176 lines
4.6 KiB
Nix
176 lines
4.6 KiB
Nix
|
{ config, pkgs, ... }:
|
||
|
with import <stockholm/lib>;
|
||
|
let
|
||
|
cfg = config.krebs.ci;
|
||
|
|
||
|
hostname = config.networking.hostName;
|
||
|
in
|
||
|
{
|
||
|
options.krebs.ci = {
|
||
|
enable = mkEnableOption "krebs continous integration";
|
||
|
users = mkOption {
|
||
|
type = with types; attrsOf (submodule {
|
||
|
options = {
|
||
|
all = mkOption {
|
||
|
type = bool;
|
||
|
default = true;
|
||
|
};
|
||
|
hosts = mkOption {
|
||
|
type = listOf str;
|
||
|
default = [];
|
||
|
};
|
||
|
};
|
||
|
});
|
||
|
example = {
|
||
|
lass.all = true;
|
||
|
krebs = {
|
||
|
all = true;
|
||
|
hosts = [
|
||
|
"test-all-krebs-modules"
|
||
|
"test-arch"
|
||
|
];
|
||
|
};
|
||
|
};
|
||
|
default = {};
|
||
|
};
|
||
|
};
|
||
|
|
||
|
config = mkIf cfg.enable {
|
||
|
services.nginx = {
|
||
|
enable = true;
|
||
|
virtualHosts.build = {
|
||
|
serverAliases = [ "build.${hostname}.r" ];
|
||
|
locations."/".extraConfig = ''
|
||
|
proxy_set_header Upgrade $http_upgrade;
|
||
|
proxy_set_header Connection "upgrade";
|
||
|
proxy_pass http://127.0.0.1:${toString config.krebs.buildbot.master.web.port};
|
||
|
'';
|
||
|
};
|
||
|
};
|
||
|
|
||
|
nix.gc.automatic = true;
|
||
|
nix.gc.dates = "05:23";
|
||
|
|
||
|
krebs.buildbot.master = {
|
||
|
slaves = {
|
||
|
testslave = "lasspass";
|
||
|
};
|
||
|
change_source.stockholm = ''
|
||
|
stockholm_repo = 'http://cgit.${hostname}.r/stockholm'
|
||
|
cs.append(
|
||
|
changes.GitPoller(
|
||
|
stockholm_repo,
|
||
|
workdir='stockholm-poller', branches=True,
|
||
|
project='stockholm',
|
||
|
pollinterval=10
|
||
|
)
|
||
|
)
|
||
|
'';
|
||
|
scheduler = {
|
||
|
build-scheduler = ''
|
||
|
# build all hosts
|
||
|
sched.append(
|
||
|
schedulers.SingleBranchScheduler(
|
||
|
change_filter=util.ChangeFilter(branch_re=".*"),
|
||
|
treeStableTimer=10,
|
||
|
name="build-all-branches",
|
||
|
builderNames=[
|
||
|
"build-hosts"
|
||
|
]
|
||
|
)
|
||
|
)
|
||
|
'';
|
||
|
force-scheduler = ''
|
||
|
sched.append(
|
||
|
schedulers.ForceScheduler(
|
||
|
name="force",
|
||
|
builderNames=[
|
||
|
"build-hosts"
|
||
|
]
|
||
|
)
|
||
|
)
|
||
|
'';
|
||
|
};
|
||
|
builder_pre = ''
|
||
|
# prepare grab_repo step for stockholm
|
||
|
grab_repo = steps.Git(
|
||
|
repourl=stockholm_repo,
|
||
|
mode='full'
|
||
|
)
|
||
|
|
||
|
# prepare addShell function
|
||
|
def addShell(factory,**kwargs):
|
||
|
factory.addStep(steps.ShellCommand(**kwargs))
|
||
|
'';
|
||
|
builder = {
|
||
|
build-hosts = ''
|
||
|
f = util.BuildFactory()
|
||
|
f.addStep(grab_repo)
|
||
|
|
||
|
def build_host(user, host):
|
||
|
addShell(f,
|
||
|
name="{}".format(host),
|
||
|
env={
|
||
|
"NIX_PATH": "secrets=/var/src/stockholm/null:/var/src",
|
||
|
"NIX_REMOTE": "daemon",
|
||
|
"dummy_secrets": "true",
|
||
|
},
|
||
|
command=[
|
||
|
"nix-shell", "--run",
|
||
|
"test --user={} --system={} --target=$LOGNAME@${config.krebs.build.host.name}$HOME/{}".format(user, host, user)
|
||
|
]
|
||
|
)
|
||
|
|
||
|
${let
|
||
|
user-hosts = mapAttrs (user: a: let
|
||
|
managed-hosts = attrNames (filterAttrs (_: h: (h.owner.name == user) && h.managed) config.krebs.hosts);
|
||
|
defined-hosts = a.hosts;
|
||
|
in
|
||
|
defined-hosts ++ (optionals a.all managed-hosts)
|
||
|
) cfg.users;
|
||
|
|
||
|
in
|
||
|
concatStringsSep "\n" (
|
||
|
(mapAttrsToList (user: hosts:
|
||
|
concatMapStringsSep "\n" (host:
|
||
|
"build_host(\"${user}\", \"${host}\")"
|
||
|
) hosts
|
||
|
) user-hosts)
|
||
|
)
|
||
|
}
|
||
|
|
||
|
bu.append(
|
||
|
util.BuilderConfig(
|
||
|
name="build-hosts",
|
||
|
slavenames=slavenames,
|
||
|
factory=f
|
||
|
)
|
||
|
)
|
||
|
|
||
|
'';
|
||
|
};
|
||
|
enable = true;
|
||
|
web.enable = true;
|
||
|
irc = {
|
||
|
enable = true;
|
||
|
nick = "build|${hostname}";
|
||
|
server = "ni.r";
|
||
|
channels = [ "retiolum" "noise" ];
|
||
|
allowForce = true;
|
||
|
};
|
||
|
extraConfig = ''
|
||
|
c['buildbotURL'] = "http://build.${hostname}.r/"
|
||
|
'';
|
||
|
};
|
||
|
|
||
|
krebs.buildbot.slave = {
|
||
|
enable = true;
|
||
|
masterhost = "localhost";
|
||
|
username = "testslave";
|
||
|
password = "lasspass";
|
||
|
packages = with pkgs; [ gnumake jq nix populate ];
|
||
|
};
|
||
|
|
||
|
};
|
||
|
}
|