griffi-gh/infra
0
0
Fork 0
forked from the-distro/infra
Code Pull requests Activity
Temp repo for Bagel-baking infrastructure
491 commits 1 branch 0 tags 10 MiB
Find a file
Exact
emilylange fbb23bf517
 fix: prevent same overlays from applying twice 
Commit 94e1635c77 restructed the flake.nix
over so slightly and added a `] ++ (import ./overlays)` to the existing
overlays passed to `import nixpkgs`.

This resulted in the same ./overlays folder to be imported twice.

Which went mostly unnoticed because all except one overlay in ./overlays
can be applied multiple times without issues.

~~~
nix-repl> pkgs.buildbot.patches # before
[
  /nix/store/rhn4fkh7hqjlqs9j6naaq623qpl62yz0-source/pkgs/development/tools/continuous-integration/buildbot/skip_test_linux_distro.patch
  /nix/store/57w83ai9mylidim41s3mj1v0sqvpmmc8-source/overlays/buildbot-kill-parse-version.patch
  /nix/store/57w83ai9mylidim41s3mj1v0sqvpmmc8-source/overlays/buildbot-kill-parse-version.patch
]

nix-repl> pkgs.buildbot.patches # after
[
  /nix/store/rhn4fkh7hqjlqs9j6naaq623qpl62yz0-source/pkgs/development/tools/continuous-integration/buildbot/skip_test_linux_distro.patch
  /nix/store/xvyhxfwkv1bi36c2jrf73vq05vq3na71-source/overlays/buildbot-kill-parse-version.patch
]
~~~
2025-02-25 19:37:33 +01:00
common fix: prevent same overlays from applying twice 2025-02-25 19:37:33 +01:00
dashboards feat(grafana): plug jsonnet-based dashboards in provisioning 2024-08-24 16:32:21 +02:00
hosts feat(services/gerrit): generalized configuration 2025-02-25 00:04:03 +00:00
lib flake: use flake-parts and simplify(?) 2025-02-17 22:02:12 +01:00
netboot/arm64 feat: introduce ARM64 baremetal nodes 2025-02-12 22:30:45 +01:00
overlays feat(overlays/besadii): init 2025-02-24 00:05:50 +00:00
pki feat(systems): trust our infra chain on all systems 2025-01-01 03:43:13 +01:00
secrets feat(services/gerrit): generalized configuration 2025-02-25 00:04:03 +00:00
services feat(services/gerrit): generalized configuration 2025-02-25 00:04:03 +00:00
terraform feat(terraform/superadmin): init Lix's Keycloak configuration 2025-02-24 00:05:50 +00:00
.editorconfig editorconfig: init 2024-07-13 01:10:18 +00:00
.envrc chore: add lorri to prevent direnv from blocking, closes #147 2024-10-27 09:42:11 +00:00
.gitattributes feat(secrets): flag .age secret blobs as binary 2025-02-25 17:30:56 +01:00
.gitignore gitignore: add secrets (but not encrypted secrets) to gitignore 2024-07-15 11:02:54 +00:00
baremetal-nodes.nix flake: use flake-parts and simplify(?) 2025-02-17 22:02:12 +01:00
builders.nix fix(hydra): fix buildMachinesFiles format 2025-02-21 23:56:20 +01:00
colmena.nix flake: use flake-parts and simplify(?) 2025-02-17 22:02:12 +01:00
default.nix feat: sign the ICA1 CSR 2024-12-31 17:50:23 +01:00
flake.lock feat(hosts/build01-aarch64-darwin-lix): init 2025-02-24 00:05:50 +00:00
flake.nix chore(terraform): move to OpenTofu 2025-02-24 00:05:50 +00:00
LICENSE Initial commit 2024-06-23 06:41:53 +02:00
README.md docs(README.md): explain how to deploy things 2024-10-06 08:09:53 +00:00
secrets.nix feat(services/gerrit): generalized configuration 2025-02-25 00:04:03 +00:00

README.md

Infrastructure for the donut shaped thing that is absolutely not a donut.

Quick start

Build the infrastructure

$ colmena build --on @localboot

Notice that @localboot is load-bearing as we have some machines that cannot be deployed with vanilla Colmena. Fixing this is welcome.

Recommended deploy process

$ colmena apply dry-activate $machine # Verify that the nvd log is reasonable.
$ colmena apply $machine

Recommended upgrade process

$ nix flake update
$ colmena apply dry-activate --on @localboot # Verify that the nvd log is reasonable. Run it twice to get only NVD logs shown.
$ colmena apply --on @localboot

Troubleshooting

I failed to deploy gerrit01

Our Gerrit source build is known to have some hiccups sometimes, we are always interested in build logs, feel free to attach information in a new issue so we can make it more reliable.