DGNum/infrastructure
12
6
Fork 3
Code Issues 16 Pull requests 9 Projects 1 Releases Packages Wiki Activity Actions

WIP: feat(machines/hypervisor0*): init #198

Draft
rlahfa wants to merge 1 commit from hypervisor into main
pull from: hypervisor
merge into: DGNum:main
Conversation 0 Commits 1 Files changed 7 +152 -7
7 changed files with 152 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
.gitignore vendored
View file

@ -9,3 +9,5 @@ result-*
*.qcow2
.gcroots
.pre-commit-config.yaml
preseed*yml

16
machines/nixos/hypervisor01/_configuration.nix
View file

@ -2,15 +2,27 @@
#
# SPDX-License-Identifier: EUPL-1.2
{ lib, ... }:
{ meta, lib, ... }:
thubrecht commented 2024-12-21 08:37:18 +01:00
Review
Copy link

meta should go after lib as it is a custom arg

meta should go after lib as it is a custom arg
lib.extra.mkConfig {
enabledModules = [ ];
enabledModules = [
"dgn-hypervisor"
"dgn-cephfs"
];
enabledServices = [ ];
extraConfig = {
services.netbird.enable = true;
dgn-cephfs = {
# Unique per cluster.
fsid = "d189c08e-300b-4ad9-8c95-b50fd0976758";
initialMembers = lib.genAttrs [
"hypervisor01"
"hypervisor02"
"hypervisor03"
] (name: builtins.head meta.network.${name}.addresses.ipv4);
};
};
root = ./.;

16
machines/nixos/hypervisor02/_configuration.nix
View file

@ -2,15 +2,27 @@
#
# SPDX-License-Identifier: EUPL-1.2
{ lib, ... }:
{ meta, lib, ... }:
lib.extra.mkConfig {
enabledModules = [ ];
enabledModules = [
"dgn-hypervisor"
"dgn-cephfs"
thubrecht commented 2024-12-21 08:27:22 +01:00
Review
Copy link

Pls sort the modules

Pls sort the modules
];
enabledServices = [ ];
extraConfig = {
services.netbird.enable = true;
dgn-cephfs = {
# Unique per cluster.
fsid = "d189c08e-300b-4ad9-8c95-b50fd0976758";
initialMembers = lib.genAttrs [
"hypervisor01"
"hypervisor02"
"hypervisor03"
] (name: builtins.head meta.network.${name}.addresses.ipv4);
};
};
root = ./.;

16
machines/nixos/hypervisor03/_configuration.nix
View file

@ -2,15 +2,27 @@
#
# SPDX-License-Identifier: EUPL-1.2
{ lib, ... }:
{ meta, lib, ... }:
lib.extra.mkConfig {
enabledModules = [ ];
enabledModules = [
"dgn-hypervisor"
"dgn-cephfs"
];
enabledServices = [ ];
extraConfig = {
services.netbird.enable = true;
dgn-cephfs = {
# Unique per cluster.
fsid = "d189c08e-300b-4ad9-8c95-b50fd0976758";
initialMembers = lib.genAttrs [
"hypervisor01"
"hypervisor02"
"hypervisor03"
] (name: builtins.head meta.network.${name}.addresses.ipv4);
};
};
root = ./.;

4
modules/nixos/default.nix
View file

@ -18,10 +18,12 @@
"dgn-access-control"
"dgn-acme"
"dgn-backups"
"dgn-console"
"dgn-cephfs"
"dgn-chatops"
"dgn-console"
"dgn-firewall"
"dgn-hardware"
"dgn-hypervisor"
"dgn-netbox-agent"
"dgn-network"
"dgn-node-monitoring"

84
modules/nixos/dgn-cephfs.nix Normal file
View file

@ -0,0 +1,84 @@
# SPDX-FileCopyrightText: 2024 Ryan Lahfa <ryan@dgnum.eu>
# SPDX-FileContributor: Elias Coppens <elias@dgnum.eu>
#
# SPDX-License-Identifier: EUPL-1.2
{
meta,
pkgs,
config,
lib,
thubrecht commented 2024-12-21 08:38:03 +01:00
Review
Copy link
{
  config,
  lib,
  pkgs,
  meta,
  ...
}:
```nix { config, lib, pkgs, meta, ... }: ```
...
}:
let
inherit (lib)
mkEnableOption
mkIf
types
mkOption
concatStringsSep
;
cfg = config.dgn-cephfs;
in
{
options.dgn-cephfs = {
enable = mkEnableOption "the CephFS module for our hypervisors";
fsid = mkOption {
type = types.str;
thubrecht commented 2024-12-21 08:28:10 +01:00
Review
Copy link

Needs a description

Needs a description
};
initialMembers = mkOption {
type = types.attrsOf types.str;
default = { };
example = {
"hypervisor01" = "10.0.0.254";
"hypervisor02" = "10.0.0.253";
};
};
};
config = mkIf cfg.enable {
networking.firewall.allowedTCPPorts = [
6789
3300
];
networking.firewall.allowedTCPPortRanges = [
{
from = 6800;
to = 7300;
}
];
environment.systemPackages = [
pkgs.ceph
pkgs.gdb
];
environment.enableDebugInfo = true;
services.ceph = {
enable = true;
global = {
inherit (cfg) fsid;
monInitialMembers = concatStringsSep ", " (builtins.attrNames cfg.initialMembers);
monHost = concatStringsSep ", " (builtins.attrValues cfg.initialMembers);
# TODO: change it
clusterName = "ceph";
clusterNetwork = "10.0.254.0/24";
publicNetwork = "10.0.254.0/24";
};
extraConfig.public_addr = builtins.head meta.network.${config.networking.hostName}.addresses.ipv4;
thubrecht commented 2024-12-21 08:32:04 +01:00
Review
Copy link

Colmena gives name as an argument, no need for hostName

Colmena gives `name` as an argument, no need for hostName
osd = {
enable = true;
daemons = [ config.networking.hostName ];
};
mon = {
enable = true;
daemons = [ config.networking.hostName ];
thubrecht commented 2024-12-21 08:36:23 +01:00
Review
Copy link

Same as above, plus, if the config for mon, osd and mgr is the same, it can be factorized

Same as above, plus, if the config for mon, osd and mgr is the same, it can be factorized
};
mgr = {
enable = true;
daemons = [ config.networking.hostName ];
};
};
};
}

21
modules/nixos/dgn-hypervisor.nix Normal file
View file

@ -0,0 +1,21 @@
# SPDX-FileCopyrightText: 2024 Ryan Lahfa <ryan@dgnum.eu>
# SPDX-FileContributor: Elias Coppens <elias@dgnum.eu>
#
# SPDX-License-Identifier: EUPL-1.2
{ config, lib, ... }:
let
cfg = config.dgn-hypervisor;
inherit (lib) mkEnableOption mkIf;
in
{
options.dgn-hypervisor.enable = mkEnableOption "the Incus hypervisor";
config = mkIf cfg.enable {
networking.firewall.allowedTCPPorts = [ 8443 ];
virtualisation.incus = {
enable = true;
ui.enable = true;
};
};
}