aboutsummaryrefslogtreecommitdiff
path: root/nixpkgs/nixos/modules/services/networking/monero.nix
diff options
context:
space:
mode:
Diffstat (limited to 'nixpkgs/nixos/modules/services/networking/monero.nix')
-rw-r--r--nixpkgs/nixos/modules/services/networking/monero.nix238
1 files changed, 238 insertions, 0 deletions
diff --git a/nixpkgs/nixos/modules/services/networking/monero.nix b/nixpkgs/nixos/modules/services/networking/monero.nix
new file mode 100644
index 00000000000..97af2997839
--- /dev/null
+++ b/nixpkgs/nixos/modules/services/networking/monero.nix
@@ -0,0 +1,238 @@
+{ config, lib, pkgs, ... }:
+
+with lib;
+
+let
+ cfg = config.services.monero;
+ dataDir = "/var/lib/monero";
+
+ listToConf = option: list:
+ concatMapStrings (value: "${option}=${value}\n") list;
+
+ login = (cfg.rpc.user != null && cfg.rpc.password != null);
+
+ configFile = with cfg; pkgs.writeText "monero.conf" ''
+ log-file=/dev/stdout
+ data-dir=${dataDir}
+
+ ${optionalString mining.enable ''
+ start-mining=${mining.address}
+ mining-threads=${toString mining.threads}
+ ''}
+
+ rpc-bind-ip=${rpc.address}
+ rpc-bind-port=${toString rpc.port}
+ ${optionalString login ''
+ rpc-login=${rpc.user}:${rpc.password}
+ ''}
+ ${optionalString rpc.restricted ''
+ restricted-rpc=1
+ ''}
+
+ limit-rate-up=${toString limits.upload}
+ limit-rate-down=${toString limits.download}
+ max-concurrency=${toString limits.threads}
+ block-sync-size=${toString limits.syncSize}
+
+ ${listToConf "add-peer" extraNodes}
+ ${listToConf "add-priority-node" priorityNodes}
+ ${listToConf "add-exclusive-node" exclusiveNodes}
+
+ ${extraConfig}
+ '';
+
+in
+
+{
+
+ ###### interface
+
+ options = {
+
+ services.monero = {
+
+ enable = mkEnableOption "Monero node daemon";
+
+ mining.enable = mkOption {
+ type = types.bool;
+ default = false;
+ description = ''
+ Whether to mine moneroj.
+ '';
+ };
+
+ mining.address = mkOption {
+ type = types.str;
+ default = "";
+ description = ''
+ Monero address where to send mining rewards.
+ '';
+ };
+
+ mining.threads = mkOption {
+ type = types.addCheck types.int (x: x>=0);
+ default = 0;
+ description = ''
+ Number of threads used for mining.
+ Set to <literal>0</literal> to use all available.
+ '';
+ };
+
+ rpc.user = mkOption {
+ type = types.nullOr types.str;
+ default = null;
+ description = ''
+ User name for RPC connections.
+ '';
+ };
+
+ rpc.password = mkOption {
+ type = types.str;
+ default = null;
+ description = ''
+ Password for RPC connections.
+ '';
+ };
+
+ rpc.address = mkOption {
+ type = types.str;
+ default = "127.0.0.1";
+ description = ''
+ IP address the RPC server will bind to.
+ '';
+ };
+
+ rpc.port = mkOption {
+ type = types.int;
+ default = 18081;
+ description = ''
+ Port the RPC server will bind to.
+ '';
+ };
+
+ rpc.restricted = mkOption {
+ type = types.bool;
+ default = false;
+ description = ''
+ Whether to restrict RPC to view only commands.
+ '';
+ };
+
+ limits.upload = mkOption {
+ type = types.addCheck types.int (x: x>=-1);
+ default = -1;
+ description = ''
+ Limit of the upload rate in kB/s.
+ Set to <literal>-1</literal> to leave unlimited.
+ '';
+ };
+
+ limits.download = mkOption {
+ type = types.addCheck types.int (x: x>=-1);
+ default = -1;
+ description = ''
+ Limit of the download rate in kB/s.
+ Set to <literal>-1</literal> to leave unlimited.
+ '';
+ };
+
+ limits.threads = mkOption {
+ type = types.addCheck types.int (x: x>=0);
+ default = 0;
+ description = ''
+ Maximum number of threads used for a parallel job.
+ Set to <literal>0</literal> to leave unlimited.
+ '';
+ };
+
+ limits.syncSize = mkOption {
+ type = types.addCheck types.int (x: x>=0);
+ default = 0;
+ description = ''
+ Maximum number of blocks to sync at once.
+ Set to <literal>0</literal> for adaptive.
+ '';
+ };
+
+ extraNodes = mkOption {
+ type = types.listOf types.str;
+ default = [ ];
+ description = ''
+ List of additional peer IP addresses to add to the local list.
+ '';
+ };
+
+ priorityNodes = mkOption {
+ type = types.listOf types.str;
+ default = [ ];
+ description = ''
+ List of peer IP addresses to connect to and
+ attempt to keep the connection open.
+ '';
+ };
+
+ exclusiveNodes = mkOption {
+ type = types.listOf types.str;
+ default = [ ];
+ description = ''
+ List of peer IP addresses to connect to *only*.
+ If given the other peer options will be ignored.
+ '';
+ };
+
+ extraConfig = mkOption {
+ type = types.lines;
+ default = "";
+ description = ''
+ Extra lines to be added verbatim to monerod configuration.
+ '';
+ };
+
+ };
+
+ };
+
+
+ ###### implementation
+
+ config = mkIf cfg.enable {
+
+ users.users.monero = {
+ uid = config.ids.uids.monero;
+ description = "Monero daemon user";
+ home = dataDir;
+ createHome = true;
+ };
+
+ users.groups.monero = {
+ gid = config.ids.gids.monero;
+ };
+
+ systemd.services.monero = {
+ description = "monero daemon";
+ after = [ "network.target" ];
+ wantedBy = [ "multi-user.target" ];
+
+ serviceConfig = {
+ User = "monero";
+ Group = "monero";
+ ExecStart = "${pkgs.monero}/bin/monerod --config-file=${configFile} --non-interactive";
+ Restart = "always";
+ SuccessExitStatus = [ 0 1 ];
+ };
+ };
+
+ assertions = singleton {
+ assertion = cfg.mining.enable -> cfg.mining.address != "";
+ message = ''
+ You need a Monero address to receive mining rewards:
+ specify one using option monero.mining.address.
+ '';
+ };
+
+ };
+
+ meta.maintainers = with lib.maintainers; [ rnhmjoj ];
+
+}
+
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-01 03:10:36 +0000