nixos-rebuild-ng: support using nix-output-monitor

[philiptaron]

This PR introduces the NixOS option system.rebuild.enableNom, which causes nixos-rebuild-ng to use nix-output-manager to display a beautiful tree of dependencies being built.

Its first commit is from #454982 which should be merged first.

Recommend reviewing commit-by-commit. Most of the commits prior to the last one are just refactoring and could be jettisoned if objected to, but ... I like them. 🙂

I tested this out on my system and it works great.

Things done

• Built on platform:
  • x86_64-linux
  • aarch64-linux
  • x86_64-darwin
  • aarch64-darwin
• Tested, as applicable:
  • NixOS tests in nixos/tests.
  • Package tests at passthru.tests.
  • Tests in lib/tests or pkgs/test for functions and "core" functionality.
• Ran nixpkgs-review on this PR. See nixpkgs-review usage.
• Tested basic functionality of all binary files, usually in ./result/bin/.
• Nixpkgs Release Notes
  • Package update: when the change is major or breaking.
• NixOS Release Notes
  • Module addition: when adding a new NixOS module.
  • Module update: when the change is significant.
• Fits CONTRIBUTING.md, pkgs/README.md, maintainers/README.md and other READMEs.

[thiagokokada]

Did just a very high look at this, but there is a bunch of controversial changes:

• It seems that now this always run the reexec code, while the original version this is conditionally enabled on purpose (we disable this if the user runs nixos-rebuild-ng standalone, i.e., not as part of NixOS, because reexec can do the wrong thing in those cases)
• There is some undocumented changes in behavior, like printing help instead of the manpage
• Hardcoding binary names to be patched later. This seems bad because we will need to update the patch every time we need to add a new executable
• Not sure why we need to split the package in 3 files? I like the split between tests and the main package, but anything else seems unnecessary

In general this PR just seems to be trying to many things at once. To get it to a mergeable state I would recommend trying to focus in either introducing nix-output-monitor or refactoring the code. But even them I would prefer for us to talk before doing bigger refactoring, there is a reason a few things are the way they are.

[philiptaron]

But even them I would prefer for us to talk before doing bigger refactoring, there is a reason a few things are the way they are.

Yes, let's definitely do that. How about here? I'm also available on Matrix, but for these sorts of discussions I prefer GitHub.

I'll respond in separate threads to the other issues, and I'm always glad to split into multiple PRs.

[thiagokokada]

Yes, let's definitely do that. How about here? I'm also available on Matrix, but for these sorts of discussions I prefer GitHub.

Since I think this will need some back and forth I think Matrix will work better. But as a general feedback:

• Avoid patching code that is already in nixpkgs tree, this is why the constants.py file is that way and unless there is a better solution I would prefer to keep it as-is
• I prefer to use the Python wrapper to set the PATH for external programs instead of setting the full path for each program
• Either implement a new feature or refactor, don't do both in the same PR

I think this should be enough for now, but if you want I can do a proper review tomorrow.

[philiptaron]

Is there a matrix room for these sorts of discussions? One reason I favor GitHub is due to the ease with which we can scope the discussion but still have it in public. The other is that my favorite matrix client just got ejected from Nixpkgs due to a dependency on libsoup, so I am currently adapting (poorly) to other clients.

[thiagokokada]

I think this is the default already.

[philiptaron]

Sounds good, I'll remove.

[thiagokokada]

I can't really review the nix-output-monitor changes so you better ping the maintainer for that.

[thiagokokada]

But do we really need those patches? When we wrap the Python programs we add everything from nativeBuildInputs to the PATH. So I assume just adding nix-output-monitor to nixos-rebuild-ng derivation should be sufficient here.

[philiptaron]

That's true. I preferred to avoid the wrapper in favor of embedding the Nix store path in the file, but I'll respect your choice in the matter.

[thiagokokada]

I know this looks a clever way to avoid having this as a build constant, but the reason we had this is because we can run nixos-rebuild-ng without building it (by running nix-shell -A nixos-rebuild-ng.devShell && python -m nixos_rebuild) and this is nice for hacking new features.

Now if you do the same this will try to re-exec instead so you can really hack new things, unless you remember to pass --no-reexec flag.

[thiagokokada]

I am against us patching files for code that is inside the nixpkgs street since this makes adding new features unnecessary complicated: we need to add the code first, commit, modify the code, create a patch and commit the path. This is why the constants.py file was the way it was.

[philiptaron]

I'll return to the constants/--replace-fail route.

[thiagokokada]

Same here, let's avoid needing to patch code that is inside nixpkgs.

[philiptaron]

Sounds good. I'll return to the constants route.

[thiagokokada]

BTW, does this support --target-host and --build-host ? I don't think it is necessarily a blocker to not support them, but if we don't support we need to at least document this somewhere.