Practical Software Freedom with GNU GuixSoftware Freedom Tour of GNU Guix Guix Enables Freedom...

Software Freedom Tour of GNU Guix Guix Enables Freedom

Practical Software Freedom withGNU Guix

Jack HillDuke University Libraries

Ohio Linux Fest 2019

Guix? Guix!

Guix• gi:ks• Like “geeks”

GNU Project• Guile• Shepherd• mcron• Mes• glibc, gcc, …

Four Freedoms

• Run software as I wish• Study software• Distribute software• Distribute modified software

Software is Complicated

Bradley Kuhn on Debian [1]For the user, that means when I hear about some interestingsoftware, Debian immediately connects me, via apt, with theindividual expert who knows about that software and my operatingsystem / distribution both.

(non-)Practical Solutions

• Elaborate BuildInfrastructure

• Elaborate DeploymentInfrastructure

• Just Works™ DependencyManagers

Warning!STATE

The Store

A Sampling of Items from /gnu/store

1 …-emacs-26.3/2 …-pwgen-2.08/3 …-module-import-compiled.drv4 …-mcron-job5 …-totem-meson-easy-codec.patch6 …-shepherd-file-system--gnu-store.go

Inside a Store Item

1 $ tree --filelimit 5 …-emacs-26.32 �� bin [6 entries exceeds filelimit, not opening dir]3 �� include4 � �� emacs-module.h5 �� lib6 � �� systemd7 � �� user8 � �� emacs.service9 �� libexec

10 � �� emacs11 � �� 26.312 � �� x86_64-pc-linux-gnu13 � �� hexl14 � �� profile15 � �� rcs2log

Profiles

Create a View Into Store

1 $ guix package -p /tmp/example -i hello emacs cowsay2 The following packages will be installed:3 hello 2.10 /gnu/store/…4 emacs 26.3 /gnu/store/…5 cowsay 3.04 /gnu/store/…

Profiles

Inside the New Profile

1 $ cd /tmp/example && ls -l2 … bin/3 … etc/4 … include -> /gnu/store/…-emacs-26.3/include5 … lib/6 … libexec -> /gnu/store/…-emacs-26.3/libexec7 … manifest8 … share/

Profiles

One More Level in

1 $ cd bin && ls -l2 … cowsay -> …cowsay-3.04/bin/cowsay3 … cowthink -> …cowsay-3.04/bin/cowthink4 … ctags -> …emacs-26.3/bin/ctags5 … ebrowse -> …emacs-26.3/bin/ebrowse6 … emacs -> …emacs-26.3/bin/emacs7 … emacs-26.3 -> …emacs-26.3/bin/emacs-26.38 … emacsclient -> …emacs-26.3/bin/emacsclient9 … etags -> …emacs-26.3/bin/etags

10 … hello -> …hello-2.10/bin/hello

The Store

1 …-emacs-26.3/2 …-pwgen-2.08/3 …-module-import-compiled.drv4 …-mcron-job5 …-totem-meson-easy-codec.patch6 …-shepherd-file-system--gnu-store.go

On Hashes

1 djza93lqjcndsldf4794bp8mvipd6fz4-emacs-26.3/2 yp1m1w4x7xdr5gxsd1jl01vxg3n7f64w-pwgen-2.08/3 ib56vrgc2lcwhvbdns8nl5082q4gs83x-module-import-compiled.drv4 57h3np9asz239qhk7gv43dm1cidsliwl-mcron-job5 p6aa1n74akaf9049bmxj7p2a43mbxj14-totem-meson-easy-codec.patch6 hi72w0a3lp2zfpi6vypq8abfqw60cc3s-shepherd-file-system--gnu-store.go

More than Packages

Bootloader Configuration Files

1 $ ls /gnu/store/*grub.cfg2 /gnu/store/18ca4ik0nfdxbs8n4il59hlm6smq0bi1-grub.cfg3 /gnu/store/3fswa6vrljiprifdcxdphycfixb82ppa-grub.cfg4 /gnu/store/3hz4ihmzm83mfyk3wck9vci8xkgbc5hw-grub.cfg

Defining a Package

duo-scp I

1 (define-public duo-scp2 (package3 (name "duo-scp")4 (version "0")5 (source6 (origin7 (method url-fetch)8 (uri "https://gitlab.oit.duke.edu/snippets/82/raw")9 (sha256

10 (base32 "1mrf5451cj8010iq76866dli1hxa31rk8i993arf9dfyzws26v2b"))11 (file-name name)))

duo-scp II

1 (build-system trivial-build-system)2 (arguments3 `(#:modules ((guix build utils))4 #:builder5 (begin6 (use-modules (guix build utils))7 (let ((source (assoc-ref %build-inputs "source"))8 (ssh (assoc-ref %build-inputs "openssh"))9 (bash (assoc-ref %build-inputs "bash"))

10 (script "duo-scp")11 (out (assoc-ref %outputs "out")))

duo-scp III

1 (copy-file source script)2 (substitute* script3 (("/bin/bash") (string-append bash "/bin/bash"))4 (("scp") (string-append ssh "/bin/scp")))5 (chmod script #o555)6 (install-file script (string-append out "/bin"))))))7 (inputs8 `(("bash" ,bash)9 ("openssh" ,openssh)))

duo-scp IV

1 (home-page "https://gitlab.oit.duke.edu/snippets/82/raw")2 (synopsis "User Duo Passcode with scp and login_duo")3 (description "Wrapper script for scp…")4 (license license:cc0)))

Four Freedoms

• Run software as I wish• Study software• Distribute software• Distribute modified software

Focus on Freedom

PotentialPitfalls

• Browsers• Bootstrapping

Safe Place to Play

Easy Access to Dev Tools

How to Hack on Guix

1 $ git clone https://…/guix.git && cd guix2 $ guix environment guix3 $ # make changes4 $ ./bootstrap && configure --localstatedir=/var && \5 make6 $ # try out changes right away7 $ ./pre-inst-env guix …

Moving Bits Around

One-off Copy

$ guix copy --from=remote-host

Exporting for Use Outside of Guix

$ guix pack -f docker dovecot

Serve Packages

$ guix publish

Offloading

machines.scm

1 (list2 (build-machine3 (name "builder")4 (system "x86_64-linux")5 (user "example")6 (host-key "ssh-ed25519 …")7 (private-key "/root/.ssh/id_ed25519")))

building blocks

• Guix Workflow Language• Guix Jupyter Kernel• Guix Deploy

Thank You

Software FreedomPractical Problems

Tour of GNU GuixThe StoreReproducible BuildsPackage Programming

Guix Enables FreedomPhilosophyUnique PropertiesNeat Tricks

https://jackhill.us/talks/guix-software-freedom/

References

References I

Bradley Kuhn. What Debian Does For Me. licensed: CreativeCommons Attribution-Share Alike 3.0 United States License.2018-12-15. url:http://ebb.org/bkuhn/blog/2018/12/15/what-debian-does.html (visited on 10/28/2019).

Practical Software Freedom with GNU GuixSoftware Freedom Tour of GNU Guix Guix Enables Freedom...

Documents

Foreign packages in GNU Guix · Foreign packages in GNU Guix Examples from Ruby gems, Python modules and R/CRAN Pjotr Prins & David Thompson FOSDEM January 30th, 2016 UMC Utrecht/UTHSC

Ludovic Courtes` ludo@gnu · Functional Package Management with Guix Ludovic Courtes` ludo@gnu.org European Lisp Symposium 3 June 2013, Madrid

Guix, the Computing Freedom Deployment Tool - GNU · Guix, the Computing Freedom Deployment Tool Ludovic Courtes` ... de including ex- ... -libffi-3.0.9 /nix/store/drkwck2j965

Presentació teresa guix

GNU Guix as an alternative to the Yocto Project · guix system disk-image config.scm # Create a disk image for a target architecture. guix system disk-image --target aarch64-linux-gnu

Guix novembre 2014

GNU Guix: the functional GNU/Linux distro that's a Scheme

GNU Guix: Package without a scheme! · Guix system Two chunks of code Guix package manager inside guix/ lots of Scheme GNU system inside gnu/ Bootable system (gnu/system/), not yet

Guix, Functional Package Management for the Peoplepeople.bordeaux.inria.fr/lcourtes/doc/guix-ghm-2012.20120721.pdf · Guix, Functional Package Management for the People Ludovic Courtes`

Manual de referencia de GNU Guix · Este documento describe GNU Guix versión 1.1.0, una herramienta funcional de gestión de paquetes escrita para el sistema GNU. Este manual también

Treb convivència, guix 1

GNU Guix is 4 years old! · GNU Guix is 4 years old! Ludovic Courtes` ... on GIMP? A simple matter of ... python-2.7.10 python2-pygtk-2.24.0 gegl-0.2.0 file-5.25 gettext-0.19.7

Treball guix

Reproducible and Customizable Deployments with GNU GuixReproducible and Customizable Deployments with GNU Guix Ludovic Courtes` FOSDEM 2016

Guix octubre 2014

Guix, GuixSD, and getting to 1 - Free software · 2017-09-25 · Guix, GuixSD, and getting to 1.0 Ludovic Courtes` GNU Hackers Meeting Knullwald-Niederbeisheim, August 2017¨

Treb convivència 2, guix

Guix febrer 2015

Guix-tox - A functional version of tox€¦ · GNU Guix guix-tox Various user-de ned con gurations: $ tox l py34 # Run the test suite with Python 3.4 py27 # Run the test suite with

Papereria Guix