From 105c08172827499504816106ffe1b61d76c2d4c8 Mon Sep 17 00:00:00 2001 From: Alex Auvolat Date: Mon, 28 Nov 2022 22:58:39 +0100 Subject: Staging: ability to run Nix jobs using exec2 driver --- .../staging/app/garage/deploy/garage-nix-exec2.hcl | 220 +++++++++++++++++++++ cluster/staging/cluster.nix | 49 ++++- deploy_nixos | 6 +- nix/deuxfleurs.nix | 1 + nix/nomad-driver-exec2.nix | 31 +++ upgrade_nixos | 7 +- 6 files changed, 305 insertions(+), 9 deletions(-) create mode 100644 cluster/staging/app/garage/deploy/garage-nix-exec2.hcl create mode 100644 nix/nomad-driver-exec2.nix diff --git a/cluster/staging/app/garage/deploy/garage-nix-exec2.hcl b/cluster/staging/app/garage/deploy/garage-nix-exec2.hcl new file mode 100644 index 0000000..ad36b4e --- /dev/null +++ b/cluster/staging/app/garage/deploy/garage-nix-exec2.hcl @@ -0,0 +1,220 @@ +job "garage-staging" { + type = "system" + #datacenters = [ "neptune", "pluton" ] + datacenters = [ "neptune" ] + + priority = 80 + + constraint { + attribute = "${attr.cpu.arch}" + value = "amd64" + } + + group "garage-staging" { + network { + port "s3" { static = 3990 } + port "rpc" { static = 3991 } + port "web" { static = 3992 } + port "k2v" { static = 3993 } + port "admin" { static = 3909 } + } + + update { + max_parallel = 1 + min_healthy_time = "30s" + healthy_deadline = "5m" + } + + # task "repair" { + # lifecycle { + # hook = "prestart" + # sidecar = false + # } + + # driver = "docker" + + # config { + # image = "dxflrs/amd64_garage:v0.7.99-k2v" + # command = "/garage" + # args = [ "offline-repair", "--yes", "object_counters" ] + # network_mode = "host" + # volumes = [ + # "/mnt/storage/garage-staging/data:/data", + # "/mnt/ssd/garage-staging/meta:/meta", + # "secrets/garage.toml:/etc/garage.toml", + # ] + # } + + # template { + # data = file("../config/garage.toml") + # destination = "secrets/garage.toml" + # } + + # resources { + # memory = 2000 + # cpu = 1000 + # } + # } + + task "server" { + driver = "exec2" + + config { + #command = "/usr/bin/env" + command = "/run/current-system/sw/bin/nix" + args = [ + "run", + "git+https://git.deuxfleurs.fr/Deuxfleurs/garage.git?ref=nix-remove-system&rev=60c26fbc628d7b450ae39214b578ab6a30583d5c", + "--", + "server" + ] + bind = { + "/mnt/storage/garage-staging/data" = "/data", + "/mnt/ssd/garage-staging/meta" = "/meta", + } + } + + template { + data = file("../config/garage.toml") + destination = "etc/garage.toml" + } + + template { + data = "{{ key \"secrets/consul/consul-ca.crt\" }}" + destination = "etc/garage/consul-ca.crt" + } + + template { + data = "{{ key \"secrets/consul/consul-client.crt\" }}" + destination = "etc/garage/consul-client.crt" + } + + template { + data = "{{ key \"secrets/consul/consul-client.key\" }}" + destination = "etc/garage/consul-client.key" + } + + template { + data = < {} +}: +pkgs.buildGoModule rec { + pname = "nomad-driver-exec2"; + version = "0.1.0"; + + src = pkgs.fetchFromGitHub { + owner = "Alexis211"; + repo = "nomad-driver-exec2"; + rev = "14bd8f2010c3a1f90c6d1297f47ebbf46ee87dde"; + sha256 = "sha256-k75VEi2+9mS9v3bx/ygumy0niQP7bLWIgB0Zwhuky+k="; + }; + + vendorSha256 = "sha256-EQdTxVOBRYQjg7kAB+pFJYcNwk0zlsjjJxM+EO/cK84="; + + ldflags = [ + "-X github.com/Alexis211/nomad-driver-exec2/exec2.pluginVersion=${version}" + ]; + + postInstall = '' + mv $out/bin/nomad-driver-exec2 $out/bin/exec2-driver + ''; + + meta = with pkgs.lib; { + description = "Nomad exec driver with support for bind mouns"; + homepage = "https://github.com/Alexis211/nomad-driver-exec2"; + license = licenses.mpl20; + platforms = platforms.linux; + }; +} diff --git a/upgrade_nixos b/upgrade_nixos index 1297a2b..df3d259 100755 --- a/upgrade_nixos +++ b/upgrade_nixos @@ -1,6 +1,11 @@ #!/usr/bin/env ./sshtool -cmd nix-channel --add https://nixos.org/channels/nixos-22.05 nixos +if [ "$CLUSTER" = "staging" ]; then + cmd nix-channel --add https://nixos.org/channels/nixos-22.11 nixos +else + cmd nix-channel --add https://nixos.org/channels/nixos-22.05 nixos +fi + cmd nix-channel --update cmd nixos-rebuild boot -- cgit v1.2.3