ci/deploy: add basic locking

2023-02-02 15:24:22 -07:00 · 2023-02-02 15:24:22 -07:00 · c5c1b1284a
commit c5c1b1284a
parent af0b144a27
2 changed files with 28 additions and 0 deletions
--- a/common.sh
+++ b/common.sh
@ -1,6 +1,13 @@
 . /etc/profile
 . /run/secrets/po_env

+SCRIPT_NAME="${0##*/}"
+SCRIPT_PID=$$
+LOCK_PATH="${LOCK:-/tmp/xin}"
+LOCK_FILE="${LOCK_PATH}/${SCRIPT_NAME}"
+
+mkdir -p "${LOCK_PATH}"
+
 NIX_SSHOPTS="-i /run/secrets/manager_pubkey -oIdentitiesOnly=yes -oControlPath=/tmp/manager-ssh-%r@%h:%p -F/dev/null"
 SSH="ssh ${NIX_SSHOPTS}"
 CurrentVersion="$(git rev-parse HEAD)"
@ -11,6 +18,24 @@ msg() {
 	echo -e "===> $@"
 }

+unlock() {
+	rm -f ${LOCK_FILE};
+}
+
+_lock() {
+	echo "${SCRIPT_PID}" > "${LOCK_FILE}"
+	trap 'unlock' INT EXIT TERM
+}
+
+lock() {
+	if [ -f "${LOCK_FILE}" ]; then
+		msg "${SCRIPT_NAME} already running..."
+		exit 0
+	else
+		_lock
+	fi
+}
+
 listNixOSHosts() {
 	for i in $(nix eval .#nixosConfigurations --apply builtins.attrNames --json | jq -r '.[]'); do
 		if [ -d hosts/${i} ]; then
@ -73,6 +98,7 @@ start() {
 }

 start_ci() {
+	lock
 	agentHasKey "$(cat /run/secrets/ci_ed25519_pub | awk '{print $2}')" ||
 		ssh-add /run/secrets/ci_ed25519_key
 }
@ -106,3 +132,4 @@ handle_merge_fail() {
 handle_push_fail() {
 	po_error "CI: git push failed!" "Pelase help!"
 }
+
--- a/1
+++ b/1
@ -133,6 +133,7 @@ ret=0
 if [ ${#@} = 1 ]; then
 	rebuild $1 true || ret=1
 else
+	lock
 	for host in $(listNixOSHosts); do
 		rebuild $host false || ret=1
 	done