graevy

Wetware Developer

Did a bunch of projects without posting about them. Gonna batch-release these

What is nixos

NixOS is:

  • the concept of nix itself
  • your configuration.nix file(s)
  • sudo nixos-rebuild switch
  • sudo nixos-collect-garbage -d
  • the occasional flake.nix and nix-develop
  • sometimes running nix-shell -p <some package i want to test>
  • whatever you settle on for misc tooling, for me the nix-search and nix-inspect packages

That’s it. That’s the whole thing. Don’t believe anyone else. I would never lie to you.

Why

To further the declarative obsession. Because I’ve been using the same distro for more than 2 years. Because strange women lying in ponds kept telling me to try it.

What happened

The classic dual-boot1-and-replace-old-OS strategy, so there weren’t any huge headaches. It took me like a month of hour-a-day reading/tweaking2 to reach feature parity with my arch installation, so you’re in for that if you try it.

There were a few blockers:

  • I moved from X to wayland in the middle of this, so lots of trying out new tooling (i.e. i3->sway)
  • Versioning is pretty messy. nix-channel can track state accidentally, some packages need you to bring in unstable nixos, etc.
  • Okay, so this was an edge case. I had to remove some packages, which declaratively basically entails editing configuration.nix and then sudo nix-collect-garbage -d && sudo nixos-rebuild switch3. Some of them contained symlink loops to their parent dirs, so nix refused to delete them from /nix/store, and they were load-bearing for existing derivations. That was a nightmare. There was some solution to manually remove them via nix-store but it was poorly documented (recurring theme for nixos) so I just reinstalled the OS. That may seem a little extreme, but I had to left-expand the partition anyway, and the whole point of nixos really is to manage your installation declaratively, so it’s a good exercise to see what needs to get added to the declaration.

My takes

It’s good. Unified configuration in a single dir. I’m bought-in now, costs completely sunk, which is its own problem.

Flakes. Bad ux. I don’t currently see a use for them beyond “nix-shell but version-pinned”, which is what I want out of a shell.nix file anyway, I think4? And for that purpose, it’s a huge amount of boilerplate in a really annoying domain-specific language. I’m sure people who use them more fluently have better uses for them, and I might get there eventually. For all my critiques, I do use them.

NixOS integrates very well with systemd, which I wasn’t expecting. I’m not really writing my own unit files often, but you can’t rely on the abstraction. There’s a larger pattern of NixOS’ native configs not being granular enough. For instance: defining a service that doesn’t start automatically on boot requires a slight hack where I would really just like services.thing.enabled = true and services.thing.auto = false, and to not have to manually write unitfiles. Truthfully in the spirit of open source I should add the feature to services myself, but I’ve heard many nightmare stories from my hackspace friends about trying to get NixOS PRs merged.

A lot of people complain about massive /nix/stores, and I don’t get it. Yes, it frequently stores unnecessary versions that simpler package managers don’t have to. This stops things from breaking. My /nix/store is about 58Gb5, containing 18.2Gb of package versions which might be deduplicated using apt instead6, but I can’t help but think that every deduplication case involves trusting backward compatibility. I find NixOS absolutely worth it even on smaller ssds. Maybe the worst-case of /nix/store is a disk hog, but I haven’t seen it.

When you leave the happy path, it’s awful. The documentation is sparse7, you have to hack to get anything done, in a system that does not want you to create undeclared state. The NixOS equivalent of a “linux evening” fixing something gets inverted: spend 3 hours building something that won’t break, where normal users often simply apt install. I honestly think most nixpkgs maintainers are just people who went down a hole and had to build a package about it.

What does NixOS offer? ultimately, lightweight portability:

  • easy environmental CI/CD by regenerating old versions of the OS. A great alternative to heavy system backup/restore, but not great for stateful objects, which aren’t usually things that break during upgrades, so, great feature!
  • nix shells/flakes are great solutions to the problem of development/build determinism that are, again, solved more heavily (but more completely) by containerization.

  1. or quad-boot, you know, nobody’s judging anybody here ↩︎

  2. I did read about a third of Dolstra’s thesis. I would legitimately recommend reading about the evaluator’s kernel-inspired-memory-management-but-for-disks. For me, that section cleanly described Nix’s solution to a problem I hadn’t deeply considered before. ↩︎

  3. See? I didn’t lie to you ↩︎

  4. You can version pin via specific commit hashes, I tried it once, don’t bother, just use flakes. ↩︎

  5. I did not garbage-collect before checking, but I did somewhat recently move to 25.05 and then gc. ↩︎

  6. I’m just saying, my arch install had 5 active versions of electron required by various different packages, and my /nix/store contains 4 at the moment. While /nix/store contains version bloat, NixOS neatly collates your packages; you rarely end up with more than you need, whereas conventional package managers tend to bloat over time, even when pruning orphans. ↩︎

  7. The NixOS wiki is often just a trap. Like, it’s not maintained well, and frequently out of date, apparently unassociated with the NixOS project? There are two of them, nixos.wiki and wiki.nixos.org, and the unofficial one, nixos.wiki, is the older one that everyone uses? My guess is that they kept getting criticized for having poor documentation and decided to build a competitor to the arch wiki, but they’ve moved too late, and now it’ll take a decade to sort itself out. ↩︎