mirror of
https://github.com/NixOS/nixpkgs.git
synced 2025-06-20 00:19:25 +03:00
4f0dadbf38
After final improvements to the official formatter implementation,
this commit now performs the first treewide reformat of Nix files using it.
This is part of the implementation of RFC 166.
Only "inactive" files are reformatted, meaning only files that
aren't being touched by any PR with activity in the past 2 months.
This is to avoid conflicts for PRs that might soon be merged.
Later we can do a full treewide reformat to get the rest,
which should not cause as many conflicts.
A CI check has already been running for some time to ensure that new and
already-formatted files are formatted, so the files being reformatted here
should also stay formatted.
This commit was automatically created and can be verified using
nix-build a08b3a4d19.tar.gz \
--argstr baseRev b32a094368
result/bin/apply-formatting $NIXPKGS_PATH
137 lines
4.4 KiB
Nix
137 lines
4.4 KiB
Nix
{
|
|
config,
|
|
lib,
|
|
pkgs,
|
|
...
|
|
}:
|
|
let
|
|
cfg = config.services.tigerbeetle;
|
|
in
|
|
{
|
|
meta = {
|
|
maintainers = with lib.maintainers; [ danielsidhion ];
|
|
doc = ./tigerbeetle.md;
|
|
buildDocsInSandbox = true;
|
|
};
|
|
|
|
options = {
|
|
services.tigerbeetle = with lib; {
|
|
enable = mkEnableOption "TigerBeetle server";
|
|
|
|
package = mkPackageOption pkgs "tigerbeetle" { };
|
|
|
|
clusterId = mkOption {
|
|
type = types.either types.ints.unsigned (types.strMatching "[0-9]+");
|
|
default = 0;
|
|
description = ''
|
|
The 128-bit cluster ID used to create the replica data file (if needed).
|
|
Since Nix only supports integers up to 64 bits, you need to pass a string to this if the cluster ID can't fit in 64 bits.
|
|
Otherwise, you can pass the cluster ID as either an integer or a string.
|
|
'';
|
|
};
|
|
|
|
replicaIndex = mkOption {
|
|
type = types.ints.unsigned;
|
|
default = 0;
|
|
description = ''
|
|
The index (starting at 0) of the replica in the cluster.
|
|
'';
|
|
};
|
|
|
|
replicaCount = mkOption {
|
|
type = types.ints.unsigned;
|
|
default = 1;
|
|
description = ''
|
|
The number of replicas participating in replication of the cluster.
|
|
'';
|
|
};
|
|
|
|
cacheGridSize = mkOption {
|
|
type = types.strMatching "[0-9]+(K|M|G)iB";
|
|
default = "1GiB";
|
|
description = ''
|
|
The grid cache size.
|
|
The grid cache acts like a page cache for TigerBeetle.
|
|
It is recommended to set this as large as possible.
|
|
'';
|
|
};
|
|
|
|
addresses = mkOption {
|
|
type = types.listOf types.nonEmptyStr;
|
|
default = [ "3001" ];
|
|
description = ''
|
|
The addresses of all replicas in the cluster.
|
|
This should be a list of IPv4/IPv6 addresses with port numbers.
|
|
Either the address or port number (but not both) may be omitted, in which case a default of 127.0.0.1 or 3001 will be used.
|
|
The first address in the list corresponds to the address for replica 0, the second address for replica 1, and so on.
|
|
'';
|
|
};
|
|
};
|
|
};
|
|
|
|
config = lib.mkIf cfg.enable {
|
|
assertions =
|
|
let
|
|
numAddresses = builtins.length cfg.addresses;
|
|
in
|
|
[
|
|
{
|
|
assertion = cfg.replicaIndex < cfg.replicaCount;
|
|
message = "the TigerBeetle replica index must fit the configured replica count";
|
|
}
|
|
{
|
|
assertion = cfg.replicaCount == numAddresses;
|
|
message =
|
|
if cfg.replicaCount < numAddresses then
|
|
"TigerBeetle must not have more addresses than the configured number of replicas"
|
|
else
|
|
"TigerBeetle must be configured with the addresses of all replicas";
|
|
}
|
|
];
|
|
|
|
systemd.services.tigerbeetle =
|
|
let
|
|
replicaDataPath = "/var/lib/tigerbeetle/${builtins.toString cfg.clusterId}_${builtins.toString cfg.replicaIndex}.tigerbeetle";
|
|
in
|
|
{
|
|
description = "TigerBeetle server";
|
|
|
|
wantedBy = [ "multi-user.target" ];
|
|
after = [ "network.target" ];
|
|
|
|
preStart = ''
|
|
if ! test -e "${replicaDataPath}"; then
|
|
${lib.getExe cfg.package} format --cluster="${builtins.toString cfg.clusterId}" --replica="${builtins.toString cfg.replicaIndex}" --replica-count="${builtins.toString cfg.replicaCount}" "${replicaDataPath}"
|
|
fi
|
|
'';
|
|
|
|
serviceConfig = {
|
|
DevicePolicy = "closed";
|
|
DynamicUser = true;
|
|
ExecStart = "${lib.getExe cfg.package} start --cache-grid=${cfg.cacheGridSize} --addresses=${lib.escapeShellArg (builtins.concatStringsSep "," cfg.addresses)} ${replicaDataPath}";
|
|
LockPersonality = true;
|
|
ProtectClock = true;
|
|
ProtectControlGroups = true;
|
|
ProtectHome = true;
|
|
ProtectHostname = true;
|
|
ProtectKernelLogs = true;
|
|
ProtectKernelModules = true;
|
|
ProtectKernelTunables = true;
|
|
ProtectProc = "noaccess";
|
|
ProtectSystem = "strict";
|
|
RestrictAddressFamilies = [
|
|
"AF_INET"
|
|
"AF_INET6"
|
|
];
|
|
RestrictNamespaces = true;
|
|
RestrictRealtime = true;
|
|
RestrictSUIDSGID = true;
|
|
StateDirectory = "tigerbeetle";
|
|
StateDirectoryMode = 700;
|
|
Type = "exec";
|
|
};
|
|
};
|
|
|
|
environment.systemPackages = [ cfg.package ];
|
|
};
|
|
}
|