yadunut/nix
1
0
Fork 0
Code Issues Pull Requests Actions Projects Releases Wiki Activity

k3s: some module cleanup

Browse Source
This commit is contained in:
Yadunand Prem
2025-10-29 13:20:51 +08:00
parent f21a105ce1
commit 4149eed283
2 changed files with 47 additions and 39 deletions
Download Patch File Download Diff File Expand all files Collapse all files

80
modules/nixos/my_k3s/default.nix
View File

@@ -5,7 +5,6 @@
... ...
}: }:
let let
cfg = config.my_k3s;
inherit (lib) inherit (lib)
mkEnableOption mkEnableOption
mkIf mkIf
@@ -21,8 +20,11 @@ in
type = types.nonEmptyStr; type = types.nonEmptyStr;
}; };
role = mkOption { role = mkOption {
type = types.nonEmptyStr; type = types.enum [
default = "server"; "server"
"agent"
];
default = "agent";
}; };
clusterInit = mkOption { clusterInit = mkOption {
type = types.bool; type = types.bool;
@@ -32,6 +34,12 @@ in
type = types.nonEmptyStr; type = types.nonEmptyStr;
default = "server"; default = "server";
}; };
nodeIp = mkOption {
type = types.nonEmptyStr;
};
iface = mkOption {
type = types.nonEmptyStr;
};
extraFlags = mkOption { extraFlags = mkOption {
type = types.listOf types.str; type = types.listOf types.str;
default = [ ]; default = [ ];
@@ -40,38 +48,40 @@ in
type = types.bool; type = types.bool;
default = false; default = false;
}; };
}; };
config = mkIf cfg.enable (mkMerge [ config =
{ let
services.k3s = { cfg = config.my_k3s;
enable = true; is_server = cfg.role == "server";
role = cfg.role; in
tokenFile = cfg.tokenFile; mkIf cfg.enable (mkMerge [
clusterInit = cfg.clusterInit; {
serverAddr = cfg.serverAddr; services.k3s = {
extraFlags = cfg.extraFlags; enable = true;
}; role = cfg.role;
environment.systemPackages = [ pkgs.nfs-utils ]; tokenFile = cfg.tokenFile;
services.openiscsi = { clusterInit = is_server && cfg.clusterInit;
enable = true; serverAddr = cfg.serverAddr;
name = "iqn.2016-04.com.open-iscsi:${config.networking.hostName}"; extraFlags = [
}; "--node-ip ${cfg.nodeIp}"
systemd.tmpfiles.rules = [ "--flannel-iface ${cfg.iface}"
"L+ /usr/local/bin - - - - /run/current-system/sw/bin/" ]
]; ++ cfg.extraFlags;
} };
(mkIf cfg.nvidia { environment.systemPackages = [ pkgs.nfs-utils ];
hardware.nvidia-container-toolkit.enable = true; services.openiscsi = {
hardware.nvidia-container-toolkit.mount-nvidia-executables = true; enable = true;
# virtualisation.docker = { name = "iqn.2016-04.com.open-iscsi:${config.networking.hostName}";
# enable = true; };
# enableNvidia = true; systemd.tmpfiles.rules = [
# }; "L+ /usr/local/bin - - - - /run/current-system/sw/bin/"
environment.systemPackages = with pkgs; [ ];
nvidia-container-toolkit }
]; (mkIf cfg.nvidia {
}) hardware.nvidia-container-toolkit.enable = true;
]); hardware.nvidia-container-toolkit.mount-nvidia-executables = true;
environment.systemPackages = [ pkgs.nvidia-container-toolkit ];
})
]);
} }

6
systems/x86_64-linux/penguin/default.nix
View File

@@ -37,10 +37,8 @@ in
tokenFile = config.age.secrets.k3s.path; tokenFile = config.age.secrets.k3s.path;
clusterInit = false; clusterInit = false;
serverAddr = "https://10.222.0.13:6443"; serverAddr = "https://10.222.0.13:6443";
extraFlags = [ nodeIp = "10.222.0.249";
"--node-ip 10.222.0.249" iface = "ztxh6lvd6t";
"--flannel-iface ztxh6lvd6t"
];
nvidia = true; nvidia = true;
}; };
networking.hostName = "penguin"; networking.hostName = "penguin";