Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VM test closure checks #70981

Draft
wants to merge 3 commits into
base: staging
Choose a base branch
from
Draft

VM test closure checks #70981

wants to merge 3 commits into from

Conversation

edolstra
Copy link
Member

@edolstra edolstra commented Oct 11, 2019
edited

This adds checks to ensure that the config.system.build.toplevel derivation of a VM does not have -dev outputs or gcc in its closure, and that the size of the closure is not unexpectedly high. (The default is 1 GiB, but this can be overriden per test.)

@stale
Copy link

stale bot commented Jun 1, 2020

Thank you for your contributions.
This has been automatically marked as stale because it has had no activity for 180 days.
If this is still important to you, we ask that you leave a comment below. Your comment can be as simple as "still important to me". This lets people see that at least one person still cares about this. Someone will have to do this at most twice a year if there is no other activity.
Here are suggestions that might help resolve this more quickly:

  1. Search for maintainers and people that previously touched the
    related code and @ mention them in a comment.
  2. Ask on the NixOS Discourse. 3. Ask on the #nixos channel on
    irc.freenode.net.

@stale stale bot added the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Jun 1, 2020
@edolstra edolstra mentioned this pull request Oct 2, 2020
Open
@stale stale bot removed the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Oct 2, 2020
@nrdxp
Copy link
Contributor

nrdxp commented Mar 24, 2021

Do we still care about this? Seems like it might be useful to include in the upcoming release.

@stale
Copy link

stale bot commented Sep 21, 2021

I marked this as stale due to inactivity. → More info

@stale stale bot added the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Sep 21, 2021
@edolstra edolstra removed the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Feb 16, 2022
@edolstra edolstra mentioned this pull request Feb 16, 2022
Closed
@stale stale bot added the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Sep 21, 2022
@RaitoBezarius
Copy link
Member

Is there something I can do to help with getting this PR merged?

Artturin
Artturin reviewed Dec 1, 2022
View reviewed changes
nixos/modules/virtualisation/qemu-vm.nix
@@ -410,6 +410,27 @@ in
'';
};

# FIXME: should move this to top-level.nix.
system.forbiddenDependencies = mkOption {
Copy link
Member

@Artturin Artturin Dec 1, 2022
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i'll split this in to a separate pr and address the FIXME

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#203956

@stale stale bot removed the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Dec 1, 2022
@Artturin Artturin mentioned this pull request Dec 1, 2022
Merged
13 tasks
roberth
roberth reviewed Dec 7, 2022
View reviewed changes
nixos/lib/build-vms.nix
# Ensure that NixOS configurations don't have -dev paths
# or gcc.out in their closures.
system.forbiddenDependencies = mkDefault "(-dev$)|(-gcc-[0-9\.]+$)|(gcc-wrapper)";
system.maxClosureSize = mkDefault (1024 * 1024 * 1024);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Based on my experience with GHC, it will be the tests on ARM that run into such a check first.
Those are may be undermaintained, so they'd (wrongly) end up in the bag of tests considered flaky, so I wouldn't want to burden all tests with a (default) closure size check. Instead, we could check some key services or even just the empty NixOS on a single, popular system, such as x86_64-linux. (e.g. nixosTests.empty-system-closure-size, so the problem can be spotted at a glance)

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sounds good, I think.

@stale stale bot added the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Jun 18, 2023
@wegank wegank marked this pull request as draft March 20, 2024 15:10
@stale stale bot removed the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Mar 20, 2024
@wegank wegank added the 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md label Mar 20, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@RaitoBezarius RaitoBezarius RaitoBezarius left review comments

@roberth roberth roberth left review comments

@Ma27 Ma27 Ma27 left review comments

@Artturin Artturin Artturin left review comments

Assignees
No one assigned
Labels
2.status: merge conflict 2.status: stale https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md 6.topic: closure-size 6.topic: nixos 8.has: module (update) 10.rebuild-darwin: 0 10.rebuild-linux: 0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
9 participants
@edolstra @nrdxp @RaitoBezarius @roberth @Ma27 @Artturin @ryantm @vcunat @wegank