[jackhill/guix/guix.git] / TODO

-*- mode: org; coding: utf-8; -*-

#+TITLE: What's left to do?
#+STARTUP: content hidestars

Copyright © 2012, 2013 Ludovic Courtès <ludo@gnu.org>

  Copying and distribution of this file, with or without modification,
  are permitted in any medium without royalty provided the copyright
  notice and this notice are preserved.

* integrate needed Nix code

** Remove dependency on OpenSSL

The ‘openssl’ command-line tool is used in libstore to sign store paths
to be exported, and to check such signatures.  The signing keys are
usually in /etc/nix/signing-key.{pub,sec}.  They are a PKCS#8-encoded
X.509 SubjectPublicKeyInfo.  These can be decoded with the [[http://lists.gnu.org/archive/html/help-gnutls/2012-12/msg00012.html][C API of
GnuTLS]], but not yet with its Guile bindings.  There’s also
‘gnutls_privkey_sign_data’ to sign, and related functions.


** Add `guix publish' to publish the store using Guile's web server

Generate narinfos and nars on the fly, upon HTTP GET requests.
Ideally, extend .nix-cache-info to include the server's public key, and also
reply to requests for .narinfo.sig.
Optionally, use Guile-Avahi to publish the service.

** MAYBE Add a substituter that uses the GNUnet DHT

Would be neat if binaries could be pushed to and pulled from the GNUnet
DHT.  Guix users would sign their binaries, and define which binaries
they trust.

** Add a remote build hook

Like scripts/build-remote.pl in Nix.

* user interface
** Add a package.el (Emacs) back-end

package.el is quite monolithic, but we may be able to reuse/extend
‘package-menu-mode’ or at least ‘tabulated-list-mode’.

** add guile-ncurses interface

* extend <origin>
** add OpenPGP signatures:

   (origin
     (method http-fetch)
     (uri "http://.../foo.tgz")
     (signature-uri (string-append uri ".sig"))
     (signer-openpgp-fingerprint "..."))

** allow <origin> to be a derivation/package or a file

* extend <package>

** add ‘recommends’ field

For instance, glibc, binutils, gcc, and ld-wrapper would recommend each other.
‘guix package -i’ could ask interactively (?), or allow users to follow all or
none of the recommendations.

** add a ‘user-environment-hook’

This should specify builder code to be run when building a user
environment with ‘guix-package’.  For instance, Texinfo’s hook would
create a new ‘dir’.

** add ‘patches’ there

** extend ‘propagated-build-inputs’ with support for multiple outputs

#+BEGIN_SRC scheme
  (outputs '("out" "include"))
  (propagated-build-inputs
    `(((("i1" ,p1 "o1")
        ("i2" ,p2))
       => "include")
      ("i3" ,p3)))
#+END_SRC


* synchronize package descriptions with GSRC and/or the [[http://directory.fsf.org][FSD]]

Meta-data for GNU packages, including descriptions and synopses, can be
dumped from the FSD:
http://directory.fsf.org/wiki?title=GNU/Export&action=purge .
We could periodically synchronize with that.

See http://lists.gnu.org/archive/html/bug-guix/2013-04/msg00120.html for info
on how to synchronize with GSRC's descriptions.

* add a guildhall build system

The Guildhall is Guile’s packaging system.  It should be easy to add a
‘guildhall-build-system’ that does the right thing based on guildhall
recipes.

* gnu-build-system: produce a ‘debug’ derivation

Set a .gnu_debuglink in the main derivations to point to the sibling
file name (only the basename, to not retain a dependency on the ‘debug’
derivation.)

For /nix/store/xyz-foobar/bin/foo, we should have
/nix/store/abc-foobar-debug/lib/nix/store/xyz-foobar/bin/foo.debug (info
"(gdb) Separate Debug Files").

Users should have a default GDB setting with ~/.guix-profile/lib/debug
as their ‘debug-file-directory’.

* build-expression->derivation: define `%system' in the builder

Would allow build expressions to have system-dependent code, like
`glibc-dynamic-linker'.

* add ‘allowed-references’ in <package>

[[file:~/src/nix/src/libstore/build.cc::if%20(drv.env.find("allowedReferences")%20!%3D%20drv.env.end())%20{][See how Nix implements that internally]].

* union

Support sophisticated collision handling when building a union: check
whether the colliding files are identical, honor per-package priorities,
etc.

* guix package

** add ‘--list-generations’, and ‘--delete-generations’

* guix build utils
** MAYBE Change ‘ld-wrapper’ to add RPATH for libs passed by file name

** MAYBE Add equivalent to chrpath that uses [[https://gitorious.org/guile-dlhacks/guile-dlhacks/][guile-dlhacks]]

** MAYBE Add a hash-rewriting thing for deep dependency replacement without rebuild

See [[https://github.com/NixOS/nixpkgs/commit/d1662d715514e6ef9d3dc29f132f1b3d8e608a18][Shea Levy's `replace-dependency' in Nixpkgs]].

* distro
** port to new GNU/Linux platforms, notably ‘mipsel64-linux’
** port to GNU/Hurd, aka. ‘i686-gnu’

Problems include that current glibc releases do not build on GNU/Hurd.
In addition, there haven’t been stable releases of GNU Mach, MiG, and
Hurd, which would be a pre-condition.

** make a bootable GNU/Linux-Libre distro, with OS configuration EDSL

Similar in spirit to /etc/nixos/configuration.nix.
Commit	Line	Data
6b8875c8 LC	1	-- mode: org; coding: utf-8; --
6b8875c8 LC	2
8c247e1c LC	3	#+TITLE: What's left to do?
	4	#+STARTUP: content hidestars
	5
c0b3c89f	6	Copyright © 2012, 2013 Ludovic Courtès <ludo@gnu.org>
6b8875c8 LC	7
	8	Copying and distribution of this file, with or without modification,
	9	are permitted in any medium without royalty provided the copyright
	10	notice and this notice are preserved.
	11
	12	* integrate needed Nix code
	13
a9128eac LC	14	** Remove dependency on OpenSSL
	15
	16	The ‘openssl’ command-line tool is used in libstore to sign store paths
	17	to be exported, and to check such signatures. The signing keys are
	18	usually in /etc/nix/signing-key.{pub,sec}. They are a PKCS#8-encoded
	19	X.509 SubjectPublicKeyInfo. These can be decoded with the [[http://lists.gnu.org/archive/html/help-gnutls/2012-12/msg00012.html][C API of
	20	GnuTLS]], but not yet with its Guile bindings. There’s also
	21	‘gnutls_privkey_sign_data’ to sign, and related functions.
	22
c0b3c89f	23
9297c90b LC	24	** Add `guix publish' to publish the store using Guile's web server
	25
	26	Generate narinfos and nars on the fly, upon HTTP GET requests.
	27	Ideally, extend .nix-cache-info to include the server's public key, and also
	28	reply to requests for .narinfo.sig.
	29	Optionally, use Guile-Avahi to publish the service.
c0b3c89f	30
c7e4a72a LC	31	** MAYBE Add a substituter that uses the GNUnet DHT
	32
	33	Would be neat if binaries could be pushed to and pulled from the GNUnet
	34	DHT. Guix users would sign their binaries, and define which binaries
	35	they trust.
	36
c0b3c89f LC	37	** Add a remote build hook
	38
	39	Like scripts/build-remote.pl in Nix.
	40
c7e4a72a LC	41	* user interface
	42	** Add a package.el (Emacs) back-end
	43
3e5980de LC	44	package.el is quite monolithic, but we may be able to reuse/extend
	45	‘package-menu-mode’ or at least ‘tabulated-list-mode’.
	46
	47	** add guile-ncurses interface
c7e4a72a	48
6b8875c8 LC	49	* extend <origin>
	50	** add OpenPGP signatures:
	51
	52	(origin
	53	(method http-fetch)
	54	(uri "http://.../foo.tgz")
	55	(signature-uri (string-append uri ".sig"))
	56	(signer-openpgp-fingerprint "..."))
	57
	58	** allow <origin> to be a derivation/package or a file
	59
	60	* extend <package>
	61
499b8d1f LC	62	** add ‘recommends’ field
	63
	64	For instance, glibc, binutils, gcc, and ld-wrapper would recommend each other.
	65	‘guix package -i’ could ask interactively (?), or allow users to follow all or
	66	none of the recommendations.
	67
6b8875c8 LC	68	** add a ‘user-environment-hook’
	69
	70	This should specify builder code to be run when building a user
	71	environment with ‘guix-package’. For instance, Texinfo’s hook would
	72	create a new ‘dir’.
	73
3036a01f LC	74	** add ‘patches’ there
	75
	76	** extend ‘propagated-build-inputs’ with support for multiple outputs
	77
	78	#+BEGIN_SRC scheme
	79	(outputs '("out" "include"))
	80	(propagated-build-inputs
	81	`(((("i1" ,p1 "o1")
	82	("i2" ,p2))
	83	=> "include")
	84	("i3" ,p3)))
	85	#+END_SRC
	86
3e5980de	87
8c247e1c	88	* synchronize package descriptions with GSRC and/or the [[http://directory.fsf.org][FSD]]
29767aae LC	89
	90	Meta-data for GNU packages, including descriptions and synopses, can be
	91	dumped from the FSD:
	92	http://directory.fsf.org/wiki?title=GNU/Export&action=purge .
	93	We could periodically synchronize with that.
	94
3e5980de LC	95	See http://lists.gnu.org/archive/html/bug-guix/2013-04/msg00120.html for info
3e5980de LC	96	on how to synchronize with GSRC's descriptions.
6b8875c8	97
c7e4a72a LC	98	* add a guildhall build system
	99
	100	The Guildhall is Guile’s packaging system. It should be easy to add a
	101	‘guildhall-build-system’ that does the right thing based on guildhall
	102	recipes.
	103
6b8875c8 LC	104	* gnu-build-system: produce a ‘debug’ derivation
	105
	106	Set a .gnu_debuglink in the main derivations to point to the sibling
	107	file name (only the basename, to not retain a dependency on the ‘debug’
	108	derivation.)
	109
	110	For /nix/store/xyz-foobar/bin/foo, we should have
	111	/nix/store/abc-foobar-debug/lib/nix/store/xyz-foobar/bin/foo.debug (info
	112	"(gdb) Separate Debug Files").
	113
	114	Users should have a default GDB setting with ~/.guix-profile/lib/debug
	115	as their ‘debug-file-directory’.
	116
	117	* build-expression->derivation: define `%system' in the builder
	118
	119	Would allow build expressions to have system-dependent code, like
	120	`glibc-dynamic-linker'.
	121
	122	* add ‘allowed-references’ in <package>
	123
	124	[[file:~/src/nix/src/libstore/build.cc::if%20(drv.env.find("allowedReferences")%20!%3D%20drv.env.end())%20{][See how Nix implements that internally]].
	125
6b8875c8 LC	126	* union
	127
	128	Support sophisticated collision handling when building a union: check
	129	whether the colliding files are identical, honor per-package priorities,
	130	etc.
	131
d8f257f9	132	* guix package
6b8875c8	133
6b8875c8	134	** add ‘--list-generations’, and ‘--delete-generations’
6b8875c8 LC	135
6b8875c8 LC	136	* guix build utils
29767aae LC	137	** MAYBE Change ‘ld-wrapper’ to add RPATH for libs passed by file name
29767aae LC	138
8c247e1c	139	** MAYBE Add equivalent to chrpath that uses [[https://gitorious.org/guile-dlhacks/guile-dlhacks/][guile-dlhacks]]
6b8875c8	140
29767aae	141	** MAYBE Add a hash-rewriting thing for deep dependency replacement without rebuild
c7e4a72a LC	142
	143	See [[https://github.com/NixOS/nixpkgs/commit/d1662d715514e6ef9d3dc29f132f1b3d8e608a18][Shea Levy's `replace-dependency' in Nixpkgs]].
	144
6b8875c8	145	* distro
6b8875c8 LC	146	** port to new GNU/Linux platforms, notably ‘mipsel64-linux’
	147	** port to GNU/Hurd, aka. ‘i686-gnu’
	148
	149	Problems include that current glibc releases do not build on GNU/Hurd.
	150	In addition, there haven’t been stable releases of GNU Mach, MiG, and
	151	Hurd, which would be a pre-condition.
	152
	153	** make a bootable GNU/Linux-Libre distro, with OS configuration EDSL
	154
	155	Similar in spirit to /etc/nixos/configuration.nix.