nixos/github-runner: start Runner.Listener directly in ExecStart=

The `runsvc.sh` script wraps a JavaScript script which starts `Runner.Listener` and also handles failures. This has the downside that the service _always_ exits with status code 0, i.e., success. This causes frequent service restarts when running in ephemeral mode with a faulty config as Systemd always sees a success exit status. To prevent this, this commit changes the service config to call `Runner.Listener` directly. The JavaScript wrapper stops the process with a SIGINT, hence, the Systemd unit now sends a SIGINT to stop the service.
2024-11-20 01:16:57 +01:00 · 2022-08-04 14:06:25 +02:00 · 2022-08-04 14:06:25 +02:00 · 786f72c32e
commit 786f72c32e
parent 006d9d2dfb
1 changed files with 2 additions and 3 deletions
--- a/nixos/modules/services/continuous-integration/github-runner.nix
+++ b/nixos/modules/services/continuous-integration/github-runner.nix
@ -173,7 +173,7 @@ in
      ] ++ cfg.extraPackages;

      serviceConfig = rec {
-        ExecStart = "${cfg.package}/bin/runsvc.sh";
+        ExecStart = "${cfg.package}/bin/Runner.Listener run --startuptype service";

        # Does the following, sequentially:
        # - If the module configuration or the token has changed, purge the state directory,
@ -314,8 +314,7 @@ in
        # By default, use a dynamically allocated user
        DynamicUser = true;

-        KillMode = "process";
-        KillSignal = "SIGTERM";
+        KillSignal = "SIGINT";

        # Hardening (may overlap with DynamicUser=)
        # The following options are only for optimizing: