2025-01-13 11:52:09 +08:00
|
|
|
{
|
|
|
|
|
pkgs,
|
|
|
|
|
lib,
|
|
|
|
|
config,
|
|
|
|
|
...
|
|
|
|
|
}:
|
|
|
|
|
with lib;
|
|
|
|
|
let
|
2024-01-07 22:01:31 +08:00
|
|
|
cfg = config.global.libvirt;
|
2025-01-13 11:52:09 +08:00
|
|
|
in
|
|
|
|
|
{
|
2024-01-07 22:01:31 +08:00
|
|
|
options.global.libvirt = {
|
2025-01-13 11:52:09 +08:00
|
|
|
enable = mkEnableOption "libvirt virtualisation daemon" // {
|
|
|
|
|
default = true;
|
|
|
|
|
};
|
2024-01-03 16:59:17 +08:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
config = mkIf cfg.enable {
|
|
|
|
|
virtualisation.libvirtd = {
|
|
|
|
|
enable = true;
|
|
|
|
|
qemu.runAsRoot = false;
|
|
|
|
|
qemu.swtpm.enable = true;
|
|
|
|
|
|
|
|
|
|
# disable as much implicit state as possible
|
|
|
|
|
onBoot = "ignore";
|
|
|
|
|
onShutdown = "shutdown";
|
|
|
|
|
parallelShutdown = 5;
|
|
|
|
|
};
|
|
|
|
|
|
2024-03-11 21:39:46 +08:00
|
|
|
environment.systemPackages = with pkgs; [ virtiofsd ];
|
|
|
|
|
|
2024-01-03 16:59:17 +08:00
|
|
|
# USB redirection requires a setuid wrapper
|
|
|
|
|
virtualisation.spiceUSBRedirection.enable = true;
|
|
|
|
|
|
|
|
|
|
environment.persistence."/nix/persist/fhs".directories = [
|
|
|
|
|
"/var/lib/libvirt"
|
|
|
|
|
];
|
2024-01-09 17:02:15 +08:00
|
|
|
global.fs.zfs.mountpoints."/nix/persist/service/libvirt" = "service/libvirt";
|
2024-01-04 13:50:47 +08:00
|
|
|
|
|
|
|
|
# allow management by admin users
|
|
|
|
|
users.adminGroups = [ "libvirtd" ];
|
2024-01-03 16:59:17 +08:00
|
|
|
};
|
|
|
|
|
}
|
