgsOnHost; [ openssl pkgsOnTarget.libstdc++ ]; } ``` ## Problems - Note: there is a [possible solution](https://github.com/NixOS/nixpkgs/issues/227327#issuecomment-1518505771) to both of the following two problems, which brings additional benefits. 1. This needs to be harmonized with `callPackage`. It is really unfortunate that the Nix language does not let functions declare deep attributes as arguments, like `{foo.bar, ...}: ...`. 2. In its current form this makes `.override` very painful to use, since it don't cope well with overriding a sub-attribute of an argument. It should be extended to provide an ergonomic way to override sub-attributes of an argument. ## Questions 1. Should `deps` and `depsInPATH` be combined into a single attribute? `mkDerivation` could decide whether or not to put each dependency into the `$PATH` based on whether `stdenv.buildPlatform.canExecute` that dependency's `hostPlatform`. In practice there are very very very few situations where you don't want all the possibly-executable dependencies put into the path; we could provide an "escape hatch" to mark specific dependencies as "don't belong in the `$PATH` even if we could execute them". 2. `with` is a footgun, and this scheme encourages `with pkgsOnBuild`. We could make `deps` and `depsOnBuild` be attrsets (whose attrnames are ignored); this would allow the use of the much-safer `inherit` syntax. A better long-term solution would be [RFC 110](https://github.com/NixOS/rfcs/pull/110). 3. Should `pkgsOnBuildForHost` be an attribute within the `pkgsOnBuild` attrset? For example, `pkgsOnBuild.forHost`. This would mean only two arguments for non-compiler-like packages. [^1]: I am not one of these people. But I'm also aware that I don't fully understand splicing.

github.com/NixOS/nixpkgs

Review by SuperSandro2000 in duckstation: 0.1-6292 -> 0.1-6658

NixOS:master ← atorres1985-contrib:duckstation

qt6.callPackage does more than bringing the qt packages into scope. It also does… splicing which is complicated (#265524, #269654) and if it is slightly off, it breaks cross compilation. It also uses the correct stdenv for darwin but that is not relevant for this package. Instead of suggesting this pattern to other contributors and luring them into broken darwin and cross builds, please just use the qt6.callPackage. If other ecosystems have a patterns on how to consume them, we should really use them, especially if it is easily possible, to avoid issues for our packages and to avoid extra work for the ecosystem maintainers and especially avoid extra work debugging hard to debug topics like cross compilation which is especially hairy inside of qt. pkgs by-name is not a good reason to avoid the wrapper. A good known reason is when qt is used inside another wrapper like buildPythonPackage. libsForQt5 also generated the package for every minor qt5 version which is right now not relevant and cmake probably doesn't need it but duckstation is I think a qt application.

github.com/NixOS/nixpkgs

zotify: init at 0.6.13

NixOS:master ← bwkam:init-zotify

opened 11:52PM - 10 May 24 UTC

bwkam

+2390 -1807

## Description of changes Closes #310331  * added zotify * added pwinput * added a new maintainer entry ## Things done - Built on platform(s) - [x] x86_64-linux - [ ] aarch64-linux - [ ] x86_64-darwin - [ ] aarch64-darwin - For non-Linux: Is sandboxing enabled in `nix.conf`? (See [Nix manual](https://nixos.org/manual/nix/stable/command-ref/conf-file.html)) - [ ] `sandbox = relaxed` - [ ] `sandbox = true` - [ ] Tested, as applicable: - [NixOS test(s)](https://nixos.org/manual/nixos/unstable/index.html#sec-nixos-tests) (look inside [nixos/tests](https://github.com/NixOS/nixpkgs/blob/master/nixos/tests)) - and/or [package tests](https://github.com/NixOS/nixpkgs/blob/master/pkgs/README.md#package-tests) - or, for functions and "core" functionality, tests in [lib/tests](https://github.com/NixOS/nixpkgs/blob/master/lib/tests) or [pkgs/test](https://github.com/NixOS/nixpkgs/blob/master/pkgs/test) - made sure NixOS tests are [linked](https://nixos.org/manual/nixpkgs/unstable/#ssec-nixos-tests-linking) to the relevant packages - [ ] Tested compilation of all packages that depend on this change using `nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD"`. Note: all changes have to be committed, also see [nixpkgs-review usage](https://github.com/Mic92/nixpkgs-review#usage) - [x] Tested basic functionality of all binary files (usually in `./result/bin/`) - [24.05 Release Notes](https://github.com/NixOS/nixpkgs/blob/master/nixos/doc/manual/release-notes/rl-2405.section.md) (or backporting [23.05](https://github.com/NixOS/nixpkgs/blob/master/nixos/doc/manual/release-notes/rl-2305.section.md) and [23.11](https://github.com/NixOS/nixpkgs/blob/master/nixos/doc/manual/release-notes/rl-2311.section.md) Release notes) - [ ] (Package updates) Added a release notes entry if the change is major or breaking - [ ] (Module updates) Added a release notes entry if the change is significant - [ ] (Module addition) Added a release notes entry if adding a new NixOS module - [x] Fits [CONTRIBUTING.md](https://github.com/NixOS/nixpkgs/blob/master/CONTRIBUTING.md).  --- Add a :+1: [reaction] to [pull requests you find important]. [reaction]: https://github.blog/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/ [pull requests you find important]: https://github.com/NixOS/nixpkgs/pulls?q=is%3Aopen+sort%3Areactions-%2B1-desc

github.com/NixOS/nixpkgs

Rename dependency attributes

opened 11:15PM - 16 Aug 17 UTC

Ericson2314

0.kind: enhancement 1.severity: mass-rebuild 9.needs: documentation 6.topic: cross-compilation significant

`nativeBuildInputs`, `buildInputs`, `propagatedNativeBuildInputs`, and `propagat…edBuildInputs` are horrible names: - Word order + capitalization impedes easy grepping - `native` is vague wrt cross compilation - build time vs run time usage is unclear - both the `host` platform and `target` platform of dependencies can be varied, so in fact there is 2 axis of "native" vs "foreignness" In https://github.com/NixOS/nixpkgs/pull/26805 I do add 4 more sorts of dependencies giving us: | Current name | @Ericson2314's Ideal name | Host is | Target is | |--------------------|----------------|----------|-------------| | `depsBuildBuild` | `depsBuildBuild` | build platform | build platform | | `nativeBuildInputs` | `depsBuildHost` | build platform | host platform | | `depsBuildTarget` | `depsBuildTarget` | build platform | target platform | `depsHostHost` | `depsHostHost` | host platform | host platform | `buildInputs` | `depsHostTarget` | host platform | target platform | `depsTargetTarget` | `depsTargetTarget` | target platform | target platform | A disadvantages of these names, per the comments below, is for the vast majority of deps the target platform is irrelevant---my names are unintuitive and noisy in this case. N.B. I'd love to structure things purely when the deps are needed---run time or build time---which is a pretty understandable concept even for those who have never heard of cross compiling. But this just isn't correct (yet). Firstly, it isn't enough granularity---see when dependent's host = depender's build, there's 3 possible target platforms. Worse, host=host dependencies may be used in all possible ways: only at build-time (static linking), only at run-time (dynamic loading of plugin library), or both (linking and headers). -------------------------------------------- A completely different approach would be rely more on language-specific builders: For C, let people think in terms of headers (and pkg-config files, etc) and libraries (dynamic or static), and then C-specific infrastructure would take care of everything behind the scenes regarding propagation and multiple outputs. I should probably elaborate this approach more fully in the another issue or RFC. Split out from https://github.com/NixOS/nixpkgs/issues/4855 CC @dezgeg @edolstra

SergeK · July 25, 2024, 1:16pm

Yes I think it’s not splicing per se that is cursed, it’s the way we implement scopes and callPackage, which hinders both cross-compilation and situations like “there’s foobar in python3Packages but I need to ask for foobar from the top-level pkgs”. Then there’s also the general issue of expressing more complex graphs than makeScope newScope chains when working out of tree

I wish I could do a more explicit/fine-grained dependency injection, sort of like

# package.nix
{
  dependencies.wayland-scanner.name = "wayland";
  dependencies.wayland-scanner.offsets = "buildHost";
  dependencies.wayland-host.name = "wayland";
  dependencies.wayland-host.offsets = "hostTarget";
  recipe = { stdenv, wayland-scanner, wayland-host, ... }: ...
}

Aleksanaa · July 25, 2024, 2:51pm

We need those who know to explain it/try to document it in detail, and then review it and standardize our writing. I don’t think creating another new function that is generally inconsistent with the current callPackage assumptions is a good solution.

waffle8946 · July 25, 2024, 4:09pm

Where should this be explained? My hot take is we should remove the whole discussion of “machinery” from the nixpkgs manual, or somehow clearly separate it from the discussion of “how to use nixpkgs” which is what I believe the manual was intended to be.

Infinisil · July 26, 2024, 1:27am

@waffle8946 With https://github.com/NixOS/nixpkgs/pull/245243 I started implementing this: Use the Nixpkgs manual for stable user-facing documentation, while CONTRIBUTING.md and the various README.md files in the source code are for internal contributer-facing documentation. There’s still lots of work to do to fully implement this vision, but there’s already precedent

AndersonTorres · July 26, 2024, 1:39am

I believe no explanation will convince of things like wafHook = waf.hook not allowing to change wafHook to waf.hook.

One of the selling points of a functional language is equational reasoning:

And it is hard to understand why Nix has no referential transparency in this case…

https://wiki.haskell.org/Referential_transparency

Artturin · July 26, 2024, 7:10pm

waf.hook would work if derivations inside derivations were spliced, but it would likely be expensive, alternatively add a function to splice a single drv by Artturin · Pull Request #267792 · NixOS/nixpkgs · GitHub could be used hook = splice callPackage ./hook.nix. splice would also fix the common issue of overrideAttrs removing the __spliced

This would be a good alternative to splicing Discourage/prohibit inheriting from package sets in callPackage · Issue #204303 · NixOS/nixpkgs · GitHub.
Another alternative would be to simply explicitly use the different package sets which gets rid of the magic, but that would complicate .override(a lib func could probaly simplify it). People want invisible and magical cross-compilation which works in most cases and non-cross users don’t want to think about cross.

AndersonTorres · July 26, 2024, 8:05pm

In a certain sense we are doing this already.
I did a quick ripgrep and find

800 matches for buildPackages\.
1400 for buildPackages

People want invisible and magical cross-compilation which works in most cases and non-cross users don’t want to think about cross.

I believe breaking this expectation of “I want invisible and magic” would be a benefit in the long run.

SergeK · July 26, 2024, 8:19pm

Most of these, I suspect, are just bad compromises which break overrides

Atemu · July 26, 2024, 8:28pm

I’ve been thinking about whether we need splicing at all. Couldn’t we just manually splice our packages as necessary?

Why don’t we just:

{
  pkgsHostHost,
  pkgsBuildHost,
  lib,
}:

pkgsBuildHost.stdenv.mkDerivation {
  nativeBuildInputs = with pkgsBuildHost; [
    meson
    ninja
  ];
  buildInputs = with pkgsHostHost; [
    libfoo
  ];

  postInstall = ''
     ${lib.getExe pkgsBuildHost.tool} $out
  '';
}

or even:

{
  pkgsHostHost,
  pkgsBuildHost,
  lib,
}:

pkgsBuildHost.stdenv.mkDerivation {
  deps =
    (with pkgsHostHost; [
      libfoo
    ]) ++ (with pkgsBuildHost; [
      meson
      ninja
    ]);

  postInstall = ''
     ${lib.getExe pkgsBuildHost.tool} $out
  '';
}

?

In order to override usage of a package, you’d then simply do:

package.override { pkgsBuildHost = pkgsBuildHost // { libfoo = ...; }; }

or use any other extension mechanism of your choice (i.e. overlays).

You could also build an override abstraction that would behave similar to the old .override with explicit spliced deps:

package.overridePkgs (prev: { libfoo = prev.libfoo.override...; })

It’d then apply that function to pkgsHostHost, pkgsBuildHost and any other pkgsXY.

Artturin · July 26, 2024, 8:33pm

Please note that combining the dependency attributes will break hook offsets.

Atemu · July 26, 2024, 8:41pm

Ah, good point, didn’t know that. Combining the withs in a sane manner looks kinda ugly like that anyways and something like this would be better:

{
  pkgsHostHost,
  pkgsBuildHost,
  lib,
}:

pkgsBuildHost.stdenv.mkDerivation {
  deps.buildHost = with pkgsBuildHost; [
    meson
    ninja
  ];
  deps.hostHost = with pkgsHostHost; [
    libfoo
  ];

  postInstall = ''
     ${lib.getExe pkgsBuildHost.tool} $out
  '';
}

(We could even get fancy and do deps.build.host but I digress.)

This would also finally free us from the confusing legacy buildInputs and nativeBuildInputs names.

AndersonTorres · July 26, 2024, 8:49pm

We can be more explicit, in the sense of a function like

buildPackage = setFromPkgsHostHost : setFromPkgsBuildHost : . . .

Atemu · July 26, 2024, 8:52pm

While we’re at it, we could even improve the API a bit and do this:

{
  pkgsHostHost,
  pkgsBuildHost,
  lib,
}:

pkgsBuildHost.stdenv.mkDerivation {
  deps.buildHost = {
    inherit (pkgsBuildHost)
      meson
      ninja
      ;
  ];
  deps.hostHost = {
    inherit (pkgsHostHost) libfoo;
  };

  postInstall = ''
     ${lib.getExe pkgsBuildHost.tool} $out
  '';
}

as lists are notoriously hard to override when you attempt to do anything but append/prepend.

Atemu · July 26, 2024, 8:58pm

I don’t understand what that is supposed to achieve, could you elaborate?

emily · July 26, 2024, 9:10pm

See also: simpler, saner cross-compilation · Issue #227327 · NixOS/nixpkgs · GitHub.

I don’t think we can expose the buildHost type names to the world without a revolt. I don’t even fully understand all the combinations myself. @roberth’s attempt to give them palatable names seems promising. Python packages now use build-system, dependencies, etc., which seem directionally nicer.

AndersonTorres · July 26, 2024, 9:21pm

While I was elaborating, you provided a better idea:

Atemu · July 26, 2024, 11:39pm

Haha

I can understand where you’re coming from but I have a different opinion on this matter: Consistent specific terms may not be as intuitive to a layman as well-chosen inconsistent unspecific terms but as long as they are clear and explained, a layman should be easily able to learn them. By learning the terms, people are exposed to the technology and theory behind the terms which IMO provides a much greater value than a term that is intuitively (mis-)understood.

buildInputs is a lot easier to intuitively understand than deps.hostHost; it’s the things that are put into the build, right?
It get a lot harder when you try to understand nativeBuildInputs intuitively though. IME even experienced Nix users/maintainers, while roughly knowing what it’s for and correctly using it (usually), struggle to explain it. Try it yourself, do you really know what happens when a package is put in nativeBuildInputs?

If you understood what deps.hostHost means, you will trivially be able to understand what deps.buildHost means. In fact, you will likely even have read about deps.buildHost while trying to understand deps.hostHost and understood them in concert.
If you then came across i.e. deps.buildTarget, you’d be much more likely to intuitively understand what that means or at least understand it after you’ve understood up the distinction between host and target. I think you’d also generally be far more likely to spot a cross-compilation bug armed with this knowledge.

For these reasons, as long as they are sensibly chosen and well explained, I always prefer consistent specific terms over intuitive inconsistent unspecific terms. (The masterclass are of course consistent specific intuitive terms but those are not always available.)

emily · July 27, 2024, 12:08am

Can you explain to me why we don’t ~ever use depsHostHost because depsBuildBuild is preferred? I kind of get it, but I feel like you managed to pick one of the most confusing examples there…

In my opinion part of the problem is that “target” as part of the system sucks and is downstream of GCC mis‐design. If there was only build and host then the combinatorial explosion would be a lot more manageable. We’re probably stuck with it, though.

AndersonTorres · July 27, 2024, 12:20am

Example:
Why, with strictDeps, cmake goes to nativeBuildInputs and cmake-extra-modules goes to buildInputs?