kiara/Fediversity
1
0
Fork 0
forked from fediversity/fediversity
Code Pull requests Activity

Compare commits

base: kiara:7a306394d24db88cccb33e5bf4154fef0ca7243e
Branches Tags
kiara:main
kiara:uncall-package
kiara:inline-template
kiara:centralize-tf-providers
kiara:netbox-assign
kiara:unname-config
kiara:unflake-tests
kiara:tf-conversion
kiara:centralize-tf
kiara:test-utils
kiara:octodns
kiara:simplify-eval-opt
kiara:read-only-outputs
kiara:function-test
kiara:checks-rm-effect-pkgs
kiara:with-env
kiara:netbox-unpass-system
kiara:upstream-type-fileset
kiara:rm-checks-nix-path
kiara:netbox
kiara:split-ci-checks
kiara:cancel-old-ci-checks
kiara:nix-gc
kiara:rm-label-boot
kiara:attic
kiara:factor-out-tf-http-backend-settings
kiara:revert-forgejo-queue
kiara:forgejo-queue-channel
kiara:rm-fedi200
kiara:pure
kiara:cd-which
kiara:forgejo-timeout
kiara:rm-updater
kiara:proxmox-overlay
kiara:rm-flake-parts
kiara:factor-out-tf-run
kiara:data-model-tf-proxmox
kiara:minimal-targets
kiara:mv-acme
kiara:spaced-ssh-opts
kiara:unverbose-tf
kiara:rename-caller
kiara:un-options
kiara:rename-pve
kiara:split-data-models
kiara:factor-out-utils
kiara:upstreamed-python-packages
kiara:upstream-nimbolus
kiara:rm-acme
kiara:factor-out-tf-env
kiara:propagate-http-backend-config
kiara:un-intersection
kiara:terraform-backend
kiara:factor-out-tf-setup
kiara:mv-timeout
kiara:bash-proxmox-specify-node
kiara:bash-proxmox-experimental
kiara:reusable-nixos-template
kiara:skip-path-from-root
kiara:tests-thru-flake
kiara:factor-out-nixos-conf
kiara:fix-provision-proxmox
kiara:document-function
kiara:peertube-credentials
kiara:data-model-name
kiara:allow-empty-password
kiara:panel-add-git
kiara:dedupe-tests
kiara:break-down-nix-flake-check
kiara:fix-formatting
kiara:deployment-path
kiara:data-model-tf-test
kiara:data-model-test-deployment-plain
kiara:fix-data-model
kiara:data-model-factor-out-wrapper
kiara:mv-submodule
kiara:data-model-tf-template
kiara:data-model-ssh-template
kiara:proxmox-test
kiara:data-model-add-classes
kiara:data-model-refactor-deployments
kiara:data-model-test-shb
kiara:data-model-check-inputs
kiara:data-model-deployment-types
kiara:data-model-type-nixos-module
kiara:fix-env-apply-call
kiara:woodpecker
kiara:attic-infra
kiara:ci-manual-trigger
kiara:reflexive-function
kiara:data-model-modular-function-application
kiara:data-model-test-tf
kiara:data-model-tf
kiara:attic-woodpecker
kiara:infra-tf
kiara:tofu
kiara:upstream-python-packages
kiara:random-hostname
kiara:repro-data-model-deployment-recursion
kiara:data-model-test-deployment
kiara:unwire-module-functions
kiara:repro-broken-module-function-input-check
kiara:data-model-fix-root-class
kiara:data-model-classes
kiara:fricklerhandwerk-data-model-as-diagram
kiara:repro-username-type-error
kiara:fix-submodule-type
kiara:data-model-deployment-nixos
kiara:data-model-repro-default-issue
kiara:data-model-import-issue-nixops4-nixos
kiara:data-model-mock-nixops4deployment
kiara:data-model-rm-arg
kiara:data-model-as-diagram
kiara:data-model-hack-arg
kiara:data-model-mock-deployment
kiara:npins-verbose
kiara:verbose-updater
kiara:ci-in-nix-docker
kiara:test-pixelfed
kiara:note-scope-secrets
kiara:use-application-model
kiara:icewind
kiara:ci-container
kiara:access-cache-from-runner
kiara:kiara
kiara:attic-extra-dependencies
kiara:icewind-container
kiara:application-config-type-check-attempts
kiara:data-model-revamp
kiara:rm-flake-shell
kiara:use-revamped-data-model
kiara:data-model-runtime-environment
kiara:data-model-deployment-test
kiara:forgejo-ci-vpn
kiara:data-model-migration
kiara:domain-data-model
kiara:data-model-deployment
kiara:data-model-runtime-configuration
kiara:nix-path-for-runner
kiara:destructure-packages
kiara:ignore-tf
kiara:model-application
kiara:rm-sample-secret
kiara:purge-double-hash
kiara:simplify-binpath
kiara:configurable-flake
kiara:check-runner-ip
kiara:check-runner-cpu
kiara:tofu-test
kiara:proxmox
kiara:some-regressions
kiara:de-flake
kiara:kill-disko
kiara:depends_on
kiara:sectarian
kiara:bulma
kiara:tofu-mv-key
kiara:terraform-nixos
kiara:nix-path
kiara:tf
kiara:bash-deploy
kiara:generate-module-options-rebase
kiara:deploy-button-online
kiara:rm-enable-field
kiara:online-manage-py
kiara:stitching
kiara:stitch
kiara:add-missing-migration
kiara:revert-versioned-forms
kiara:form
kiara:form-wip
kiara:auth
fediversity:main
fediversity:ci/pixelfed
fediversity:pixelfed-ci
...
compare: kiara:566501573d00224f58f4a1f671a2e4ce35fb65ae
Branches Tags
kiara:uncall-package
kiara:inline-template
kiara:centralize-tf-providers
kiara:netbox-assign
kiara:unname-config
kiara:unflake-tests
kiara:tf-conversion
kiara:centralize-tf
kiara:test-utils
kiara:octodns
kiara:simplify-eval-opt
kiara:read-only-outputs
kiara:function-test
kiara:checks-rm-effect-pkgs
kiara:with-env
kiara:netbox-unpass-system
kiara:upstream-type-fileset
kiara:rm-checks-nix-path
kiara:netbox
kiara:split-ci-checks
kiara:cancel-old-ci-checks
kiara:nix-gc
kiara:rm-label-boot
kiara:attic
kiara:factor-out-tf-http-backend-settings
kiara:revert-forgejo-queue
kiara:forgejo-queue-channel
kiara:rm-fedi200
kiara:pure
kiara:cd-which
kiara:forgejo-timeout
kiara:rm-updater
kiara:proxmox-overlay
kiara:rm-flake-parts
kiara:factor-out-tf-run
kiara:data-model-tf-proxmox
kiara:minimal-targets
kiara:mv-acme
kiara:spaced-ssh-opts
kiara:unverbose-tf
kiara:rename-caller
kiara:un-options
kiara:rename-pve
kiara:split-data-models
kiara:factor-out-utils
kiara:upstreamed-python-packages
kiara:upstream-nimbolus
kiara:rm-acme
kiara:factor-out-tf-env
kiara:propagate-http-backend-config
kiara:un-intersection
kiara:terraform-backend
kiara:factor-out-tf-setup
kiara:mv-timeout
kiara:bash-proxmox-specify-node
kiara:bash-proxmox-experimental
kiara:reusable-nixos-template
kiara:skip-path-from-root
kiara:tests-thru-flake
kiara:factor-out-nixos-conf
kiara:fix-provision-proxmox
kiara:document-function
kiara:peertube-credentials
kiara:data-model-name
kiara:allow-empty-password
kiara:panel-add-git
kiara:dedupe-tests
kiara:break-down-nix-flake-check
kiara:fix-formatting
kiara:deployment-path
kiara:data-model-tf-test
kiara:data-model-test-deployment-plain
kiara:fix-data-model
kiara:data-model-factor-out-wrapper
kiara:mv-submodule
kiara:data-model-tf-template
kiara:data-model-ssh-template
kiara:proxmox-test
kiara:data-model-add-classes
kiara:data-model-refactor-deployments
kiara:data-model-test-shb
kiara:data-model-check-inputs
kiara:data-model-deployment-types
kiara:data-model-type-nixos-module
kiara:fix-env-apply-call
kiara:woodpecker
kiara:attic-infra
kiara:ci-manual-trigger
kiara:reflexive-function
kiara:data-model-modular-function-application
kiara:data-model-test-tf
kiara:data-model-tf
kiara:attic-woodpecker
kiara:infra-tf
kiara:tofu
kiara:upstream-python-packages
kiara:random-hostname
kiara:repro-data-model-deployment-recursion
kiara:data-model-test-deployment
kiara:unwire-module-functions
kiara:repro-broken-module-function-input-check
kiara:data-model-fix-root-class
kiara:data-model-classes
kiara:fricklerhandwerk-data-model-as-diagram
kiara:repro-username-type-error
kiara:fix-submodule-type
kiara:data-model-deployment-nixos
kiara:data-model-repro-default-issue
kiara:data-model-import-issue-nixops4-nixos
kiara:data-model-mock-nixops4deployment
kiara:data-model-rm-arg
kiara:data-model-as-diagram
kiara:data-model-hack-arg
kiara:data-model-mock-deployment
kiara:npins-verbose
kiara:verbose-updater
kiara:ci-in-nix-docker
kiara:main
kiara:test-pixelfed
kiara:note-scope-secrets
kiara:use-application-model
kiara:icewind
kiara:ci-container
kiara:access-cache-from-runner
kiara:kiara
kiara:attic-extra-dependencies
kiara:icewind-container
kiara:application-config-type-check-attempts
kiara:data-model-revamp
kiara:rm-flake-shell
kiara:use-revamped-data-model
kiara:data-model-runtime-environment
kiara:data-model-deployment-test
kiara:forgejo-ci-vpn
kiara:data-model-migration
kiara:domain-data-model
kiara:data-model-deployment
kiara:data-model-runtime-configuration
kiara:nix-path-for-runner
kiara:destructure-packages
kiara:ignore-tf
kiara:model-application
kiara:rm-sample-secret
kiara:purge-double-hash
kiara:simplify-binpath
kiara:configurable-flake
kiara:check-runner-ip
kiara:check-runner-cpu
kiara:tofu-test
kiara:proxmox
kiara:some-regressions
kiara:de-flake
kiara:kill-disko
kiara:depends_on
kiara:sectarian
kiara:bulma
kiara:tofu-mv-key
kiara:terraform-nixos
kiara:nix-path
kiara:tf
kiara:bash-deploy
kiara:generate-module-options-rebase
kiara:deploy-button-online
kiara:rm-enable-field
kiara:online-manage-py
kiara:stitching
kiara:stitch
kiara:add-missing-migration
kiara:revert-versioned-forms
kiara:form
kiara:form-wip
kiara:auth
fediversity:main
fediversity:ci/pixelfed
fediversity:pixelfed-ci

2 commits
7a306394d2 ... 566501573d

Author SHA1 Message Date
Kiara Grouwstra
566501573d
mount /dev/kvm 
This reverts commit 32a8c011133045f624f23d0cacd6e2b81ccc78eb.
 2025-08-04 19:49:50 +02:00
Kiara Grouwstra
35cf1dad09
try store mounted read-only 
- `--store` as per
https://blog.kotatsu.dev/posts/2023-04-21-woodpecker-nix-caching/
- `--eval-store` as per
https://kevincox.ca/2022/01/02/nix-in-docker-caching/

mount store

rm kvm
 2025-08-04 19:49:48 +02:00
11 changed files with 38 additions and 14 deletions
Show stats Expand all files Collapse all files

4
.woodpecker/cd.yaml
View file

@ -8,12 +8,14 @@ when:
steps: steps:
- name: build - name: build
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- | - |
mkdir -p ~/.ssh mkdir -p ~/.ssh
echo "$CD_SSH_KEY" > ~/.ssh/id_ed25519 echo "$CD_SSH_KEY" > ~/.ssh/id_ed25519
chmod 600 ~/.ssh/id_ed25519 chmod 600 ~/.ssh/id_ed25519
- nix-shell --run 'eval "$(ssh-agent -s)" && ssh-add ~/.ssh/id_ed25519 && ssh-agent -s && SHELL=$(which bash) nixops4 apply -v default' - nix-shell --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --run 'eval "$(ssh-agent -s)" && ssh-add ~/.ssh/id_ed25519 && ssh-agent -s && SHELL=$(which bash) nixops4 apply -v default'
environment: environment:
CD_SSH_KEY: CD_SSH_KEY:
from_secret: cd_ssh_key from_secret: cd_ssh_key

4
.woodpecker/check-data-model.yaml
View file

@ -9,5 +9,7 @@ when:
steps: steps:
- name: check-data-model - name: check-data-model
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix-shell --run 'nix-unit ./deployment/data-model-test.nix' - nix-shell --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --run 'nix-unit ./deployment/data-model-test.nix'

6
.woodpecker/check-deployment-basic.yaml
View file

@ -9,5 +9,9 @@ when:
steps: steps:
- name: check-deployment-basic - name: check-deployment-basic
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix build --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.deployment-basic -L - nix build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.deployment-basic -L
devices:
- /dev/kvm:/dev/kvm

4
.woodpecker/check-deployment-cli.yaml
View file

@ -9,5 +9,7 @@ when:
steps: steps:
- name: check-deployment-cli - name: check-deployment-cli
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix build --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.deployment-cli -L - nix build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.deployment-cli -L

4
.woodpecker/check-deployment-panel.yaml
View file

@ -9,5 +9,7 @@ when:
steps: steps:
- name: check-deployment-panel - name: check-deployment-panel
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix build --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.deployment-panel -L - nix build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.deployment-panel -L

4
.woodpecker/check-mastodon.yaml
View file

@ -9,5 +9,7 @@ when:
steps: steps:
- name: check-mastodon - name: check-mastodon
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix build --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.test-mastodon-service -L - nix build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.test-mastodon-service -L

4
.woodpecker/check-panel.yaml
View file

@ -9,5 +9,7 @@ when:
steps: steps:
- name: check-panel - name: check-panel
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix-build -A tests.panel - nix-build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt -A tests.panel

4
.woodpecker/check-peertube.yaml
View file

@ -9,5 +9,7 @@ when:
steps: steps:
- name: check-peertube - name: check-peertube
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix build --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.test-peertube-service -L - nix build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.test-peertube-service -L

4
.woodpecker/check-pre-commit.yaml
View file

@ -9,5 +9,7 @@ when:
steps: steps:
- name: check-pre-commit - name: check-pre-commit
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix-build -A tests - nix-build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt -A tests

10
.woodpecker/check-resources.yaml
View file

@ -14,20 +14,22 @@ when:
steps: steps:
- name: check-resources - name: check-resources
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- echo ==================== [ VM Options ] ==================== - echo ==================== [ VM Options ] ====================
- | - |
set -euC set -euC
machines=$(nix eval --impure --raw --expr 'with builtins; toString (attrNames (getFlake (toString ./.)).vmOptions)') machines=$(nix eval --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' --impure --raw --expr 'with builtins; toString (attrNames (getFlake (toString ./.)).vmOptions)')
for machine in $machines; do for machine in $machines; do
echo ~~~~~~~~~~~~~~~~~~~~~: $machine :~~~~~~~~~~~~~~~~~~~~~ echo ~~~~~~~~~~~~~~~~~~~~~: $machine :~~~~~~~~~~~~~~~~~~~~~
nix build --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.vmOptions-$machine nix build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.vmOptions-$machine
done done
- echo ==================== [ NixOS Configurations ] ==================== - echo ==================== [ NixOS Configurations ] ====================
- | - |
set -euC set -euC
machines=$(nix eval --impure --raw --expr 'with builtins; toString (attrNames (getFlake (toString ./.)).nixosConfigurations)') machines=$(nix eval --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' --impure --raw --expr 'with builtins; toString (attrNames (getFlake (toString ./.)).nixosConfigurations)')
for machine in $machines; do for machine in $machines; do
echo ~~~~~~~~~~~~~~~~~~~~~: $machine :~~~~~~~~~~~~~~~~~~~~~ echo ~~~~~~~~~~~~~~~~~~~~~: $machine :~~~~~~~~~~~~~~~~~~~~~
nix build --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.nixosConfigurations-$machine nix build --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --extra-experimental-features 'nix-command flakes' .#checks.x86_64-linux.nixosConfigurations-$machine
done done

4
.woodpecker/update.yaml
View file

@ -8,8 +8,10 @@ when:
steps: steps:
- name: lockfile - name: lockfile
image: nixos/nix image: nixos/nix
volumes:
- /nix:/mnt/nix:ro
commands: commands:
- nix-shell --run "npins --verbose update" - nix-shell --eval-store local --store unix:///mnt/nix/var/nix/daemon-socket/socket?root=/mnt --run "npins --verbose update"
# - name: Create PR # - name: Create PR
# uses: https://github.com/KiaraGrouwstra/gitea-create-pull-request@f9f80aa5134bc5c03c38f5aaa95053492885b397 # uses: https://github.com/KiaraGrouwstra/gitea-create-pull-request@f9f80aa5134bc5c03c38f5aaa95053492885b397
# with: # with: