Skip to content

mkBinaryCache: fix nixos/tests/binary-cache.nix #370773

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
philiptaron merged 1 commit into from
Jan 17, 2025
Merged

mkBinaryCache: fix nixos/tests/binary-cache.nix #370773

philiptaron merged 1 commit into from
Jan 17, 2025
+26 −8

Conversation

@thomasjm
Copy link
Contributor

@thomasjm thomasjm commented Jan 4, 2025

This fixes the test in nixos/tests/binary-cache.nix. It stopped working sometime between release-23.05 and release-23.11. I'm not sure exactly why, but I think it has something to do with the build sandbox being introduced. Currently, the test tries to build the binary cache on the VM, and a bunch of dependencies are not present, and it has no network access so it fails to download them.

The new approach is actually cleaner: we build the binary cache outside the VM, and then transfer it onto the VM. In order to ensure that we test building against the cache only and don't pollute the store with unnecessary paths, we encrypt the cache to defeat Nix reference scanning. (I considered using an FOD instead, but this seems more foolproof and cleaner.)

To test: nix-build -A nixosTests.binary-cache

In the course of testing this, I learned that doing nix-build -A nixosTests.binary-cache.driver && ./result/bin/nixos-test-driver actually works differently -- invoking the driver like this does not use the build sandbox, so is less isolated than the plain nix-build approach.

Things done

  • Built on platform(s)
    • x86_64-linux
    • aarch64-linux
    • x86_64-darwin
    • aarch64-darwin
  • For non-Linux: Is sandboxing enabled in nix.conf? (See Nix manual)
    • sandbox = relaxed
    • sandbox = true
  • Tested, as applicable:
  • Tested compilation of all packages that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage
  • Tested basic functionality of all binary files (usually in ./result/bin/)
  • 25.05 Release Notes (or backporting 24.11 and 25.05 Release notes)
    • (Package updates) Added a release notes entry if the change is major or breaking
    • (Module updates) Added a release notes entry if the change is significant
    • (Module addition) Added a release notes entry if adding a new NixOS module
  • Fits CONTRIBUTING.md.

Add a 👍 reaction to pull requests you find important.

@github-actions github-actions bot added 6.topic: nixos Issues or PRs affecting NixOS modules, or package usability issues specific to NixOS 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 0 This PR does not cause any packages to rebuild on Linux. labels Jan 4, 2025
@thomasjm thomasjm mentioned this pull request Jan 4, 2025
Merged
13 tasks
@thomasjm thomasjm force-pushed the fix-binary-cache-test branch from 834e794 to 6b261ea Compare January 5, 2025 07:47
@nixos-discourse
Copy link

nixos-discourse commented Jan 5, 2025

This pull request has been mentioned on NixOS Discourse. There might be relevant details there:

https://discourse.nixos.org/t/prs-ready-for-review/3032/5045

@thomasjm thomasjm mentioned this pull request Jan 5, 2025
Merged
13 tasks
@thiagokokada
Copy link
Contributor

thiagokokada commented Jan 7, 2025

@ofborg test binary-cache

@thomasjm
Copy link
Contributor Author

thomasjm commented Jan 17, 2025

Hi @thiagokokada, any chance you could finish this review?

@philiptaron philiptaron merged commit 31f1c93 into NixOS:master Jan 17, 2025
27 of 31 checks passed
@philiptaron
Copy link
Contributor

philiptaron commented Jan 17, 2025

Thanks for the ping. I was up early and was able to fetch and verify that the test now passes. Code looks good and I refrained from nitpicking.

@thomasjm
Copy link
Contributor Author

thomasjm commented Jan 17, 2025

Thanks @philiptaron!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@philiptaron philiptaron philiptaron approved these changes

@ryantrinkle ryantrinkle Awaiting requested review from ryantrinkle

Assignees

No one assigned

Labels

6.topic: nixos Issues or PRs affecting NixOS modules, or package usability issues specific to NixOS 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 0 This PR does not cause any packages to rebuild on Linux.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@thomasjm @nixos-discourse @thiagokokada @philiptaron