-
Notifications
You must be signed in to change notification settings - Fork 62
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Options for CUDA, podman and docker updated with nvidia-container sup…
…port Signed-off-by: Emrah Billur <[email protected]>
- Loading branch information
1 parent
b7f43e9
commit f079c69
Showing
6 changed files
with
154 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,24 @@ | ||
# Copyright 2022-2024 TII (SSRC) and the Ghaf contributors | ||
# SPDX-License-Identifier: Apache-2.0 | ||
{ lib, config, ... }: | ||
let | ||
cfg = config.ghaf.development.cuda; | ||
inherit (lib) mkEnableOption mkIf; | ||
in | ||
{ | ||
options.ghaf.development.cuda = { | ||
enable = mkEnableOption "CUDA Support"; | ||
}; | ||
|
||
config = mkIf cfg.enable { | ||
#Enabling CUDA on any supported system requires below settings. | ||
nixpkgs.config.allowUnfree = lib.mkForce true; | ||
nixpkgs.config.allowBroken = lib.mkForce false; | ||
nixpkgs.config.cudaSupport = lib.mkForce true; | ||
|
||
# Enable Opengl | ||
# Opengl enable is renamed to hardware.graphics.enable | ||
# This is needed for CUDA so set it if it is already not set | ||
hardware.graphics.enable = lib.mkForce true; | ||
}; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -6,5 +6,6 @@ | |
./usb-serial.nix | ||
./nix.nix | ||
./ssh.nix | ||
./cuda.nix | ||
]; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,68 @@ | ||
# Copyright 2022-2024 TII (SSRC) and the Ghaf contributors | ||
# SPDX-License-Identifier: Apache-2.0 | ||
{ lib, config, ... }: | ||
let | ||
cfg = config.ghaf.virtualization.podman.daemon; | ||
inherit (lib) mkEnableOption mkIf; | ||
in | ||
{ | ||
options.ghaf.virtualization.podman.daemon = { | ||
enable = mkEnableOption "Podman Daemon"; | ||
}; | ||
config = mkIf cfg.enable { | ||
# Just ensure containers are enabled by boot. | ||
boot.enableContainers = lib.mkForce true; | ||
|
||
# Enable Opengl renamed to hardware.graphics.enable | ||
hardware.graphics.enable = lib.mkForce true; | ||
|
||
# For CUDA support: Enable if not already enabled. | ||
ghaf.development.cuda.enable = lib.mkForce true; | ||
|
||
# Enabling CDI NVIDIA devices in podman or docker (nvidia docker container) | ||
# For Orin devices this setting does not work as jetpack-nixos still does not support them. | ||
# jetpack-nixos uses enableNvidia = true; even though it is deprecated | ||
# For x86_64 the case is different it was introduced to be | ||
# virtualisation.containers.cdi.dynamic.nvidia.enable = true; | ||
# but deprecated and changed to hardware.nvidia-container-toolkit.enable | ||
# We enable below setting if architecture ix x86_64 and if the video driver is nvidia set it true | ||
hardware.nvidia-container-toolkit.enable = lib.mkIf ( | ||
config.nixpkgs.localSystem.isx86_64 && (builtins.elem "nvidia" config.services.xserver.videoDrivers) | ||
) true; | ||
|
||
virtualisation.podman = { | ||
enable = true; | ||
# The enableNvidia option is still used in jetpack-nixos while it is obsolete in nixpkgs | ||
# but it is still only option for nvidia-orin devices. | ||
enableNvidia = config.nixpkgs.localSystem.isAarch64 && config.hardware.nvidia-jetpack.enable; | ||
# Create a `docker` alias for podman, to use it as a drop-in replacement | ||
dockerCompat = !config.virtualisation.docker.enable; | ||
dockerSocket.enable = !config.virtualisation.docker.enable; | ||
# Required for containers under podman-compose to be able to talk to each other. | ||
defaultNetwork.settings.dns_enabled = true; | ||
# Container file and processor limits | ||
# daemon.settings = { | ||
# default-ulimits = { | ||
# nofile = { | ||
# Name = "nofile"; | ||
# Hard = 1024; | ||
# Soft = 1024; | ||
# }; | ||
# nproc = { | ||
# Name = "nproc"; | ||
# Soft = 65536; | ||
# Hard = 65536; | ||
# }; | ||
# }; | ||
# }; | ||
}; | ||
|
||
# Add user to podman and docker group (due to compatibility mode) | ||
# and dialout group for access to serial ports | ||
users.users."ghaf".extraGroups = [ | ||
"docker" | ||
"dialout" | ||
"podman" | ||
]; | ||
}; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters