git: add module for git maintenance

2024-11-10 07:04:17 +00:00 · 2024-08-26 09:38:59 +02:00 · 2024-08-26 09:38:59 +02:00 · 684362a99e
commit 684362a99e
parent a9c9cc6e50
1 changed files with 82 additions and 0 deletions
--- a/modules/programs/git.nix
+++ b/modules/programs/git.nix
@ -214,6 +214,41 @@ in {
        };
      };

+      maintenance = {
+        enable = mkEnableOption "" // {
+          description = ''
+            Enable the automatic {command}`git maintenance`.
+
+            See <https://git-scm.com/docs/git-maintenance>.
+          '';
+        };
+
+        repositories = mkOption {
+          type = with types; listOf str;
+          default = [ ];
+          description = ''
+            Repositories on which {command}`git maintenance` should run.
+
+            Should be a list of absolute paths.
+          '';
+        };
+
+        timers = mkOption {
+          type = types.attrsOf types.str;
+          default = {
+            hourly = "*-*-* 1..23:53:00";
+            daily = "Tue..Sun *-*-* 0:53:00";
+            weekly = "Mon 0:53:00";
+          };
+          description = ''
+            Systemd timers to create for scheduled {command}`git maintenance`.
+
+            Key is passed to `--schedule` argument in {command}`git maintenance run`
+            and value is passed to `Timer.OnCalendar` in `systemd.user.timers`.
+          '';
+        };
+      };
+
      diff-highlight = {
        enable = mkEnableOption "" // {
          description = ''
@ -501,6 +536,53 @@ in {
        };
    })

+    (mkIf cfg.maintenance.enable {
+      programs.git.iniContent.maintenance.repo = cfg.maintenance.repositories;
+
+      systemd.user.services."git-maintenance@" = {
+        Unit = {
+          Description = "Optimize Git repositories data";
+          Documentation = [ "man:git-maintenance(1)" ];
+        };
+
+        Service = {
+          Type = "oneshot";
+          ExecStart = let exe = lib.getExe cfg.package;
+          in ''
+            "${exe}" --exec-path="${exe}" for-each-repo --config=maintenance.repo maintenance run --schedule=%i
+          '';
+          LockPersonality = "yes";
+          MemoryDenyWriteExecute = "yes";
+          NoNewPrivileges = "yes";
+          RestrictAddressFamilies = "AF_UNIX AF_INET AF_INET6 AF_VSOCK";
+          RestrictNamespaces = "yes";
+          RestrictRealtime = "yes";
+          RestrictSUIDSGID = "yes";
+          SystemCallArchitectures = "native";
+          SystemCallFilter = "@system-service";
+        };
+      };
+
+      systemd.user.timers = {
+        "git-maintenance@" = {
+          Unit = {
+            Description = "Optimize Git repositories data";
+            Documentation = [ "man:git-maintenance(1)" ];
+          };
+
+          Timer = {
+            OnCalendar = "%i";
+            Persistent = true;
+          };
+
+          Install.WantedBy = [ "timers.target" ];
+        };
+      } // lib.attrsets.mapAttrs' (n: v:
+        lib.attrsets.nameValuePair "git-maintenance@${n}" {
+          Timer.OnCalendar = v;
+        }) cfg.maintenance.timers;
+    })
+
    (mkIf cfg.diff-highlight.enable {
      programs.git.iniContent = let
        dhCommand =