2015-12-16 14:30:01 +01:00
|
|
|
{ config, pkgs, lib, ... }:
|
|
|
|
|
2016-10-20 20:54:38 +02:00
|
|
|
with import <stockholm/lib>;
|
2015-12-16 14:30:01 +01:00
|
|
|
let
|
2017-07-23 21:54:11 +02:00
|
|
|
buildbot-slave-init = pkgs.writeText "buildbot-slave.tac" ''
|
|
|
|
import os
|
|
|
|
|
|
|
|
from buildslave.bot import BuildSlave
|
|
|
|
from twisted.application import service
|
|
|
|
|
|
|
|
basedir = '${cfg.workDir}'
|
|
|
|
rotateLength = 10000000
|
|
|
|
maxRotatedFiles = 10
|
|
|
|
|
|
|
|
application = service.Application('buildslave')
|
|
|
|
|
|
|
|
from twisted.python.logfile import LogFile
|
|
|
|
from twisted.python.log import ILogObserver, FileLogObserver
|
|
|
|
logfile = LogFile.fromFullPath(os.path.join(basedir, "twistd.log"), rotateLength=rotateLength,
|
|
|
|
maxRotatedFiles=maxRotatedFiles)
|
|
|
|
application.setComponent(ILogObserver, FileLogObserver(logfile).emit)
|
|
|
|
|
|
|
|
buildmaster_host = '${cfg.masterhost}'
|
|
|
|
# TODO: masterport?
|
|
|
|
port = 9989
|
|
|
|
slavename = '${cfg.username}'
|
|
|
|
passwd = '${cfg.password}'
|
|
|
|
keepalive = 600
|
|
|
|
usepty = 0
|
|
|
|
umask = None
|
|
|
|
maxdelay = 300
|
|
|
|
allow_shutdown = None
|
|
|
|
|
|
|
|
${cfg.extraConfig}
|
|
|
|
|
|
|
|
s = BuildSlave(buildmaster_host, port, slavename, passwd, basedir,
|
|
|
|
keepalive, usepty, umask=umask, maxdelay=maxdelay,
|
|
|
|
allow_shutdown=allow_shutdown)
|
|
|
|
s.setServiceParent(application)
|
|
|
|
'';
|
2015-12-16 17:10:44 +01:00
|
|
|
default-packages = [ pkgs.git pkgs.bash ];
|
2017-07-23 21:54:11 +02:00
|
|
|
cfg = config.krebs.buildbot.slave;
|
2015-12-16 14:30:01 +01:00
|
|
|
|
|
|
|
api = {
|
2017-07-23 21:54:11 +02:00
|
|
|
enable = mkEnableOption "Buildbot Slave";
|
2015-12-16 14:30:01 +01:00
|
|
|
|
|
|
|
workDir = mkOption {
|
2017-07-23 21:54:11 +02:00
|
|
|
default = "/var/lib/buildbot/slave";
|
2015-12-16 14:30:01 +01:00
|
|
|
type = types.str;
|
|
|
|
description = ''
|
2017-07-23 21:54:11 +02:00
|
|
|
Path to build bot slave directory.
|
2015-12-16 14:30:01 +01:00
|
|
|
Will be created on startup.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
masterhost = mkOption {
|
|
|
|
default = "localhost";
|
|
|
|
type = types.str;
|
|
|
|
description = ''
|
|
|
|
Hostname/IP of the buildbot master
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
username = mkOption {
|
|
|
|
type = types.str;
|
|
|
|
description = ''
|
2017-07-23 21:54:11 +02:00
|
|
|
slavename used to authenticate with master
|
2015-12-16 14:30:01 +01:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
password = mkOption {
|
|
|
|
type = types.str;
|
|
|
|
description = ''
|
2017-07-23 21:54:11 +02:00
|
|
|
slave password used to authenticate with master
|
2015-12-16 14:30:01 +01:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
contact = mkOption {
|
2017-07-23 21:54:11 +02:00
|
|
|
default = "nix slave <buildslave@${config.networking.hostName}>";
|
2015-12-16 14:30:01 +01:00
|
|
|
type = types.str;
|
|
|
|
description = ''
|
2017-07-23 21:54:11 +02:00
|
|
|
contact to be announced by buildslave
|
2015-12-16 14:30:01 +01:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
description = mkOption {
|
2017-07-23 21:54:11 +02:00
|
|
|
default = "Nix Generated BuildSlave";
|
2015-12-16 14:30:01 +01:00
|
|
|
type = types.str;
|
|
|
|
description = ''
|
2017-07-23 21:54:11 +02:00
|
|
|
description for hostto be announced by buildslave
|
2015-12-16 14:30:01 +01:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2015-12-16 17:10:44 +01:00
|
|
|
packages = mkOption {
|
|
|
|
default = [ pkgs.git ];
|
|
|
|
type = with types; listOf package;
|
|
|
|
description = ''
|
2017-07-23 21:54:11 +02:00
|
|
|
packages which should be in path for buildslave
|
2015-12-16 17:10:44 +01:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
extraEnviron = mkOption {
|
|
|
|
default = {};
|
|
|
|
example = {
|
|
|
|
NIX_PATH = "nixpkgs=/path/to/my/nixpkgs";
|
|
|
|
};
|
|
|
|
type = types.attrsOf types.str;
|
|
|
|
description = ''
|
2017-07-23 21:54:11 +02:00
|
|
|
extra environment variables to be provided to the buildslave service
|
2015-12-16 17:10:44 +01:00
|
|
|
if you need nixpkgs, e.g. for running nix-shell you can set NIX_PATH here.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2015-12-16 14:30:01 +01:00
|
|
|
extraConfig = mkOption {
|
|
|
|
default = "";
|
|
|
|
type = types.lines;
|
|
|
|
example = ''
|
|
|
|
port = 443
|
|
|
|
keepalive = 600
|
|
|
|
'';
|
|
|
|
description = ''
|
2017-07-23 21:54:11 +02:00
|
|
|
extra config evaluated before calling BuildSlave init in .tac file
|
2015-12-16 14:30:01 +01:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
imp = {
|
|
|
|
|
2017-07-23 21:54:11 +02:00
|
|
|
users.extraUsers.buildbotSlave = {
|
|
|
|
uid = genid "buildbotSlave";
|
|
|
|
description = "Buildbot Slave";
|
2015-12-16 14:30:01 +01:00
|
|
|
home = cfg.workDir;
|
|
|
|
createHome = false;
|
|
|
|
};
|
|
|
|
|
2017-07-23 21:54:11 +02:00
|
|
|
users.extraGroups.buildbotSlave = {
|
|
|
|
gid = 1408105834;
|
2015-12-16 14:30:01 +01:00
|
|
|
};
|
|
|
|
|
2017-07-23 21:54:11 +02:00
|
|
|
systemd.services."buildbotSlave-${cfg.username}-${cfg.masterhost}" = {
|
|
|
|
description = "Buildbot Slave for ${cfg.username}@${cfg.masterhost}";
|
2015-12-16 14:30:01 +01:00
|
|
|
after = [ "network.target" ];
|
|
|
|
wantedBy = [ "multi-user.target" ];
|
2015-12-16 17:10:44 +01:00
|
|
|
path = default-packages ++ cfg.packages;
|
|
|
|
|
|
|
|
environment = {
|
2015-12-23 00:06:27 +01:00
|
|
|
SSL_CERT_FILE = "${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt";
|
2015-12-16 17:10:44 +01:00
|
|
|
NIX_REMOTE="daemon";
|
|
|
|
} // cfg.extraEnviron;
|
|
|
|
|
2015-12-16 14:30:01 +01:00
|
|
|
serviceConfig = let
|
2016-02-15 18:46:19 +01:00
|
|
|
workdir = shell.escape cfg.workDir;
|
|
|
|
contact = shell.escape cfg.contact;
|
|
|
|
description = shell.escape cfg.description;
|
2017-07-23 21:54:11 +02:00
|
|
|
# TODO:make this
|
2015-12-16 14:30:01 +01:00
|
|
|
in {
|
|
|
|
PermissionsStartOnly = true;
|
|
|
|
Type = "forking";
|
|
|
|
PIDFile = "${workdir}/twistd.pid";
|
2017-07-23 21:54:11 +02:00
|
|
|
# TODO: maybe also prepare buildbot.tac?
|
|
|
|
ExecStartPre = pkgs.writeDash "buildbot-master-init" ''
|
2015-12-16 14:30:01 +01:00
|
|
|
set -efux
|
|
|
|
mkdir -p ${workdir}/info
|
2017-07-23 21:54:11 +02:00
|
|
|
cp ${buildbot-slave-init} ${workdir}/buildbot.tac
|
2015-12-16 14:30:01 +01:00
|
|
|
echo ${contact} > ${workdir}/info/admin
|
|
|
|
echo ${description} > ${workdir}/info/host
|
|
|
|
|
2017-07-23 21:54:11 +02:00
|
|
|
chown buildbotSlave:buildbotSlave -R ${workdir}
|
2015-12-16 14:30:01 +01:00
|
|
|
chmod 700 -R ${workdir}
|
|
|
|
'';
|
2017-07-25 23:10:51 +02:00
|
|
|
ExecStart = "${pkgs.buildbot-classic-slave}/bin/buildslave start ${workdir}";
|
|
|
|
ExecStop = "${pkgs.buildbot-classic-slave}/bin/buildslave stop ${workdir}";
|
2015-12-16 14:30:01 +01:00
|
|
|
PrivateTmp = "true";
|
2017-07-23 21:54:11 +02:00
|
|
|
User = "buildbotSlave";
|
2015-12-16 14:30:01 +01:00
|
|
|
Restart = "always";
|
|
|
|
RestartSec = "10";
|
|
|
|
};
|
|
|
|
};
|
|
|
|
};
|
|
|
|
in
|
|
|
|
{
|
2017-07-23 21:54:11 +02:00
|
|
|
options.krebs.buildbot.slave = api;
|
2016-02-14 16:43:44 +01:00
|
|
|
config = lib.mkIf cfg.enable imp;
|
2015-12-16 14:30:01 +01:00
|
|
|
}
|