From: ng0 <ng0@libertad.pw>
To: guix-devel@gnu.org
Subject: Re: [PATCH 2/2] services: Add tlsdate-service.
Date: Mon, 05 Dec 2016 18:23:40 +0000 [thread overview]
Message-ID: <877f7emdzn.fsf@we.make.ritual.n0.is> (raw)
In-Reply-To: <20161205182014.5155-3-ng0@libertad.pw>
ng0 <ng0@libertad.pw> writes:
> * gnu/services/networking.scm (<tlsdate-configuration>): New record type.
> (%tlsdate-accounts): New variables.
> (tlsdate-shepherd-service): New procedure.
> (tlsdate-service-type): New variable.
> * doc/guix.texi (Networking Services): Document it.
> ---
> doc/guix.texi | 32 +++++++++++++++++
> gnu/services/networking.scm | 84 ++++++++++++++++++++++++++++++++++++++++++++-
> 2 files changed, 115 insertions(+), 1 deletion(-)
>
> diff --git a/doc/guix.texi b/doc/guix.texi
> index 4d7f96d90..f6efd040d 100644
> --- a/doc/guix.texi
> +++ b/doc/guix.texi
> @@ -8594,6 +8594,38 @@ make an initial adjustment of more than 1,000 seconds.
> List of host names used as the default NTP servers.
> @end defvr
>
> +@cindex tlsdate
> +@deffn {Scheme Procedure} tlsdate-service [#:config (tlsdate-configuration)]
> +
> +Return a service that runs @command{tlsdate}, a simple TCP based time service.
> +The daemon will synchronize the system clock with a server of your
> +choice via TCP at boot.
> +
> +The optional @var{config} argument should be a
> +@code{<tlsdate-configuration>} object, by default it syncs the time with gnu.org.
> +
> +@end deffn
> +
> +@deftp {Data Type} tlsdate-configuration
> +Data type representing the configuration of tlsdate.
> +
> +@table @asis
> +@item @code{package} (default: @var{tlsdate})
> +Package object of the tlsdate time service.
> +
> +@item @code{port} (default: @var{'()})
> +Set the port of the remote hostname which should be used.
> +
> +@item @code{host} (default: @var{"gnu.org"})
> +Set the remote hostname which will be queried. Defaults to @code{gnu.org}.
> +
> +@item @code{extra-options} (default: @var{'()})
> +Extra options will be passed to @code{tlsdate}, please run
> +@command{man tlsdate} for more information.
> +
> +@end table
> +@end deftp
> +
> @cindex Tor
> @deffn {Scheme Procedure} tor-service [@var{config-file}] [#:tor @var{tor}]
> Return a service to run the @uref{https://torproject.org, Tor} anonymous
> diff --git a/gnu/services/networking.scm b/gnu/services/networking.scm
> index d672ecf68..ab19bcb0e 100644
> --- a/gnu/services/networking.scm
> +++ b/gnu/services/networking.scm
> @@ -3,6 +3,7 @@
> ;;; Copyright © 2015 Mark H Weaver <mhw@netris.org>
> ;;; Copyright © 2016 Efraim Flashner <efraim@flashner.co.il>
> ;;; Copyright © 2016 John Darrington <jmd@gnu.org>
> +;;; Copyright © 2016 ng0 <ng0@libertad.pw>
> ;;;
> ;;; This file is part of GNU Guix.
> ;;;
> @@ -66,7 +67,13 @@
> wicd-service
> network-manager-service
> connman-service
> - wpa-supplicant-service-type))
> + wpa-supplicant-service-type
> +
> + tlsdate-service
> + tlsdate-configuration
> + tlsdate-service-type
> + tlsdate-configuration?
> + tlsdate-configuration))
>
> ;;; Commentary:
> ;;;
> @@ -360,6 +367,81 @@ make an initial adjustment of more than 1,000 seconds."
>
> \f
> ;;;
> +;;; tlsdate
> +;;;
> +
> +(define-record-type* <tlsdate-configuration>
> + tlsdate-configuration make-tlsdate-configuration
> + tlsdate-configuration?
> + (package tlsdate-configuration-package
> + (default tlsdate))
> + (host tlsdate-configuration-host
> + (default "gnu.org"))
> + (port tlsdate-configuration-port
> + (default #f))
> + (extra-options tlsdate-configuration-extra-options
> + (default '())))
> +
> +(define %tlsdate-accounts
> + (list (user-group (name "tlsdate") (system? #t))
> + (user-account
> + (name "tlsdate")
> + (group "tlsdate")
> + (system? #t)
> + (comment "tlsdate daemon user")
> + (home-directory "/var/empty")
> + (shell (file-append shadow "/sbin/nologin")))))
> +
> +(define tlsdate-shepherd-service
> + (match-lambda
> + (($ <tlsdate-configuration>
> + package host port extra-options)
> + (let* ((tlsdate (file-append package "/bin/tlsdate"))
> + (command `(,tlsdate
> + "-l" ; leap
> + "-t" ; timewarp
> + ,@(if host
> + `(,(string-append
> + "-H" " " host))
> + '())
> + ,@(if port
> + `(,(string-append
> + "-p" " " (number->string port)))
> + '())
> + ,@extra-options)))
> + (list (shepherd-service
> + ;;(provision '(tlsdate))
> + (provision '(ntp))
> + ;; tlsdate needs at least one network interface to be up, hence the
> + ;; dependency on 'loopback'.
> + (requirement '(user-processes dbus-system loopback syslogd))
^__ remains from
the time where I
tried to enable
the dbus
functionality. I'll
send a new patch.
> +
> + (start #~(make-forkexec-constructor '#$command
> + #:user "tlsdate"
> + #:group "tlsdate"))
> + (stop #~(make-kill-destructor))
> + (documentation "Run the tlsdate service.")))))))
> +
> +(define tlsdate-service-type
> + (service-type
> + (name 'tlsdate)
> + (extensions
> + (list (service-extension shepherd-root-service-type
> + tlsdate-shepherd-service)
> + (service-extension account-service-type
> + (const %tlsdate-accounts))))))
> +
> +(define* (tlsdate-service #:key (config (tlsdate-configuration)))
> + "Return a service that runs @command{tlsdate}, a simple TCP based
> +time service.
> +
> +The optional @var{config} argument should be a
> +@code{<tlsdate-configuration>} object, by default it querries gnu.org
> +for time once at boot."
> + (service tlsdate-service-type config))
> +
> +\f
> +;;;
> ;;; Tor.
> ;;;
>
> --
> 2.11.0
>
>
--
♥Ⓐ ng0 | ng0.chaosnet.org
next prev parent reply other threads:[~2016-12-05 18:23 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-12-05 18:20 (unknown), ng0
2016-12-05 18:20 ` [PATCH 1/2] gnu: tlsdate: Use the system provided certificate store ng0
2016-12-07 22:19 ` Ludovic Courtès
2016-12-07 23:40 ` ng0
2016-12-08 9:35 ` Ludovic Courtès
2017-01-18 20:31 ` ng0
2017-01-20 13:31 ` Ludovic Courtès
2016-12-05 18:20 ` [PATCH 2/2] services: Add tlsdate-service ng0
2016-12-05 18:23 ` ng0 [this message]
2016-12-05 18:30 ` v2 tlsdate-service ng0
2016-12-05 18:31 ` [PATCH 1/2] gnu: tlsdate: Use the system provided certificate store ng0
2016-12-05 18:31 ` [PATCH 2/2] services: Add tlsdate-service ng0
2016-12-07 7:18 ` Chris Marusich
2016-12-07 12:04 ` ng0
2016-12-09 6:29 ` Chris Marusich
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=877f7emdzn.fsf@we.make.ritual.n0.is \
--to=ng0@libertad.pw \
--cc=guix-devel@gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/guix.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.