dotfiles/nixos-config
1
0
Fork 0
mirror of https://github.com/srid/nixos-config.git synced 2025-12-26 23:14:57 +08:00
Code Issues Projects Releases Packages Wiki Activity Actions
nixos-config/clusters/github-runner
History
Sridhar Ratnakumar 57baba5d2b ci: add back emanote
2024-03-29 12:33:50 -04:00
..
darwin-module.nix clusters/github-runner: init 2024-03-26 16:56:10 -04:00
nixos-module.nix refactor: decouple runner pkgs 2024-03-27 10:05:42 -04:00
README.md gr: add readme 2024-03-26 17:11:24 -04:00
repos.nix ci: add back emanote 2024-03-29 12:33:50 -04:00
runner-pkgs.nix refactor: decouple runner pkgs 2024-03-27 10:05:42 -04:00

README.md

Self-Hosted CI on Macbook Pro

WARNING: WIP Notes. Expect final version in nixos.asia as a blog post.

Approach

While we could use the nix-darwin module for Github Runners, we do it the other way. First, create a aarch64-linux NixOS VM (I use Parallels Desktop) and do everything there. Then, setup distributed builds to have the VM do aarch64-darwin builds remotely on the host machine (the Macbook Pro). The former is done buy ./nixos-module.nix, while the latter is done by ./darwin-module.nix.

Facts

  • I use 1Password (managed by colmena secrets) to store the GitHUb classic PAT.
  • On macOS, go to Remote Login and allow SSH access for the github-runner user, or allow for all users; otherwise our Linux VM won't be able to remote build on the Mac.
    • The Linux VM's /etc/ssh/ssh_host_ed25519_key is used to authorize itself to connect to the Mac.
  • The author has observed the official "linux-builder" to be slow, in comparison to a Parallels VM. Prefer setting up a Parallels VM if you can.

Usage

  • /systems/darwin.nix (macOS config)
  • /systems/github-runner.nix (NixOS Linux VM config)

See also