2014-12-28 19:21:41 +00:00
|
|
|
{ config, pkgs, lib, ... }:
|
|
|
|
|
|
|
|
with lib;
|
|
|
|
|
|
|
|
let
|
|
|
|
cfg = config.services.cadvisor;
|
|
|
|
|
|
|
|
in {
|
|
|
|
options = {
|
|
|
|
services.cadvisor = {
|
2022-11-09 21:45:00 +00:00
|
|
|
enable = mkEnableOption "Cadvisor service";
|
2014-12-28 19:21:41 +00:00
|
|
|
|
2015-12-23 23:14:40 +00:00
|
|
|
listenAddress = mkOption {
|
2014-12-28 19:21:41 +00:00
|
|
|
default = "127.0.0.1";
|
|
|
|
type = types.str;
|
|
|
|
description = "Cadvisor listening host";
|
|
|
|
};
|
|
|
|
|
|
|
|
port = mkOption {
|
|
|
|
default = 8080;
|
2022-11-09 21:30:00 +00:00
|
|
|
type = types.port;
|
2014-12-28 19:21:41 +00:00
|
|
|
description = "Cadvisor listening port";
|
|
|
|
};
|
|
|
|
|
|
|
|
storageDriver = mkOption {
|
|
|
|
default = null;
|
|
|
|
type = types.nullOr types.str;
|
|
|
|
example = "influxdb";
|
|
|
|
description = "Cadvisor storage driver.";
|
|
|
|
};
|
|
|
|
|
|
|
|
storageDriverHost = mkOption {
|
|
|
|
default = "localhost:8086";
|
|
|
|
type = types.str;
|
|
|
|
description = "Cadvisor storage driver host.";
|
|
|
|
};
|
|
|
|
|
|
|
|
storageDriverDb = mkOption {
|
|
|
|
default = "root";
|
|
|
|
type = types.str;
|
|
|
|
description = "Cadvisord storage driver database name.";
|
|
|
|
};
|
|
|
|
|
|
|
|
storageDriverUser = mkOption {
|
|
|
|
default = "root";
|
|
|
|
type = types.str;
|
|
|
|
description = "Cadvisor storage driver username.";
|
|
|
|
};
|
|
|
|
|
|
|
|
storageDriverPassword = mkOption {
|
|
|
|
default = "root";
|
|
|
|
type = types.str;
|
2017-03-25 23:44:53 +00:00
|
|
|
description = ''
|
|
|
|
Cadvisor storage driver password.
|
|
|
|
|
|
|
|
Warning: this password is stored in the world-readable Nix store. It's
|
|
|
|
recommended to use the {option}`storageDriverPasswordFile` option
|
|
|
|
since that gives you control over the security of the password.
|
|
|
|
{option}`storageDriverPasswordFile` also takes precedence over {option}`storageDriverPassword`.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
storageDriverPasswordFile = mkOption {
|
|
|
|
type = types.str;
|
|
|
|
description = ''
|
|
|
|
File that contains the cadvisor storage driver password.
|
|
|
|
|
|
|
|
{option}`storageDriverPasswordFile` takes precedence over {option}`storageDriverPassword`
|
|
|
|
|
|
|
|
Warning: when {option}`storageDriverPassword` is non-empty this defaults to a file in the
|
|
|
|
world-readable Nix store that contains the value of {option}`storageDriverPassword`.
|
|
|
|
|
|
|
|
It's recommended to override this with a path not in the Nix store.
|
|
|
|
Tip: use [nixops key management](https://nixos.org/nixops/manual/#idm140737318306400)
|
|
|
|
'';
|
2014-12-28 19:21:41 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
storageDriverSecure = mkOption {
|
|
|
|
default = false;
|
|
|
|
type = types.bool;
|
|
|
|
description = "Cadvisor storage driver, enable secure communication.";
|
|
|
|
};
|
2019-08-18 22:48:12 +00:00
|
|
|
|
|
|
|
extraOptions = mkOption {
|
|
|
|
type = types.listOf types.str;
|
|
|
|
default = [];
|
|
|
|
description = ''
|
|
|
|
Additional cadvisor options.
|
2020-08-07 13:43:58 +00:00
|
|
|
|
2019-08-18 22:48:12 +00:00
|
|
|
See <https://github.com/google/cadvisor/blob/master/docs/runtime_options.md> for available options.
|
|
|
|
'';
|
|
|
|
};
|
2014-12-28 19:21:41 +00:00
|
|
|
};
|
|
|
|
};
|
|
|
|
|
2017-03-25 23:44:53 +00:00
|
|
|
config = mkMerge [
|
|
|
|
{ services.cadvisor.storageDriverPasswordFile = mkIf (cfg.storageDriverPassword != "") (
|
|
|
|
mkDefault (toString (pkgs.writeTextFile {
|
|
|
|
name = "cadvisor-storage-driver-password";
|
|
|
|
text = cfg.storageDriverPassword;
|
|
|
|
}))
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
(mkIf cfg.enable {
|
|
|
|
systemd.services.cadvisor = {
|
|
|
|
wantedBy = [ "multi-user.target" ];
|
|
|
|
after = [ "network.target" "docker.service" "influxdb.service" ];
|
|
|
|
|
2021-11-17 18:47:44 +00:00
|
|
|
path = optionals config.boot.zfs.enabled [ pkgs.zfs ];
|
|
|
|
|
2017-03-25 23:44:53 +00:00
|
|
|
postStart = mkBefore ''
|
|
|
|
until ${pkgs.curl.bin}/bin/curl -s -o /dev/null 'http://${cfg.listenAddress}:${toString cfg.port}/containers/'; do
|
|
|
|
sleep 1;
|
|
|
|
done
|
2014-12-28 19:21:41 +00:00
|
|
|
'';
|
|
|
|
|
2017-03-25 23:44:53 +00:00
|
|
|
script = ''
|
|
|
|
exec ${pkgs.cadvisor}/bin/cadvisor \
|
|
|
|
-logtostderr=true \
|
|
|
|
-listen_ip="${cfg.listenAddress}" \
|
|
|
|
-port="${toString cfg.port}" \
|
2019-08-18 22:48:12 +00:00
|
|
|
${escapeShellArgs cfg.extraOptions} \
|
2017-03-25 23:44:53 +00:00
|
|
|
${optionalString (cfg.storageDriver != null) ''
|
|
|
|
-storage_driver "${cfg.storageDriver}" \
|
2023-02-02 15:43:44 +00:00
|
|
|
-storage_driver_host "${cfg.storageDriverHost}" \
|
2017-03-25 23:44:53 +00:00
|
|
|
-storage_driver_db "${cfg.storageDriverDb}" \
|
|
|
|
-storage_driver_user "${cfg.storageDriverUser}" \
|
|
|
|
-storage_driver_password "$(cat "${cfg.storageDriverPasswordFile}")" \
|
|
|
|
${optionalString cfg.storageDriverSecure "-storage_driver_secure"}
|
|
|
|
''}
|
|
|
|
'';
|
|
|
|
|
|
|
|
serviceConfig.TimeoutStartSec=300;
|
|
|
|
};
|
|
|
|
})
|
|
|
|
];
|
2014-12-28 19:21:41 +00:00
|
|
|
}
|