NotAShelf/circus
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
153 commits 1 branch 0 tags 1.1 MiB
Commit graph

20 commits

Author SHA1 Message Date
NotAShelf
a127f3f62c
 		treewide: address all clippy lints 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I5cf55cc4cb558c3f9f764c71224e87176a6a6964
 2026-02-28 17:37:53 +03:00
NotAShelf
21446c6dcb
 		fc-queue-runner: implement persistent notification retry queue with exponential backoff 
Adds a `notification_tasks` table and a background worker to (hopefully
reliably) deliver webhooks, git status updates, and e-mail notifications
with automatic retry on transient failures.

This was one of the critical gaps, finally done.

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I794967c66958658c4d8aed40793d67f96a6a6964
 2026-02-28 12:18:18 +03:00
NotAShelf
d0ffa5d9e5
 		fc-server: implent proper rate limiting with token bucket algorithm; fix rate_limit_rps 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I68237ff6216337eba1afa8e8606d545b6a6a6964
 2026-02-28 12:18:16 +03:00
NotAShelf
e7425e0abf
 		fc-common: consolidate database migrations; simplify 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ia808d76241cec6e8760d87443bb0dc976a6a6964
 2026-02-28 12:18:13 +03:00
NotAShelf
5b472a2f57
 		fc-common: add GC pinning and machine health infrastructure 
Migration 017 adds `builds.keep`, `jobsets.keep_nr`, and health tracking
columns to `remote_builders`. Repo layer implements `set_keep`,
`list_pinned_ids`, `record_failure` with exponential backoff,
`record_success`, and `find_for_system` filtering of disabled builders.
GC root cleanup now skips pinned builds.

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ibba121de3dc42f71204e3a8f5776aa8b6a6a6964
 2026-02-28 12:18:04 +03:00
NotAShelf
65a6fd853d
 		fc-common: add failed paths cache infrastructure 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I35f9bfb044160151cf73c43ed9ada3476a6a6964
 2026-02-16 23:42:41 +03:00
NotAShelf
235c9834b7
 		fc-evaulator: allow fail-fast behaviour 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I1da41766f1c499347279c41f2316f4376a6a6964
 2026-02-16 23:42:39 +03:00
NotAShelf
a5768d46eb
 		fc-common: allow configuring url schemes to allow for testing 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I99912d7c45f1a4664d4823ddd793b5af6a6a6964
 2026-02-16 00:08:23 +03:00
NotAShelf
aa4ebf2f5b
 		various: harden input validation; add SSRF protection; fix default API key role 
Default API key role was "admin", which was something that I forgot to fix during testing. We
change it to "read-only". 

Additionally repository URLs now reject `file://` scheme (another testing artifact) localhost,
private IP ranges, and cloud metadata endpoints. Nix expressions reject path traversal (`..`)
and absolute paths. Validation is called at the evaluator endtrypoint before command construction.

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I35729c6aa9ec4ff8d1ea19bd57ea93646a6a6964
 2026-02-15 23:37:49 +03:00
NotAShelf
75ff45fc91
 		various: initial support for S3 cache upload 
Not too stable yet, but might work.

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: If134e7e45aa99ce8d18df7b78b1f881b6a6a6964
 2026-02-14 18:08:19 +03:00
NotAShelf
ec5fbb453d
 		fc-common: add AlertConfig and AlertManager for error tracking 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Iaf2f52f6e0cf33e3275528ac13cd92046a6a6964
 2026-02-14 18:08:17 +03:00
NotAShelf
0dc09dbd19
 		various: fix auto-fisable Clippy lints 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I79a708981b5aee43eadbd48d69fb78be6a6a6964
 2026-02-08 22:23:29 +03:00
NotAShelf
3a03cf7b3e
 		treewide: format with nightly rustfmt; auto-fix Clippy lints 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: If4fd0511087dbaa65afc56a34d7c2f166a6a6964
 2026-02-08 22:23:28 +03:00
NotAShelf
d4d9297d96
 		fc-common: add declarative sync for remote builders and channels 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I3dae89f04777f6d941824606aebe34446a6a6964
 2026-02-08 22:23:24 +03:00
NotAShelf
865b2f5f66
 		fc-common: better support declarative users with password file 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I1eac6decd68a4e59a52fecaecdd476b26a6a6964
 2026-02-08 22:23:17 +03:00
NotAShelf
b6012b932f
 		chore: update dependencies and configuration 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I5bab99cb7e7bb2125e7410b54911021a6a6a6964
 2026-02-07 22:09:24 +03:00
NotAShelf
c306383d27
 		chore: format with updated rustfmt and taplo rules 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ie9ef5fc421fa20071946cf1073f7920c6a6a6964
 2026-02-05 22:45:06 +03:00
NotAShelf
4c5a99d554
 		crates/common: add branch and scheduling_shares to jobset models 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ie19897f5ffdfb44654891511ce669d806a6a6964
 2026-02-02 01:49:27 +03:00
NotAShelf
1b12be3f8a
 		crates: production models and repo layer 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Iceb76724c09eaca7ca5d823010db76776a6a6964
 2026-02-02 01:15:05 +03:00
NotAShelf
0e6d249e0f
 		common: initial database handling 
Can be configured from the config file, and also using environment
options.

```toml
[database]
url = "postgresql://fc_ci:password@localhost/fc_ci"
max_connections = 20
min_connections = 5
connect_timeout = 30
idle_timeout = 600
max_lifetime = 1800
```

We'll want to support SQlite in the future, and better secret handling
for database credentials. For now, this is workable.

---

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I36b4c1306511052a2748ca9d5d3429366a6a6964
 2026-02-02 01:15:01 +03:00