[jackhill/guix/guix.git] / gnu / services / cuirass.scm

;;; GNU Guix --- Functional package management for GNU
;;; Copyright © 2016 Mathieu Lirzin <mthl@gnu.org>
;;; Copyright © 2016 Ludovic Courtès <ludo@gnu.org>
;;;
;;; This file is part of GNU Guix.
;;;
;;; GNU Guix is free software: you can redistribute it and/or modify
;;; it under the terms of the GNU General Public License as published by
;;; the Free Software Foundation, either version 3 of the License, or
;;; (at your option) any later version.
;;;
;;; GNU Guix is distributed in the hope that it will be useful,
;;; but WITHOUT ANY WARRANTY; without even the implied warranty of
;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
;;; GNU General Public License for more details.
;;;
;;; You should have received a copy of the GNU General Public License
;;; along with GNU Guix.  If not, see <http://www.gnu.org/licenses/>.

(define-module (gnu services cuirass)
  #:use-module (guix gexp)
  #:use-module (guix records)
  #:use-module (gnu packages admin)
  #:autoload   (gnu packages ci) (cuirass)
  #:use-module (gnu services)
  #:use-module (gnu services base)
  #:use-module (gnu services shepherd)
  #:use-module (gnu system shadow)
  #:export (<cuirass-configuration>
            cuirass-configuration
            cuirass-configuration?

            cuirass-service-type
            cuirass-service))

;;;; Commentary:
;;;
;;; This module implements a service that to run instances of Cuirass, a
;;; continuous integration tool.
;;;
;;;; Code:

(define-record-type* <cuirass-configuration>
  cuirass-configuration make-cuirass-configuration
  cuirass-configuration?
  (log-file         cuirass-configuration-log-file ;string
                    (default "/var/log/cuirass.log"))
  (cache-directory  cuirass-configuration-cache-directory ;string (dir-name)
                    (default "/var/cache/cuirass"))
  (user             cuirass-configuration-user ;string
                    (default "cuirass"))
  (group            cuirass-configuration-group ;string
                    (default "cuirass"))
  (interval         cuirass-configuration-interval ;integer (seconds)
                    (default 60))
  (database         cuirass-configuration-database ;string (file-name)
                    (default "/var/run/cuirass/cuirass.db"))
  (specifications   cuirass-configuration-specifications ;specification-alist
                    (default '()))
  (use-substitutes? cuirass-configuration-use-substitutes? ;boolean
                    (default #f))
  (one-shot?        cuirass-configuration-one-shot? ;boolean
                    (default #f)))

(define (cuirass-shepherd-service config)
  "Return a <shepherd-service> for the Cuirass service with CONFIG."
  (and
   (cuirass-configuration? config)
   (let ((cache-directory  (cuirass-configuration-cache-directory config))
         (log-file         (cuirass-configuration-log-file config))
         (user             (cuirass-configuration-user config))
         (group            (cuirass-configuration-group config))
         (interval         (cuirass-configuration-interval config))
         (database         (cuirass-configuration-database config))
         (specs            (cuirass-configuration-specifications config))
         (use-substitutes? (cuirass-configuration-use-substitutes? config))
         (one-shot?        (cuirass-configuration-one-shot? config)))
     (list (shepherd-service
            (documentation "Run Cuirass.")
            (provision '(cuirass))
            (requirement '(guix-daemon))
            (start #~(make-forkexec-constructor
                      (list (string-append #$cuirass "/bin/cuirass")
                            "--cache-directory" #$cache-directory
                            #$@(if (null? specs)
                                   '()
                                   (let ((str (format #f "'~S" specs)))
                                     (list "--specifications"
                                           (plain-file "specs.scm" str))))
                            "--database" #$database
                            "--interval" #$(number->string interval)
                            #$@(if use-substitutes? '("--use-substitutes") '())
                            #$@(if one-shot? '("--one-shot") '()))
                      #:user #$user
                      #:group #$group
                      #:log-file #$log-file))
            (stop #~(make-kill-destructor)))))))

(define (cuirass-account config)
  "Return the user accounts and user groups for CONFIG."
  (let ((cuirass-user  (cuirass-configuration-user config))
        (cuirass-group (cuirass-configuration-group config)))
    (list (user-group
           (name cuirass-group)
           (system? #t))
          (user-account
           (name cuirass-user)
           (group cuirass-group)
           (system? #t)
           (comment "Cuirass privilege separation user")
           (home-directory (string-append "/var/run/" cuirass-user))
           (shell #~(string-append #$shadow "/sbin/nologin"))))))

(define (cuirass-activation config)
  "Return the activation code for CONFIG."
  (let ((cache (cuirass-configuration-cache-directory config))
        (user  (cuirass-configuration-user config))
        (group (cuirass-configuration-group config)))
    (with-imported-modules '((guix build utils))
      #~(begin
          (use-modules (guix build utils))

          (mkdir-p #$cache)

          (let ((uid (passwd:uid (getpw #$user)))
                (gid (group:gid (getgr #$group))))
            (chown #$cache uid gid))))))

(define cuirass-service-type
  (service-type
   (name 'cuirass)
   (extensions
    (list
     (service-extension activation-service-type cuirass-activation)
     (service-extension shepherd-root-service-type cuirass-shepherd-service)
     (service-extension account-service-type cuirass-account)))))

(define* (cuirass-service #:key (config (cuirass-configuration)))
  "Return a service that runs cuirass according to CONFIG."
  (service cuirass-service-type config))
Commit	Line	Data
a7cf4eb6 ML	1	;;; GNU Guix --- Functional package management for GNU
a7cf4eb6 ML	2	;;; Copyright © 2016 Mathieu Lirzin <mthl@gnu.org>
463995da	3	;;; Copyright © 2016 Ludovic Courtès <ludo@gnu.org>
a7cf4eb6 ML	4	;;;
	5	;;; This file is part of GNU Guix.
	6	;;;
	7	;;; GNU Guix is free software: you can redistribute it and/or modify
	8	;;; it under the terms of the GNU General Public License as published by
	9	;;; the Free Software Foundation, either version 3 of the License, or
	10	;;; (at your option) any later version.
	11	;;;
	12	;;; GNU Guix is distributed in the hope that it will be useful,
	13	;;; but WITHOUT ANY WARRANTY; without even the implied warranty of
	14	;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	15	;;; GNU General Public License for more details.
	16	;;;
	17	;;; You should have received a copy of the GNU General Public License
	18	;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
	19
	20	(define-module (gnu services cuirass)
	21	#:use-module (guix gexp)
	22	#:use-module (guix records)
	23	#:use-module (gnu packages admin)
	24	#:autoload (gnu packages ci) (cuirass)
	25	#:use-module (gnu services)
	26	#:use-module (gnu services base)
	27	#:use-module (gnu services shepherd)
	28	#:use-module (gnu system shadow)
	29	#:export (<cuirass-configuration>
	30	cuirass-configuration
	31	cuirass-configuration?
	32
	33	cuirass-service-type
	34	cuirass-service))
	35
	36	;;;; Commentary:
	37	;;;
	38	;;; This module implements a service that to run instances of Cuirass, a
	39	;;; continuous integration tool.
	40	;;;
	41	;;;; Code:
	42
	43	(define-record-type* <cuirass-configuration>
	44	cuirass-configuration make-cuirass-configuration
	45	cuirass-configuration?
b17e326f LC	46	(log-file cuirass-configuration-log-file ;string
b17e326f LC	47	(default "/var/log/cuirass.log"))
a7cf4eb6	48	(cache-directory cuirass-configuration-cache-directory ;string (dir-name)
463995da	49	(default "/var/cache/cuirass"))
a7cf4eb6 ML	50	(user cuirass-configuration-user ;string
	51	(default "cuirass"))
	52	(group cuirass-configuration-group ;string
	53	(default "cuirass"))
	54	(interval cuirass-configuration-interval ;integer (seconds)
	55	(default 60))
	56	(database cuirass-configuration-database ;string (file-name)
	57	(default "/var/run/cuirass/cuirass.db"))
57aa94bd ML	58	(specifications cuirass-configuration-specifications ;specification-alist
57aa94bd ML	59	(default '()))
a7cf4eb6 ML	60	(use-substitutes? cuirass-configuration-use-substitutes? ;boolean
	61	(default #f))
	62	(one-shot? cuirass-configuration-one-shot? ;boolean
	63	(default #f)))
	64
	65	(define (cuirass-shepherd-service config)
	66	"Return a <shepherd-service> for the Cuirass service with CONFIG."
	67	(and
	68	(cuirass-configuration? config)
	69	(let ((cache-directory (cuirass-configuration-cache-directory config))
b17e326f	70	(log-file (cuirass-configuration-log-file config))
831071b8 LC	71	(user (cuirass-configuration-user config))
831071b8 LC	72	(group (cuirass-configuration-group config))
a7cf4eb6 ML	73	(interval (cuirass-configuration-interval config))
a7cf4eb6 ML	74	(database (cuirass-configuration-database config))
57aa94bd	75	(specs (cuirass-configuration-specifications config))
a7cf4eb6 ML	76	(use-substitutes? (cuirass-configuration-use-substitutes? config))
	77	(one-shot? (cuirass-configuration-one-shot? config)))
	78	(list (shepherd-service
	79	(documentation "Run Cuirass.")
	80	(provision '(cuirass))
	81	(requirement '(guix-daemon))
	82	(start #~(make-forkexec-constructor
	83	(list (string-append #$cuirass "/bin/cuirass")
463995da	84	"--cache-directory" #$cache-directory
57aa94bd	85	#$@(if (null? specs)
a7cf4eb6	86	'()
57aa94bd ML	87	(let ((str (format #f "'~S" specs)))
	88	(list "--specifications"
	89	(plain-file "specs.scm" str))))
a7cf4eb6 ML	90	"--database" #$database
	91	"--interval" #$(number->string interval)
	92	#$@(if use-substitutes? '("--use-substitutes") '())
b17e326f	93	#$@(if one-shot? '("--one-shot") '()))
831071b8 LC	94	#:user #$user
831071b8 LC	95	#:group #$group
b17e326f	96	#:log-file #$log-file))
a7cf4eb6 ML	97	(stop #~(make-kill-destructor)))))))
	98
	99	(define (cuirass-account config)
	100	"Return the user accounts and user groups for CONFIG."
	101	(let ((cuirass-user (cuirass-configuration-user config))
	102	(cuirass-group (cuirass-configuration-group config)))
	103	(list (user-group
	104	(name cuirass-group)
	105	(system? #t))
	106	(user-account
	107	(name cuirass-user)
	108	(group cuirass-group)
	109	(system? #t)
	110	(comment "Cuirass privilege separation user")
	111	(home-directory (string-append "/var/run/" cuirass-user))
	112	(shell #~(string-append #$shadow "/sbin/nologin"))))))
	113
463995da LC	114	(define (cuirass-activation config)
	115	"Return the activation code for CONFIG."
	116	(let ((cache (cuirass-configuration-cache-directory config))
	117	(user (cuirass-configuration-user config))
	118	(group (cuirass-configuration-group config)))
	119	(with-imported-modules '((guix build utils))
	120	#~(begin
	121	(use-modules (guix build utils))
	122
	123	(mkdir-p #$cache)
	124
	125	(let ((uid (passwd:uid (getpw #$user)))
	126	(gid (group:gid (getgr #$group))))
	127	(chown #$cache uid gid))))))
	128
a7cf4eb6 ML	129	(define cuirass-service-type
	130	(service-type
	131	(name 'cuirass)
	132	(extensions
	133	(list
463995da	134	(service-extension activation-service-type cuirass-activation)
a7cf4eb6 ML	135	(service-extension shepherd-root-service-type cuirass-shepherd-service)
	136	(service-extension account-service-type cuirass-account)))))
	137
	138	(define* (cuirass-service #:key (config (cuirass-configuration)))
	139	"Return a service that runs cuirass according to CONFIG."
	140	(service cuirass-service-type config))