snix/ops/nixos/default.nix
Griffin Smith 9f4d37e5df feat(ops/nixos): Give all nixoses a config.depot
Add the depot.nix module and a depot config option to all nixos system
derivations that're build through the `bin/rebuild-system` machinery.
I can't imagine a scenario where we wouldn't want this level of
integration.

Change-Id: Ieeb98db2eee23919256adb4654bc45d540e055ec
Reviewed-on: https://cl.tvl.fyi/c/depot/+/2128
Tested-by: BuildkiteCI
Reviewed-by: lukegb <lukegb@tvl.fyi>
2020-11-22 21:59:58 +00:00

58 lines
1.5 KiB
Nix

# Most of the Nix expressions in this folder are NixOS modules, which
# are not readTree compatible.
#
# Some things (such as system configurations) are, and we import them
# here manually.
#
# TODO(tazjin): Find a more elegant solution for the whole module
# situation.
{ lib, pkgs, depot, ... }@args:
let
inherit (lib) findFirst isAttrs;
in
rec {
whitby = import ./whitby/default.nix args;
# System installation
allSystems = import ./all-systems.nix args;
nixosFor = configuration: depot.third_party.nixos {
configuration = {
inherit depot;
imports = [
configuration
"${depot.depotPath}/ops/nixos/depot.nix"
];
};
};
findSystem = hostname:
(findFirst
(system: system.config.networking.hostName == hostname)
(throw "${hostname} is not a known NixOS host")
(map nixosFor allSystems));
rebuild-system = pkgs.writeShellScriptBin "rebuild-system" ''
set -ue
if [[ $EUID -ne 0 ]]; then
echo "Oh no! Only root is allowed to rebuild the system!" >&2
exit 1
fi
echo "Rebuilding NixOS for $HOSTNAME"
system=$(nix-build -E "((import ${toString depot.depotPath} {}).ops.nixos.findSystem \"$HOSTNAME\").system" --no-out-link --show-trace)
nix-env -p /nix/var/nix/profiles/system --set $system
$system/bin/switch-to-configuration switch
'';
# Systems that should be built in CI
#
# TODO(tazjin): Refactor the whole systems setup, it's a bit
# inconsistent at the moment.
whitbySystem = (nixosFor whitby).system;
meta.targets = [ "whitbySystem" ];
}