[RFC][Change-Request] Create usefulness in rc.subr etc/rc.conf.d/*.conf namespace.

Jason Hellenthal jhell at DataIX.net
Sun May 8 21:54:41 UTC 2011 

Devin,

On Sun, May 08, 2011 at 01:59:40PM -0700, Devin Teske wrote:
> 
> On May 8, 2011, at 1:13 PM, Garrett Cooper wrote:
> 
> > On May 8, 2011, at 12:13 PM, Jason Hellenthal wrote:
> > 
> >> 
> >> List, - Please reply-to freebsd-rc at freebsd.org
> >> 
> >> Recently I have been going over some changes in the configurations that 
> >> are possible with the rc subsystem and to my dismay I have found some 
> >> inconsistencies with in particular the way rc.conf.d directory is 
> >> processed and the arguments that are supplied to load_rc_config so I have 
> >> patched it up...
> >> 
> >> Let me explain:  As determined by rc.subr load_rc_config, config's from 
> >> rc.conf.d are loaded by the scripts $name as an argument to load_rc_config 
> >> and thus only the name being parsed is is available to be used in the 
> >> rc.conf.d directory. Why is this bad ? Its not! but it is inconvenient as 
> >> the user has no direct way to know that a variable used by nfsd is also 
> >> needed by mountd or the same for various other scripts in the rc.d 
> >> directory. At this time these config's are explained to be available for 
> >> the user to utilize by rc.conf(5) but yet without much knowledge of the 
> >> inner workings of the rc subsystem it would be quite the feat to do.
> >> 
> >> 
> >> The attachment[1] keeps this functionality the same while introducing a 
> >> more convenient approach for the user to modularize their configuration 
> >> however they see fit within a couple constraints that work very well. 
> >> 
> >> 
> >> What does it do ?: As stated above, current functionality is undisturbed 
> >> while allowing the user to create config's by any name they so desire as 
> >> long as it has an extension of ".conf", also introducing the ability to 
> >> turn a configuration file off by using chmod(1). You can turn nfsc1.conf
> >> off/on by simply chmod [-/+]x etc/rc.conf.d/nfs1.conf
> >> 
> >> 
> >> Why ? Simple. How many times have you been bitten by disabling something 
> >> in the rc.conf file and left to discover what you just disabled was also 
> >> used by another daemon but that daemon is now not starting ? This is a way 
> >> to virtualize your configuration allowing you to add multiple _enable= 
> >> lines to different configurations for different roles. For instance 
> >> rpcbind is used by both samba and nfs*. With this you can add 
> >> rpcbind_enable to both a configuration for samba and nfs and when you 
> >> disable one service you know that you have not disabled a dependent for 
> >> another.
> >> 
> >> 
> >> This is a small addition that fixes currently broken undesirable aspects 
> >> of the configuration system that deals with the rc.conf.d directory with a 
> >> SysV style init approach that is just as flexible. This should apply 
> >> cleanly to current and stable/8 & 8.2-RELEASE systems. Once more feedback 
> >> has been received Ill update the manual page with any suggestions 
> >> regenerate the patch to accommodate and file a PR.
> >> 
> >> 
> >> 1). http://patches.jhell.googlecode.com/hg/rc.subr_modular_conf.patch
> > 
> > 	Doing:
> > 
> > find /etc/rc.conf.d/ -type f -name '*.conf' -mindepth 1 -maxdepth 1 -perm +111 | while read _modular_conf; do
> > 	debug "Sourcing $_modular_conf"
> > 	. "$_modular_conf"
> > done
> > 
> > 	might be better. There's some more magic that could ultimately be done to make this more secure/robust using "-print0" | xargs, but it's up to you how you might want to go about solving that problem.
> > 	Also, I don't know if depending on a .conf file to be executable is necessarily the best course of action.
> > 
> 
> First, let me add that I really like the idea. This makes it akin to our /usr/local/apache2/conf.d/ directory where we place our various configs by many names, but always ending in `.conf'.
> 
> I'm anticipating the day where I can have /etc/rc.d/foo.conf and /etc/rc.d/bar.conf, each configuring multiple (likely unrelated) services.
> 
> Better still, /etc/rc.d/jail1.conf, /etc/rc.d/jail2.conf, etc. etc. (I think you just made my -- and everyone else whom uses jails -- day/week/month/year).
> 
> However, I agree with GC that depending on a .conf file to be executable is a bit non-standard, even if it is sourced like a shell-script (though I can understand the historical heritage as /usr/local/etc/rc.d/ used to require both `.sh' suffix and executable bits; but that is not to condone treating `rc.conf.d' like `rc.d' in any way).
>

I do agree with the -x bit concern yes. But thinking of the users to 
enable disable a particular config without having to open a editor is 
mainly why I have put that in place. It allows a lot of flexibility without 
a lot of extra work while also introducing the ability to check if a 
particular configuration is enabled by checking the bit rather than 
sourcing for a _enable.

Since these are only config files there will/should never be a 
config_enable for them as they are only config's, so providing a SysV init 
style way of enabling/disabling them at will is prime. using mv(1), rm(1) 
or possibly having to open a editor on multiple versions of the same 
config to disable a certain portion is far from ideal.

I really don't want to see the rc system subjected to a find(1) every time 
it needs to do a load_rc_config since it can be done quicker with in-shell 
testing. I think a lot of people would agree with this.

I would suggest at least for those that doubt the SysV style way of 
enabling disabling scripts give it a try for a couple weeks then report 
back. If feed back is strong discouraging it then we can probably come to 
common ground and find a way to work with both those who would like it and 
those who don't by default. I do have a pretty good idea what would work 
to make it happen both ways but I really would like to advocate this in 
place as it is now first.


Thanks you again Devin, Appreciate the feedback.

-- 

 Regards, (jhell)
 Jason Hellenthal

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 522 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-rc/attachments/20110508/1b74c939/attachment.pgp

More information about the freebsd-rc mailing list