2015-12-30 02:05:14 +01:00
|
|
|
{ lib, config, pkgs, ... }:
|
|
|
|
{
|
2016-04-19 12:05:49 +02:00
|
|
|
krebs.buildbot.master = let
|
|
|
|
stockholm-mirror-url = http://cgit.prism/stockholm ;
|
|
|
|
in {
|
2015-12-30 02:05:14 +01:00
|
|
|
slaves = {
|
|
|
|
testslave = "lasspass";
|
|
|
|
};
|
|
|
|
change_source.stockholm = ''
|
2016-04-19 12:05:49 +02:00
|
|
|
stockholm_repo = '${stockholm-mirror-url}'
|
2015-12-30 02:05:14 +01:00
|
|
|
cs.append(changes.GitPoller(
|
|
|
|
stockholm_repo,
|
2016-04-19 12:05:49 +02:00
|
|
|
workdir='stockholm-poller', branches=True,
|
2015-12-30 02:05:14 +01:00
|
|
|
project='stockholm',
|
|
|
|
pollinterval=120))
|
|
|
|
'';
|
|
|
|
scheduler = {
|
|
|
|
force-scheduler = ''
|
|
|
|
sched.append(schedulers.ForceScheduler(
|
|
|
|
name="force",
|
|
|
|
builderNames=["fast-tests"]))
|
|
|
|
'';
|
|
|
|
fast-tests-scheduler = ''
|
2016-04-19 12:05:49 +02:00
|
|
|
# test everything real quick
|
2015-12-30 02:05:14 +01:00
|
|
|
sched.append(schedulers.SingleBranchScheduler(
|
2016-04-19 12:05:49 +02:00
|
|
|
## all branches
|
|
|
|
change_filter=util.ChangeFilter(branch_re=".*"),
|
|
|
|
# treeStableTimer=10,
|
|
|
|
name="fast-all-branches",
|
2015-12-30 02:05:14 +01:00
|
|
|
builderNames=["fast-tests"]))
|
|
|
|
'';
|
2016-06-11 00:26:21 +02:00
|
|
|
build-all-scheduler = ''
|
|
|
|
# build all lass hosts
|
|
|
|
sched.append(schedulers.SingleBranchScheduler(
|
|
|
|
## only master
|
|
|
|
change_filter=util.ChangeFilter(branch_re="master"),
|
|
|
|
# treeStableTimer=10,
|
|
|
|
name="prism-master",
|
|
|
|
builderNames=["build-all"]))
|
|
|
|
'';
|
2015-12-30 02:05:14 +01:00
|
|
|
};
|
|
|
|
builder_pre = ''
|
|
|
|
# prepare grab_repo step for stockholm
|
|
|
|
grab_repo = steps.Git(repourl=stockholm_repo, mode='incremental')
|
|
|
|
|
2016-06-11 00:26:21 +02:00
|
|
|
# TODO: get nixpkgs/stockholm paths from krebs
|
|
|
|
env = {"LOGNAME": "lass", "NIX_REMOTE": "daemon", "dummy_secrets": "true", "NIX_PATH": "nixpkgs=/var/src/nixpkgs:stockholm=/var/src/stockholm"}
|
2015-12-30 02:05:14 +01:00
|
|
|
|
|
|
|
# prepare nix-shell
|
|
|
|
# the dependencies which are used by the test script
|
2016-06-11 00:26:21 +02:00
|
|
|
deps = [ "gnumake", "jq", "nix", "rsync" ]
|
2015-12-30 02:05:14 +01:00
|
|
|
# TODO: --pure , prepare ENV in nix-shell command:
|
|
|
|
# SSL_CERT_FILE,LOGNAME,NIX_REMOTE
|
2016-04-19 12:05:49 +02:00
|
|
|
nixshell = ["nix-shell",
|
|
|
|
"-I", "stockholm=.",
|
|
|
|
"-I", "nixpkgs=/var/src/nixpkgs",
|
|
|
|
"-p" ] + deps + [ "--run" ]
|
2015-12-30 02:05:14 +01:00
|
|
|
|
|
|
|
# prepare addShell function
|
|
|
|
def addShell(factory,**kwargs):
|
|
|
|
factory.addStep(steps.ShellCommand(**kwargs))
|
|
|
|
'';
|
|
|
|
builder = {
|
2016-06-11 00:26:21 +02:00
|
|
|
build-all = ''
|
|
|
|
f = util.BuildFactory()
|
|
|
|
f.addStep(grab_repo)
|
|
|
|
#TODO: get hosts via krebs
|
|
|
|
for i in [ "mors", "uriel", "shodan", "helios", "cloudkrebs", "echelon", "dishfire", "prism" ]:
|
|
|
|
addShell(f,name="build-{}".format(i),env=env,
|
|
|
|
command=nixshell + \
|
|
|
|
["nix-build \
|
|
|
|
--show-trace --no-out-link \
|
|
|
|
-I nixos-config=./lass/1systems/{}.nix \
|
|
|
|
-I secrets=/var/src/stockholm/lass/2configs/tests/dummy-secrets \
|
|
|
|
-A config.system.build.toplevel".format(i)])
|
|
|
|
|
|
|
|
bu.append(util.BuilderConfig(name="build-all",
|
|
|
|
slavenames=slavenames,
|
|
|
|
factory=f))
|
|
|
|
|
|
|
|
'';
|
2015-12-30 02:05:14 +01:00
|
|
|
fast-tests = ''
|
|
|
|
f = util.BuildFactory()
|
|
|
|
f.addStep(grab_repo)
|
2016-04-19 12:05:49 +02:00
|
|
|
for i in [ "prism", "mors", "echelon" ]:
|
|
|
|
addShell(f,name="populate-{}".format(i),env=env,
|
|
|
|
command=nixshell + \
|
|
|
|
["{}( make system={} eval.config.krebs.build.populate \
|
|
|
|
| jq -er .)".format("!" if "failing" in i else "",i)])
|
|
|
|
|
|
|
|
addShell(f,name="build-test-minimal",env=env,
|
|
|
|
command=nixshell + \
|
|
|
|
["nix-instantiate \
|
|
|
|
--show-trace --eval --strict --json \
|
|
|
|
-I nixos-config=./shared/1systems/test-minimal-deploy.nix \
|
|
|
|
-I secrets=. \
|
|
|
|
-A config.system.build.toplevel"]
|
|
|
|
)
|
2015-12-30 02:05:14 +01:00
|
|
|
|
|
|
|
bu.append(util.BuilderConfig(name="fast-tests",
|
|
|
|
slavenames=slavenames,
|
|
|
|
factory=f))
|
2016-04-19 12:05:49 +02:00
|
|
|
|
|
|
|
'';
|
2015-12-30 02:05:14 +01:00
|
|
|
};
|
|
|
|
enable = true;
|
|
|
|
web.enable = true;
|
|
|
|
irc = {
|
|
|
|
enable = true;
|
2016-02-01 15:57:54 +01:00
|
|
|
nick = "buildbot-lass";
|
2015-12-30 02:05:14 +01:00
|
|
|
server = "cd.retiolum";
|
|
|
|
channels = [ "retiolum" ];
|
|
|
|
allowForce = true;
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
krebs.buildbot.slave = {
|
|
|
|
enable = true;
|
|
|
|
masterhost = "localhost";
|
|
|
|
username = "testslave";
|
|
|
|
password = "lasspass";
|
2016-04-19 12:05:49 +02:00
|
|
|
packages = with pkgs;[ git nix gnumake jq rsync ];
|
|
|
|
extraEnviron = {
|
2016-06-11 00:26:21 +02:00
|
|
|
NIX_PATH="nixpkgs=/var/src/nixpkgs";
|
2016-04-19 12:05:49 +02:00
|
|
|
};
|
|
|
|
};
|
|
|
|
krebs.iptables = {
|
|
|
|
tables = {
|
|
|
|
filter.INPUT.rules = [
|
|
|
|
{ predicate = "-p tcp --dport 8010"; target = "ACCEPT"; }
|
|
|
|
{ predicate = "-p tcp --dport 9989"; target = "ACCEPT"; }
|
|
|
|
];
|
|
|
|
};
|
2015-12-30 02:05:14 +01:00
|
|
|
};
|
|
|
|
}
|