nixpkgs/nixos/modules/services/hardware/sane.nix

{ config, lib, pkgs, ... }:

with lib;

let

  pkg = if config.hardware.sane.snapshot
    then pkgs.sane-backends-git
    else pkgs.sane-backends;

  sanedConf = pkgs.writeTextFile {
    name = "saned.conf";
    destination = "/etc/sane.d/saned.conf";
    text = ''
      localhost
      ${config.services.saned.extraConfig}
    '';
  };

  netConf = pkgs.writeTextFile {
    name = "net.conf";
    destination = "/etc/sane.d/net.conf";
    text = ''
      ${lib.optionalString config.services.saned.enable "localhost"}
      ${config.hardware.sane.netConf}
    '';
  };

  env = {
    SANE_CONFIG_DIR = config.hardware.sane.configDir;
    LD_LIBRARY_PATH = [ "${saneConfig}/lib/sane" ];
  };

  backends = [ pkg netConf ] ++ optional config.services.saned.enable sanedConf ++ config.hardware.sane.extraBackends;
  saneConfig = pkgs.mkSaneConfig { paths = backends; };

  enabled = config.hardware.sane.enable || config.services.saned.enable;

in

{

  ###### interface

  options = {

    hardware.sane.enable = mkOption {
      type = types.bool;
      default = false;
      description = ''
        Enable support for SANE scanners.

        <note><para>
          Users in the "scanner" group will gain access to the scanner, or the "lp" group if it's also a printer.
        </para></note>
      '';
    };

    hardware.sane.snapshot = mkOption {
      type = types.bool;
      default = false;
      description = "Use a development snapshot of SANE scanner drivers.";
    };

    hardware.sane.extraBackends = mkOption {
      type = types.listOf types.path;
      default = [];
      description = ''
        Packages providing extra SANE backends to enable.

        <note><para>
          The example contains the package for HP scanners.
        </para></note>
      '';
      example = literalExample "[ pkgs.hplipWithPlugin ]";
    };

    hardware.sane.configDir = mkOption {
      type = types.string;
      internal = true;
      description = "The value of SANE_CONFIG_DIR.";
    };

    hardware.sane.netConf = mkOption {
      type = types.lines;
      default = "";
      example = "192.168.0.16";
      description = ''
        Network hosts that should be probed for remote scanners.
      '';
    };

    services.saned.enable = mkOption {
      type = types.bool;
      default = false;
      description = ''
        Enable saned network daemon for remote connection to scanners.

        saned would be runned from <literal>scanner</literal> user; to allow
        access to hardware that doesn't have <literal>scanner</literal> group
        you should add needed groups to this user.
      '';
    };

    services.saned.extraConfig = mkOption {
      type = types.lines;
      default = "";
      example = "192.168.0.0/24";
      description = ''
        Extra saned configuration lines.
      '';
    };

  };


  ###### implementation

  config = mkMerge [
    (mkIf enabled {
      hardware.sane.configDir = mkDefault "${saneConfig}/etc/sane.d";

      environment.systemPackages = backends;
      environment.sessionVariables = env;
      services.udev.packages = backends;

      users.groups."scanner".gid = config.ids.gids.scanner;
    })

    (mkIf config.services.saned.enable {
      networking.firewall.connectionTrackingModules = [ "sane" ];

      systemd.services."saned@" = {
        description = "Scanner Service";
        environment = mapAttrs (name: val: toString val) env;
        serviceConfig = {
          User = "scanner";
          Group = "scanner";
          ExecStart = "${pkg}/bin/saned";
        };
      };

      systemd.sockets.saned = {
        description = "saned incoming socket";
        wantedBy = [ "sockets.target" ];
        listenStreams = [ "0.0.0.0:6566" "[::]:6566" ];
        socketConfig = {
          # saned needs to distinguish between IPv4 and IPv6 to open matching data sockets.
          BindIPv6Only = "ipv6-only";
          Accept = true;
          MaxConnections = 1;
        };
      };

      users.users."scanner" = {
        uid = config.ids.uids.scanner;
        group = "scanner";
      };
    })
  ];

}
Rewrite ‘with pkgs.lib’ -> ‘with lib’ Using pkgs.lib on the spine of module evaluation is problematic because the pkgs argument depends on the result of module evaluation. To prevent an infinite recursion, pkgs and some of the modules are evaluated twice, which is inefficient. Using ‘with lib’ prevents this problem. 2014-04-14 16:26:48 +02:00			`{ config, lib, pkgs, ... }:`
Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00
Rewrite ‘with pkgs.lib’ -> ‘with lib’ Using pkgs.lib on the spine of module evaluation is problematic because the pkgs argument depends on the result of module evaluation. To prevent an infinite recursion, pkgs and some of the modules are evaluated twice, which is inefficient. Using ‘with lib’ prevents this problem. 2014-04-14 16:26:48 +02:00			`with lib;`
Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00
Add lots of missing option types 2013-10-30 17:37:45 +01:00			`let`

saneBackends{,Git} -> sane-backends{,-git} Fixes xsane evaluation. 2016-01-03 03:31:38 +01:00			`pkg = if config.hardware.sane.snapshot`
			`then pkgs.sane-backends-git`
			`else pkgs.sane-backends;`
sane service: add saned support 2016-11-11 03:49:02 +03:00
			`sanedConf = pkgs.writeTextFile {`
			`name = "saned.conf";`
			`destination = "/etc/sane.d/saned.conf";`
			`text = ''`
			`localhost`
			`${config.services.saned.extraConfig}`
			`'';`
			`};`

sane service: support remote scanners 2016-11-11 04:12:04 +03:00			`netConf = pkgs.writeTextFile {`
			`name = "net.conf";`
			`destination = "/etc/sane.d/net.conf";`
			`text = ''`
			`${lib.optionalString config.services.saned.enable "localhost"}`
			`${config.hardware.sane.netConf}`
			`'';`
			`};`

sane service: add saned support 2016-11-11 03:49:02 +03:00			`env = {`
			`SANE_CONFIG_DIR = config.hardware.sane.configDir;`
			`LD_LIBRARY_PATH = [ "${saneConfig}/lib/sane" ];`
			`};`

sane service: support remote scanners 2016-11-11 04:12:04 +03:00			`backends = [ pkg netConf ] ++ optional config.services.saned.enable sanedConf ++ config.hardware.sane.extraBackends;`
sane: use mkSaneConfig to set system environment 2014-05-11 13:31:21 -05:00			`saneConfig = pkgs.mkSaneConfig { paths = backends; };`
Add lots of missing option types 2013-10-30 17:37:45 +01:00
sane service: add saned support 2016-11-11 03:49:02 +03:00			`enabled = config.hardware.sane.enable \|\| config.services.saned.enable;`

Add lots of missing option types 2013-10-30 17:37:45 +01:00			`in`

Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00			`{`

			`###### interface`

			`options = {`

			`hardware.sane.enable = mkOption {`
Add lots of missing option types 2013-10-30 17:37:45 +01:00			`type = types.bool;`
Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00			`default = false;`
sane module: add more documentation Imported from https://nixos.org/wiki/Scanners 2016-02-21 19:55:39 +00:00			`description = ''`
			`Enable support for SANE scanners.`

			`<note><para>`
sane service: mention the lp group for printer+scanners 2017-02-03 15:29:20 -02:00			`Users in the "scanner" group will gain access to the scanner, or the "lp" group if it's also a printer.`
sane module: add more documentation Imported from https://nixos.org/wiki/Scanners 2016-02-21 19:55:39 +00:00			`</para></note>`
			`'';`
Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00			`};`

			`hardware.sane.snapshot = mkOption {`
Add lots of missing option types 2013-10-30 17:37:45 +01:00			`type = types.bool;`
Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00			`default = false;`
			`description = "Use a development snapshot of SANE scanner drivers.";`
			`};`

sane: use mkSaneConfig to set system environment 2014-05-11 13:31:21 -05:00			`hardware.sane.extraBackends = mkOption {`
			`type = types.listOf types.path;`
			`default = [];`
sane module: add more documentation Imported from https://nixos.org/wiki/Scanners 2016-02-21 19:55:39 +00:00			`description = ''`
			`Packages providing extra SANE backends to enable.`

			`<note><para>`
			`The example contains the package for HP scanners.`
			`</para></note>`
			`'';`
			`example = literalExample "[ pkgs.hplipWithPlugin ]";`
sane: use mkSaneConfig to set system environment 2014-05-11 13:31:21 -05:00			`};`

nixos: Add option hardware.sane.configDir 2014-06-24 10:52:12 +02:00			`hardware.sane.configDir = mkOption {`
			`type = types.string;`
sane service: add saned support 2016-11-11 03:49:02 +03:00			`internal = true;`
nixos: Add option hardware.sane.configDir 2014-06-24 10:52:12 +02:00			`description = "The value of SANE_CONFIG_DIR.";`
			`};`

sane service: support remote scanners 2016-11-11 04:12:04 +03:00			`hardware.sane.netConf = mkOption {`
			`type = types.lines;`
			`default = "";`
			`example = "192.168.0.16";`
			`description = ''`
			`Network hosts that should be probed for remote scanners.`
			`'';`
			`};`

sane service: add saned support 2016-11-11 03:49:02 +03:00			`services.saned.enable = mkOption {`
			`type = types.bool;`
			`default = false;`
			`description = ''`
			`Enable saned network daemon for remote connection to scanners.`
Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00
sane service: add saned support 2016-11-11 03:49:02 +03:00			`saned would be runned from <literal>scanner</literal> user; to allow`
			`access to hardware that doesn't have <literal>scanner</literal> group`
			`you should add needed groups to this user.`
			`'';`
			`};`
Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00
sane service: add saned support 2016-11-11 03:49:02 +03:00			`services.saned.extraConfig = mkOption {`
			`type = types.lines;`
			`default = "";`
			`example = "192.168.0.0/24";`
			`description = ''`
			`Extra saned configuration lines.`
			`'';`
			`};`
Add lots of missing option types 2013-10-30 17:37:45 +01:00
sane service: add saned support 2016-11-11 03:49:02 +03:00			`};`
Manual: Remove store path references 2015-09-24 11:42:32 +02:00
Add lots of missing option types 2013-10-30 17:37:45 +01:00
sane service: add saned support 2016-11-11 03:49:02 +03:00			`###### implementation`
Add lots of missing option types 2013-10-30 17:37:45 +01:00
sane service: add saned support 2016-11-11 03:49:02 +03:00			`config = mkMerge [`
			`(mkIf enabled {`
			`hardware.sane.configDir = mkDefault "${saneConfig}/etc/sane.d";`

			`environment.systemPackages = backends;`
			`environment.sessionVariables = env;`
			`services.udev.packages = backends;`

nixos/modules: users.(extraUsers\|extraGroup->users\|group) 2018-06-30 01:58:35 +02:00			`users.groups."scanner".gid = config.ids.gids.scanner;`
sane service: add saned support 2016-11-11 03:49:02 +03:00			`})`

			`(mkIf config.services.saned.enable {`
			`networking.firewall.connectionTrackingModules = [ "sane" ];`

			`systemd.services."saned@" = {`
			`description = "Scanner Service";`
			`environment = mapAttrs (name: val: toString val) env;`
			`serviceConfig = {`
			`User = "scanner";`
			`Group = "scanner";`
			`ExecStart = "${pkg}/bin/saned";`
			`};`
			`};`

			`systemd.sockets.saned = {`
			`description = "saned incoming socket";`
			`wantedBy = [ "sockets.target" ];`
			`listenStreams = [ "0.0.0.0:6566" "[::]:6566" ];`
			`socketConfig = {`
			`# saned needs to distinguish between IPv4 and IPv6 to open matching data sockets.`
			`BindIPv6Only = "ipv6-only";`
			`Accept = true;`
			`MaxConnections = 1;`
			`};`
			`};`

nixos/modules: users.(extraUsers\|extraGroup->users\|group) 2018-06-30 01:58:35 +02:00			`users.users."scanner" = {`
sane service: add saned support 2016-11-11 03:49:02 +03:00			`uid = config.ids.uids.scanner;`
			`group = "scanner";`
			`};`
			`})`
			`];`
Apply mornfall's SANE patches Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module svn path=/nixos/trunk/; revision=30764 2011-12-05 17:32:45 +00:00
			`}`