ryan
/
wirenix
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
release
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f78dc06eb1'
${ noResults }
wirenix/configurers/networkd.nix

54 lines
2.7 KiB
Nix
Raw Normal View History Unescape Escape

add license
1 year ago
/*
* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at https://mozilla.org/MPL/2.0/.
add networkd
1 year ago
*/
The big bugfix commit
1 year ago
{lib, ...}@inputs: keyProviders: intermediateConfig: localPeerName:
add networkd
1 year ago
with lib.trivial;
with lib.attrsets;
with lib.lists;
with lib;
with builtins;
with import ../lib.nix;
let
The big bugfix commit
1 year ago
thisPeer = intermediateConfig.peers."${localPeerName}";
add networkd
1 year ago
# these aren't really important, I just wanted to reverse the argument order
forEachAttr' = flip mapAttrs';
forEachAttrToList = flip mapAttrsToList;
The big bugfix commit
1 year ago
shortName = fqdn: head (strings.splitString "." fqdn);
add networkd
1 year ago
in
The big bugfix commit
1 year ago
with getKeyProviderFuncs keyProviders inputs intermediateConfig localPeerName;
add networkd
1 year ago
{
fix hosts file
1 year ago
networking.extraHosts = concatStringsSep "\n" (concatLists ( concatLists (forEachAttrToList thisPeer.subnetConnections (subnetName: subnetConnection:
Fixed manual ipv4 assignment issue
1 year ago
forEachAttrToList subnetConnection.peerConnections (remotePeerName: peerConnection: forEach peerConnection.ipAddresses (ip: "${cidr2ip ip} ${remotePeerName}.${subnetName}"))
fix hosts file
1 year ago
))));
add networkd
1 year ago
systemd.network = {
The big bugfix commit
1 year ago
netdevs = forEachAttr' thisPeer.subnetConnections (subnetName: subnetConnection: nameValuePair "50-${shortName subnetName}" {
add networkd
1 year ago
netdevConfig = {
Kind = "wireguard";
The big bugfix commit
1 year ago
Name = "${shortName subnetName}";
add networkd
1 year ago
};
wireguardConfig = {
ListenPort = subnetConnection.listenPort;
make tests better
1 year ago
# *PLEASE* do not use getPrivKeyfor anything but testing
PrivateKeyFile = getPrivKeyFile;
};
The big bugfix commit
1 year ago
wireguardPeers = forEachAttrToList subnetConnection.peerConnections (remotePeerName: peerConnection: {
add networkd
1 year ago
wireguardPeerConfig = {
Endpoint = "${peerConnection.endpoint.ip}:${builtins.toString peerConnection.endpoint.port}";
The big bugfix commit
1 year ago
PublicKey = getPeerPubKey remotePeerName;
Fixed manual ipv4 assignment issue
1 year ago
AllowedIPs = map (ip: cidr2ip ip + (if match ".*:.*" ip != null then "/128" else "/32")) peerConnection.ipAddresses;
add networkd
1 year ago
PresharedKeyFile = getSubnetPSKFile subnetName;
};
}
// (if peerConnection.endpoint ? persistentKeepalive then {PersistentKeepalive = peerConnection.endpoint.persistentKeepalive;} else {})
// (warnIf (peerConnection.endpoint ? dynamicEndpointRefreshSeconds) "dynamicEndpointRefreshSeconds not supported for networkd" {})
// (warnIf (peerConnection.endpoint ? dynamicEndpointRefreshRestartSeconds) "dynamicEndpointRefreshRestartSeconds not supported for networkd" {})
);
});
The big bugfix commit
1 year ago
networks = forEachAttr' thisPeer.subnetConnections (subnetName: subnetConnection: nameValuePair "50-${shortName subnetName}" {
matchConfig.Name = "${shortName subnetName}";
add networkd
1 year ago
address = subnetConnection.ipAddresses;
});
};
} // getProviderConfig