notes from nixpkgs#173885

• “There is not yet a good way to resolve ‘ping’ in Nix builds.” (Which don’t come up with any suggestion, I’ve added it as an external)

Yes. Sorry that one’s a bit unhelpful, but I’m intentionally making this a little disruptive. I’m hoping to make more people aware of the underlying problem to build pressure for trying to find a fix up at the Nix/nixpkgs layer.

After that I had to deal with a Can't resolve dynamic argument in 'source' – that’s because airgeddon sources its scripts with source "${scriptfolder}${rc_file_name}" and well, I don’t know how to correctly solve these even now 🙈 – Should I replace this with relative-hardcoded-paths, I know that I can’t use absolute-hardcoded-paths – Kokada pointed me to “keep.source” but this didn’t help, “fix” somehow did the trick for the “strings” and “known_pins”, and for the “plugins” in a little hacky way. But I had to leave “.airgeddonrc” out of this and use “keep” on it. (very :lost: even now)

I noticed this one as well. I’m not quite sure what the “right” fix will be. The ideal way to do it would be something like:

  fix = {
    # ...
    "$scriptfolder" = [ "lib/airgeddon/" ];
    "$language_strings_file" = [ "language_strings.sh" ];
    "$known_pins_dbfile" = [ "known_pins.db" ];
    # ...
  };

But…

1. The airgeddonrc being in share instead of lib causes trouble with this. I tried using an empty string for scriptfolder, but IIRC that broke the Nix API. I started considering a kludge like setting rc_file_name to "../share/airgeddon/.airgeddonrc".
2. I decided to stop fiddling with it because I wasn’t 100% sure if baking in the .airgeddonrc path was the right approach in the first place? Would it be fairly normal for users to modify it? Would a fair fraction of the people who use the package expect it to be picking up ~/.airgeddonrc or something?

But as I write this out, I wonder if this would work (on macOS atm, not easy to just test…):

  fix = {
    # ...
    "$scriptfolder" = [ "./" ];
    "$language_strings_file" = [ "lib/airgeddon/language_strings.sh" ];
    "$known_pins_dbfile" = [ "lib/airgeddon/known_pins.db" ];
    "$rc_file_name" = [ "share/airgeddon/.airgeddonrc" ];
    # ...
  };

• “tmux” is executing its arguments, even worse, airgeddon uses “send-keys” to throw commands in it. (What should I do here? Again I went with “cannot”)

I’m not a tmux user so I’m just kinda shooting from the hip here.

If the tmux arguments are very regular, it may just be a matter of creating a parser for it in resholve. Searching through the codebase for tmux invocations didn’t make it terribly obvious what all commands are getting passed through it, since it seems like most of these are in utility functions.

But, I did see a lot of run-time code-generation behavior (such as https://github.com/v1s1t0r1sh3r3/airgeddon/blob/master/airgeddon.sh#L3732-L4142) that looks like the kind of thing I’d usually mark in my notes as as too dynamic for resholve to have much hope of handling.

This may still be fine if you don’t actually need to resolve commands down in these dynamic structures (for example, if the entire thing is just using shell functions that do get resolved)? If they do hold external executable references, resholve will likely end up being a ~code-intel tool for you here, with the real solution needing to be some wrapping/patching combo?

resholve also has prologue and epilogue arguments–I suppose you could use that to also inject a PATH for the same dependencies at the top of the script. (But, of course, there’s a risk these scripts hold additional unknown dependencies)

• I had to come up with a hacky solution to keep optional dependencies optional, using the “external”.

I liked what you came up with–I’ve been doing the same. I haven’t quite decided if resholve needs a special lever for cases like this (there’s a related case with scripts that will use the first found of N alternative programs for something–curl OR wget and is a common example) or just better documentation that fits the scenarios.

In the end, it ran, but the scripts in heredocs inside it were not using absolute references. They were even using the unpatched shebang. Airgeddon starts running one of these inside tmux and that wasn’t finding the executables.

Aha. Hehe. Should’ve kept reading. Yes–the heredocs aren’t really intelligible as Shell to resholve. If a general wrapper approach doesn’t work for some reason, perhaps patching it to inject a generated PATH after the #!/usr/bin/env bash lines would.

I’m making 2 posts addressing this. The first focuses on things you noted that I’ve fixed today. The 2nd will just record some thoughts on the open questions…

That lead me to these issues in the way:

• “timeout” had a “15” where the lore was expecting an “executable argument” (No clue how to say it to skip only this parameter, so I changed it to “cannot”, which I’m pretty sure I should not)

Correct. You found a bug in resholve’s parser for timeout. For illustration I addressed it in separate test/fix commits:

• test:
  • commit: f6efaee4d51dd1d5e57d509bde976fc10434d61a
  • CI: https://github.com/abathur/resholve/runs/6638357579?check_suite_focus=true#step:4:2838
• fix:
  • commit: 45583b78f3b6427a996ecbc306afefe8fdb1ace7
  • CI: https://github.com/abathur/resholve/runs/6638375722?check_suite_focus=true

• you repeat "execer" twice here: https://github.com/abathur/resholve/blob/f3faceb58d731e8d9f0dd244527007cf7a1fbfcc/docs/examples/lore.nix#L14 – should be “wrapper” right? (This repeats in that README)

Good spot. I fixed it in 99cd196f45f8e1c12389aa4cfdeff9a04f3beac3.

Both of these will need to get released and propagated to nixpkgs; not sure how quickly I’ll cut a release.