rarias/jungle
rarias/jungle
2
0
Fork 2
Code Issues 52 Pull Requests 8 Actions Packages Projects Releases Wiki Activity
450 Commits 23 Branches 0 Tags
Commit Graph

102 Commits

Author SHA1 Message Date
Rodrigo Arias Mallo
ededd2083b Control user access to each machine 
The users.jungleUsers configuration option behaves like the users.users
option, but defines the list attribute `hosts` for each user, which
filters users so that only the user can only access those hosts.

Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>
 2025-10-01 16:40:16 +02:00
Aleix Roca Nonell
35b4a30f2e Move slurm client in a separate module 
Reviewed-by: Rodrigo Arias Mallo <rodrigo.arias@bsc.es>
 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
845adfc937 Use tmpfs in /tmp 
The /tmp directory was using the SSD disk which is not erased across
boots. Nix will use /tmp to perform the builds, so we want it to be as
fast as possible. In general, all the machines have enough space to
handle large builds like LLVM.

Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>
 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
34628c0e39 BSC packages are no longer in bsc attribute 
Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>
 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
4e333dca21 Don't log SLURM connection attempts from ssfhead 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
beae9d240e Enable direnv integration 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
e925b00489 Remove bscpkgs from the registry and nixPath 
This is done to prevent accidental evaluations where the nixpkgs input
of bscpkgs is still pointing to a different version that the one
specified in the jungle flake. Instead use jungle#bscpkgs.X to get a
package from bscpkgs.
 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
87871de141 Don't fetch registry flakes from the net 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
a992b266bb Enable fstrim service 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
1b5469af13 Add encrypted munge key with agenix 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
78c883a274 Remove unused large port hole in firewall 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
241b888a7c Allow only some ports for srun 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
b7aba3d15c Block ssfhead from reaching our slurm daemon 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
e35b51cd00 Poweroff idle slurm nodes after 1 hour 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
2e460f49bd Add IB and IPMI node host names 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
e7aa2d3fe3 Add agenix to all nodes 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
224bafd20d Reorganize secrets and ssh keys 
The agenix tools needs to read the secrets from a standalone file, but
we also need the same information for the SSH keys.
 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
8b1fa938ea Add anavarro user 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
94b110dc57 Set zsh inc_append_history option 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
0c5207bd2d Set zsh shell for rarias 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
4200e6162d Enable zsh and fix key bindings 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
c0ae33fbb5 Keep a log over time with the config commits 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
ff00c2be8d Store nixos config in /etc/nixos/config.rev 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
ad491140f4 Enable watchdog 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
9f71aae1ff Also enable monitoring in lake2 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
a48ae143cc Move pkgs overlay to overlay.nix 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
5f2fe97cd4 Add the lake2 hostname to the hosts 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
71000731c0 Add ceph metrics to prometheus 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
503a63539c Add the bay host name 2025-10-01 16:40:16 +02:00
Rodrigo Arias Mallo
8cb7cf087c Don't set all_proxy 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
d92e06d7b7 GRUB version no longer needed 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
a096a386a0 Kill slurmd remaining processes on upgrade 2025-10-01 16:40:15 +02:00
Aleix Roca Nonell
b30f2bfdd7 Add koro node 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
9097811cc0 Enable NTP using the BSC time server 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
83acd40880 Add the ssfhead node as gateway 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
ba75bf8249 Use our host names first by default 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
e9845cc76a Add DNS tools to resolve hosts 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
d5951483ee Lower perf_event_paranoid to -1 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
937d8a7637 Set perf paranoid to 0 by default 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
798e01f9e6 Add perf to packages 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
2ca7e7383e Allow srun to specify the cpu binding 
The task/affinity plugin needs to be selected.
 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
b610f12133 Move authorized keys to users.nix 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
b6aaeb8158 Add rpenacob user 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
3d0f86ac07 Add osumb to the system packages 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
45d7b31c0a Use explicit order in overlays 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
bae3c75222 Add mpich overlay 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
f51e910aff Add coments in slurm config 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
8b7ffc914a Add eudy host key to known hosts 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
afb2bea1c9 Rename xeon08 to eudy 
From Eudyptula, a little penguin.
 2025-10-01 16:40:15 +02:00
Rodrigo Arias Mallo
4afe3121e6 Add ssh host keys 2025-10-01 16:40:15 +02:00