493f2382d5
gitlab-ci: ugh, IPv4, fine
2020-05-10 00:09:33 +01:00
f8bf41b36a
hack/deploy: SECRETS_MANIFEST is a file now
2020-05-10 00:08:28 +01:00
818751bac1
gitlab-ci: just inline the variables
2020-05-10 00:06:29 +01:00
2f7e50cc35
gitlab-ci: add more hosts
2020-05-10 00:01:47 +01:00
91d742c1cd
gitlab-ci: try and get deploys works
2020-05-09 23:49:32 +01:00
118ebf59fd
gitlab-ci: oh, rules isn't in this version of gitlab...
2020-05-09 18:55:39 +01:00
84f607d7cf
*: try setting up automated deploys
...
This won't work yet, since the deployer user isn't correctly configured,
but this should at least trigger the right sets of things to happen.
2020-05-09 18:53:17 +01:00
c5d03b795e
ops/nixos: give everything a consistent mercurial
2020-05-09 18:15:12 +01:00
0c461e9422
common: add my hgrc so I can have evolve everywhere
2020-05-09 14:42:19 +01:00
0236b2450b
porcorosso: start using manifest variable
2020-05-09 14:27:10 +01:00
a9cb53fa16
secretsync: add concept of manifest variable
...
This is a file-type variable which contains the original mapping of
VARIABLE_NAME to VARIABLE_DATA.
This can be used to automatically repopulate a repository with
secrets that were originally taken from it and transmitted via
GitLab variables (i.e. out-of-band).
2020-05-09 14:26:54 +01:00
0949accaea
gitlab-ci: drop cache directive entirely
2020-05-09 13:54:15 +01:00
b9e5dac14c
gitlab-ci: tweak caching strategy
...
/nix/store is now just a Docker volume on the host running the build,
so the store should just implicitly get shared.
2020-05-09 13:48:37 +01:00
ed8c77a9c6
heptapod-runner: make sure our wrapped Mercurial is on the PATH
2020-05-09 13:22:49 +01:00
e613112eda
ci-root: add ciPackages to the root derivation as well
2020-05-09 13:09:29 +01:00
c110580d82
porcorosso: swap path to a string.
...
Can't use a path here since this doesn't exist on CI.
2020-05-09 12:59:51 +01:00
0474fea9f7
clouvider-fra01: set deluge.authFile
2020-05-09 12:56:56 +01:00
11f8b7f5aa
gitlab-ci: use different caching strategy
2020-05-09 12:52:31 +01:00
a708872dec
porcorosso: add a configured secretsync
2020-05-09 12:45:31 +01:00
6266b42b66
secretsync: add
...
This is a helper utility for syncing filesystem files into GitLab variables, for
deploy-time secrets.
2020-05-09 12:45:13 +01:00
02112f071c
clouvider-fra01: deluge
2020-05-09 11:14:37 +01:00
606151ddb4
ops/nixos: move rebuilder derivation into its own file.
2020-05-09 11:14:25 +01:00
fc8e2e7419
ci-root: rework to using linkFarm derivation
2020-05-09 11:14:07 +01:00
5b96c181b2
heptapod-runner: add derivation
2020-05-09 01:10:49 +01:00
f34991e545
nixos/lib/common: oops, meant "cache", not hydra
2020-05-09 01:10:37 +01:00
2508b6ed9a
ops/nixos: add deployer user
2020-05-09 01:10:20 +01:00
bc50bdb7d2
ops/nixos: add GCP binary cache
2020-05-09 00:03:21 +01:00
19c29c56ff
ops/nixos: fix things
2020-05-08 23:34:17 +01:00
06910a0445
ixvm-fra01: remove bird.nix
2020-05-08 23:29:30 +01:00
c4a6c2592f
ixvm-fra01: merge useless changes
2020-05-08 23:29:10 +01:00
83cfa93b11
merge in local changes from marukuru
2020-05-08 23:28:42 +01:00
1e7fcadc97
ops/nixos: rework everything to factor common things out
2020-05-08 23:26:21 +01:00
24fe8291c2
marukuru: switch to heptapod
2020-05-08 22:24:50 +00:00
bcaf738b8f
ixvm-fra01: add export_community
2020-05-08 21:48:44 +00:00
f99775ddf2
hgignore: ignore more result symlinks
2020-05-08 21:39:18 +01:00
ee5d39b153
gitlab-ci: reorder substituters
2020-05-08 19:12:02 +01:00
0158906a49
gitlab-ci: actually set cache path
...
Oops.
2020-05-08 18:53:41 +01:00
e0160d133f
gitlab-ci: mark both extra substituters as trusted
2020-05-08 18:40:47 +01:00
6b717e04ec
gitlab-ci: import some sekrits
2020-05-08 18:02:42 +01:00
23bb45a60a
Backed out changeset 1b4ecdc5b78d
2020-05-08 16:55:57 +00:00
9c45d867e2
Merge ixvm-fra01 changes
2020-05-08 17:52:55 +01:00
c6d883af9a
ixvm-fra01: fix up bird config
2020-05-08 16:52:04 +00:00
244f7d11d8
gitlab-ci: nix-build doesn't take -f
2020-05-08 17:51:22 +01:00
333ad15d07
gitlab-ci: try to set up
2020-05-08 17:48:34 +01:00
a68ea0ce27
marukuru: add builder1 user
2020-05-07 00:52:42 +01:00
cc168a96d9
ixvm-fra01: add listen bgp dual
2020-05-06 23:44:16 +01:00
326f7259b7
ixvm-fra01: allow disabling peering
2020-05-06 23:37:31 +01:00
f27ec35837
ixvm-fra01: add lukegb to bird2 group
2020-05-06 23:29:57 +01:00
cf4109aaf9
ixvm-fra01: add bird config
2020-05-06 23:27:14 +01:00
bf1ce6309e
meta: add result symlink to .hgignore
2020-05-06 20:57:05 +00:00
