2021-06-01 00:58:50 +00:00
stages :
2024-01-20 21:58:57 -05:00
- ci
- artifacts
2024-01-30 19:51:41 -05:00
- publish
2021-05-13 07:57:11 +00:00
2021-03-13 19:00:13 +00:00
variables :
2024-01-20 21:58:57 -05:00
# Makes some things print in color
TERM : ansi
2024-05-02 10:34:06 -04:00
# Faster cache and artifact compression / decompression
FF_USE_FASTZIP : true
# Print progress reports for cache and artifact transfers
TRANSFER_METER_FREQUENCY : 5s
2024-10-24 21:29:17 -04:00
NIX_CONFIG : |
show-trace = true
2025-01-11 21:43:46 -05:00
extra-substituters = https://attic.kennel.juneis.dog/conduit https://attic.kennel.juneis.dog/conduwuit https://conduwuit.cachix.org
extra-trusted-public-keys = conduit:eEKoUwlQGDdYmAI/Q/0slVlegqh/QmAvQd7HBSm21Wk= conduwuit:BbycGUgTISsltcmH0qNjFR9dbrQNYgdIAcmViSGoVTE= conduwuit.cachix.org-1:MFRm6jcnfTf0jSAbmvLfhO3KBMt4px+1xaereWXp8Xg=
2024-10-24 21:29:17 -04:00
experimental-features = nix-command flakes
extra-experimental-features = nix-command flakes
accept-flake-config = true
2021-08-13 17:20:40 +02:00
2024-03-12 23:46:43 -04:00
# Avoid duplicate pipelines
# See: https://docs.gitlab.com/ee/ci/yaml/workflow.html#switch-between-branch-pipelines-and-merge-request-pipelines
workflow :
rules :
- if : $CI_PIPELINE_SOURCE == "merge_request_event"
- if : $CI_COMMIT_BRANCH && $CI_OPEN_MERGE_REQUESTS
when : never
- if : $CI
2024-01-20 21:58:57 -05:00
before_script :
2024-03-05 21:42:17 -05:00
# Enable nix-command and flakes
- if command -v nix > /dev/null; then echo "experimental-features = nix-command flakes" >> /etc/nix/nix.conf; fi
2024-10-24 21:29:17 -04:00
- if command -v nix > /dev/null; then echo "extra-experimental-features = nix-command flakes" >> /etc/nix/nix.conf; fi
# Accept flake config from "untrusted" users
- if command -v nix > /dev/null; then echo "accept-flake-config = true" >> /etc/nix/nix.conf; fi
2024-03-05 21:42:17 -05:00
# Add conduwuit binary cache
- if command -v nix > /dev/null; then echo "extra-substituters = https://attic.kennel.juneis.dog/conduwuit" >> /etc/nix/nix.conf; fi
2024-05-24 16:55:38 -04:00
- if command -v nix > /dev/null; then echo "extra-trusted-public-keys = conduwuit:BbycGUgTISsltcmH0qNjFR9dbrQNYgdIAcmViSGoVTE=" >> /etc/nix/nix.conf; fi
2024-03-05 21:42:17 -05:00
- if command -v nix > /dev/null; then echo "extra-substituters = https://attic.kennel.juneis.dog/conduit" >> /etc/nix/nix.conf; fi
2024-05-24 16:55:38 -04:00
- if command -v nix > /dev/null; then echo "extra-trusted-public-keys = conduit:eEKoUwlQGDdYmAI/Q/0slVlegqh/QmAvQd7HBSm21Wk=" >> /etc/nix/nix.conf; fi
2024-03-05 21:42:17 -05:00
# Add alternate binary cache
- if command -v nix > /dev/null && [ -n "$ATTIC_ENDPOINT" ]; then echo "extra-substituters = $ATTIC_ENDPOINT" >> /etc/nix/nix.conf; fi
- if command -v nix > /dev/null && [ -n "$ATTIC_PUBLIC_KEY" ]; then echo "extra-trusted-public-keys = $ATTIC_PUBLIC_KEY" >> /etc/nix/nix.conf; fi
# Add crane binary cache
- if command -v nix > /dev/null; then echo "extra-substituters = https://crane.cachix.org" >> /etc/nix/nix.conf; fi
- if command -v nix > /dev/null; then echo "extra-trusted-public-keys = crane.cachix.org-1:8Scfpmn9w+hGdXH/Q9tTLiYAE/2dnJYRJP7kl80GuRk=" >> /etc/nix/nix.conf; fi
# Add nix-community binary cache
- if command -v nix > /dev/null; then echo "extra-substituters = https://nix-community.cachix.org" >> /etc/nix/nix.conf; fi
- if command -v nix > /dev/null; then echo "extra-trusted-public-keys = nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs=" >> /etc/nix/nix.conf; fi
2024-10-24 21:29:17 -04:00
- if command -v nix > /dev/null; then echo "extra-substituters = https://aseipp-nix-cache.freetls.fastly.net" >> /etc/nix/nix.conf; fi
2024-01-20 21:58:57 -05:00
# Install direnv and nix-direnv
2024-03-05 21:42:17 -05:00
- if command -v nix > /dev/null; then nix-env -iA nixpkgs.direnv nixpkgs.nix-direnv; fi
2022-02-15 11:17:32 +01:00
2024-01-20 21:58:57 -05:00
# Allow .envrc
- if command -v nix > /dev/null; then direnv allow; fi
2022-02-15 11:17:32 +01:00
2024-01-20 21:58:57 -05:00
# Set CARGO_HOME to a cacheable path
- export CARGO_HOME="$(git rev-parse --show-toplevel)/.gitlab-ci.d/cargo"
2023-06-26 22:06:17 +02:00
2024-01-20 21:58:57 -05:00
ci :
stage : ci
2024-10-05 22:29:55 -04:00
image : nixos/nix:2.24.9
2022-10-29 14:32:22 +02:00
script :
2024-05-01 23:30:49 -04:00
# Cache CI dependencies
- ./bin/nix-build-and-cache ci
2024-03-05 21:42:17 -05:00
2024-01-20 21:58:57 -05:00
- direnv exec . engage
cache :
key : nix
paths :
- target
- .gitlab-ci.d
2024-03-07 23:40:42 -05:00
rules :
# CI on upstream runners (only available for maintainers)
- if : $CI_PIPELINE_SOURCE == "merge_request_event" && $IS_UPSTREAM_CI == "true"
2024-03-12 23:46:43 -04:00
# Manual CI on unprotected branches that are not MRs
- if : $CI_PIPELINE_SOURCE != "merge_request_event" && $CI_COMMIT_REF_PROTECTED == "false"
when : manual
2024-03-07 23:40:42 -05:00
# Manual CI on forks
- if : $IS_UPSTREAM_CI != "true"
when : manual
- if : $CI
2024-03-12 23:46:43 -04:00
interruptible : true
2022-02-18 22:29:55 +01:00
2024-03-05 21:42:17 -05:00
artifacts :
2024-01-25 23:39:59 -05:00
stage : artifacts
2024-10-05 22:29:55 -04:00
image : nixos/nix:2.24.9
2024-01-25 23:39:59 -05:00
script :
2024-10-24 23:03:36 -04:00
- ./bin/nix-build-and-cache just .#static-x86_64-linux-musl
- cp result/bin/conduit x86_64-linux-musl
2024-01-25 23:39:59 -05:00
2024-03-05 21:42:17 -05:00
- mkdir -p target/release
- cp result/bin/conduit target/release
2024-05-02 10:36:40 -04:00
- direnv exec . cargo deb --no-build --no-strip
2024-10-24 23:03:36 -04:00
- mv target/debian/*.deb x86_64-linux-musl.deb
2024-01-25 23:39:59 -05:00
# Since the OCI image package is based on the binary package, this has the
# fun side effect of uploading the normal binary too. Conduit users who are
# deploying with Nix can leverage this fact by adding our binary cache to
# their systems.
2024-03-05 21:42:17 -05:00
#
2024-10-24 23:03:36 -04:00
# Note that although we have an `oci-image-x86_64-linux-musl`
2024-03-05 21:42:17 -05:00
# output, we don't build it because it would be largely redundant to this
# one since it's all containerized anyway.
2024-05-01 23:30:49 -04:00
- ./bin/nix-build-and-cache just .#oci-image
2024-01-30 19:51:41 -05:00
- cp result oci-image-amd64.tar.gz
2024-01-25 23:39:59 -05:00
2024-10-24 23:03:36 -04:00
- ./bin/nix-build-and-cache just .#static-aarch64-linux-musl
- cp result/bin/conduit aarch64-linux-musl
2022-06-22 22:14:53 +00:00
2024-10-24 23:03:36 -04:00
- ./bin/nix-build-and-cache just .#oci-image-aarch64-linux-musl
2024-01-30 19:51:41 -05:00
- cp result oci-image-arm64v8.tar.gz
2024-03-17 18:06:10 -04:00
2024-05-01 23:30:49 -04:00
- ./bin/nix-build-and-cache just .#book
2024-03-17 18:06:10 -04:00
# We can't just copy the symlink, we need to dereference it https://gitlab.com/gitlab-org/gitlab/-/issues/19746
- cp -r --dereference result public
2022-06-22 22:14:53 +00:00
artifacts :
2024-01-20 21:58:57 -05:00
paths :
2024-10-24 23:03:36 -04:00
- x86_64-linux-musl
- aarch64-linux-musl
- x86_64-linux-musl.deb
2024-03-05 21:42:17 -05:00
- oci-image-amd64.tar.gz
2024-01-30 19:51:41 -05:00
- oci-image-arm64v8.tar.gz
2024-03-17 18:17:46 -04:00
- public
2024-03-07 23:40:42 -05:00
rules :
# CI required for all MRs
- if : $CI_PIPELINE_SOURCE == "merge_request_event"
# Optional CI on forks
- if : $IS_UPSTREAM_CI != "true"
when : manual
allow_failure : true
- if : $CI
2024-03-12 23:46:43 -04:00
interruptible : true
2021-08-13 17:20:40 +02:00
2024-03-17 18:06:10 -04:00
pages :
stage : publish
dependencies :
- artifacts
only :
- next
script :
- "true"
artifacts :
paths :
- public