#
285830 |
|
23-Jul-2015 |
gjb |
- Copy stable/10@285827 to releng/10.2 in preparation for 10.2-RC1 builds. - Update newvers.sh to reflect RC1. - Update __FreeBSD_version to reflect 10.2. - Update default pkg(8) configuration to use the quarterly branch.[1]
Discussed with: re, portmgr [1] Approved by: re (implicit) Sponsored by: The FreeBSD Foundation |
#
256281 |
|
10-Oct-2013 |
gjb |
Copy head (r256279) to stable/10 as part of the 10.0-RELEASE cycle.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation
|
#
231667 |
|
14-Feb-2012 |
dougb |
Fix various issues with the NFS and RPC related scripts:
1. Add new functionality to the force_depend method to incorporate the tests for whether the service is enabled and/or already running. 2. Add a new option to bypass checking only that the service is enabled at boot time, and always check if it is running. 3. Use this new functionality to greatly simplify the rc.d scripts that use force_depend. 4. Add a force_depend for statd in lockd 5. Remove the check that either nfs_server or nfs_client is _enable'd from statd and lockd. This was always overkill, and prevented using the {one|force}start options, as well as stop'ing on the command line. 6. The yp* scripts had some of their arguments in various weird orders. Bring them into line with the model. 7. If mountd fails to create /var/db/mountdtab, err out.
Ideas, suggestions, and/or review from delphij and jilles. Pointy hats are completely my responsibility however.
|
#
230099 |
|
14-Jan-2012 |
dougb |
Prepare for the removal of set_rcvar() by changing the rcvar= assignments to the literal values it would have returned.
The concept of set_rcvar() was nice in theory, but the forks it creates are a drag on the startup process, which is especially noticeable on slower systems, such as embedded ones.
During the discussion on freebsd-rc@ a preference was expressed for using ${name}_enable instead of the literal values. However the code portability concept doesn't really apply since there are so many other places where the literal name has to be searched for and replaced. Also, using the literal value is also a tiny bit faster than dereferencing the variables, and every little bit helps.
|
#
227112 |
|
05-Nov-2011 |
dim |
Whenever you boot with nfsv4_server_enable=NO (the default) in rc.conf, the /etc/rc.d/nfsd script sets vfs.nfsd.server_max_nfsvers to 3.
Then, when you set nfsv4_server_enable=YES in rc.conf, and restart nfsd via the rc.d script, without rebooting, the sysctl does *not* get reset to max version 4, so NFSv4 still doesn't work.
Fix this by explicitly setting vfs.nfsd.server_max_nfsvers to 4 when NFSv4 is requested.
I also added resetting of the nfs_privport sysctls, since this has the same issue: nfs_reserved_port_only=YES in rc.conf sets the nfs_privport sysctl to 1, but in the other case, the sysctl doesn't get reset to 0.
Reviewed by: rmacklem Silence from: rc@ MFC after: 3 days
|
#
223847 |
|
07-Jul-2011 |
rmacklem |
Fix the /etc/rc.d/nfsd script so that it no longer uses the /etc/rc.d/nfsserver script to load the old nfs server module.
Tested by: sgk at troutmask.apl.washington.edu Reviewed by: rc (hrs)
|
#
221615 |
|
08-May-2011 |
rmacklem |
Change the new NFS server so that it uses vfs.nfsd naming for its sysctls instead of vfs.newnfs. This separates the names from the ones used by the client.
|
#
221046 |
|
26-Apr-2011 |
rmacklem |
Update the /etc/rc.d scripts for mountd and nfsd so they can use the "-o" option to force the old NFS server to run. Running the old NFS server is enabled by setting oldnfs_server_enable="YES". The scripts will only enable providing service for NFSv4 if nfsv4_server_enable="YES" is set.
Reviewed by: dougb (rc)
|
#
193354 |
|
02-Jun-2009 |
rmacklem |
Add support for the experimental nfs subsystem to the scripts in /etc/rc.d. They use the following new rc variables: nfsv4_server_enable - set to "YES" to run the experimental server nfsuserd_enable - set to "YES" to run nfsuserd for NFSv4 client and server nfsuserd_flags - command line flags for nfsuserd nfscbd_enable - set to "YES" to run the experimental nfs client's NFSv4 callback daemon nfscbd_flags - command line flags for nfscbd
Reviewed by: dougb Approved by: kib (mentor)
|
#
184588 |
|
03-Nov-2008 |
dfr |
Implement support for RPCSEC_GSS authentication to both the NFS client and server. This replaces the RPC implementation of the NFS client and server with the newer RPC implementation originally developed (actually ported from the userland sunrpc code) to support the NFS Lock Manager. I have tested this code extensively and I believe it is stable and that performance is at least equal to the legacy RPC implementation.
The NFS code currently contains support for both the new RPC implementation and the older legacy implementation inherited from the original NFS codebase. The default is to use the new implementation - add the NFS_LEGACYRPC option to fall back to the old code. When I merge this support back to RELENG_7, I will probably change this so that users have to 'opt in' to get the new code.
To use RPCSEC_GSS on either client or server, you must build a kernel which includes the KGSSAPI option and the crypto device. On the userland side, you must build at least a new libc, mountd, mount_nfs and gssd. You must install new versions of /etc/rc.d/gssd and /etc/rc.d/nfsd and add 'gssd_enable=YES' to /etc/rc.conf.
As long as gssd is running, you should be able to mount an NFS filesystem from a server that requires RPCSEC_GSS authentication. The mount itself can happen without any kerberos credentials but all access to the filesystem will be denied unless the accessing user has a valid ticket file in the standard place (/tmp/krb5cc_<uid>). There is currently no support for situations where the ticket file is in a different place, such as when the user logged in via SSH and has delegated credentials from that login. This restriction is also present in Solaris and Linux. In theory, we could improve this in future, possibly using Brooks Davis' implementation of variant symlinks.
Supporting RPCSEC_GSS on a server is nearly as simple. You must create service creds for the server in the form 'nfs/<fqdn>@<REALM>' and install them in /etc/krb5.keytab. The standard heimdal utility ktutil makes this fairly easy. After the service creds have been created, you can add a '-sec=krb5' option to /etc/exports and restart both mountd and nfsd.
The only other difference an administrator should notice is that nfsd doesn't fork to create service threads any more. In normal operation, there will be two nfsd processes, one in userland waiting for TCP connections and one in the kernel handling requests. The latter process will create as many kthreads as required - these should be visible via 'top -H'. The code has some support for varying the number of service threads according to load but initially at least, nfsd uses a fixed number of threads according to the value supplied to its '-n' option.
Sponsored by: Isilon Systems MFC after: 1 month
|
#
180564 |
|
16-Jul-2008 |
dougb |
Add the shutdown KEYWORD to those scripts that start persistent services to allow them to do a "clean" shutdown.
I purposely avoided making changes to network-related stuff since the system shutting down is pretty conclusive, and there may be complicated dependencies on the network that I would rather not try to unravel.
I also skipped kerberos-related stuff for the reasons above, and because I have no way to test it.
|
#
174438 |
|
08-Dec-2007 |
dougb |
Remove $NetBSD$ CVS tags. We no longer attempt to synch our rc.d files with theirs, so this information doesn't need to be in the live file. Having it in our CVS history is enough.
|
#
136224 |
|
07-Oct-2004 |
mtm |
Remove the requirement for the FreeBSD keyword as it no longer makes any sense.
Discussed with: dougb, brooks MFC after: 3 days
|
#
126744 |
|
08-Mar-2004 |
pjd |
Mark scripts as not usable inside a jail by adding keyword 'nojail'.
Some suggestions from: rwatson, Ruben de Groot <mail25@bzerk.org>
|
#
124622 |
|
17-Jan-2004 |
mtm |
Luke Mewburn has indicated that they (NetBSD) are not interested in keeping the scripts under rc.d in sync with us. So, remove NetBSD specific stuff (which made our scripts more complicated than necessary).
The NetBSD ident string will be left intact, both for history and also incase we wish to pull in future versions.
|
#
124616 |
|
17-Jan-2004 |
mtm |
Luke Mewburn has indicated that they (NetBSD) are not interested in keeping the scripts under rc.d in sync with us. So, begin removal of NetBSD specific stuff (which made our scripts more complicated than necessary), starting with the NetBSD KEYWORD.
|
#
109770 |
|
24-Jan-2003 |
mtm |
Cleanup as many instances of rc.conf variable use before calling load_rc_config().
Approved by: markm (mentor) dougb
|
#
104980 |
|
12-Oct-2002 |
schweikh |
Fix style bugs: * Space -> tabs conversion. * Removed blanks before semicolon in "if ... ; then". * Proper indentation of misindented lines. * Put a full stop after some comments. * Removed whitespace at end of line.
Approved by: silence from gordon
|
#
103019 |
|
06-Sep-2002 |
gordon |
Convert from `${CMD_OSTYPE}` to ${OSTYPE}. This saves a shell invocation on OS-dependent case switches.
|
#
102901 |
|
03-Sep-2002 |
gordon |
nfsd doesn't die on SIGTERM but on SIGUSR1, correct script to kill nfsd with the right signal.
|
#
102154 |
|
20-Aug-2002 |
gordon |
Print out a carriage return to make the screen output make more sense
Submitted by: mike@
|
#
101851 |
|
14-Aug-2002 |
gordon |
Clean up the scripts to use the new variables: xntpd_* -> ntpd_* portmap_* -> rpcbind_*
Also change single_mountd_enable -> mountd_enable Changing the mountd flags brings us closer to NetBSD.
All of the old variable names are shimmed so you can continue to use the old variable name.
Finally make /etc/rc.d/mountd no longer dependent on nfs as there are (apparently) other consumers of mountd.
Submitted by: Mike Makonnen <makonnen@pacbell.net>
|
#
99550 |
|
07-Jul-2002 |
gordon |
nfsd and mountd now live in /usr/sbin not /sbin. Correct the command args. This also reduces the diff to NetBSD (very marginally).
Reviewed by: jake (mentor)
|
#
98184 |
|
13-Jun-2002 |
gordon |
Merge in all the changes that Mike Makonnen has been maintaining for a while. This is only the script pieces, the glue for the build comes next.
Submitted by: Mike Makonnen <makonnen@pacbell.net> Reviewed by: silence on -current and -hackers Prodded by: rwatson
|
#
78345 |
|
16-Jun-2001 |
obrien |
This commit was generated by cvs2svn to compensate for changes in r78344, which included commits to RCS files with non-trunk default branches.
|
#
78344 |
|
16-Jun-2001 |
obrien |
Import the NetBSD 1.5 RC system.
Note that `rc' and `rc.shutdown' could not be imported because we already have files with those names.
|