[RFC 140] Simple package paths, part 1a: Checking tool #250885
Conversation
infinisil
force-pushed
the
spp-1a
branch
5 times, most recently
from
3fe973c
to
ff5e050
Compare
|
The code is fairly clean now, I added a bunch of comments, there's contributor docs and there's a bunch of tests, so this is ready to be reviewed! |
|
Thanks for the suggestions, all applied now, also added some more code comments. |
| } | ||
| } | ||
|
|
||
| pub fn check_nixpkgs<W: io::Write>( |
There was a problem hiding this comment.
This could use a docstring explaining the purpose of the extra_nix_path parameter and how to interpret the boolean return value.
There was a problem hiding this comment.
Added! Also renamed the parameter to eval_accessible_paths: Vec<&Path> to be more self-explanatory.
| impl Nixpkgs { | ||
| /// Read the structure of a Nixpkgs directory, displaying errors on the writer. | ||
| /// May return early with I/O errors. | ||
| pub fn new<W: io::Write>(path: &Path, writer: &mut ErrorWriter<W>) -> anyhow::Result<Nixpkgs> { |
There was a problem hiding this comment.
Nitpick: generally you don't see impl blocks split like this unless there's generic type parameters or trait bounds requiring you to do so.
There was a problem hiding this comment.
Yeah, I was thinking that too, but I intentionally split it to have a better grouping: The long initialization vs the static utility functions merely related to the type. I'd prefer to leave it like this unless there's a good reason not to do that
|
|
||
| let nixpkgs = Nixpkgs::new(&nixpkgs_path, writer)?; | ||
|
|
||
| if writer.empty { |
There was a problem hiding this comment.
Detecting errors by checking whether this writer is empty is an elegant solution, but it may not be the most obvious one. Rather than coming up with a different solution you could probably make this more obvious with a more explicit name like error_writer and a comment explaining that this writer will only be empty if no errors were encountered while parsing nixpkgs.
There was a problem hiding this comment.
(there is a comment below), but I renamed it to error_writer, also changed check_nixpkgs to only take an io::Write, internally wrapping it with ErrorWriter. Makes more sense that way given that it returns whether any errors were written itself.
|
|
||
| let mut package_names = Vec::new(); | ||
|
|
||
| for shard_entry in utils::read_dir_sorted(&base_dir)? { |
There was a problem hiding this comment.
I'm not sure what level of rigor you're looking for, but if you split this into a shard-handling layer and a package-handling layer you could property test this with proptest. The strategy (pun intended) would look something like this:
// inside test module
pub enum EntryType {
File,
Dir,
}
pub pkg_by_name_entry() -> impl Strategy<Value = (EntryType, String)> {
(prop_oneof![
EntryType::Dir,
EntryType::File,
],
<strategy generating strings>
)
}
pub fn pkgs_by_name_entries(max_len: usize) -> impl Strategy<Value = Vec<(EntryType, String)>> {
proptest::vec(pkgs_by_name_entry(), 0..max_len)
}
pub fn create_entries(base_dir: PathBuf, entries: Vec<(EntryType, String)>) {
for (etype, name) in entries.iter() {
let path = base_dir.join(name);
use EntryType::*;
match etype {
Dir => <mkdir path>,
File => <touch path>,
}
}
}
proptest! {
#[test]
fn validates_shards(entries in pkgs_by_name_entries(100)) {
let temp_dir = ...;
create_entries(temp_dir, entries);
# do some testing
# delete temp_dir
}
}There was a problem hiding this comment.
Thanks for the suggestion! I think this is a bit overboard, I'm fairly happy with the existing integration tests in ./tests, which do at least cover all of the potential errors. And the checking isn't so complicated that I think we can benefit a lot from property tests. Especially since it seems pretty hard to come up with beneficial ones. So I'd like to leave it at that for now.
| eval::check_values(writer, &nixpkgs, extra_nix_path)?; | ||
| references::check_references(writer, &nixpkgs)?; | ||
| } | ||
| Ok(writer.empty) |
There was a problem hiding this comment.
Another point on this writer. If you wanted to make things more pure, you could separate out the various operations that could write error messages, then pass in a separate writer (doesn't need to be anything more complicated than a Vec) to each one. After each operation you would std::io::copy from the Vec to the main writer that actually does the printing.
You're obviously doing more I/O this way, but the tradeoff is that you don't have to pass around the same stateful object (writer) through the entire program and you could then write unit tests ensuring that error messages actually get written for various error conditions (e.g. in a test you would supply an empty Vec to the operation under test, run the operation, then check that writer.empty == false).
There was a problem hiding this comment.
I'm not sure what you mean here. All of the functions already take a writer as an argument already, and I do pass a Vec in the tests to make sure each individual problem gives the expected error. I guess the tests could be for individual checks for better unit-testing, though I don't think it's very necessary here, since it's not a library meant to be re-used. Only the resulting CLI that will be used, so having the integration tests in ./tests seem good enough to me.
infinisil
force-pushed
the
spp-1a
branch
2 times, most recently
from
996bd3f
to
0985c5c
Compare
|
In addition to addressing @zmitchell's comments, I also added some more code comments and this section in the README.md describing the validity checks performed, such that nobody needs to look at the RFC itself for those. |
pkgs/test/default.nix
Outdated
| @@ -93,4 +93,6 @@ with pkgs; | |||
| }; | |||
|
|
|||
| pkgs-lib = recurseIntoAttrs (import ../pkgs-lib/tests { inherit pkgs; }); | |||
|
|
|||
| nixpkgsCheckByName = callPackage ./nixpkgs-check-by-name { }; | |||
There was a problem hiding this comment.
I don't think the package should be hidden, and it should be named as a proper package in snake case. Could you add it to all-packages.nix or is that planned for PR 1b?
There was a problem hiding this comment.
It's not strictly hidden, you can build it using nix-build -A tests.nixpkgsCheckByName. But it's not meant to be installed by users or to be stable, so I don't think it should be in the main package set. In particular also, tests is not being recursed into by nix search/nix-env/search.nixos.org (tests.recurseForDerivations is not set), so it doesn't show up in searches.
Changing the attribute to nixpkgs-check-by-name though sounds okay (now done).
|
I now updated this to ensure the tool is always available pre-built on the |
Adds an internal CLI tool to verify Nixpkgs to conform to RFC 140. See pkgs/test/nixpkgs-check-by-name/README.md for more information.
nixos/release-combined.nix
Outdated
| # Ensure that nixpkgs-check-by-name is available in all release channels and nixos-unstable, | ||
| # so that a pre-built version can be used in CI for PR's on the corresponding development branches. | ||
| # See ../pkgs/test/nixpkgs-check-by-name/README.md | ||
| ["nixpkgs.tests.nixpkgs-check-by-name.x86_64-linux"] |
There was a problem hiding this comment.
| ["nixpkgs.tests.nixpkgs-check-by-name.x86_64-linux"] | |
| (onSystems ["x86_64-linux"] "nixpkgs.tests.nixpkgs-check-by-name") |
There was a problem hiding this comment.
We looked at this together in the meeting today with the NAT (except @roberth) and fixed some last things including:
- Making it work on Darwin (thanks @YorikSar, @whentze, @tomberek)
- Fix the CODEOWNERS file
- Minor change to the Hydra jobset spec (thanks @Artturin)
There was general approval to merge it, so let's go 🚀
|
Successfully created backport PR for |
|
This ironically blocks channel updates because it includes case-sensitive duplicate packages, which is exactly the point, we want to test that! 😄 I'm looking into fixing this :) Edit: #252210 fixes this |
|
This pull request has been mentioned on NixOS Discourse. There might be relevant details there: https://discourse.nixos.org/t/2023-09-05-nixpkgs-architecture-team-meeting-43/32635/1 |
Description of Changes
This is part of the implementation of accepted RFC 140. This is split off from #237439 in order to make the CI implementation faster and easier.
In particular, this PR does two things:
tests, it's not intended to be stable.This allows [RFC 140] Simple package paths, part 1b: Enabling the directory structure #237439 to then just fetch the tool from the nixos-* channels (potentially with some pinning inbetween), without having to do any compilation, allowing it to check all PR's without any build delay, even ones that would cause mass rebuilds.
Notably this only works because the tool only needs to do a minimal Nix evaluation, which can run in
--readonly-mode(therefore not even writing anything to the store).Things done