 61d125b842
			
		
	
	
		61d125b842
		
	
	
	
	
		
			
			perlPackages.TextWrapI18N: init at 0.06 perlPackages.Po4a: init at 0.47 jade: init at 1.2.1 ding-libs: init at 0.6.0 Switch nscd to no-caching mode if SSSD is enabled. abbradar: disable jade parallel building. Closes #21150
		
			
				
	
	
		
			93 lines
		
	
	
		
			2.1 KiB
		
	
	
	
		
			Nix
		
	
	
	
	
	
			
		
		
	
	
			93 lines
		
	
	
		
			2.1 KiB
		
	
	
	
		
			Nix
		
	
	
	
	
	
| { config, lib, pkgs, ... }:
 | |
| 
 | |
| with lib;
 | |
| 
 | |
| let
 | |
| 
 | |
|   nssModulesPath = config.system.nssModules.path;
 | |
|   cfg = config.services.nscd;
 | |
| 
 | |
|   inherit (lib) singleton;
 | |
| 
 | |
| in
 | |
| 
 | |
| {
 | |
| 
 | |
|   ###### interface
 | |
| 
 | |
|   options = {
 | |
| 
 | |
|     services.nscd = {
 | |
| 
 | |
|       enable = mkOption {
 | |
|         type = types.bool;
 | |
|         default = true;
 | |
|         description = "Whether to enable the Name Service Cache Daemon.";
 | |
|       };
 | |
| 
 | |
|       config = mkOption {
 | |
|         type = types.lines;
 | |
|         default = builtins.readFile ./nscd.conf;
 | |
|         description = "Configuration to use for Name Service Cache Daemon.";
 | |
|       };
 | |
| 
 | |
|     };
 | |
| 
 | |
|   };
 | |
| 
 | |
| 
 | |
|   ###### implementation
 | |
| 
 | |
|   config = mkIf cfg.enable {
 | |
|     environment.etc."nscd.conf".text = cfg.config;
 | |
| 
 | |
|     users.extraUsers.nscd =
 | |
|       { isSystemUser = true;
 | |
|         description = "Name service cache daemon user";
 | |
|       };
 | |
| 
 | |
|     systemd.services.nscd =
 | |
|       { description = "Name Service Cache Daemon";
 | |
| 
 | |
|         wantedBy = [ "nss-lookup.target" "nss-user-lookup.target" ];
 | |
| 
 | |
|         environment = { LD_LIBRARY_PATH = nssModulesPath; };
 | |
| 
 | |
|         preStart =
 | |
|           ''
 | |
|             mkdir -m 0755 -p /run/nscd
 | |
|             rm -f /run/nscd/nscd.pid
 | |
|             mkdir -m 0755 -p /var/db/nscd
 | |
|           '';
 | |
| 
 | |
|         restartTriggers = [
 | |
|           config.environment.etc.hosts.source
 | |
|           config.environment.etc."nsswitch.conf".source
 | |
|           config.environment.etc."nscd.conf".source
 | |
|         ];
 | |
| 
 | |
|         serviceConfig =
 | |
|           { ExecStart = "@${pkgs.glibc.bin}/sbin/nscd nscd";
 | |
|             Type = "forking";
 | |
|             PIDFile = "/run/nscd/nscd.pid";
 | |
|             Restart = "always";
 | |
|             ExecReload =
 | |
|               [ "${pkgs.glibc.bin}/sbin/nscd --invalidate passwd"
 | |
|                 "${pkgs.glibc.bin}/sbin/nscd --invalidate group"
 | |
|                 "${pkgs.glibc.bin}/sbin/nscd --invalidate hosts"
 | |
|               ];
 | |
|           };
 | |
| 
 | |
|         # Urgggggh... Nscd forks before opening its socket and writing
 | |
|         # its pid. So wait until it's ready.
 | |
|         postStart =
 | |
|           ''
 | |
|             while ! ${pkgs.glibc.bin}/sbin/nscd -g > /dev/null; do
 | |
|               sleep 0.2
 | |
|             done
 | |
|           '';
 | |
|       };
 | |
| 
 | |
|   };
 | |
| }
 |