minimal-bootstrap: make sources a non-tarballs.nixos.org FOD #238357
Conversation
ghost
requested a review
from 
|
The gigantic comment should be moved into the manual once we switch over to using |
pkgs/os-specific/linux/minimal-bootstrap/stage0-posix/bootstrap-sources.nix
Show resolved
Hide resolved
pkgs/os-specific/linux/minimal-bootstrap/stage0-posix/make-bootstrap-sources.nix
Outdated
Show resolved
Hide resolved
|
@amjoseph-nixpkgs would you be interested in adding yourself the |
|
Squashed.
Yes, we can have a test which initializes a completely empty store and does a
Sure; I probably need to add myself to |
pkgs/os-specific/linux/minimal-bootstrap/stage0-posix/default.nix
Outdated
Show resolved
Hide resolved
pkgs/os-specific/linux/minimal-bootstrap/stage0-posix/make-bootstrap-sources.nix
Outdated
Show resolved
Hide resolved
| specifically designed for bit-exact reproducibility, none of the | ||
| requirements above apply to `minimal-bootstrap-sources`. | ||
| */ | ||
| minimal-bootstrap-sources = make-minimal-bootstrap-sources.overrideAttrs(_: { |
There was a problem hiding this comment.
This will eventually not work because the drv files are cyclic (cyclic hashing problem) even if the input-addressing isn't cyclic. But that's fine. We can use a stub failing FOD with the same hash at that point, just like the fetchers for proprietary things.
There was a problem hiding this comment.
You're absolutely right. We should just do it now and get it over with. @Ericson2314 @emilytrau, please take a look at c8080b0 which implements this. Here's what the failure looks like on the console:
There was a problem hiding this comment.
I tested this by making bootstrapTools depend on minimal-bootstrap-tools as shown below, and eval succeeded. The build began, but obviously it won't complete.
diff --git a/pkgs/stdenv/linux/bootstrap-tools/default.nix b/pkgs/stdenv/linux/bootstrap-tools/default.nix
index 569f0c6f31e2..6aa8e6fbc6cf 100644
--- a/pkgs/stdenv/linux/bootstrap-tools/default.nix
+++ b/pkgs/stdenv/linux/bootstrap-tools/default.nix
@@ -3,7 +3,7 @@
derivation ({
name = "bootstrap-tools";
- builder = bootstrapFiles.busybox;
+ builder = "/bin/sh";
args = [ "ash" "-e" ./scripts/unpack-bootstrap-tools.sh ];
diff --git a/pkgs/stdenv/linux/default.nix b/pkgs/stdenv/linux/default.nix
index 9cfe21e3640d..e475787287d6 100644
--- a/pkgs/stdenv/linux/default.nix
+++ b/pkgs/stdenv/linux/default.nix
@@ -55,6 +55,8 @@
# $ nix-tree --derivation $(nix-instantiate -A stdenv)
{ lib
, localSystem, crossSystem, config, overlays, crossOverlays ? []
+, minimal-bootstrap-tools ?
+ (import ../../os-specific/linux/minimal-bootstrap/stage0-posix/bootstrap-sources.nix {}).minimal-bootstrap-sources
, bootstrapFiles ?
let table = {
@@ -92,7 +94,10 @@
or (abort "unsupported libc for the pure Linux stdenv");
files = archLookupTable.${localSystem.system} or (if getCompatibleTools != null then getCompatibleTools
else (abort "unsupported platform for the pure Linux stdenv"));
- in files
+ in {
+ bootstrapTools = minimal-bootstrap-tools;
+ busybox = null;
+ }
}:
assert crossSystem == localSystem;
pkgs/os-specific/linux/minimal-bootstrap/stage0-posix/make-bootstrap-sources.nix
Outdated
Show resolved
Hide resolved
pkgs/os-specific/linux/minimal-bootstrap/stage0-posix/default.nix
Outdated
Show resolved
Hide resolved
|
Linking back to the thread #227914 |
This commit adjusts #232576 to break the fetchurl<->minimal-bootstrap-sources dependency cycle without needing an upload to tarballs.nixos.org. It does this by appending the low-level FOD attributes onto the `runCommand` derivation. https://nixos.org/manual/nix/unstable/language/advanced-attributes.html#adv-attr-outputHash
|
I squashed all of the suggested-changes. c8080b0 has new content; please take a look. See also #238357 (comment) |
Ericson2314 observed that although FODs break the build-time cycle, they don't break the eval-time cycle. This cycle must be broken in order to compute the derivation hash. make-minimal-bootstrap-sources does and always has depended on the full nixpkgs (including fetchFromGitHub). This commit completely separates minimal-bootstrap-sources from it, so that minimal-bootstrap-sources now does not depend on make-minimal-bootstrap-sources (or nixpkgs) in any way. minimal-bootstrap-sources is now a "bare Nix" derivation. It is an FOD whose builder always fails with an error message.
|
Uh oh, did I merge to soon? the hex1 build seems to be spinning in a loop for me. |
Alternative to #232576, does not require manual uploads to
tarballs.nixos.org.Description of changes
This commit adjusts #232576 to break the fetchurl<->minimal-bootstrap-sources dependency cycle without needing an upload to tarballs.nixos.org. It does this by appending the low-level FOD attributes onto the
runCommandderivation.https://nixos.org/manual/nix/unstable/language/advanced-attributes.html#adv-attr-outputHash
Things done
sandbox = trueset innix.conf? (See Nix manual)nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage./result/bin/)