2be35c3e99
Make it stoppable. Add support for crypt and dynroot-sparse.
106 lines
2.6 KiB
Nix
106 lines
2.6 KiB
Nix
{ config, pkgs, ... }:
|
|
|
|
let
|
|
inherit (pkgs.lib) mkOption mkIf;
|
|
|
|
cfg = config.services.openafsClient;
|
|
|
|
cellServDB = pkgs.fetchurl {
|
|
url = http://dl.central.org/dl/cellservdb/CellServDB.2009-06-29;
|
|
sha256 = "be566f850e88130333ab8bc3462872ad90c9482e025c60a92f728b5bac1b4fa9";
|
|
};
|
|
|
|
afsConfig = pkgs.runCommand "afsconfig" {} ''
|
|
ensureDir $out
|
|
echo ${cfg.cellName} > $out/ThisCell
|
|
cp ${cellServDB} $out/CellServDB
|
|
echo "/afs:${cfg.cacheDirectory}:${cfg.cacheSize}" > $out/cacheinfo
|
|
'';
|
|
|
|
openafsPkgs = config.boot.kernelPackages.openafsClient;
|
|
in
|
|
{
|
|
###### interface
|
|
|
|
options = {
|
|
|
|
services.openafsClient = {
|
|
|
|
enable = mkOption {
|
|
default = false;
|
|
description = "Whether to enable the OpenAFS client.";
|
|
};
|
|
|
|
cellName = mkOption {
|
|
default = "grand.central.org";
|
|
description = "Cell name.";
|
|
};
|
|
|
|
cacheSize = mkOption {
|
|
default = "100000";
|
|
description = "Cache size.";
|
|
};
|
|
|
|
cacheDirectory = mkOption {
|
|
default = "/var/cache/openafs";
|
|
description = "Cache directory.";
|
|
};
|
|
|
|
crypt = mkOption {
|
|
default = false;
|
|
description = "Whether to enable (weak) protocol encryption.";
|
|
};
|
|
|
|
sparse = mkOption {
|
|
default = false;
|
|
description = "Minimal cell list in /afs.";
|
|
};
|
|
|
|
};
|
|
};
|
|
|
|
|
|
###### implementation
|
|
|
|
config = mkIf cfg.enable {
|
|
|
|
environment.systemPackages = [ openafsPkgs ];
|
|
|
|
environment.etc = [
|
|
{ source = afsConfig;
|
|
target = "openafs";
|
|
}
|
|
];
|
|
|
|
jobs.openafsClient =
|
|
{ name = "afsd";
|
|
|
|
description = "AFS client";
|
|
|
|
startOn = "started network-interfaces";
|
|
stopOn = "stopping network-interfaces";
|
|
|
|
preStart = ''
|
|
mkdir -p -m 0755 /afs
|
|
mkdir -m 0700 -p ${cfg.cacheDirectory}
|
|
${pkgs.module_init_tools}/sbin/insmod ${openafsPkgs}/lib/openafs/libafs-*.ko || true
|
|
${openafsPkgs}/sbin/afsd -confdir ${afsConfig} -cachedir ${cfg.cacheDirectory} ${if cfg.sparse then "-dynroot-sparse" else "-dynroot"} -fakestat -afsdb
|
|
${openafsPkgs}/bin/fs setcrypt ${if cfg.crypt then "on" else "off"}
|
|
'';
|
|
|
|
# Doing this in preStop, because after these commands AFS is basically
|
|
# stopped, so systemd has nothing to do, just noticing it. If done in
|
|
# postStop, then we get a hang + kernel oops, because AFS can't be
|
|
# stopped simply by sending signals to processes.
|
|
preStop = ''
|
|
${pkgs.utillinux}/bin/umount /afs
|
|
${openafsPkgs}/sbin/afsd -shutdown
|
|
${pkgs.module_init_tools}/sbin/rmmod libafs
|
|
'';
|
|
|
|
};
|
|
|
|
};
|
|
|
|
}
|