New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Deploy with morph, in buildkite, with vault and terraform #37
Conversation
include a possibly working customdata partitioning scheme for evaluators
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Woohoo!
make-targets.sh
Outdated
cat <<EOF > "$scratch/default.nix" | ||
{ | ||
network = { | ||
pkgs = import <nixpkgs> {}; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
:(
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is why we need that ALLOW_UNFREE bit, and if we simply set the config here, we wouldn't need the environment variable. Agreed on :(. Maybe you can help get away from this?
enter-env.sh
Outdated
@@ -0,0 +1,106 @@ | |||
#!/usr/bin/env nix-shell | |||
#!nix-shell -i bash -I nixpkgs=channel:nixos-unstable-small -p bashInteractive vault awscli jq openssh |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think we should only need either -I nixpkgs=
or NIX_PATH
, right?
Also, dunno if this is on me (e.g. my Firefox configuration) or not, but something seems to be up with Grafana. Any graph I try to make just gives me |
Co-authored-by: Cole Helbling <cole.e.helbling@outlook.com>
This allows us to drop reliance on environment variables such as NIXPKGS_ALLOW_UNFREE and NIX_PATH.
No need to do the nix-shell --run dance, since enter-env.sh is already run using the shell.nix.
./enter-env.sh already includes the shell.nix environment.
ci: add nix-collect-garbage step
Unify shell.nix usage
terraform/enumerate-servers.sh: shell.nix is one dir up
ci: don't depend on deploy-boot
This ensures we can deploy even if we are low on space. No blocking, but still `concurrency: 1`.
ci: collect garbage before dry activation
coreutils is necessary for `wc -l`.
ci: collect garbage per machine
what a mess of a PR, there is a lot of goop in the repo to clean up.