plasmagoat/nixos-base-image
1
0
Fork 1
Code Issues Pull requests Projects Releases 4 Packages Wiki Activity Actions

ensure nix never builder locally

Browse source
This commit is contained in:
plasmagoat 2025-06-08 00:10:17 +02:00
parent 8ed9bdff79
commit a3751b16cd
1 changed files with 15 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

26
.forgejo/workflows/build-image.yml
View file

@ -12,6 +12,8 @@ jobs:
env: env:
PROXMOX_HOST: 192.168.1.205 PROXMOX_HOST: 192.168.1.205
PROXMOX_USER: forgejo-runner PROXMOX_USER: forgejo-runner
NIXOS_BUILER_HOST: nixos-builder.lab
NIXOS_BUILER_USER: root
TEMPLATE_VMID: 9001 TEMPLATE_VMID: 9001
LATEST_TEMPLATE_VMID: 9000 LATEST_TEMPLATE_VMID: 9000
@ -23,11 +25,12 @@ jobs:
uses: actions/checkout@v4 uses: actions/checkout@v4
- name: Set VERSION from tag or fallback - name: Set VERSION from tag or fallback
id: version
run: | run: |
if [ -n "${CI_COMMIT_TAG}" ]; then if [ -n "${CI_COMMIT_TAG}" ]; then
echo "VERSION=${CI_COMMIT_TAG}" >> $GITHUB_ENV echo "tag=${CI_COMMIT_TAG}" >> $GITHUB_OUTPUT
else else
echo "VERSION=dev-$(date +%s)" >> $GITHUB_ENV echo "tag=dev-$(date +%s)" >> $GITHUB_OUTPUT
fi fi
- name: Enable experimental features - name: Enable experimental features
@ -35,23 +38,24 @@ jobs:
mkdir -p ~/.config/nix mkdir -p ~/.config/nix
echo "experimental-features = nix-command flakes" >> ~/.config/nix/nix.conf echo "experimental-features = nix-command flakes" >> ~/.config/nix/nix.conf
- name: Build NixOS image
run: nix build .#base --builders "ssh://root@nixos-builder.lab x86_64-linux"
- name: Prepare SSH - name: Prepare SSH
env: env:
PROXMOX_SSH_KEY: ${{ secrets.PROXMOX_SSH_KEY }} RUNNER_SSH_KEY: ${{ secrets.RUNNER_SSH_KEY }}
run: | run: |
mkdir -p ~/.ssh mkdir -p ~/.ssh
echo "$PROXMOX_SSH_KEY" > ~/.ssh/id_rsa echo "$RUNNER_SSH_KEY" > ~/.ssh/id_rsa
chmod 600 ~/.ssh/id_rsa chmod 600 ~/.ssh/id_rsa
ssh-keyscan -H $PROXMOX_HOST >> ~/.ssh/known_hosts ssh-keyscan -H $PROXMOX_HOST >> ~/.ssh/known_hosts
ssh-keyscan -H $NIXOS_BUILER_HOST >> ~/.ssh/known_hosts
- name: Build NixOS image
run: nix build .#base --builders "ssh://$NIXOS_BUILER_USER@$NIXOS_BUILER_HOST x86_64-linux" --max-jobs 0
# - name: Upload image to Proxmox and manage templates # - name: Upload image to Proxmox and manage templates
# run: | # run: |
# set -e # set -e
# IMAGE="result/vm-image.vma.zst" # IMAGE="result/vm-image.vma.zst"
# REMOTE_NAME="nixos-base-image-${VERSION}.vma.zst" # REMOTE_NAME="nixos-base-image-${steps.version.outputs.tag}.vma.zst"
# REMOTE_PATH="/var/lib/vz/template/images/$REMOTE_NAME" # REMOTE_PATH="/var/lib/vz/template/images/$REMOTE_NAME"
# echo "Uploading $IMAGE to Proxmox as $REMOTE_NAME" # echo "Uploading $IMAGE to Proxmox as $REMOTE_NAME"
@ -79,9 +83,9 @@ jobs:
# if: ${{ github.ref_type == 'tag' }} # if: ${{ github.ref_type == 'tag' }}
# uses: softprops/action-gh-release@v1 # uses: softprops/action-gh-release@v1
# with: # with:
# name: "NixOS Base Image ${{ env.VERSION }}" # name: "NixOS Base Image ${{ steps.version.outputs.tag }}"
# tag_name: ${{ env.VERSION }} # tag_name: ${{ steps.version.outputs.tag }}
# body: | # body: |
# This release contains the NixOS base image for Proxmox labeled `${{ env.VERSION }}`. # This release contains the NixOS base image for Proxmox labeled `${{ steps.version.outputs.tag }}`.
# files: | # files: |
# result/vm-image.vma.zst # result/vm-image.vma.zst