-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
4 changed files
with
556 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,163 @@ | ||
| #!/usr/bin/env nu | ||
|
|
||
| use std log | ||
|
|
||
| # cd to git root | ||
| cd (git rev-parse --show-toplevel) | ||
|
|
||
| # check if a subject depends on a potential dependency | ||
| def depends [ | ||
| subject:string # package to examine | ||
| maybe_dep:string # maybe a dependency of subject | ||
| ] { | ||
| not ( nix why-depends --quiet --derivation $subject $maybe_dep | is-empty ) | ||
| } | ||
|
|
||
| # get attribute names of the attribute set | ||
| def get-attr-names [ | ||
| expr: # nix expression to get attrNames of | ||
| ] { | ||
| nix eval --json $expr --apply builtins.attrNames | from json | ||
| } | ||
|
|
||
| def job-id [ | ||
| system:string, | ||
| derivation:string, | ||
| ] { | ||
| $"($system)---($derivation)" | ||
| } | ||
|
|
||
| # map from nixos system to github runner type | ||
| let systems_map = { | ||
| # aarch64-darwin | ||
| # aarch64-linux | ||
|
|
||
| i686-linux: ubuntu-latest, | ||
| x86_64-darwin: macos-13, | ||
| x86_64-linux: ubuntu-latest | ||
| } | ||
|
|
||
| let targets = (get-attr-names ".#packages" | ||
| | par-each {|system| { $system : (get-attr-names $".#packages.($system)") } } | ||
| | reduce {|it, acc| $acc | merge $it } | ||
| ) | ||
|
|
||
| mut cachix_workflow = { | ||
| name: "Nix", | ||
| permissions: {contents: write}, | ||
| on: { | ||
| pull_request: null, | ||
| push: {branches: [main]} | ||
| }, | ||
| jobs: {}, | ||
| } | ||
|
|
||
| mut release_workflow = { | ||
| name: "Release", | ||
| permissions: {contents: write}, | ||
| on: { push: {tags: ["v*"]} }, | ||
| jobs: {}, | ||
| } | ||
|
|
||
| let runner_setup = [ | ||
| { | ||
| uses: "actions/checkout@v3" | ||
| } | ||
| { | ||
| uses: "cachix/install-nix-action@v22", | ||
| with: { nix_path: "nixpkgs=channel:nixos-unstable" } | ||
| } | ||
| { | ||
| uses: "cachix/cachix-action@v12", | ||
| with: { | ||
| name: dlr-ft, | ||
| authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}" | ||
| } | ||
| } | ||
| ] | ||
|
|
||
| for system in ($targets | columns) { | ||
| if ($systems_map | get -i $system | is-empty) { | ||
| log info $"skipping ($system), since there are no GH-Actions runners for it" | ||
| continue | ||
| } | ||
|
|
||
| # lookup the correct runner for $system | ||
| let runs_on = [ ($systems_map | get $system) ] | ||
|
|
||
| # add jobs for all derivations | ||
| let derivations = ($targets | get $system) | ||
| for derivation in $derivations { | ||
|
|
||
| # job_id for GH-Actions | ||
| let id = ( job-id $system $derivation ) | ||
|
|
||
| # name displayed | ||
| let name = $"($system).($derivation)" | ||
|
|
||
| # collection of dependencies | ||
| # TODO currently only considers dependencies on the same $system | ||
| let needs = ($derivations | ||
| | filter {|it| $it != $derivation and $it != "default" } # filter out self and default | ||
| | par-each {|it| { | ||
| name: $it, # the other derivation | ||
| # does self depend on $it? | ||
| needed: (depends $".#packages.($system).($derivation)" $".#packages.($system).($it)") | ||
| } } | ||
| | filter {|it| $it.needed} | ||
| | each {|it| job-id $system $it.name} | ||
| ) | ||
|
|
||
| mut new_job = { | ||
| name: $"Build ($name)", | ||
| "runs-on": $runs_on, | ||
| needs: $needs, | ||
| steps: ($runner_setup | append [ | ||
| { | ||
| name: Build, | ||
| run: $"nix build .#packages.($system).($derivation) --print-build-logs" | ||
| } | ||
| ]) | ||
| } | ||
| $cachix_workflow.jobs = ($cachix_workflow.jobs | insert $id $new_job ) | ||
| } | ||
|
|
||
| # add check job | ||
| $cachix_workflow.jobs = ($cachix_workflow.jobs | insert $"($system)---check" { | ||
| name: $"Run Nix checks on ($system)", | ||
| "runs-on": $runs_on, | ||
| steps: ($runner_setup | append { | ||
| name: Check, | ||
| run: "nix flake check . --print-build-logs" | ||
| }) | ||
| }) | ||
|
|
||
| # add release job | ||
| $release_workflow.jobs = ($release_workflow.jobs | insert $"($system)---release" { | ||
| name: $"Build release artifacts for ($system)", | ||
| "runs-on": $runs_on, | ||
| steps: ($runner_setup | append [ | ||
| { | ||
| name: "Build release", | ||
| run: "nix build .#release-package --print-build-logs" | ||
| } | ||
| { | ||
| name: Release, | ||
| uses: "softprops/action-gh-release@v1", | ||
| with: { | ||
| draft: "${{ contains(github.ref_name, 'rc') }}", | ||
| prerelease: "${{ contains(github.ref_name, 'alpha') || contains(github.ref_name, 'beta') }}", | ||
| files: "result/*" | ||
| } | ||
| } | ||
| ]) | ||
| }) | ||
| } | ||
|
|
||
|
|
||
| log info "saving nix-cachix workflow" | ||
| $cachix_workflow | to yaml | save --force .github/workflows/nix.yaml | ||
| $release_workflow | to yaml | save --force .github/workflows/release.yaml | ||
|
|
||
| log info "prettify generated yaml" | ||
| prettier -w .github/workflows/ |
Oops, something went wrong.