infra/ci.nix

# Add derivations to be built from the cache to this file
{ system ? builtins.currentSystem
, src ? { ref = null; }
}:
let
  self = builtins.getFlake (toString ./.);
  nixpkgs = self.inputs.nixpkgs;
  pkgs = nixpkgs.legacyPackages.x86_64-linux;
  effects = self.inputs.hercules-ci-effects.lib.withPkgs nixpkgs.legacyPackages.x86_64-linux;

  deployNixOS = args@{
    hostname,
    drv,
      ...
  }: effects.mkEffect (args // {
    secretsMap.ssh = "default-ssh";
    # This style of variable passing allows overrideAttrs and modification in
    # hooks like the userSetupScript.
    inherit hostname drv;
    effectScript = ''
      writeSSHKey ssh ~/.ssh/id_ed25519
      cat >>~/.ssh/known_hosts <<EOF
      build01.nix-community.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIElIQ54qAy7Dh63rBudYKdbzJHrrbrrMXLYl7Pkmk88H
      build02.nix-community.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMm3/o1HguyRL1z/nZxLBY9j/YUNXeNuDoiBLZAyt88Z
      build03.nix-community.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFiozp1A1+SUfJQPa5DZUQcVc6CZK2ZxL6FJtNdh+2TP
      build04.nix-community.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPU/gbREwVuI1p3ag1iG72jxl2/92yGl38c+TPOfFMH8
      EOF

      ${pkgs.openssh}/bin/ssh -i deploy-key root@"$hostname" "\$(nix-store -r $drv)/bin/switch-to-configuration switch"
    '';
  });
in
(nixpkgs.lib.mapAttrs' (name: config: nixpkgs.lib.nameValuePair "nixos-${name}" config.config.system.build.toplevel) self.outputs.nixosConfigurations) // {
 build01 = deployNixOS {
    hostname = "build01.nix-community.org";
    # using the drv path here avoids downloading the closure on the deploying machine
    drv = builtins.unsafeDiscardStringContext self.outputs.nixosConfigurations.nix-community-build01.config.system.build.toplevel.drvPath;
  };
}
fix ci? 2020-04-18 00:12:32 +02:00			`# Add derivations to be built from the cache to this file`
add continous integration 2021-12-23 21:15:46 +01:00			`{ system ? builtins.currentSystem`
			`, src ? { ref = null; }`
			`}:`
fix ci? 2020-04-18 00:12:32 +02:00			`let`
move ci to flakes 2022-04-10 22:29:46 +02:00			`self = builtins.getFlake (toString ./.);`
			`nixpkgs = self.inputs.nixpkgs;`
deploy: fix escaping and missing deps 2022-08-13 10:28:24 +02:00			`pkgs = nixpkgs.legacyPackages.x86_64-linux;`
move ci to flakes 2022-04-10 22:29:46 +02:00			`effects = self.inputs.hercules-ci-effects.lib.withPkgs nixpkgs.legacyPackages.x86_64-linux;`
Use hercules to deploy nixos 2022-08-13 09:15:38 +02:00
			`deployNixOS = args@{`
			`hostname,`
			`drv,`
			`...`
			`}: effects.mkEffect (args // {`
also add known hosts 2022-08-13 10:48:09 +02:00			`secretsMap.ssh = "default-ssh";`
Use hercules to deploy nixos 2022-08-13 09:15:38 +02:00			`# This style of variable passing allows overrideAttrs and modification in`
			`# hooks like the userSetupScript.`
			`inherit hostname drv;`
			`effectScript = ''`
also add known hosts 2022-08-13 10:48:09 +02:00			`writeSSHKey ssh ~/.ssh/id_ed25519`
			`cat >>~/.ssh/known_hosts <<EOF`
			`build01.nix-community.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIElIQ54qAy7Dh63rBudYKdbzJHrrbrrMXLYl7Pkmk88H`
			`build02.nix-community.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMm3/o1HguyRL1z/nZxLBY9j/YUNXeNuDoiBLZAyt88Z`
			`build03.nix-community.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFiozp1A1+SUfJQPa5DZUQcVc6CZK2ZxL6FJtNdh+2TP`
			`build04.nix-community.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPU/gbREwVuI1p3ag1iG72jxl2/92yGl38c+TPOfFMH8`
			`EOF`
deploy: fix escaping and missing deps 2022-08-13 10:28:24 +02:00
			`${pkgs.openssh}/bin/ssh -i deploy-key root@"$hostname" "\$(nix-store -r $drv)/bin/switch-to-configuration switch"`
Use hercules to deploy nixos 2022-08-13 09:15:38 +02:00			`'';`
			`});`
fix ci? 2020-04-18 00:12:32 +02:00			`in`
Use hercules to deploy nixos 2022-08-13 09:15:38 +02:00			`(nixpkgs.lib.mapAttrs' (name: config: nixpkgs.lib.nameValuePair "nixos-${name}" config.config.system.build.toplevel) self.outputs.nixosConfigurations) // {`
			`build01 = deployNixOS {`
			`hostname = "build01.nix-community.org";`
			`# using the drv path here avoids downloading the closure on the deploying machine`
ci: fix secret name for deploy 2022-08-13 10:08:40 +02:00			`drv = builtins.unsafeDiscardStringContext self.outputs.nixosConfigurations.nix-community-build01.config.system.build.toplevel.drvPath;`
Use hercules to deploy nixos 2022-08-13 09:15:38 +02:00			`};`
			`}`
No results found.