0447c5bacb
These scripts previously failed when called with syscalls like `execve` (used by, e.g., Python's `subprocess.run`) that use no default interpreter for scripts without a shebang.
50 lines
1.5 KiB
Nix
50 lines
1.5 KiB
Nix
{ config, pkgs, lib, ... }:
|
|
|
|
with lib;
|
|
{
|
|
options = {
|
|
nix-bitcoin = {
|
|
pkgs = mkOption {
|
|
type = types.attrs;
|
|
default = (import ../pkgs { inherit pkgs; }).modulesPkgs;
|
|
defaultText = "nix-bitcoin/pkgs.modulesPkgs";
|
|
};
|
|
|
|
lib = mkOption {
|
|
readOnly = true;
|
|
default = import ../pkgs/lib.nix lib pkgs config;
|
|
defaultText = "nix-bitcoin/pkgs/lib.nix";
|
|
};
|
|
|
|
torClientAddressWithPort = mkOption {
|
|
readOnly = true;
|
|
default = with config.services.tor.client.socksListenAddress;
|
|
"${addr}:${toString port}";
|
|
defaultText = "(See source)";
|
|
};
|
|
|
|
# Torify binary that works with custom Tor SOCKS addresses
|
|
# Related issue: https://github.com/NixOS/nixpkgs/issues/94236
|
|
torify = mkOption {
|
|
readOnly = true;
|
|
default = pkgs.writers.writeBashBin "torify" ''
|
|
${pkgs.tor}/bin/torify \
|
|
--address ${config.services.tor.client.socksListenAddress.addr} \
|
|
"$@"
|
|
'';
|
|
defaultText = "(See source)";
|
|
};
|
|
|
|
# A helper for using doas instead of sudo when doas is enabled
|
|
runAsUserCmd = mkOption {
|
|
readOnly = true;
|
|
default = if config.security.doas.enable
|
|
# TODO-EXTERNAL: Use absolute path until https://github.com/NixOS/nixpkgs/pull/133622 is available.
|
|
then "/run/wrappers/bin/doas -u"
|
|
else "sudo -u";
|
|
defaultText = "(See source)";
|
|
};
|
|
};
|
|
};
|
|
}
|