codex-storage/nim-codex
1
0
Fork 0
mirror of https://github.com/codex-storage/nim-codex.git synced 2025-02-22 09:38:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

nix: add codex service definition

Browse Source 
Referenced issue: https://github.com/codex-storage/nim-codex/issues/940

Signed-off-by: markoburcul <marko@status.im>
This commit is contained in:
markoburcul 2025-01-09 18:29:14 +01:00
parent 3dc7224330
commit 0cffa02748
No known key found for this signature in database
GPG Key ID: FC4CD2F9A040D54A
5 changed files with 115 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
flake.lock generated
View File

@ -7,17 +7,16 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1736348751, "lastModified": 1736521871,
"narHash": "sha256-d34XNLg9NGPEOARHW+BIOAWalkHdEUAwsv3mpLZQxds=", "narHash": "sha256-d34XNLg9NGPEOARHW+BIOAWalkHdEUAwsv3mpLZQxds=",
"owner": "codex-storage", "owner": "codex-storage",
"repo": "circom-compat-ffi", "repo": "circom-compat-ffi",
"rev": "afadf4d9a411ce0589f6b4c1858a9a5a4e7f4661", "rev": "8cd4ed44fdafe59d4ec1184420639cae4c4dbab9",
"type": "github" "type": "github"
}, },
"original": { "original": {
"owner": "codex-storage", "owner": "codex-storage",
"repo": "circom-compat-ffi", "repo": "circom-compat-ffi",
"rev": "afadf4d9a411ce0589f6b4c1858a9a5a4e7f4661",
"type": "github" "type": "github"
} }
}, },

46
flake.nix
View File

@ -1,10 +1,10 @@
{ {
description = "Codex build flake"; description = "Nim Codex build flake";
inputs = { inputs = {
nixpkgs.url = "github:NixOS/nixpkgs/nixos-24.11"; nixpkgs.url = "github:NixOS/nixpkgs/nixos-24.11";
circom-compat = { circom-compat = {
url = "github:codex-storage/circom-compat-ffi/afadf4d9a411ce0589f6b4c1858a9a5a4e7f4661"; url = "github:codex-storage/circom-compat-ffi";
inputs.nixpkgs.follows = "nixpkgs"; inputs.nixpkgs.follows = "nixpkgs";
}; };
}; };
@ -20,27 +20,57 @@
in rec { in rec {
packages = forAllSystems (system: let packages = forAllSystems (system: let
circomCompatPkg = circom-compat.packages.${system}.default; circomCompatPkg = circom-compat.packages.${system}.default;
buildTarget = pkgsFor.${system}.callPackage ./nix/default.nix { buildTarget = pkgsFor.${system}.callPackage ./nix/default.nix rec {
inherit stableSystems circomCompatPkg; inherit stableSystems circomCompatPkg;
src = self; src = pkgsFor.${system}.lib.traceValFn (v: "self.submodules: ${toString v.submodules}") self;
}; };
build = targets: buildTarget.override { inherit targets; }; build = targets: buildTarget.override { inherit targets; };
in rec { in rec {
codex = build ["all"]; nim-codex = build ["all"];
default = codex; default = nim-codex;
}); });
nixosModules.nim-codex = { config, lib, pkgs, ... }: import ./nix/service.nix {
inherit config lib pkgs self;
circomCompatPkg = circom-compat.packages.${pkgs.system}.default;
};
devShells = forAllSystems (system: let devShells = forAllSystems (system: let
pkgs = pkgsFor.${system}; pkgs = pkgsFor.${system};
in { in {
default = pkgs.mkShell { default = pkgs.mkShell {
inputsFrom = [ inputsFrom = [
packages.${system}.codex packages.${system}.nim-codex
circom-compat.packages.${system}.default circom-compat.packages.${system}.default
]; ];
# Not using buildInputs to override fakeGit and fakeCargo. # Not using buildInputs to override fakeGit and fakeCargo.
nativeBuildInputs = with pkgs; [ git cargo nodejs_18 ]; nativeBuildInputs = with pkgs; [ git cargo nodejs_18 ];
}; };
}); });
checks = forAllSystems (system: let
pkgs = pkgsFor.${system};
in {
nim-codex-test = pkgs.nixosTest {
name = "nim-codex-test";
nodes = {
server = { config, pkgs, ... }: {
imports = [ self.nixosModules.nim-codex ];
services.nim-codex.enable = true;
services.nim-codex.settings = {
data-dir = "/var/lib/nim-codex-test";
};
systemd.services.nim-codex.serviceConfig.StateDirectory = "nim-codex-test";
};
};
testScript = ''
print("Starting test: nim-codex-test")
machine.start()
machine.wait_for_unit("nim-codex.service")
machine.succeed("test -d /var/lib/nim-codex-test")
machine.wait_until_succeeds("journalctl -u nim-codex.service | grep 'Started codex node'", 10)
'';
};
});
}; };
} }

12
nix/README.md
View File

@ -11,7 +11,7 @@ nix develop
To build a Codex you can use: To build a Codex you can use:
```sh ```sh
nix build '.?submodules=1#codex' nix build '.?submodules=1#default'
``` ```
The `?submodules=1` part should eventually not be necessary. The `?submodules=1` part should eventually not be necessary.
For more details see: For more details see:
@ -19,11 +19,17 @@ https://github.com/NixOS/nix/issues/4423
It can be also done without even cloning the repo: It can be also done without even cloning the repo:
```sh ```sh
nix build 'github:codex-storage/nim-codex?submodules=1' nix build 'git+https://github.com/codex-storage/nim-codex?submodules=1#'
``` ```
## Running ## Running
```sh ```sh
nix run 'github:codex-storage/nim-codex?submodules=1' nix run 'git+https://github.com/codex-storage/nim-codex?submodules=1#''
``` ```
## Testing
```sh
nix flake check ".?submodules=1#"
```

15
nix/default.nix
View File

@ -17,18 +17,21 @@
).packages.${builtins.currentSystem}.default ).packages.${builtins.currentSystem}.default
}: }:
assert pkgs.lib.assertMsg ((src.submodules or true) == true)
"Unable to build without submodules. Append '?submodules=1#' to the URI.";
let let
inherit (pkgs) stdenv lib writeScriptBin callPackage; inherit (pkgs) stdenv lib writeScriptBin callPackage;
revision = lib.substring 0 8 (src.rev or "dirty"); revision = lib.substring 0 8 (src.rev or "dirty");
tools = callPackage ./tools.nix {}; tools = callPackage ./tools.nix {};
in pkgs.gcc11Stdenv.mkDerivation rec { in pkgs.gcc11Stdenv.mkDerivation rec {
pname = "codex"; pname = "codex";
version = "${tools.findKeyValue "version = \"([0-9]+\.[0-9]+\.[0-9]+)\"" ../codex.nimble}-${revision}"; version = "${tools.findKeyValue "version = \"([0-9]+\.[0-9]+\.[0-9]+)\"" ../codex.nimble}-${revision}";
inherit src; inherit src;
# Dependencies that should exist in the runtime environment. # Dependencies that should exist in the runtime environment.
@ -69,16 +72,16 @@ in pkgs.gcc11Stdenv.mkDerivation rec {
configurePhase = '' configurePhase = ''
patchShebangs . > /dev/null patchShebangs . > /dev/null
''; '';
installPhase = '' installPhase = ''
mkdir -p $out/bin mkdir -p $out/bin
cp build/codex $out/bin/ cp build/codex $out/bin/
''; '';
meta = with pkgs.lib; { meta = with pkgs.lib; {
description = "Codex storage system"; description = "Nim Codex storage system";
homepage = "https://github.com/codex-storage/nim-codex"; homepage = "https://github.com/codex-storage/nim-codex";
license = licenses.mit; license = licenses.mit;
platforms = stableSystems; platforms = stableSystems;
}; };
} }

57
nix/service.nix Normal file
View File

@ -0,0 +1,57 @@
{ self, config, lib, pkgs, circomCompatPkg, ... }:
let
inherit (lib)
types mkEnableOption mkOption mkIf literalExpression
mdDoc;
toml = pkgs.formats.toml { };
cfg = config.services.nim-codex;
in
{
options = {
services.nim-codex = {
enable = mkEnableOption "Nim Codex Node service.";
package = mkOption {
type = types.package;
default = pkgs.callPackage ./default.nix { src = self; inherit circomCompatPkg; };
defaultText = literalExpression "pkgs.codex";
description = mdDoc "Package to use as Nim Codex node.";
};
settings = mkOption {
default = { };
type = toml.type;
description = ''Structured settings object that will be used to generate a TOML config file.'';
};
};
};
config = mkIf cfg.enable {
environment.etc = {
"nim-codex/config.toml".source = toml.generate "config.toml" cfg.settings;
};
systemd.services.nim-codex = {
description = "Nim Codex Node";
wantedBy = [ "multi-user.target" ];
requires = [ "network.target" ];
serviceConfig = {
DynamicUser = true;
PrivateTmp = true;
ProtectHome = true;
ProtectSystem = "full";
NoNewPrivileges = true;
PrivateDevices = true;
MemoryDenyWriteExecute = true;
ExecStart = "${cfg.package}/bin/codex --config-file=/etc/nim-codex/config.toml";
Restart = "on-failure";
};
restartIfChanged = true;
restartTriggers = [
"/etc/nim-codex/config.toml"
];
};
};
}