diff --git a/libexec/rc/rc.conf.sav b/libexec/rc/rc.conf --- a/libexec/rc/rc.conf.sav +++ b/libexec/rc/rc.conf @@ -385,6 +385,10 @@ nfscbd_flags="" # Flags for nfscbd nfsuserd_enable="NO" # NFSv4 user/group name mapping daemon nfsuserd_flags="" # Flags for nfsuserd +tlsclntd_enable="NO" # Run rpc.tlsclntd needed for NFS-over-TLS mount +tlsclntd_flags="" # Flags for rpc.tlsclntd +tlsservd_enable="NO" # Run rpc.tlsservd needed for NFS-over-TLS nfsd +tlsservd_flags="" # Flags for rpc.tlsservd ### Network Time Services options: ### timed_enable="NO" # Run the time daemon (or NO). diff --git a/libexec/rc/rc.d/nfscbd.sav b/libexec/rc/rc.d/nfscbd --- a/libexec/rc/rc.d/nfscbd.sav +++ b/libexec/rc/rc.d/nfscbd @@ -4,7 +4,7 @@ # # PROVIDE: nfscbd -# REQUIRE: NETWORKING nfsuserd +# REQUIRE: NETWORKING nfsuserd tlsclntd # KEYWORD: nojail shutdown . /etc/rc.subr diff --git a/libexec/rc/rc.d/nfsd.sav b/libexec/rc/rc.d/nfsd --- a/libexec/rc/rc.d/nfsd.sav +++ b/libexec/rc/rc.d/nfsd @@ -4,7 +4,7 @@ # # PROVIDE: nfsd -# REQUIRE: mountcritremote mountd hostname gssd nfsuserd +# REQUIRE: mountcritremote mountd hostname gssd nfsuserd tlsservd # KEYWORD: nojail shutdown . /etc/rc.subr diff --git a/libexec/rc/rc.d/tlsclntd.sav b/libexec/rc/rc.d/tlsclntd --- a/libexec/rc/rc.d/tlsclntd.sav +++ b/libexec/rc/rc.d/tlsclntd @@ -0,0 +1,20 @@ +#!/bin/sh +# +# $FreeBSD$ +# + +# PROVIDE: tlsclntd +# REQUIRE: NETWORKING root mountcritlocal sysctl +# KEYWORD: nojail shutdown + +. /etc/rc.subr + +name="tlsclntd" +desc="NFS over TLS client side daemon" +rcvar="tlsclntd_enable" +command="/usr/sbin/rpc.${name}" +pidfile="/var/run/rpc.${name}.pid" + +load_rc_config $name + +run_rc_command "$1" diff --git a/libexec/rc/rc.d/tlsservd.sav b/libexec/rc/rc.d/tlsservd --- a/libexec/rc/rc.d/tlsservd.sav +++ b/libexec/rc/rc.d/tlsservd @@ -0,0 +1,24 @@ +#!/bin/sh +# +# $FreeBSD$ +# + +# PROVIDE: tlsservd +# REQUIRE: NETWORKING root mountcritlocal sysctl +# KEYWORD: nojail shutdown + +. /etc/rc.subr + +name="tlsservd" +desc="NFS over TLS server side daemon" +rcvar="tlsservd_enable" +command="/usr/sbin/rpc.${name}" + +pidfile="/var/run/rpc.${name}.pid" +required_files="/etc/rpc.tlsservd/cert.pem /etc/rpc.tlsservd/certkey.pem" +extra_commands="reload" + + +load_rc_config $name + +run_rc_command "$1"