pyrox.dev / nixpkgs
lol
fork atom

nixos/prometheus-wireguard-exporter: add support for new flags

HE7086 ab2dc5c3 3a1f517d

options
unified split
Changed files
+25 -3
nixos
modules
services
monitoring
prometheus
exporters
wireguard.nix
+25 -3
nixos/modules/services/monitoring/prometheus/exporters/wireguard.nix 
···

       
15

       
15

       
 

       
    mkEnableOption


     

       
16

       
16

       
 

       
    optionalString


     

       
17

       
17

       
 

       
    escapeShellArg


     

       

       
18

       
+

       
    concatStringsSep


     

       

       
19

       
+

       
    concatMapStringsSep


     

       
18

       
20

       
 

       
    ;


     

       
19

       
21

       
 

       
in


     

       
20

       
22

       
 

       
{


     

       
21

       
23

       
 

       
  port = 9586;


     

       
22

       
24

       
 

       
  imports = [


     

       
23

       
25

       
 

       
    (mkRenamedOptionModule [ "addr" ] [ "listenAddress" ])


     

       
24

       

       
-

       
    ({


     

       

       
26

       
+

       
    {


     

       
25

       
27

       
 

       
      options.warnings = options.warnings;


     

       
26

       
28

       
 

       
      options.assertions = options.assertions;


     

       
27

       

       
-

       
    })


     

       

       
29

       
+

       
    }


     

       
28

       
30

       
 

       
  ];


     

       
29

       
31

       
 

       
  extraOpts = {


     

       
30

       
32

       
 

       
    verbose = mkEnableOption "verbose logging mode for prometheus-wireguard-exporter";


     
···

       
44

       
46

       
 

       
      '';


     

       
45

       
47

       
 

       
    };


     

       
46

       
48

       
 

       



     

       

       
49

       
+

       
    interfaces = mkOption {


     

       

       
50

       
+

       
      type = types.listOf types.str;


     

       

       
51

       
+

       
      default = [ ];


     

       

       
52

       
+

       
      description = ''


     

       

       
53

       
+

       
        Specifies the interface(s) passed to the wg show <interface> dump parameter.


     

       

       
54

       
+

       
        By default all interfaces are used.


     

       

       
55

       
+

       
      '';


     

       

       
56

       
+

       
    };


     

       

       
57

       
+

       



     

       
47

       
58

       
 

       
    singleSubnetPerField = mkOption {


     

       
48

       
59

       
 

       
      type = types.bool;


     

       
49

       
60

       
 

       
      default = false;


     
···

       
70

       
81

       
 

       
        Adds the `wireguard_latest_handshake_delay_seconds` metric that automatically calculates the seconds passed since the last handshake.


     

       
71

       
82

       
 

       
      '';


     

       
72

       
83

       
 

       
    };


     

       

       
84

       
+

       



     

       

       
85

       
+

       
    prependSudo = mkOption {


     

       

       
86

       
+

       
      type = types.bool;


     

       

       
87

       
+

       
      default = false;


     

       

       
88

       
+

       
      description = ''


     

       

       
89

       
+

       
        Whether or no to prepend sudo to wg commands.


     

       

       
90

       
+

       
      '';


     

       

       
91

       
+

       
    };


     

       
73

       
92

       
 

       
  };


     

       
74

       
93

       
 

       
  serviceOpts = {


     

       
75

       
94

       
 

       
    path = [ pkgs.wireguard-tools ];


     
···

       
85

       
104

       
 

       
          ${optionalString cfg.singleSubnetPerField "-s true"} \


     

       
86

       
105

       
 

       
          ${optionalString cfg.withRemoteIp "-r true"} \


     

       
87

       
106

       
 

       
          ${optionalString cfg.latestHandshakeDelay "-d true"} \


     

       
88

       

       
-

       
          ${optionalString (cfg.wireguardConfig != null) "-n ${escapeShellArg cfg.wireguardConfig}"}


     

       

       
107

       
+

       
          ${optionalString cfg.prependSudo "-a true"} \


     

       

       
108

       
+

       
          ${optionalString (cfg.wireguardConfig != null) "-n ${escapeShellArg cfg.wireguardConfig}"} \


     

       

       
109

       
+

       
          ${concatMapStringsSep " " (i: "-i ${i}") cfg.interfaces} \


     

       

       
110

       
+

       
          ${concatStringsSep " " cfg.extraFlags}


     

       
89

       
111

       
 

       
      '';


     

       
90

       
112

       
 

       
      RestrictAddressFamilies = [


     

       
91

       
113

       
 

       
        # Need AF_NETLINK to collect data