nixpkgs/nixos/modules/virtualisation/azure-common.nix

{
  config,
  lib,
  pkgs,
  ...
}:

with lib;
let
  cfg = config.virtualisation.azure;
  mlxDrivers = [
    "mlx4_en"
    "mlx4_core"
    "mlx5_core"
  ];
in
{
  options.virtualisation.azure = {
    acceleratedNetworking = mkOption {
      default = false;
      description = "Whether the machine's network interface has enabled accelerated networking.";
    };
  };

  config = {
    services.waagent.enable = true;
    services.cloud-init.enable = true;
    services.cloud-init.network.enable = true;
    systemd.services.cloud-config.serviceConfig.Restart = "on-failure";

    boot.kernelParams = [
      "console=ttyS0"
      "earlyprintk=ttyS0"
      "rootdelay=300"
      "panic=1"
      "boot.panic_on_fail"
    ];
    boot.initrd.kernelModules = [
      "hv_vmbus"
      "hv_netvsc"
      "hv_utils"
      "hv_storvsc"
    ];
    boot.initrd.availableKernelModules = lib.optionals cfg.acceleratedNetworking mlxDrivers;

    # Accelerated networking
    systemd.network.networks."99-azure-unmanaged-devices.network" = lib.mkIf cfg.acceleratedNetworking {
      matchConfig.Driver = mlxDrivers;
      linkConfig.Unmanaged = "yes";
    };
    networking.networkmanager.unmanaged = lib.mkIf cfg.acceleratedNetworking (
      builtins.map (drv: "driver:${drv}") mlxDrivers
    );

    # Allow root logins only using the SSH key that the user specified
    # at instance creation time, ping client connections to avoid timeouts
    services.openssh.enable = true;
    services.openssh.settings.PermitRootLogin = "prohibit-password";
    services.openssh.settings.ClientAliveInterval = 180;

    # Force getting the hostname from Azure
    networking.hostName = mkDefault "";

    # Always include cryptsetup so that NixOps can use it.
    # sg_scan is needed to finalize disk removal on older kernels
    environment.systemPackages = [
      pkgs.cryptsetup
      pkgs.sg3_utils
    ];

    networking.usePredictableInterfaceNames = false;

    services.udev.extraRules =
      with builtins;
      concatStringsSep "\n" (
        map (i: ''
          ENV{DEVTYPE}=="disk", KERNEL!="sda" SUBSYSTEM=="block", SUBSYSTEMS=="scsi", KERNELS=="?:0:0:${toString i}", ATTR{removable}=="0", SYMLINK+="disk/by-lun/${toString i}"
        '') (lib.range 1 15)
      );
  };
}
nixos/azure: move image specific config out of azure-common 2024-11-27 21:23:30 +08:00			`{`
			`config,`
			`lib,`
			`pkgs,`
			`...`
			`}:`
azure-image: fix, split into bootstrap and regular configurations Conflicts: nixos/modules/virtualisation/azure-image.nix 2015-05-03 20:18:18 +03:00
			`with lib;`
azure-common: add accelerated networking configs 2024-08-09 08:47:10 +08:00			`let`
			`cfg = config.virtualisation.azure;`
nixos/azure: move image specific config out of azure-common 2024-11-27 21:23:30 +08:00			`mlxDrivers = [`
			`"mlx4_en"`
			`"mlx4_core"`
			`"mlx5_core"`
			`];`
azure-common: add accelerated networking configs 2024-08-09 08:47:10 +08:00			`in`
azure-image: fix, split into bootstrap and regular configurations Conflicts: nixos/modules/virtualisation/azure-image.nix 2015-05-03 20:18:18 +03:00			`{`
azure-common: add accelerated networking configs 2024-08-09 08:47:10 +08:00			`options.virtualisation.azure = {`
			`acceleratedNetworking = mkOption {`
			`default = false;`
			`description = "Whether the machine's network interface has enabled accelerated networking.";`
			`};`
			`};`

azure-common: improve code style 2024-08-09 15:17:12 +08:00			`config = {`
nixos/azure: move image specific config out of azure-common 2024-11-27 21:23:30 +08:00			`services.waagent.enable = true;`
			`services.cloud-init.enable = true;`
			`services.cloud-init.network.enable = true;`
			`systemd.services.cloud-config.serviceConfig.Restart = "on-failure";`

			`boot.kernelParams = [`
			`"console=ttyS0"`
			`"earlyprintk=ttyS0"`
			`"rootdelay=300"`
			`"panic=1"`
			`"boot.panic_on_fail"`
			`];`
			`boot.initrd.kernelModules = [`
			`"hv_vmbus"`
			`"hv_netvsc"`
			`"hv_utils"`
			`"hv_storvsc"`
			`];`
azure-common: put mlx drivers into availableKernelModules 2024-08-10 11:47:18 +08:00			`boot.initrd.availableKernelModules = lib.optionals cfg.acceleratedNetworking mlxDrivers;`
azure-common: add accelerated networking configs 2024-08-09 08:47:10 +08:00
			`# Accelerated networking`
			`systemd.network.networks."99-azure-unmanaged-devices.network" = lib.mkIf cfg.acceleratedNetworking {`
			`matchConfig.Driver = mlxDrivers;`
			`linkConfig.Unmanaged = "yes";`
			`};`
nixos/azure: move image specific config out of azure-common 2024-11-27 21:23:30 +08:00			`networking.networkmanager.unmanaged = lib.mkIf cfg.acceleratedNetworking (`
			`builtins.map (drv: "driver:${drv}") mlxDrivers`
			`);`
azure-common: add accelerated networking configs 2024-08-09 08:47:10 +08:00
			`# Allow root logins only using the SSH key that the user specified`
			`# at instance creation time, ping client connections to avoid timeouts`
			`services.openssh.enable = true;`
			`services.openssh.settings.PermitRootLogin = "prohibit-password";`
			`services.openssh.settings.ClientAliveInterval = 180;`

			`# Force getting the hostname from Azure`
			`networking.hostName = mkDefault "";`

			`# Always include cryptsetup so that NixOps can use it.`
			`# sg_scan is needed to finalize disk removal on older kernels`
nixos/azure: move image specific config out of azure-common 2024-11-27 21:23:30 +08:00			`environment.systemPackages = [`
			`pkgs.cryptsetup`
			`pkgs.sg3_utils`
			`];`
azure-common: add accelerated networking configs 2024-08-09 08:47:10 +08:00
			`networking.usePredictableInterfaceNames = false;`

nixos/azure: move image specific config out of azure-common 2024-11-27 21:23:30 +08:00			`services.udev.extraRules =`
			`with builtins;`
			`concatStringsSep "\n" (`
			`map (i: ''`
			`ENV{DEVTYPE}=="disk", KERNEL!="sda" SUBSYSTEM=="block", SUBSYSTEMS=="scsi", KERNELS=="?:0:0:${toString i}", ATTR{removable}=="0", SYMLINK+="disk/by-lun/${toString i}"`
			`'') (lib.range 1 15)`
			`);`
nixos/virtualisation/azure-common: add auto resize of os disk At the moment os disk do not automatically expand in Azure. This commit fixes this so os disk expands to whole disk when created or changed. 2021-03-08 09:36:02 +01:00			`};`
azure-image: fix, split into bootstrap and regular configurations Conflicts: nixos/modules/virtualisation/azure-image.nix 2015-05-03 20:18:18 +03:00			`}`