[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[PATCH] gnu: Add NFS related services.
From: |
John Darrington |
Subject: |
[PATCH] gnu: Add NFS related services. |
Date: |
Sun, 25 Sep 2016 10:21:57 +0200 |
Another draft for review ...
* gnu/services/nfs.scm (pipefs-service-type): New Variable,
(gss-service-type): New Variable, (idmap-service-type) New Variable.
---
doc/guix.texi | 98 ++++++++++++++++++++++++++++++++++--
gnu/services/nfs.scm | 138 +++++++++++++++++++++++++++++++++++++++++++++++++--
2 files changed, 230 insertions(+), 6 deletions(-)
diff --git a/doc/guix.texi b/doc/guix.texi
index 808fbdc..67bf3fb 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -219,6 +219,7 @@ Services
* Database Services:: SQL databases.
* Mail Services:: IMAP, POP3, SMTP, and all that.
* Web Services:: Web servers.
+* Network File System:: NFS related services.
* Miscellaneous Services:: Other services.
Defining Services
@@ -7587,6 +7588,7 @@ declaration.
* Database Services:: SQL databases.
* Mail Services:: IMAP, POP3, SMTP, and all that.
* Web Services:: Web servers.
+* Network File System:: NFS related services.
* Miscellaneous Services:: Other services.
@end menu
@@ -10166,14 +10168,21 @@ directories are created when the service is activated.
@end deffn
address@hidden Miscellaneous Services
address@hidden Miscellaneous Services
address@hidden Network File System
address@hidden Network File System
address@hidden NFS
+The @code{(gnu services nfs)} module provides the following services,
+which are most commonly used in relation to mounting or exporting NFS
+file systems.
@subsubheading RPC Bind Service
@cindex rpcbind
-The @code{(gnu services nfs)} module provides the following:
+The RPC Bind service provides a facility to map program numbers into
+universal addresses.
+Many NFS related services use this facility. Hence it is automatically
+started when a dependent service starts.
@defvr {Scheme Variable} rpcbind-service-type
A service type for the RPC portmapper daemon.
@@ -10194,6 +10203,89 @@ instance.
@end table
@end deftp
+
address@hidden Pipefs Pseudo File System
address@hidden pipefs
address@hidden rpc_pipefs
+
+The pipefs file system is used to transfer NFS related data
+between the kernel and user space programs.
+
address@hidden {Scheme Variable} pipefs-service-type
+A service type for the pipefs pseudo file system.
address@hidden defvr
+
address@hidden {Data Type} pipefs-configuration
+Data type representing the configuration of the pipefs pseudo file system
service.
+This type has the following parameters:
address@hidden @asis
address@hidden @code{mount-point} (default: @code{"/var/lib/nfs/rpc_pipefs"})
+The directory to which the file system is to be attached.
address@hidden table
address@hidden deftp
+
+
address@hidden GSS Daemon Service
address@hidden GSSD
address@hidden GSS
+
+The GSS daemon provides strong security for RPC based protocols.
+Before exchanging RPC requests an RPC client must establish a security
+context. Typically this is done using the Kerberos command @command{kinit}
+or automatically at login time using PAM services.
+
address@hidden {Scheme Variable} gss-service-type
+A service type for the Global Security System (GSS) daemon.
address@hidden defvr
+
address@hidden {Data Type} gss-configuration
+Data type representing the configuration of the GSS daemon service.
+This type has the following parameters:
address@hidden @asis
address@hidden @code{nfs-utils} (default: @code{nfs-utils})
+The package in which the @command{rpc.gssd} command is to be found.
+
address@hidden @code{pipefs-dir} (default: @code{"/var/lib/nfs/rpc_pipefs"})
+The directory where the pipefs file system is mounted.
+
address@hidden table
address@hidden deftp
+
+
address@hidden IDMAP Daemon Service
address@hidden idmapd
address@hidden name mapper
+
+The idmap daemon service provides mapping between user IDs and user names.
+Typically it is required in order to access file systems mounted via NFSv4.
+
address@hidden {Scheme Variable} idmap-service-type
+A service type for the Identity Mapper (IDMAP) daemon.
address@hidden defvr
+
address@hidden {Data Type} idmap-configuration
+Data type representing the configuration of the IDMAP daemon service.
+This type has the following parameters:
address@hidden @asis
address@hidden @code{nfs-utils} (default: @code{nfs-utils})
+The package in which the @command{rpc.idmapd} command is to be found.
+
address@hidden @code{pipefs-dir} (default: @code{"/var/lib/nfs/rpc_pipefs"})
+The directory where the pipefs file system is mounted.
+
address@hidden @code{domain} (default: @code{#f})
+The local NFSv4 domain name.
+This must be a string or @code{#f}.
+If it is @code{#f} then the daemon will use the host's fully qualified domain
name.
+
address@hidden table
address@hidden deftp
+
+
address@hidden Miscellaneous Services
address@hidden Miscellaneous Services
+
+
@cindex lirc
@subsubheading Lirc Service
diff --git a/gnu/services/nfs.scm b/gnu/services/nfs.scm
index 82713d8..e0905f5 100644
--- a/gnu/services/nfs.scm
+++ b/gnu/services/nfs.scm
@@ -20,11 +20,31 @@
#:use-module (gnu)
#:use-module (gnu services shepherd)
#:use-module (gnu packages onc-rpc)
+ #:use-module (gnu packages linux)
#:use-module (guix)
#:use-module (guix records)
+ #:use-module (ice-9 match)
+ #:use-module (gnu build file-systems)
#:export (rpcbind-service-type
rpcbind-configuration
- rpcbind-configuration?))
+ rpcbind-configuration?
+
+ pipefs-service-type
+ pipefs-configuration
+ pipefs-configuration?
+
+ idmap-service-type
+ idmap-configuration
+ idmap-configuration?
+
+ gss-service-type
+ gss-configuration
+ gss-configuration?))
+
+
+(define default-pipefs-dir "/var/lib/nfs/rpc_pipefs")
+
+
(define-record-type* <rpcbind-configuration>
rpcbind-configuration make-rpcbind-configuration
@@ -38,11 +58,11 @@
(shepherd-service-type
'rpcbind
(lambda (config)
- (define pkg
+ (define nfs-utils
(rpcbind-configuration-rpcbind config))
(define rpcbind-command
- #~(list (string-append #$pkg "/bin/rpcbind") "-f"
+ #~(list (string-append #$nfs-utils "/bin/rpcbind") "-f"
#$@(if (rpcbind-configuration-warm-start? config) '("-w") '())))
(shepherd-service
@@ -52,3 +72,115 @@
(start #~(make-forkexec-constructor #$rpcbind-command))
(stop #~(make-kill-destructor))))))
+
+
+
+(define-record-type* <pipefs-configuration>
+ pipefs-configuration make-pipefs-configuration
+ pipefs-configuration?
+ (mount-point pipefs-configuration-mount-point
+ (default default-pipefs-dir)))
+
+(define pipefs-service-type
+ (shepherd-service-type
+ 'pipefs
+ (lambda (config)
+
+ (define pipefs-dir (pipefs-configuration-mount-point config))
+
+ (shepherd-service
+ (documentation "Mount the pipefs pseudo filesystem.")
+ (provision '(rpc-pipefs))
+
+ (start #~(lambda ()
+ (mkdir-p #$pipefs-dir)
+ (mount "rpc_pipefs" #$pipefs-dir "rpc_pipefs")))
+ (stop #~(lambda (pid . args)
+ (umount #$pipefs-dir MNT_DETACH)))))))
+
+
+
+(define-record-type* <gss-configuration>
+ gss-configuration make-gss-configuration
+ gss-configuration?
+ (pipefs-dir gss-configuration-pipefs-dir
+ (default default-pipefs-dir))
+ (nfs-utils gss-configuration-gss
+ (default nfs-utils)))
+
+(define gss-service-type
+ (shepherd-service-type
+ 'gss
+ (lambda (config)
+ (define nfs-utils
+ (gss-configuration-gss config))
+
+ (define pipefs-dir
+ (gss-configuration-pipefs-dir config))
+
+ (define gss-command
+ #~(list (string-append #$nfs-utils "/sbin/rpc.gssd") "-f"
+ "-p" #$pipefs-dir))
+
+ (shepherd-service
+ (documentation "Start the RPC GSS daemon.")
+ (requirement '(rpcbind-daemon rpc-pipefs))
+ (provision '(gss-daemon))
+
+ (start #~(make-forkexec-constructor #$gss-command))
+ (stop #~(make-kill-destructor))))))
+
+
+
+(define-record-type* <idmap-configuration>
+ idmap-configuration make-idmap-configuration
+ idmap-configuration?
+ (pipefs-dir idmap-configuration-pipefs-dir
+ (default default-pipefs-dir))
+ (domain idmap-configuration-domain
+ (default #f))
+ (nfs-utils idmap-configuration-idmap
+ (default nfs-utils)))
+
+(define idmap-service-type
+ (shepherd-service-type
+ 'idmap
+ (lambda (config)
+
+ (define nfs-utils
+ (idmap-configuration-idmap config))
+
+ (define pipefs-dir
+ (idmap-configuration-pipefs-dir config))
+
+ (define conf-file "/etc/guix-idmapd.conf")
+
+ (define idmap-command
+ #~(list (string-append #$nfs-utils "/sbin/rpc.idmapd") "-f"
+ "-p" #$pipefs-dir
+ "-c" #$conf-file))
+
+ (define domain (idmap-configuration-domain config))
+
+ (shepherd-service
+ (documentation "Start the RPC IDMAP daemon.")
+ (requirement '(rpcbind-daemon rpc-pipefs))
+ (provision '(idmap-daemon))
+
+ (start #~(lambda ()
+ (let ((pid (primitive-fork)))
+ (if (zero? pid)
+ (begin
+ (call-with-output-file #$conf-file
+ (lambda (port)
+ (format port "\n[General]\n")
+ (if #$domain
+ (format port "Domain = ~a\n" #$domain))
+ (format port "\n[Mapping]\n")
+ (format port "Nobody-User = nobody\n")
+ (format port "Nobody-Group = nogroup\n")))
+ (exec-command #$idmap-command))
+ pid))))
+
+ (stop #~(make-kill-destructor))))))
+
--
2.1.4
- [PATCH 1/2] doc: "Various Services" -> "Miscellaneous Services", John Darrington, 2016/09/10
- "filesystem" vs. "file system", John Darrington, 2016/09/15
- Re: "filesystem" vs. "file system", Ludovic Courtès, 2016/09/15
- [PATCH] gnu: Add NFS related services.,
John Darrington <=
- Re: [PATCH] gnu: Add NFS related services., Ludovic Courtès, 2016/09/30
- Re: [PATCH] gnu: Add NFS related services., John Darrington, 2016/09/30
Re: [PATCH 1/2] doc: "Various Services" -> "Miscellaneous Services", Ludovic Courtès, 2016/09/13
Re: [PATCH 1/2] doc: "Various Services" -> "Miscellaneous Services", Ludovic Courtès, 2016/09/13