forked from kalipso/infrastructure
81 lines
2.0 KiB
Nix
81 lines
2.0 KiB
Nix
{ config, self, lib, inputs, options, pkgs, ... }:
|
|
|
|
with lib;
|
|
|
|
let
|
|
cfg = config.services.malobeo.microvm;
|
|
hostsEmpty = length cfg.deployHosts == 0;
|
|
in
|
|
{
|
|
options = {
|
|
services.malobeo.microvm = {
|
|
enableHostBridge = mkOption {
|
|
default = false;
|
|
type = types.bool;
|
|
description = lib.mdDoc "Setup bridge device for microvms.";
|
|
};
|
|
|
|
deployHosts = mkOption {
|
|
default = [];
|
|
type = types.listOf types.str;
|
|
description = ''
|
|
List hostnames of MicroVMs that should be automatically initializes and autostart
|
|
'';
|
|
};
|
|
};
|
|
};
|
|
|
|
|
|
imports = [
|
|
inputs.microvm.nixosModules.host
|
|
];
|
|
|
|
config = mkIf cfg.enableHostBridge
|
|
{
|
|
systemd.network = {
|
|
enable = true;
|
|
# create a bride device that all the microvms will be connected to
|
|
netdevs."10-microvm".netdevConfig = {
|
|
Kind = "bridge";
|
|
Name = "microvm";
|
|
};
|
|
|
|
networks."10-microvm" = {
|
|
matchConfig.Name = "microvm";
|
|
networkConfig = {
|
|
DHCPServer = true;
|
|
IPv6SendRA = true;
|
|
};
|
|
addresses = [ {
|
|
Address = "10.0.0.1/24";
|
|
} {
|
|
Address = "fd12:3456:789a::1/64";
|
|
} ];
|
|
ipv6Prefixes = [ {
|
|
Prefix = "fd12:3456:789a::/64";
|
|
} ];
|
|
};
|
|
|
|
# connect the vms to the bridge
|
|
networks."11-microvm" = {
|
|
matchConfig.Name = "vm-*";
|
|
networkConfig.Bridge = "microvm";
|
|
};
|
|
};
|
|
|
|
microvm.autostart = cfg.deployHosts;
|
|
microvm.vms =
|
|
let
|
|
# Map the values to each hostname to then generate a Attrs using listToAttrs
|
|
mapperFunc = name: { inherit name; value = {
|
|
# Host build-time reference to where the MicroVM NixOS is defined
|
|
# under nixosConfigurations
|
|
flake = inputs.malobeo;
|
|
# Specify from where to let `microvm -u` update later on
|
|
updateFlake = "git+https://git.dynamicdiscord.de/kalipso/infrastructure?ref=microvm";
|
|
}; };
|
|
in
|
|
builtins.listToAttrs (map mapperFunc cfg.deployHosts);
|
|
};
|
|
}
|