Daniel Barlow
7e2b0068e6
There is nothing in this commit except for the changes made by nix-shell -p nixfmt-rfc-style --run "nixfmt ." If this has mucked up your open branches then sorry about that. You can probably nixfmt them to match before merging
71 lines
1.6 KiB
Nix
71 lines
1.6 KiB
Nix
{
|
|
liminix,
|
|
lib,
|
|
lim,
|
|
s6,
|
|
s6-rc,
|
|
watch-outputs,
|
|
}:
|
|
{
|
|
watch,
|
|
service,
|
|
action,
|
|
}:
|
|
let
|
|
inherit (liminix.services) oneshot longrun;
|
|
inherit (builtins) length head toString;
|
|
inherit (lib) unique optional optionals;
|
|
inherit (service) name;
|
|
|
|
watched-services = unique (map (f: f "service") watch);
|
|
paths = unique (map (f: f "path") watch);
|
|
|
|
restart-flag =
|
|
{
|
|
restart = "-r";
|
|
restart-all = "-R";
|
|
"hup" = "-s 1";
|
|
"int" = "-s 2";
|
|
"quit" = "-s 3";
|
|
"kill" = "-s 9";
|
|
"term" = "-s 15";
|
|
"winch" = "-s 28";
|
|
"usr1" = "-s 10";
|
|
"usr2" = "-s 12";
|
|
}
|
|
.${action};
|
|
|
|
watched-service =
|
|
if length watched-services == 0 then
|
|
null
|
|
else if length watched-services == 1 then
|
|
head watched-services
|
|
else
|
|
throw "cannot subscribe to more than one source service for secrets";
|
|
|
|
watcher =
|
|
let
|
|
name' = "restart-${name}";
|
|
in
|
|
longrun {
|
|
name = name';
|
|
run = ''
|
|
dir=/run/service/${name}
|
|
echo waiting for $dir
|
|
if test -e $dir/notification-fd; then flag="-U"; else flag="-u"; fi
|
|
${s6}/bin/s6-svwait $flag /run/service/${name} || exit
|
|
PATH=${s6-rc}/bin:${s6}/bin:$PATH
|
|
${watch-outputs}/bin/watch-outputs ${restart-flag} ${name} ${watched-service.name} ${lib.concatStringsSep " " paths}
|
|
'';
|
|
};
|
|
in
|
|
service.overrideAttrs (o: {
|
|
buildInputs = (lim.orEmpty o.buildInputs) ++ optional (watched-service != null) watcher;
|
|
dependencies =
|
|
(lim.orEmpty o.dependencies)
|
|
++ optionals (watched-service != null) [
|
|
watcher
|
|
watched-service
|
|
];
|
|
})
|