|
|
|
@ -4,29 +4,29 @@
|
|
|
|
|
#sudo ln -sf "$(pwd)"/qemu /etc/libvirt/hooks/qemu
|
|
|
|
|
|
|
|
|
|
## IOMMU groups
|
|
|
|
|
IOMMU_GPU="06:00.0"
|
|
|
|
|
IOMMU_GPU_AUDIO="06:00.1"
|
|
|
|
|
IOMMU_USB="07:00.3"
|
|
|
|
|
IOMMU_AUDIO="08:00.3"
|
|
|
|
|
#IOMMU_GPU="06:00.0"
|
|
|
|
|
#IOMMU_GPU_AUDIO="06:00.1"
|
|
|
|
|
#IOMMU_USB="07:00.3"
|
|
|
|
|
#IOMMU_AUDIO="08:00.3"
|
|
|
|
|
|
|
|
|
|
## Virsh devices
|
|
|
|
|
VIRSH_GPU="pci_0000_06_00_0"
|
|
|
|
|
VIRSH_GPU_AUDIO="pci_0000_06_00_1"
|
|
|
|
|
VIRSH_USB="pci_0000_07_00_3"
|
|
|
|
|
VIRSH_AUDIO="pci_0000_08_00_3"
|
|
|
|
|
#VIRSH_AUDIO="pci_0000_08_00_3"
|
|
|
|
|
|
|
|
|
|
## PCI BUS ID
|
|
|
|
|
videoid="10de 1184"
|
|
|
|
|
audioid="10de 0e0a"
|
|
|
|
|
videobusid="0000:${IOMMU_GPU}"
|
|
|
|
|
audiobusid="0000:${IOMMU_GPU_AUDIO}"
|
|
|
|
|
#videoid="10de 1184"
|
|
|
|
|
#audioid="10de 0e0a"
|
|
|
|
|
#videobusid="0000:${IOMMU_GPU}"
|
|
|
|
|
#audiobusid="0000:${IOMMU_GPU_AUDIO}"
|
|
|
|
|
|
|
|
|
|
## QEMU options
|
|
|
|
|
RAM=12G
|
|
|
|
|
#RAM=12G
|
|
|
|
|
|
|
|
|
|
## Ulimit
|
|
|
|
|
ULIMIT=$(ulimit -a | grep "max locked memory" | awk '{print $6}')
|
|
|
|
|
ULIMIT_TARGET=$(( $(echo $RAM | tr -d 'G') * 1048576 + 100000 ))
|
|
|
|
|
#ULIMIT=$(ulimit -a | grep "max locked memory" | awk '{print $6}')
|
|
|
|
|
#ULIMIT_TARGET=$(( $(echo $RAM | tr -d 'G') * 1048576 + 100000 ))
|
|
|
|
|
|
|
|
|
|
## Log file
|
|
|
|
|
LOG=/tmp/qemu_log.txt
|
|
|
|
@ -62,6 +62,14 @@ if [[ "$1" == "GPU"* ]]; then
|
|
|
|
|
## Memory lock limit
|
|
|
|
|
#[ "$ULIMIT" != "$ULIMIT_TARGET" ] && ulimit -l "$ULIMIT_TARGET"
|
|
|
|
|
|
|
|
|
|
## Firewall nftables
|
|
|
|
|
nft add rule inet filter INPUT iifname "virbr1" tcp dport { 53, 67, 68, 139, 445 \} counter accept
|
|
|
|
|
nft add rule inet filter INPUT iifname "virbr1" udp dport { 53, 67, 68 \} counter accept
|
|
|
|
|
nft add rule arp filter INPUT iifname "virbr1" accept
|
|
|
|
|
|
|
|
|
|
## Volume
|
|
|
|
|
amixer -q sset Master 100%
|
|
|
|
|
|
|
|
|
|
## Kill the Window Manager
|
|
|
|
|
killall i3 > /dev/null 2>&1
|
|
|
|
|
sleep 5 ## Just in case
|
|
|
|
@ -88,16 +96,17 @@ if [[ "$1" == "GPU"* ]]; then
|
|
|
|
|
samba_server start
|
|
|
|
|
|
|
|
|
|
## iptables
|
|
|
|
|
iptables -A LIBVIRT_INP -i virbr1 -p tcp -m tcp --dport 445 -j ACCEPT
|
|
|
|
|
#iptables -A LIBVIRT_INP -i virbr1 -p tcp -m tcp --dport 445 -j ACCEPT
|
|
|
|
|
|
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
|
if [ "$2" == "release" ]; then
|
|
|
|
|
|
|
|
|
|
## iptables
|
|
|
|
|
#iptables -D LIBVIRT_INP -i virbr1 -p tcp -m tcp --dport 445 -j ACCEPT
|
|
|
|
|
|
|
|
|
|
## Stop the samba server
|
|
|
|
|
samba_server stop
|
|
|
|
|
#samba_server stop
|
|
|
|
|
|
|
|
|
|
## Stop the network
|
|
|
|
|
if [ "$(virsh net-list --all | grep "$VIRTNAME" | awk '{print $2}')" == "active" ]; then
|
|
|
|
|