ci/deploy: add basic locking

2023-02-02 15:24:22 -07:00 · 2023-02-02 15:24:22 -07:00 · c5c1b1284a
commit c5c1b1284a
parent af0b144a27
2 changed files with 28 additions and 0 deletions
--- a/common.sh
+++ b/common.sh
@ -1,6 +1,13 @@
 . /etc/profile
 . /run/secrets/po_env
 SCRIPT_NAME="${0##*/}"
 SCRIPT_PID=$$
 LOCK_PATH="${LOCK:-/tmp/xin}"
 LOCK_FILE="${LOCK_PATH}/${SCRIPT_NAME}"
 mkdir -p "${LOCK_PATH}"
 NIX_SSHOPTS="-i /run/secrets/manager_pubkey -oIdentitiesOnly=yes -oControlPath=/tmp/manager-ssh-%r@%h:%p -F/dev/null"
 SSH="ssh ${NIX_SSHOPTS}"
 CurrentVersion="$(git rev-parse HEAD)"
@ -11,6 +18,24 @@ msg() {
 	echo -e "===> $@"
 }
 unlock() {
 	rm -f ${LOCK_FILE};
 }
 _lock() {
 	echo "${SCRIPT_PID}" > "${LOCK_FILE}"
 	trap 'unlock' INT EXIT TERM
 }
 lock() {
 	if [ -f "${LOCK_FILE}" ]; then
 		msg "${SCRIPT_NAME} already running..."
 		exit 0
 	else
 		_lock
 	fi
 }
 listNixOSHosts() {
 	for i in $(nix eval .#nixosConfigurations --apply builtins.attrNames --json | jq -r '.[]'); do
 		if [ -d hosts/${i} ]; then
@ -73,6 +98,7 @@ start() {
 }
 start_ci() {
 	lock
 	agentHasKey "$(cat /run/secrets/ci_ed25519_pub | awk '{print $2}')" ||
 		ssh-add /run/secrets/ci_ed25519_key
 }
@ -106,3 +132,4 @@ handle_merge_fail() {
 handle_push_fail() {
 	po_error "CI: git push failed!" "Pelase help!"
 }
--- a/1
+++ b/1
@ -133,6 +133,7 @@ ret=0
 if [ ${#@} = 1 ]; then
 	rebuild $1 true || ret=1
 else
 	lock
 	for host in $(listNixOSHosts); do
 		rebuild $host false || ret=1
 	done