commit b08524bf01723a23f17d24487b6b528c603127fb · pyrox.dev/nixpkgs

+51 -23

nixos/modules/services/networking/nylon.nix

···

       8
        
       

     

       9
        
         homeDir = "/var/lib/nylon";

     

       10
        
       

     

       11
       -
         configFile = pkgs.writeText "nylon.conf" ''

     

       12
        
           [General]

     

       13
        
           No-Simultaneous-Conn=${toString cfg.nrConnections}

     

       14
        
           Log=${if cfg.logging then "1" else "0"}

     
···

       22
        
           Deny-IP=${concatStringsSep " " cfg.deniedIPRanges}

     

       23
        
         '';

     

       24
        
       

     

       25
       -
       in

     

       26
       -
       

     

       27
       -
       {

     

       28
       -
       

     

       29
       -
         ###### interface

     

       30
       -
       

     

       31
       -
         options = {

     

       32
        
       

     

       33
       -
           services.nylon = {

     

       34
        
       

     

       35
        
             enable = mkOption {

     

       36
        
               type = types.bool;

     
···

       38
        
               description = ''

     

       39
        
                 Enables nylon as a running service upon activation.

     

       40
        
               '';

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       41
        
             };

     

       42
        
       

     

       43
        
             nrConnections = mkOption {

     
···

       107
        
               '';

     

       108
        
             };

     

       109
        
           };

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       110
        
         };

     

       111
        
       

     

       112
        
         ###### implementation

     

       113
        
       

     

       114
       -
         config = mkIf cfg.enable {

     

       115
        
       

     

       116
       -
           users.extraUsers.nylon= {

     

       117
        
             group = "nylon";

     

       118
        
             description = "Nylon SOCKS Proxy";

     

       119
        
             home = homeDir;

     
···

       123
        
       

     

       124
        
           users.extraGroups.nylon.gid = config.ids.gids.nylon;

     

       125
        
       

     

       126
       -
           systemd.services.nylon = {

     

       127
       -
             description = "Nylon, a lightweight SOCKS proxy server";

     

       128
       -
             after = [ "network.target" ];

     

       129
       -
             wantedBy = [ "multi-user.target" ];

     

       130
       -
             serviceConfig =

     

       131
       -
             {

     

       132
       -
               User = "nylon";

     

       133
       -
               Group = "nylon";

     

       134
       -
               WorkingDirectory = homeDir;

     

       135
       -
               ExecStart = "${pkgs.nylon}/bin/nylon -f -c ${configFile}";

     

       136
       -
             };

     

       137
       -
           };

     

       138
        
         };

     

       139
        
       }

···

       8
        
       

     

       9
        
         homeDir = "/var/lib/nylon";

     

       10
        
       

     

       11
       +
         configFile = cfg: pkgs.writeText "nylon-${cfg.name}.conf" ''

     

       12
        
           [General]

     

       13
        
           No-Simultaneous-Conn=${toString cfg.nrConnections}

     

       14
        
           Log=${if cfg.logging then "1" else "0"}

     
···

       22
        
           Deny-IP=${concatStringsSep " " cfg.deniedIPRanges}

     

       23
        
         '';

     

       24
        
       

     

       25
       +
         nylonOpts = { name, config, ... }: {

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       26
        
       

     

       27
       +
           options = {

     

       28
        
       

     

       29
        
             enable = mkOption {

     

       30
        
               type = types.bool;

     
···

       32
        
               description = ''

     

       33
        
                 Enables nylon as a running service upon activation.

     

       34
        
               '';

     

       35
       +
             };

     

       36
       +
       

     

       37
       +
             name = mkOption {

     

       38
       +
               type = types.str;

     

       39
       +
               default = "";

     

       40
       +
               description = "The name of this nylon instance.";

     

       41
        
             };

     

       42
        
       

     

       43
        
             nrConnections = mkOption {

     
···

       107
        
               '';

     

       108
        
             };

     

       109
        
           };

     

       110
       +
           config = { name = mkDefault name; };

     

       111
       +
         };

     

       112
       +
       

     

       113
       +
         mkNamedNylon = cfg: {

     

       114
       +
           "nylon-${cfg.name}" = {

     

       115
       +
             description = "Nylon, a lightweight SOCKS proxy server";

     

       116
       +
             after = [ "network.target" ];

     

       117
       +
             wantedBy = [ "multi-user.target" ];

     

       118
       +
             serviceConfig =

     

       119
       +
             {

     

       120
       +
               User = "nylon";

     

       121
       +
               Group = "nylon";

     

       122
       +
               WorkingDirectory = homeDir;

     

       123
       +
               ExecStart = "${pkgs.nylon}/bin/nylon -f -c ${configFile cfg}";

     

       124
       +
             };

     

       125
       +
           };

     

       126
       +
         };

     

       127
       +
       

     

       128
       +
         anyNylons = collect (p: p ? enable) cfg;

     

       129
       +
         enabledNylons = filter (p: p.enable == true) anyNylons;

     

       130
       +
         nylonUnits = map (nylon: mkNamedNylon nylon) enabledNylons;

     

       131
       +
       

     

       132
       +
       in

     

       133
       +
       

     

       134
       +
       {

     

       135
       +
       

     

       136
       +
         ###### interface

     

       137
       +
       

     

       138
       +
         options = {

     

       139
       +
       

     

       140
       +
           services.nylon = mkOption {

     

       141
       +
             default = {};

     

       142
       +
             description = "Collection of named nylon instances";

     

       143
       +
             type = with types; loaOf (submodule nylonOpts);

     

       144
       +
             internal = true;

     

       145
       +
             options = [ nylonOpts ];

     

       146
       +
           };

     

       147
       +
       

     

       148
        
         };

     

       149
        
       

     

       150
        
         ###### implementation

     

       151
        
       

     

       152
       +
         config = mkIf (length(enabledNylons) > 0) {

     

       153
        
       

     

       154
       +
           users.extraUsers.nylon = {

     

       155
        
             group = "nylon";

     

       156
        
             description = "Nylon SOCKS Proxy";

     

       157
        
             home = homeDir;

     
···

       161
        
       

     

       162
        
           users.extraGroups.nylon.gid = config.ids.gids.nylon;

     

       163
        
       

     

       164
       +
           systemd.services = fold (a: b: a // b) {} nylonUnits;

     

       165
       +
       

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       166
        
         };

     

       167
        
       }