seasharp/Rosenthal
1
0
Fork 0
mirror of https://codeberg.org/hako/Rosenthal.git synced 2025-11-04 11:44:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
0fa66ce699
Rosenthal/modules/rosenthal/services/cuirass.scm
Hilton Chain 5aeedc947b
maint: Minor fixups.
2025-06-23 13:35:32 +08:00

216 lines
8.4 KiB
Scheme
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

;;; SPDX-FileCopyrightText: 2025 Hilton Chain <hako@ultrarare.space>
;;;
;;; SPDX-License-Identifier: GPL-3.0-or-later
(define-module (rosenthal services cuirass)
#:use-module (srfi srfi-1)
#:use-module (srfi srfi-26)
#:use-module (guix gexp)
#:use-module (guix modules)
#:use-module (guix records)
#:use-module (guix store)
#:use-module (rosenthal utils packages)
#:use-module (gnu bootloader)
#:use-module (gnu bootloader grub)
#:use-module (gnu system)
#:use-module (gnu system linux-container)
#:use-module (gnu system file-systems)
#:use-module (gnu system shadow)
#:use-module (gnu services)
#:use-module (gnu services admin)
#:use-module (gnu services base)
#:use-module (gnu services cuirass)
#:use-module (gnu services databases)
#:use-module (gnu services shepherd)
#:use-module (gnu packages linux)
#:use-module (rosenthal packages ci)
#:export (cuirass-worker-container-service-type
cuirass-worker-container-configuration
cuirass-worker-container-configuration?
this-cuirass-worker-container-configuration
cuirass-worker-container-activation
cuirass-worker-container-shepherd
cuirass-service-type/hako))
;;;
;;; Cuirass service with avahi-daemon shepherd requirement stripped.
;;;
(define cuirass-service-type/hako
(let ((cuirass-configuration-cuirass
(@@ (gnu services cuirass) cuirass-configuration-cuirass))
(cuirass-activation
(@@ (gnu services cuirass) cuirass-activation))
(cuirass-shepherd-service
(@@ (gnu services cuirass) cuirass-shepherd-service))
(cuirass-account
(@@ (gnu services cuirass) cuirass-account))
(cuirass-postgresql-role
(@@ (gnu services cuirass) cuirass-postgresql-role))
(strip-shepherd-requirement
(lambda (services)
(map (lambda (service)
(if (member 'cuirass-remote-server
(shepherd-service-provision service))
(shepherd-service
(inherit service)
(requirement
(remove (cut eqv? <> 'avahi-daemon)
(shepherd-service-requirement service))))
service))
services))))
(service-type
(name 'cuirass)
(extensions
(list
(service-extension profile-service-type ;for 'info cuirass'
(compose list cuirass-configuration-cuirass))
(service-extension activation-service-type cuirass-activation)
(service-extension shepherd-root-service-type
(compose strip-shepherd-requirement
cuirass-shepherd-service))
(service-extension account-service-type cuirass-account)
;; Make sure postgresql and postgresql-role are instantiated.
(service-extension postgresql-service-type (const #t))
(service-extension postgresql-role-service-type
cuirass-postgresql-role)))
(description "Run the Cuirass continuous integration service."))))
;;;
;;; Run Cuirass remote worker in container.
;;;
(define-record-type* <cuirass-worker-container-configuration>
cuirass-worker-container-configuration
make-cuirass-worker-container-configuration
cuirass-worker-container-configuration?
this-cuirass-worker-container-configuration
(host-name cuirass-worker-container-host-name)
(server cuirass-worker-container-server)
(workers cuirass-worker-container-workers
(default 1))
(supported-systems cuirass-worker-container-supported-systems
(default (list (%current-system)))
(thunked))
(substitute-urls cuirass-worker-container-substitute-urls
(default %default-substitute-urls))
;; Internal.
(container-script cuirass-worker-container-script
(default (%cuirass-worker-container-script
this-cuirass-worker-container-configuration))
(thunked))
;; Extensions.
(activation cuirass-worker-container-activation
(default (%cuirass-worker-container-activation
this-cuirass-worker-container-configuration))
(thunked))
(shepherd cuirass-worker-container-shepherd
(default (%cuirass-worker-container-shepherd
this-cuirass-worker-container-configuration))
(thunked)))
(define %cuirass-worker-container-script
(match-record-lambda <cuirass-worker-container-configuration>
(host-name server workers supported-systems substitute-urls)
(define cuirass-remote-worker-shepherd-service
(@@ (gnu services cuirass) cuirass-remote-worker-shepherd-service))
(define %cuirass-remote-worker-accounts
(@@ (gnu services cuirass) %cuirass-remote-worker-accounts))
(define (strip-shepherd-requirement services)
(map (lambda (service)
(if (member 'cuirass-remote-worker
(shepherd-service-provision service))
(shepherd-service
(inherit service)
(requirement
(remove (cut member <> '(avahi-daemon guix-daemon))
(shepherd-service-requirement service))))
service))
services))
(define cuirass-remote-worker-for-container
(service-type
(name 'cuirass-remote-worker)
(extensions
(list (service-extension shepherd-root-service-type
(compose strip-shepherd-requirement
cuirass-remote-worker-shepherd-service))
(service-extension account-service-type
(const %cuirass-remote-worker-accounts))))
(description "Run the Cuirass remote build worker service.")))
(define os
(operating-system
(bootloader
(bootloader-configuration
(bootloader grub-bootloader)
(targets '("/dev/sda"))))
(file-systems
(cons (file-system
(mount-point "/")
(device "nothing")
(type "dummy"))
%base-file-systems))
(kernel linux-libre-lts)
(host-name host-name)
(services
(cons (service cuirass-remote-worker-for-container
(cuirass-remote-worker-configuration
(cuirass cuirass/hako)
(workers workers)
(server server)
(systems supported-systems)
(publish-port 5558)
(substitute-urls substitute-urls)))
%base-services))))
(with-store store
(run-with-store store
(container-script os #:shared-network? #t)))))
(define (%cuirass-worker-container-activation _)
(with-imported-modules (source-module-closure '((guix build utils)))
#~(begin
(use-modules (guix build utils))
(let ((log-file "/var/log/cuirass-worker-container.log"))
(mkdir-p (dirname log-file))
;; Clear log on start.
(call-with-output-file log-file (const #t))))))
(define %cuirass-worker-container-shepherd
(match-record-lambda <cuirass-worker-container-configuration>
(container-script)
(list (shepherd-service
(provision '(cuirass-worker-container))
(requirement '(guix-daemon user-processes))
(start
#~(make-forkexec-constructor
(list #$container-script
"--expose=/etc/guix"
"--share=/var/guix/daemon-socket/socket"
(string-append
"--share=" (string-join
'("/var/log/cuirass-worker-container.log"
"/var/log/cuirass-remote-worker.log")
"=")))))
(stop
#~(make-kill-destructor))))))
(define cuirass-worker-container-service-type
(service-type
(name 'cuirass-worker-container)
(extensions
(list (service-extension activation-service-type
cuirass-worker-container-activation)
(service-extension shepherd-root-service-type
cuirass-worker-container-shepherd)))
(description "")))
Reference in New Issue View Git Blame Copy Permalink