profiles: init (vsock ssh &c.)

2025-09-17 16:51:24 +03:00 · 2025-09-17 16:51:24 +03:00 · 1828835a1d
commit 1828835a1d
parent 12e95630b1
8 changed files with 228 additions and 0 deletions
--- a/profiles/uvms-guest.nix
+++ b/profiles/uvms-guest.nix
@ -0,0 +1,47 @@
+{
+  options,
+  lib,
+  pkgs,
+  ...
+}:
+{
+  imports = [
+    ./vsock-connect-guest.nix
+    ./uvms-users.nix
+  ];
+  config = lib.optionalAttrs (options ? microvm) {
+    microvm = {
+      hypervisor = "cloud-hypervisor";
+      volumes = [
+        {
+          image = "swapfile.img";
+          mountPoint = "/var/swapfiles";
+          size = 1024;
+        }
+      ];
+      cloud-hypervisor.extraArgs = [
+        "--api-socket=ch.sock"
+      ];
+    };
+    swapDevices = [
+      {
+        device = "/var/swapfiles/swap0";
+        size = 768;
+      }
+    ];
+
+    boot.kernelParams = [ "zswap.enabled=1" ];
+    zramSwap.enable = false;
+
+    systemd.services."microvm@".serviceConfig.ExecStartPost =
+      pkgs.writeShellScript "microvm-fix-umask" ''
+        if [[ -e CONNECT.vsock ]] ; then
+          chmod g+r CONNECT.vsock
+        fi
+      '';
+
+    systemd.tmpfiles.settings."10-muvm" = {
+      "/var/lib/microvms/*/CONNECT.sock".z.mode = "660";
+    };
+  };
+}