[RFC003] Nix-nickel (Draft, WIP) #693
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,330 @@ | ||
| --- | ||
| feature: nix-nickel | ||
| start-date: 2022-01-12 | ||
| author: Yann Hamdaoui | ||
| --- | ||
|
|
||
| # Nix-Nickel | ||
|
|
||
| The goal of the present RFC is to lay out a compelling plan to integrate Nix and | ||
| Nickel. We want to use Nickel as a front-end language for writing Nix | ||
| expressions in a seamless way -- or, at least, such that there is no aspect in | ||
| which Nickel is unreasonably worse than Nix expressions (and will be hopefully | ||
| better in others). | ||
|
|
||
| This document is structured as follows: | ||
|
|
||
| 1. [Motivation](#motivation): exposes the motivation and the scope of this RFC, | ||
| and gives concrete examples of what we want to achieve. | ||
| 2. [Challenges](#challenges): identifies the technical challenges, as of today, | ||
| raised by the goals defined in 1. | ||
| 3. [Proposal](#proposal): provides concrete proposals to overcome those | ||
| challenges and achieve the goals of 1. | ||
|
|
||
| ## Motivation | ||
|
|
||
| Nickel is a general-purpose configuration language. Yet, Nix is one very special | ||
| use-case. Nix has been the main motivation for creating Nickel in the first | ||
| place. Now that Nickel has been released, the next step is to offer a compelling | ||
| experience for using Nickel in place of Nix as a language to write packages, | ||
| flakes and modules. | ||
|
|
||
| ### Constraints | ||
|
|
||
| Because Nix is a distinct project from Nickel which has existed for quite some | ||
| time now, we need operate under the following constraints: | ||
|
|
||
| - _Do not require unreasonable changes to Nix itself_. While it's probably | ||
| illusory to avoid any change in Nix at all, we must strive to keep them | ||
| reasonably small and undisturbing for regular Nix users, at least in the | ||
| medium term. | ||
| - _Implementable in a reasonable timeline, if possible incrementally_. This RFC | ||
| aims at proposing a solid vision for the future and not a temporary | ||
| work-around. Still, given the finite bandwidth of the Nickel team, the | ||
| proposed solution should be implementable in limited time (in the order of | ||
| magnitude months, up to half a year). If possible, the plan should have | ||
| intermediate milestones enabling new capabilities in an incremental way. | ||
| - _Backward-compatible_. We will realistically need to be able to leverage | ||
| existing Nix code (especially from Nixpkgs) in some way: otherwise, even in | ||
| the unlikely best case scenario where everybody suddenly switches to Nickel | ||
| right away, it'll still take up a very long time to migrate everything. | ||
| - _Do not lock ourselves in the current Nixpkgs architecture_. Nixpkgs had | ||
| made a number of design choices that are, in hindsight, not optimal (stdenv, | ||
| describing packages as functions instead of data, etc.). While we have to | ||
| keep some form of backward-compatibility, we want to do so while avoiding to | ||
| tie ourselves to the current design and implementation. In other words, this | ||
| document must propose a solution that stay compatible with a future radical | ||
| departure from e.g. the Nixpkgs architecture. | ||
|
|
||
| ### Scope | ||
|
|
||
| Nix expressions are used in related but different ways, each coming with varying | ||
| goals and constraints: | ||
|
|
||
| - **Nixpkgs**: derivations and packages in the original style. | ||
| - **Flakes**: new format for decentralized and composable packages. | ||
| - **NixOS modules**: NixOS system configuration. | ||
|
|
||
| In the long term, we aims at handling all those cases, but the scope of such an | ||
| undertaking appears very large for a single RFC. We decide to focus on the first | ||
| item: writing derivations and Nixpkgs-style packages. | ||
|
|
||
| The rationale is that derivations are the foundational concept on which the | ||
| whole Nix model is based. Flakes and NixOS modules build on derivations, as | ||
| illustrated by the following excerpt from a NixOS module: | ||
|
|
||
| ```nix | ||
| systemd.myUnit.UnitConfig.ExecStart = pkgs.writeScript "foo" "..." | ||
| ``` | ||
|
|
||
| Something as innocent as using `pkgs.writeScript` in an hypothetical NixOS | ||
| Nickel module already implies to know how to generate derivations. | ||
|
|
||
| Thus, tackling derivations first makes sense. From there, Nixpkgs is probably | ||
| the thinnest layer over derivations of the three, and already open a lot of | ||
| possibilities, so we choose to include it as well. | ||
|
|
||
| ## Challenges | ||
|
|
||
| ### Interaction with Nixpkgs | ||
|
|
||
| There a bunch of actions that require leveraging Nixpkgs: | ||
yannham marked this conversation as resolved.
Show resolved
Hide resolved
yannham marked this conversation as resolved.
Show resolved
Hide resolved
|
||
|
|
||
| - **PKG**: Using a package from Nixpkgs, for example as a dependency | ||
| - **LIB**: Use one of the myriad of helpers from Nixpkgs: `mkShell`, | ||
| `mkDerivation`, `writeText`, etc. | ||
| - **OVD**: Use a package from Nixpkgs but overriding some of its parameters | ||
|
|
||
| **PKG** could be done in a simple way, by just passing around derivations from | ||
| Nix to Nickel. Derivations are fully evaluated data that can be encoded as e.g. | ||
| JSON. | ||
|
|
||
| **LIB** is more involved. Some of Nixpkgs helpers take either functions, but the | ||
| sole laziness of expressions means that an interface (in the form of a FFI) | ||
| between Nix and Nickel would needs to handle going back and forth between the | ||
| two languages transparently. | ||
|
|
||
| **OVD** is technically not very different than **LIB**, since it mostly amounts | ||
| to calling Nix functions like `override`, `overrideAttrs`, etc (for any override | ||
| that doesn't operate directly on a derivation, which most are). That is, solving | ||
| **LIB** would solve **OVD** as well. | ||
|
|
||
| ### String contexts | ||
|
|
||
| [String | ||
| contexts](https://shealevy.com/blog/2018/08/05/understanding-nixs-string-context/) | ||
| is a very useful feature of Nix. In a Nix program, each string carries a context | ||
| recording which other derivations it depends on at runtime, by tracking | ||
| variables usage inside string interpolation. Nix can then automatically | ||
| determine the dependencies of a derivation. | ||
|
|
||
| Abandoning the automatic dependency management offered by string contexts in | ||
| Nickel is an unacceptable degradation of the quality of life of Nix users. | ||
|
|
||
| ## Proposal | ||
|
|
||
| ### What could Nix-Nickel look like | ||
|
|
||
| Let's imagine what would in practice our ideal way of writing packages in | ||
| Nickel. The main inspiration for this section is Eelco Dolstra's [reflection on | ||
| the Nix language of the future][nix-lang]. | ||
|
|
||
| #### Package as data | ||
|
|
||
| Despite Nix being branded as a _functional_ package manager, a perhaps | ||
| surprising conclusion of Eelco's document is that writing packages as actual | ||
yannham marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| functions is retrospectively of questionable value. Functions need to be applied | ||
| (and thus arguments be produced) before we can access any data (which hurts | ||
| discoverability), their inputs are hard to override, etc. Overall, functions are | ||
| opaque _computations_ (or _codata_), which makes them hard to inspect and to | ||
yannham marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| patch. The reflection above pushes to switch to a model where packages are | ||
| rather _data_. Of course, computations still take place -- this is after all the | ||
| whole point of having a configuration language -- but the right representation | ||
| for a package may be better separate and expose pure data and represent | ||
| computations as data dependencies. | ||
|
|
||
| Concretely, a derivation would be better represented simply as a recursive | ||
| records: | ||
|
|
||
| ```nickel | ||
| builders.derivation = { | ||
|
|
||
| # Interface | ||
|
|
||
| name | ||
| | doc "Name of the derivation, used in the Nix store path." | ||
| | Str, | ||
|
|
||
| version | ||
| | doc "Version of the derivation, used in the Nix store path." | ||
| | Str, | ||
yannham marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| | default = "", | ||
|
|
||
| builder | ||
| | doc "Command to be executed to build the derivation." | ||
| | Path, | ||
|
|
||
| args | ||
| | doc "Arguments passed to the builder." | ||
| | Array Str | ||
| | default = [], | ||
|
|
||
| outputs | ||
| | doc "Symbolic names of the outputs of this derivation." | ||
| | Array Str | ||
| | default = ["out"], | ||
|
|
||
| env | ||
| | doc "Structured values passed to the builder." | ||
| | {_: Str} | ||
| # inherit doesn't exist in Nickel, but let's pretend, for conciseness | ||
| = {inherit outputs}, | ||
|
|
||
| # Implementation | ||
|
|
||
| drv | ||
| | doc "The resulting store derivation." | ||
| = | ||
| (env & { | ||
| name = "%{name}-%{version}"; | ||
| inherit builder args; | ||
| }) | ||
| |> builtin.derivation | ||
| } | ||
|
|
||
| # ... other definitions building on this one | ||
|
|
||
| # actual package | ||
| pkgs.hello = builders.unix_package & { | ||
yannham marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| name = "hello", | ||
| version = "1.12", | ||
| description = "A program that produces a familiar, friendly greeting", | ||
| license = licenses.gpl, | ||
|
|
||
| enable_gui | ||
| | doc "Enable GTK+ support." | ||
| | Bool | ||
| | default false, | ||
|
|
||
| src = builders.fetchurl & { url = ..., sha256 = ... }, | ||
|
|
||
| buildInputs = if enable_gui then [ gtk ] else [], | ||
| } | ||
| ``` | ||
|
|
||
| Thanks to laziness, `nix` could extract fields like `name` or `version` directly | ||
| without having to provide inputs or to evaluate `drv`. Those examples and ideas | ||
| are taken directly from [Eelco's report][nix-lang]. | ||
|
|
||
| <!-- TODO: How to specify the dependencies, like gtk? Are they part of the huge | ||
| fixpoint that will be Nickelpkgs? --> | ||
|
|
||
| #### Cohabitation with Nixpkgs | ||
|
|
||
| How would that model be able to co-exist with the current Nixpkgs architecture? | ||
| In particular, could we override a package from Nixpkgs and use it in one of our | ||
| derivation? | ||
|
|
||
| <!-- TODO: answer that question --> | ||
|
|
||
| ### Interaction | ||
|
|
||
| As underlined in [Interaction with Nixpkgs](#interaction-with-nixpkgs), an FFI | ||
| mechanism would require a bidirectional communication between Nix and Nickel. | ||
| This is made complicated by the nature of both languages, which are lazy and | ||
| functional, meaning that a Nix function called from Nickel may incur arbitrary | ||
| calls back to Nickel (and vice-versa) to apply functions or to evaluate thunk. | ||
| Not only does this seem complex, but also non trivial to be made efficient. | ||
|
|
||
| Another possibility is to have everything evaluate in only one world, either Nix | ||
| or Nickel. Practically, we could compile the Nix code to Nickel or vice-versa, | ||
| and run everything on one side only. | ||
|
|
||
| Compiling Nickel to Nix and run everything on the Nix side would have the | ||
| advantage of leveraging all the Nix primitives and machinery freely. However, | ||
| this solution simply nullifies a lot of the value proposition of Nickel. The | ||
| added value of contracts is mainly due to its careful design as a primitive | ||
| feature of the language, and while it could be simulated to some extent in Nix, | ||
| the error message and performances just wouldn't in par. Similarly, the merge | ||
| system being native is in part motivated by the perspective of better | ||
| performance and error message. This is hard to maintain if we just compile those | ||
| features away back to plain Nix code. | ||
|
|
||
| On the other hand, compiling Nix to Nickel looks simpler at first sight. Nickel | ||
| is close to being a superset of Nix (the only non-trivial missing features being | ||
| the `with` construct and string contexts, but the latter doesn't even really | ||
| change the semantics). This would preserve the Nickel advances, and we could | ||
| leverage directly any non-builtin Nix function, including all the Nixpkgs | ||
| library functions. | ||
|
|
||
| The potential drawbacks of this approach: | ||
|
|
||
| - Performance: Nickel is just not in par with Nix at this point, so the | ||
| performance of Nixpkgs compiled to Nickel might be prohibitively bad at first. | ||
| On a positive note, this would provide a great benchmark suite to guide future | ||
| performance improvements. | ||
| - Some builtin may include effects, which are not trivial to combine with the | ||
| execution model (reversible thunks). That being said, those effects are in | ||
| fact idempotent and commutative (creating path in the store, creating | ||
| derivation, etc.), which should be fine. | ||
| - Compilation could be done on the fly (shouldn't be too long), or have a | ||
| Nixpkgs snapshot pre-compiled to Nickel, or a mix of both. | ||
|
|
||
| This solutions require to reimplement Nix builtins in Nickel (a compatibility | ||
| layer). This is an interesting milestone in itself, because even without a | ||
| Nix-to-Nickel compiler, the compatibility layer would already make writing | ||
| derivations in pure Nickel possible. | ||
|
|
||
| Note: what about dynamic imports? | ||
|
|
||
| ### String Context | ||
|
|
||
| Ideally, we would like to have a behavior similar to Nix string contexts | ||
| automatically track dependencies in a transparent way (you don't have to think | ||
| about it in Nix, using strings in a natural way). | ||
|
|
||
| There is a tension between endowing Nickel with specific features for the Nix | ||
| use-case and keeping it a general and versatile language for configuration. | ||
|
|
||
| One solution is to support string contexts in Nickel exactly as in Nix. But that | ||
| would do feel _ad hoc_. Other use-cases would benefit from a similar but more | ||
| flexible mechanism for automatic dependency tracking. For example, in Terraform, | ||
| interpolated expressions can refer to values that are only known after certain | ||
| resources have been deployed. The Terraform evaluator thus uses a similar | ||
| mechanism job to elaborate a deployment plan from string metadata. Using Nickel | ||
| for Terraform may need to replicate this mechanism in some way. | ||
|
|
||
| We propose to adopt a more generic mechanism for strings with context, which | ||
| behavior can be parametrized. Strings become (conceptually) pairs `(s, ctxt)` | ||
| where `ctxt` is an arbitrary data structure with additional structure: | ||
|
|
||
| ```nickel | ||
| { | ||
| combine: Ctxt -> Ctxt -> Ctxt, | ||
| pure: Str -> Ctxt, | ||
| pure_exp: Expr -> Ctxt, | ||
| } | ||
| ``` | ||
|
|
||
| The above functions could either be provided by user code or directly as an | ||
| interpreter plug-in. | ||
|
|
||
| - Existing standard strings would be equivalent to having a trivial context | ||
| `null` and the obvious corresponding trivial structure. | ||
| - Custom contexts would be introduced by specific string delimiters, such as | ||
| `nix%" %{pkgs.hello}/bin/hello"%` | ||
| - Different kind of strings are incompatible, to avoid accidentally forgetting | ||
| or losing contexts. Also, we don't know a priori how to convert one context to | ||
| another. | ||
| - There would be a contract to distinguish the different kind of | ||
| strings in order enforce the usage of e.g. Nix style contexts for writing | ||
| Nickel for Nix. We want to avoid users loosing context unknowingly. | ||
|
|
||
| Alternative: something like `g-exp`. No magic, no extension, but less ergonomic. | ||
|
There was a problem hiding this comment. What are There was a problem hiding this comment. Those are the Guix equivalent of string contexts, somehow: manual page. At this point this paragraph is just draft notes, but it'll deserve a proper link indeed once finalized. At a quick glance, it's less ergonomic because:
As opposed to Nix where string contexts just work without having the user to even think about it or convert between strings and derivations. On the other hand, the explicitness of g-exp may actually be a good point: arguably, it makes things less magic. But it would still be one additional thing that Nix users don't need to do today. Although, I think what was written at the time is not true: something akin to g-expr in Nickel using standard syntax for strings, like interpolation There was a problem hiding this comment. I understand that this is a draft. That's no problem! Thanks for the reference. I have not delved much into Guix. Nix/NixOS is niche enough for me 🙂. As I mentioned in IRL, my thinking is that the ideal solution is to have overloaded and customisable interpolated strings. Some languages do this such as Scala and Haskell (via quasiquotes and TH). In Scala it requires a prefix. Haskell doesn't have builtin interpolation, so quasiquotation kind of is the way 🤷♂️. I experimented a little bit with the the support in Idris the other night. It seems doable. Though I seem to have hit a limitation, misunderstanding, or bug in Idris. There was a problem hiding this comment. In Idris, for instance, you can overload the standard string interpolation syntax. It should be possible to make something like this work: postInstall : PkgExp
postInstall = """
substituteInPlace \{out}/bin/my-script \\
--replace /usr/bin/python \{python}/bin/python \\
--replace /usr/bin/perl "\{perl}/bin/perl -I \{libfoo}"
"""I'm not fond of that backslash as it evokes the idea of a "lambda". This is simply how string interpolation is defined in Idris (strange as In this short experiment, |
||
|
|
||
| <!-- TODO: add a proposal using effects. If string interpolation can perform | ||
| effects, including actual deployment (and not just build free effects AST), that | ||
| may subsume the string contexts usage as well as other like Terraform | ||
| interpolation --> | ||
|
|
||
| [nix-lang]: https://gist.github.com/edolstra/29ce9d8ea399b703a7023073b0dbc00d | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
If there are written document that describe the shortcomings of
stdenvand packages-as-functions. It would be best to link to them here.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
https://github.com/nixpkgs-architecture/issues/issues/1