rebuilderd: init at 0.22.1 (#343334) (56e88da1) · Commits · nix / nixpkgs

nixos/doc/manual/release-notes/rl-2505.section.md

+2 −0

Original line number	Diff line number	Diff line
		@@ -173,6 +173,8 @@

		- [Recyclarr](https://github.com/recyclarr/recyclarr) a TRaSH Guides synchronizer for Sonarr and Radarr. Available as [services.recyclarr](#opt-services.recyclarr.enable).

		- [Rebuilderd](https://github.com/kpcyrd/rebuilderd) an independent verification of binary packages - Reproducible Builds. Available as [services.rebuilderd](#opt-services.rebuilderd.enable).

		<!-- To avoid merge conflicts, consider adding your item at an arbitrary place in the list instead. -->

		## Backward Incompatibilities {#sec-release-25.05-incompatibilities}

+1 −0

Original line number	Diff line number	Diff line
		@@ -868,6 +868,7 @@
		./services/misc/radicle.nix
		./services/misc/readarr.nix
		./services/misc/realmd.nix
		./services/misc/rebuilderd.nix
		./services/misc/recyclarr.nix
		./services/misc/redlib.nix
		./services/misc/redmine.nix

0 → 100644

+49 −0

Original line number	Diff line number	Diff line
		{
		config,
		pkgs,
		lib,
		...
		}:

		let
		inherit (lib) mkEnableOption mkIf mkPackageOption;
		cfg = config.services.rebuilderd;

		format = pkgs.formats.toml { };
		settings = lib.attrsets.filterAttrs (n: v: v != null) cfg.settings;
		configFile = format.generate "rebuilderd.conf" settings;
		in
		{
		options.services.rebuilderd = {
		enable = mkEnableOption "rebuilderd service for independent verification of binary packages";
		package = mkPackageOption pkgs "rebuilderd" { };
		settings = lib.mkOption {
		type = lib.types.submodule {
		freeformType = format.type;
		};
		default = { };
		description = ''
		Configuration for rebuilderd (rebuilderd.conf)
		'';
		};
		};

		config = mkIf cfg.enable {
		systemd.services.rebuilderd = {
		description = "Independent verification of binary packages";
		wantedBy = [ "multi-user.target" ];
		environment = {
		REBUILDERD_COOKIE_PATH = "/var/lib/rebuilderd/auth-cookie";
		};
		after = [
		"network.target"
		];
		serviceConfig = {
		ExecStart = "${cfg.package}/bin/rebuilderd --config ${configFile}";
		DynamicUser = true;
		StateDirectory = "rebuilderd";
		WorkingDirectory = "/var/lib/rebuilderd";
		};
		};
		};
		}

+1 −0

Original line number	Diff line number	Diff line
		@@ -956,6 +956,7 @@ in {
		readarr = handleTest ./readarr.nix {};
		realm = handleTest ./realm.nix {};
		readeck = runTest ./readeck.nix;
		rebuilderd = runTest ./rebuilderd.nix;
		redis = handleTest ./redis.nix {};
		redlib = handleTest ./redlib.nix {};
		redmine = handleTestOn [ "x86_64-linux" "aarch64-linux" ] ./redmine.nix {};

0 → 100644

+38 −0

Original line number	Diff line number	Diff line
		{ lib, ... }:

		{
		name = "rebuilderd";

		nodes = {
		machine =
		{ pkgs, ... }:
		{
		services.rebuilderd = {
		enable = true;
		};
		};

		machine_custom_config =
		{ pkgs, ... }:
		{
		services.rebuilderd = {
		enable = true;
		settings = {
		http.bind_addr = "0.0.0.0:1234";
		};
		};
		};
		};

		testScript = ''
		machine.start()
		machine.wait_for_unit("rebuilderd.service")
		machine.wait_for_open_port(8484)

		machine_custom_config.start()
		machine_custom_config.wait_for_unit("rebuilderd.service")
		machine_custom_config.wait_for_open_port(1234)
		'';

		meta.maintainers = [ lib.maintainers.drupol ];
		}