+6

maintainers/maintainer-list.nix

··· 9158 9158 githubId = 1387224; 9159 9159 name = "Richard Szibele"; 9160 9160 }; 9161 9161 + rsynnest = { 9162 9162 + email = "contact@rsynnest.com"; 9163 9163 + github = "rsynnest"; 9164 9164 + githubId = 4392850; 9165 9165 + name = "Roland Synnestvedt"; 9166 9166 + }; 9161 9167 rtburns-jpl = { 9162 9168 email = "rtburns@jpl.nasa.gov"; 9163 9169 github = "rtburns-jpl";

+1

nixos/modules/module-list.nix

··· 848 848 ./services/networking/ucarp.nix 849 849 ./services/networking/unbound.nix 850 850 ./services/networking/unifi.nix 851 851 + ./services/video/unifi-video.nix 851 852 ./services/networking/v2ray.nix 852 853 ./services/networking/vsftpd.nix 853 854 ./services/networking/wakeonlan.nix

+265

nixos/modules/services/video/unifi-video.nix

··· 1 1 + { config, lib, pkgs, utils, ... }: 2 2 + with lib; 3 3 + let 4 4 + cfg = config.services.unifi-video; 5 5 + mainClass = "com.ubnt.airvision.Main"; 6 6 + cmd = '' 7 7 + ${pkgs.jsvc}/bin/jsvc \ 8 8 + -cwd ${stateDir} \ 9 9 + -debug \ 10 10 + -verbose:class \ 11 11 + -nodetach \ 12 12 + -user unifi-video \ 13 13 + -home ${cfg.jrePackage}/lib/openjdk \ 14 14 + -cp ${pkgs.commonsDaemon}/share/java/commons-daemon-1.2.4.jar:${stateDir}/lib/airvision.jar \ 15 15 + -pidfile ${cfg.pidFile} \ 16 16 + -procname unifi-video \ 17 17 + -Djava.security.egd=file:/dev/./urandom \ 18 18 + -Xmx${cfg.maximumJavaHeapSize}M \ 19 19 + -Xss512K \ 20 20 + -XX:+UseG1GC \ 21 21 + -XX:+UseStringDeduplication \ 22 22 + -XX:MaxMetaspaceSize=768M \ 23 23 + -Djava.library.path=${stateDir}/lib \ 24 24 + -Djava.awt.headless=true \ 25 25 + -Djavax.net.ssl.trustStore=${stateDir}/etc/ufv-truststore \ 26 26 + -Dfile.encoding=UTF-8 \ 27 27 + -Dav.tempdir=/var/cache/unifi-video 28 28 + ''; 29 29 + 30 30 + mongoConf = pkgs.writeTextFile { 31 31 + name = "mongo.conf"; 32 32 + executable = false; 33 33 + text = '' 34 34 + # for documentation of all options, see http://docs.mongodb.org/manual/reference/configuration-options/ 35 35 + 36 36 + storage: 37 37 + dbPath: ${cfg.dataDir}/db 38 38 + journal: 39 39 + enabled: true 40 40 + syncPeriodSecs: 60 41 41 + 42 42 + systemLog: 43 43 + destination: file 44 44 + logAppend: true 45 45 + path: ${stateDir}/logs/mongod.log 46 46 + 47 47 + net: 48 48 + port: 7441 49 49 + bindIp: 127.0.0.1 50 50 + http: 51 51 + enabled: false 52 52 + 53 53 + operationProfiling: 54 54 + slowOpThresholdMs: 500 55 55 + mode: off 56 56 + ''; 57 57 + }; 58 58 + 59 59 + 60 60 + mongoWtConf = pkgs.writeTextFile { 61 61 + name = "mongowt.conf"; 62 62 + executable = false; 63 63 + text = '' 64 64 + # for documentation of all options, see: 65 65 + # http://docs.mongodb.org/manual/reference/configuration-options/ 66 66 + 67 67 + storage: 68 68 + dbPath: ${cfg.dataDir}/db-wt 69 69 + journal: 70 70 + enabled: true 71 71 + wiredTiger: 72 72 + engineConfig: 73 73 + cacheSizeGB: 1 74 74 + 75 75 + systemLog: 76 76 + destination: file 77 77 + logAppend: true 78 78 + path: logs/mongod.log 79 79 + 80 80 + net: 81 81 + port: 7441 82 82 + bindIp: 127.0.0.1 83 83 + 84 84 + operationProfiling: 85 85 + slowOpThresholdMs: 500 86 86 + mode: off 87 87 + ''; 88 88 + }; 89 89 + 90 90 + stateDir = "/var/lib/unifi-video"; 91 91 + 92 92 + in 93 93 + { 94 94 + 95 95 + options.services.unifi-video = { 96 96 + enable = mkOption { 97 97 + type = types.bool; 98 98 + default = false; 99 99 + description = '' 100 100 + Whether or not to enable the unifi-video service. 101 101 + ''; 102 102 + }; 103 103 + 104 104 + jrePackage = mkOption { 105 105 + type = types.package; 106 106 + default = pkgs.jre8; 107 107 + defaultText = "pkgs.jre8"; 108 108 + description = '' 109 109 + The JRE package to use. Check the release notes to ensure it is supported. 110 110 + ''; 111 111 + }; 112 112 + 113 113 + unifiVideoPackage = mkOption { 114 114 + type = types.package; 115 115 + default = pkgs.unifi-video; 116 116 + defaultText = "pkgs.unifi-video"; 117 117 + description = '' 118 118 + The unifi-video package to use. 119 119 + ''; 120 120 + }; 121 121 + 122 122 + mongodbPackage = mkOption { 123 123 + type = types.package; 124 124 + default = pkgs.mongodb-4_0; 125 125 + defaultText = "pkgs.mongodb"; 126 126 + description = '' 127 127 + The mongodb package to use. 128 128 + ''; 129 129 + }; 130 130 + 131 131 + logDir = mkOption { 132 132 + type = types.str; 133 133 + default = "${stateDir}/logs"; 134 134 + description = '' 135 135 + Where to store the logs. 136 136 + ''; 137 137 + }; 138 138 + 139 139 + dataDir = mkOption { 140 140 + type = types.str; 141 141 + default = "${stateDir}/data"; 142 142 + description = '' 143 143 + Where to store the database and other data. 144 144 + ''; 145 145 + }; 146 146 + 147 147 + openPorts = mkOption { 148 148 + type = types.bool; 149 149 + default = true; 150 150 + description = '' 151 151 + Whether or not to open the required ports on the firewall. 152 152 + ''; 153 153 + }; 154 154 + 155 155 + maximumJavaHeapSize = mkOption { 156 156 + type = types.nullOr types.int; 157 157 + default = 1024; 158 158 + example = 4096; 159 159 + description = '' 160 160 + Set the maximimum heap size for the JVM in MB. 161 161 + ''; 162 162 + }; 163 163 + 164 164 + pidFile = mkOption { 165 165 + type = types.path; 166 166 + default = "${cfg.dataDir}/unifi-video.pid"; 167 167 + description = "Location of unifi-video pid file."; 168 168 + }; 169 169 + 170 170 + }; 171 171 + 172 172 + config = mkIf cfg.enable { 173 173 + users = { 174 174 + users.unifi-video = { 175 175 + description = "UniFi Video controller daemon user"; 176 176 + home = stateDir; 177 177 + group = "unifi-video"; 178 178 + isSystemUser = true; 179 179 + }; 180 180 + groups.unifi-video = {}; 181 181 + }; 182 182 + 183 183 + networking.firewall = mkIf cfg.openPorts { 184 184 + # https://help.ui.com/hc/en-us/articles/217875218-UniFi-Video-Ports-Used 185 185 + allowedTCPPorts = [ 186 186 + 7080 # HTTP portal 187 187 + 7443 # HTTPS portal 188 188 + 7445 # Video over HTTP (mobile app) 189 189 + 7446 # Video over HTTPS (mobile app) 190 190 + 7447 # RTSP via the controller 191 191 + 7442 # Camera management from cameras to NVR over WAN 192 192 + ]; 193 193 + allowedUDPPorts = [ 194 194 + 6666 # Inbound camera streams sent over WAN 195 195 + ]; 196 196 + }; 197 197 + 198 198 + systemd.tmpfiles.rules = [ 199 199 + "d '${stateDir}' 0700 unifi-video unifi-video - -" 200 200 + "d '/var/cache/unifi-video' 0700 unifi-video unifi-video - -" 201 201 + 202 202 + "d '${stateDir}/logs' 0700 unifi-video unifi-video - -" 203 203 + "C '${stateDir}/etc' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/etc" 204 204 + "C '${stateDir}/webapps' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/webapps" 205 205 + "C '${stateDir}/email' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/email" 206 206 + "C '${stateDir}/fw' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/fw" 207 207 + "C '${stateDir}/lib' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/lib" 208 208 + 209 209 + "d '${stateDir}/data' 0700 unifi-video unifi-video - -" 210 210 + "d '${stateDir}/data/db' 0700 unifi-video unifi-video - -" 211 211 + "C '${stateDir}/data/system.properties' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/etc/system.properties" 212 212 + 213 213 + "d '${stateDir}/bin' 0700 unifi-video unifi-video - -" 214 214 + "f '${stateDir}/bin/evostreamms' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/bin/evostreamms" 215 215 + "f '${stateDir}/bin/libavcodec.so.54' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/bin/libavcodec.so.54" 216 216 + "f '${stateDir}/bin/libavformat.so.54' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/bin/libavformat.so.54" 217 217 + "f '${stateDir}/bin/libavutil.so.52' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/bin/libavutil.so.52" 218 218 + "f '${stateDir}/bin/ubnt.avtool' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/bin/ubnt.avtool" 219 219 + "f '${stateDir}/bin/ubnt.updater' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/bin/ubnt.updater" 220 220 + "C '${stateDir}/bin/mongo' 0700 unifi-video unifi-video - ${cfg.mongodbPackage}/bin/mongo" 221 221 + "C '${stateDir}/bin/mongod' 0700 unifi-video unifi-video - ${cfg.mongodbPackage}/bin/mongod" 222 222 + "C '${stateDir}/bin/mongoperf' 0700 unifi-video unifi-video - ${cfg.mongodbPackage}/bin/mongoperf" 223 223 + "C '${stateDir}/bin/mongos' 0700 unifi-video unifi-video - ${cfg.mongodbPackage}/bin/mongos" 224 224 + 225 225 + "d '${stateDir}/conf' 0700 unifi-video unifi-video - -" 226 226 + "C '${stateDir}/conf/evostream' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/conf/evostream" 227 227 + "Z '${stateDir}/conf/evostream' 0700 unifi-video unifi-video - -" 228 228 + "L+ '${stateDir}/conf/mongodv3.0+.conf' 0700 unifi-video unifi-video - ${mongoConf}" 229 229 + "L+ '${stateDir}/conf/mongodv3.6+.conf' 0700 unifi-video unifi-video - ${mongoConf}" 230 230 + "L+ '${stateDir}/conf/mongod-wt.conf' 0700 unifi-video unifi-video - ${mongoWtConf}" 231 231 + "L+ '${stateDir}/conf/catalina.policy' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/conf/catalina.policy" 232 232 + "L+ '${stateDir}/conf/catalina.properties' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/conf/catalina.properties" 233 233 + "L+ '${stateDir}/conf/context.xml' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/conf/context.xml" 234 234 + "L+ '${stateDir}/conf/logging.properties' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/conf/logging.properties" 235 235 + "L+ '${stateDir}/conf/server.xml' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/conf/server.xml" 236 236 + "L+ '${stateDir}/conf/tomcat-users.xml' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/conf/tomcat-users.xml" 237 237 + "L+ '${stateDir}/conf/web.xml' 0700 unifi-video unifi-video - ${pkgs.unifi-video}/lib/unifi-video/conf/web.xml" 238 238 + 239 239 + ]; 240 240 + 241 241 + systemd.services.unifi-video = { 242 242 + description = "UniFi Video NVR daemon"; 243 243 + wantedBy = [ "multi-user.target" ]; 244 244 + after = [ "network.target" ] ; 245 245 + unitConfig.RequiresMountsFor = stateDir; 246 246 + # Make sure package upgrades trigger a service restart 247 247 + restartTriggers = [ cfg.unifiVideoPackage cfg.mongodbPackage ]; 248 248 + path = with pkgs; [ gawk coreutils busybox which jre8 lsb-release libcap util-linux ]; 249 249 + serviceConfig = { 250 250 + Type = "simple"; 251 251 + ExecStart = "${(removeSuffix "\n" cmd)} ${mainClass} start"; 252 252 + ExecStop = "${(removeSuffix "\n" cmd)} stop ${mainClass} stop"; 253 253 + Restart = "on-failure"; 254 254 + UMask = "0077"; 255 255 + User = "unifi-video"; 256 256 + WorkingDirectory = "${stateDir}"; 257 257 + }; 258 258 + }; 259 259 + 260 260 + }; 261 261 + 262 262 + meta = { 263 263 + maintainers = with lib.maintainers; [ rsynnest ]; 264 264 + }; 265 265 + }

+25

pkgs/development/libraries/java/commons/daemon/default.nix

··· 1 1 + { lib, stdenv, fetchurl }: 2 2 + 3 3 + stdenv.mkDerivation rec { 4 4 + version = "1.2.4"; 5 5 + pname = "commons-daemon"; 6 6 + 7 7 + src = fetchurl { 8 8 + url = "mirror://apache/commons/daemon/binaries/commons-daemon-${version}-bin.tar.gz"; 9 9 + sha256 = "0bsy4xn3gncgrxj3vkpplvyhx06c1470kycj0j5gwq46ylgady9s"; 10 10 + }; 11 11 + 12 12 + installPhase = '' 13 13 + tar xf ${src} 14 14 + mkdir -p $out/share/java 15 15 + cp *.jar $out/share/java/ 16 16 + ''; 17 17 + 18 18 + meta = { 19 19 + homepage = "https://commons.apache.org/proper/commons-daemon"; 20 20 + description = "Apache Commons Daemon software is a set of utilities and Java support classes for running Java applications as server processes."; 21 21 + maintainers = with lib.maintainers; [ rsynnest ]; 22 22 + license = lib.licenses.asl20; 23 23 + platforms = with lib.platforms; unix; 24 24 + }; 25 25 + }

+61

pkgs/servers/unifi-video/default.nix

··· 1 1 + { dpkg 2 2 + , stdenv 3 3 + , lib 4 4 + , fetchurl 5 5 + , jre8 6 6 + , jsvc 7 7 + , lsb-release 8 8 + , libcap 9 9 + , util-linux 10 10 + , makeWrapper 11 11 + , autoPatchelfHook 12 12 + , glibc 13 13 + , gcc-unwrapped 14 14 + }: 15 15 + 16 16 + stdenv.mkDerivation rec { 17 17 + pname = "unifi-video"; 18 18 + version = "3.10.13"; 19 19 + src = fetchurl { 20 20 + urls = [ "https://dl.ui.com/firmwares/ufv/v${version}/unifi-video.Debian9_amd64.v${version}.deb" "https://archive.org/download/unifi-video.Debian9_amd64.v${version}/unifi-video.Debian9_amd64.v${version}.deb" ]; 21 21 + sha256 = "06mxjdizs4mhm1by8kj4pg5hhdi8ns6x75ggwyp1k6zb26jvvdny"; 22 22 + }; 23 23 + 24 24 + buildInputs = [ jre8 jsvc lsb-release libcap util-linux ]; 25 25 + nativeBuildInputs = [ dpkg makeWrapper autoPatchelfHook glibc gcc-unwrapped ]; 26 26 + 27 27 + unpackCmd = '' 28 28 + runHook preUnpack 29 29 + 30 30 + dpkg-deb -x $src . 31 31 + rm -r etc 32 32 + 33 33 + runHook postUnpack 34 34 + ''; 35 35 + 36 36 + installPhase = '' 37 37 + runHook preInstall 38 38 + 39 39 + mkdir -p $out 40 40 + cp -ar sbin $out/bin 41 41 + cp -ar lib share $out 42 42 + chmod +x $out/bin/* 43 43 + wrapProgram $out/bin/unifi-video --set JAVA_HOME "${jre8}" --prefix PATH : ${lib.makeBinPath [ jre8 lsb-release libcap util-linux]} 44 44 + 45 45 + runHook postInstall 46 46 + ''; 47 47 + 48 48 + meta = with lib; { 49 49 + description = "Unifi Video NVR (aka Airvision) is a software package for controlling Unifi cameras"; 50 50 + longDescription = '' 51 51 + Unifi Video is the NVR server software which can monitor and 52 52 + record footage from supported Unifi video cameras 53 53 + ''; 54 54 + homepage = "https://www.ui.com"; 55 55 + downloadPage = "https://www.ui.com/download/unifi-video/"; 56 56 + license = licenses.unfree; 57 57 + maintainers = [ maintainers.rsynnest ]; 58 58 + platforms = [ "x86_64-linux" ]; 59 59 + knownVulnerabilities = [ "Upstream support for Unifi Video ended January 1st, 2021." ]; 60 60 + }; 61 61 + }

+40

pkgs/tools/system/jsvc/default.nix

··· 1 1 + { lib, stdenv, fetchurl, commonsDaemon, jdk, makeWrapper, jre }: 2 2 + 3 3 + stdenv.mkDerivation rec { 4 4 + pname = "jsvc"; 5 5 + version = "1.2.4"; 6 6 + 7 7 + src = fetchurl { 8 8 + url = "https://downloads.apache.org//commons/daemon/source/commons-daemon-${version}-src.tar.gz"; 9 9 + sha256 = "1nrr6ggy6h20r9zyv14vx6vc9p1w6l8fl9fn6i8dx2hrq6kk2bjw"; 10 10 + }; 11 11 + 12 12 + buildInputs = [ commonsDaemon ]; 13 13 + nativeBuildInputs = [ jdk makeWrapper ]; 14 14 + 15 15 + preConfigure = '' 16 16 + cd ./src/native/unix/ 17 17 + sh ./support/buildconf.sh 18 18 + ''; 19 19 + 20 20 + preBuild = '' 21 21 + export JAVA_HOME=${jre} 22 22 + ''; 23 23 + 24 24 + installPhase = '' 25 25 + runHook preInstall 26 26 + mkdir -p $out/bin 27 27 + cp jsvc $out/bin/jsvc 28 28 + chmod +x $out/bin/jsvc 29 29 + wrapProgram $out/bin/jsvc --set JAVA_HOME "${jre}" 30 30 + runHook postInstall 31 31 + ''; 32 32 + 33 33 + meta = { 34 34 + homepage = "https://commons.apache.org/proper/commons-daemon"; 35 35 + description = "JSVC is part of the Apache Commons Daemon software, a set of utilities and Java support classes for running Java applications as server processes."; 36 36 + maintainers = with lib.maintainers; [ rsynnest ]; 37 37 + license = lib.licenses.asl20; 38 38 + platforms = with lib.platforms; unix; 39 39 + }; 40 40 + }

+6

pkgs/top-level/all-packages.nix

··· 6105 6105 6106 6106 jnettop = callPackage ../tools/networking/jnettop { }; 6107 6107 6108 6108 + jsvc = callPackage ../tools/system/jsvc { }; 6109 6109 + 6108 6110 jumpnbump = callPackage ../games/jumpnbump { }; 6109 6111 6110 6112 junkie = callPackage ../tools/networking/junkie { }; ··· 19031 19033 19032 19034 commonsCompress = callPackage ../development/libraries/java/commons/compress { }; 19033 19035 19036 19036 + commonsDaemon = callPackage ../development/libraries/java/commons/daemon { }; 19037 19037 + 19034 19038 commonsFileUpload = callPackage ../development/libraries/java/commons/fileupload { }; 19035 19039 19036 19040 commonsLang = callPackage ../development/libraries/java/commons/lang { }; ··· 20273 20277 unifi5 20274 20278 unifi6; 20275 20279 unifi = unifi6; 20280 20280 + 20281 20281 + unifi-video = callPackage ../servers/unifi-video { }; 20276 20282 20277 20283 unpackerr = callPackage ../servers/unpackerr { 20278 20284 inherit (darwin.apple_sdk.frameworks) Cocoa WebKit;