NixOS modules
Modules are files combined by NixOS to produce the full system configuration. A module contains a Nix expression. It declares options for other modules to define (give a value). It processes them and defines options declared in other modules.[1]
For example, /etc/nixos/configuration.nix
is a module. Most other modules are in nixos/modules
.
Structure
Modules have the following syntax:
{
imports = [
# paths to other modules
];
options = {
# option declarations
};
config = {
# option definitions
};
}
There is a shorthand for modules without any declarations:
{
require = [
# paths to other modules
];
# option definitions
}
Function
A module can be turned into a function accepting an attribute set.
{ config, pkgs, ... }:
{
# ...
}
It may require the attribute set to contain:
config
- The configuration of the entire system.
options
- All option declarations refined with all definition and declaration references.
pkgs
- The attribute set extracted from the Nix package collection and enhanced with the
nixpkgs.config
option. modulesPath
- The location of the
module
directory of NixOS.
Imports
Imports are paths to other NixOS modules that should be included in the evaluation of the system configuration. A default set of modules is defined in nixos/modules/module-list.nix
. These don't need to be added in the import list.
Declarations
Declarations specify a module's external interfaces.
optionName = mkOption {
# ...
}
They are created with mkOption
, a function accepting a set with following attributes:[2][3]
type
The type of the option. It may be omitted, but that’s not advisable since it may lead to errors that are hard to diagnose.
default
The default value used if no value is defined by any module. A default is not required; but if a default is not given, then users of the module will have to define the value of the option, otherwise an error will be thrown.
example
An example value that will be shown in the NixOS manual.
description
A textual description of the option, in DocBook format, that will be included in the NixOS manual.
Rationale
Modules were introduced to allow extending NixOS without modifying its source code.[4] They also allow splitting up configuration.nix
, making the system configuration easier to maintain and to reuse.
Example
put into hello.nix
in the same folder as your configuration.nix
.
{ lib, pkgs, config, ... }:
with lib;
let
cfg = config.services.hello;
in {
options.services.hello = {
enable = mkEnableOption "hello service";
greeter = mkOption {
type = types.str;
default = "world";
};
};
config = mkIf cfg.enable {
systemd.services.hello = {
wantedBy = [ "multi-user.target" ];
serviceConfig.ExecStart = "${pkgs.hello}/bin/hello -g'Hello, ${escapeShellArg cfg.greeter}!'";
};
};
}
Add the following to your configuration.nix
{
imports = [ ./hello.nix ];
...
services.hello = {
enable = true;
greeter = "Bob";
};
}
Advanced Use Cases
Compatibility Issues with Different Nixpkgs Versions
Module options between Nixpkgs revisions can sometimes change in incompatible ways.
For example, the option services.nginx.virtualHosts.*.port
in nixpkgs-17.03 was replaced by services.nginx.virtualHosts.*.listen
in nixpkgs-17.09. If configuration.nix has to accommodate both variants, options
can be inspected:
{ options, ... }: {
services.nginx.virtualHosts.somehost = { /* common configuration */ }
// (if builtins.hasAttr "port" (builtins.head options.services.nginx.virtualHosts.type.getSubModules).submodule.options
then { port = 8000; }
else { listen = [ { addr = "0.0.0.0"; port = 8000; } ]; });
}
Abstract imports
To import a module that's stored somewhere (but for which you have neither an absolute nor a relative path), you can use NIX_PATH elements or specialArgs
from nixos/lib/eval-config.nix
.
This is useful for e.g. pulling modules from a git repository without adding it as a channel, or if you just prefer using paths relative to a root you can change (as opposed to the current file, which could move in the future).
let
inherit (import <nixpkgs> {}) writeShellScriptBin fetchgit;
yourModules = fetchgit { ... };
in rec {
nixos = import <nixpkgs/nixos/lib/eval-config.nix> {
modules = [ ./configuration.nix ];
specialArgs.mod = name: "${yourModules}/${name}";
};
/* use nixos here, e.g. for deployment or building an image */
}
{ config, lib, pkgs, mod, ... }: {
imports = [
(mod "foo.nix")
];
...
}
More complex usages
The examples below contain:
- a child `mkOption` inherits their default from a parent `mkOption`
- reading default values from neighbouring `mkOption`(s) for conditional defaults
- passing in the config, to read the hostName from a submodule (email system)
- setting default values from attrset (email system)
- generating documentation for custom modules (outside of nixpkgs). See here
Source:
- https://github.com/nixcloud/nixcloud-webservices/blob/master/modules/services/reverse-proxy/default.nix
- https://github.com/nixcloud/nixcloud-webservices/blob/master/modules/services/reverse-proxy/options.nix
- https://github.com/nixcloud/nixcloud-webservices/blob/master/modules/services/TLS/default.nix
- https://github.com/nixcloud/nixcloud-webservices/blob/master/modules/services/email/nixcloud-email.nix#L59
(sorry, dont' have more time to make this into a nice little guide yet, but this links should be pretty good introductions into more advanced module system usages) qknight
Developing modules
To test your module out, you can run the following from a local checkout of nixpkgs with a copy of a configuration.nix
:
nixos-rebuild build-vm --fast -I nixos-config=./configuration.nix -I nixpkgs=.
If you're developing on top of master, this will potentially cause the compilation of lots of packages, since master is not cached on cache.nixos.org. To avoid that, you can develop your module on top of the nixos-unstable
channel, by adding nixpkgs-channels
as a remote:
git remote add -f channels https://github.com/NixOS/nixpkgs-channels
git checkout -b mymodule channels/nixos-unstable
References
See also
- NixOS:extend_NixOS
- NixOS:Properties
- NixOS discourse, "Best resources for learning about the NixOS module system?"
- Debian Config::Model: target configuration upgrades by abstracting the option of the configuration. Each file is a tree structure where leaves are values defined with an interpreted type. The interpreters are defined for each meta-configuration files name *.conf. Configuration files does not seems to interact with each other to make consistent configuration. They provide an UI for editing their configuration file.