WIP k3s

2024-10-16 18:28:17 +02:00 · 2024-10-16 18:28:17 +02:00 · bd8630681b
commit bd8630681b
parent 4c71887ea6
3 changed files with 86 additions and 64 deletions
--- a/nix/os/snippets/k3s-w-nix-snapshotter.nix
+++ b/nix/os/snippets/k3s-w-nix-snapshotter.nix
@ -5,37 +5,56 @@
  pkgs,
  lib,
  system,
+  config,
  ...
-}: {
+}: let
+  cfg = config.steveej.k3s;
+
+  # TODO: make this configurable
+  homeUser = "steveej";
+in {
+  options.steveej.k3s = {
+    enable = lib.mkOption {
+      description = "steveej's k3s distro";
+      type = lib.types.bool;
+      default = true;
+    };
+  };
+
  # (1) Import nixos module.
  imports = [
    nodeFlake.inputs.nix-snapshotter.nixosModules.default
  ];

-  # (2) Add overlay.
-  nixpkgs.overlays = [nodeFlake.inputs.nix-snapshotter.overlays.default];
+  config = lib.mkIf cfg.enable {
+    # (2) Add overlay.
+    nixpkgs.overlays = [nodeFlake.inputs.nix-snapshotter.overlays.default];

-  # (3) Enable service.
-  virtualisation.containerd = {
-    enable = true;
-    k3sIntegration = false;
-    nixSnapshotterIntegration = true;
+    # (3) Enable service.
+    virtualisation.containerd = {
+      enable = true;
+      nixSnapshotterIntegration = true;

-    # TODO: understand if this has an influence on the systemd LoadCredential issue
-    settings.plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options.SystemdCgroup = lib.mkForce true;
-  };
-  services.nix-snapshotter = {
-    enable = true;
-  };
+      # TODO: understand if this has an influence on the systemd LoadCredential issue
+      # settings.plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options.SystemdCgroup = lib.mkForce true;
+    };
+    services.nix-snapshotter = {
+      enable = true;
+    };

-  # (4) Add a containerd CLI like nerdctl.
-  environment.systemPackages = [
-    pkgs.nerdctl
-    nodeFlake.inputs.nix-snapshotter.packages.${system}.default
-  ];
+    # (4) Add a containerd CLI like nerdctl.
+    environment.systemPackages = [
+      pkgs.nerdctl
+      nodeFlake.inputs.nix-snapshotter.packages.${system}.default
+    ];

-  services.k3s = {
-    enable = false;
-    setKubeConfig = true;
+    services.k3s = {
+      enable = false;
+      setKubeConfig = true;
+    };
+
+    # home-manager.users."${homeUser}" = _: {
+    #   home.sessionVariables.CONTAINERD_ADDRESS = "/run/user/1000/containerd/containerd.sock";
+    # };
  };
 }