1 ;;; GNU Guix --- Functional package management for GNU
2 ;;; Copyright © 2013, 2014, 2015, 2016 Ludovic Courtès <ludo@gnu.org>
4 ;;; This file is part of GNU Guix.
6 ;;; GNU Guix is free software; you can redistribute it and/or modify it
7 ;;; under the terms of the GNU General Public License as published by
8 ;;; the Free Software Foundation; either version 3 of the License, or (at
9 ;;; your option) any later version.
11 ;;; GNU Guix is distributed in the hope that it will be useful, but
12 ;;; WITHOUT ANY WARRANTY; without even the implied warranty of
13 ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 ;;; GNU General Public License for more details.
16 ;;; You should have received a copy of the GNU General Public License
17 ;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
19 (define-module (gnu system file-systems)
20 #:use-module (ice-9 match)
21 #:use-module (guix records)
22 #:use-module (guix store)
23 #:use-module ((gnu build file-systems)
24 #:select (string->uuid uuid->string))
25 #:re-export (string->uuid
27 #:export (<file-system>
32 file-system-mount-point
34 file-system-needed-for-boot?
39 file-system-create-mount-point?
40 file-system-dependencies
43 specification->file-system-mapping
46 %fuse-control-file-system
47 %binary-format-file-system
48 %shared-memory-file-system
49 %pseudo-terminal-file-system
55 %container-file-systems
60 file-system-mapping-source
61 file-system-mapping-target
62 file-system-mapping-writable?
68 ;;; Declaring file systems to be mounted.
72 ;; File system declaration.
73 (define-record-type* <file-system> file-system
76 (device file-system-device) ; string
77 (title file-system-title ; 'device | 'label | 'uuid
79 (mount-point file-system-mount-point) ; string
80 (type file-system-type) ; string
81 (flags file-system-flags ; list of symbols
83 (options file-system-options ; string or #f
85 (mount? file-system-mount? ; Boolean
87 (needed-for-boot? %file-system-needed-for-boot? ; Boolean
89 (check? file-system-check? ; Boolean
91 (create-mount-point? file-system-create-mount-point? ; Boolean
93 (dependencies file-system-dependencies ; list of <file-system>
94 (default '()))) ; or <mapped-device>
96 (define-inlinable (file-system-needed-for-boot? fs)
97 "Return true if FS has the 'needed-for-boot?' flag set, or if it's the root
99 (or (%file-system-needed-for-boot? fs)
100 (string=? "/" (file-system-mount-point fs))))
102 (define (file-system->spec fs)
103 "Return a list corresponding to file-system FS that can be passed to the
106 (($ <file-system> device title mount-point type flags options _ _ check?)
107 (list device title mount-point type flags options check?))))
109 (define (specification->file-system-mapping spec writable?)
110 "Read the SPEC and return the corresponding <file-system-mapping>. SPEC is
111 a string of the form \"SOURCE\" or \"SOURCE=TARGET\". The former specifies
112 that SOURCE from the host should be mounted at SOURCE in the other system.
113 The latter format specifies that SOURCE from the host should be mounted at
114 TARGET in the other system."
115 (let ((index (string-index spec #\=)))
118 (source (substring spec 0 index))
119 (target (substring spec (+ 1 index)))
120 (writable? writable?))
124 (writable? writable?)))))
128 "Return the bytevector corresponding to the given UUID representation."
131 (string? (syntax->datum #'str))
132 ;; A literal string: do the conversion at expansion time.
133 (let ((bv (string->uuid (syntax->datum #'str))))
135 (syntax-violation 'uuid "invalid UUID" s))
136 (datum->syntax #'str bv)))
138 #'(string->uuid str)))))
142 ;;; Common file systems.
145 (define %fuse-control-file-system
146 ;; Control file system for Linux' file systems in user-space (FUSE).
149 (mount-point "/sys/fs/fuse/connections")
153 (define %binary-format-file-system
154 ;; Support for arbitrary executable binary format.
156 (device "binfmt_misc")
157 (mount-point "/proc/sys/fs/binfmt_misc")
162 ;; ID of the 'tty' group. Allocate it statically to make it easy to refer
163 ;; to it from here and from the 'tty' group definitions.
166 (define %pseudo-terminal-file-system
167 ;; The pseudo-terminal file system. It needs to be mounted so that
168 ;; statfs(2) returns DEVPTS_SUPER_MAGIC like libc's getpt(3) expects (and
169 ;; thus openpty(3) and its users, such as xterm.)
172 (mount-point "/dev/pts")
175 (needed-for-boot? #f)
176 (create-mount-point? #t)
177 (options (string-append "gid=" (number->string %tty-gid) ",mode=620"))))
179 (define %shared-memory-file-system
183 (mount-point "/dev/shm")
186 (flags '(no-suid no-dev))
187 (options "size=50%") ;TODO: make size configurable
188 (create-mount-point? #t)))
190 (define %immutable-store
191 ;; Read-only store to avoid users or daemons accidentally modifying it.
192 ;; 'guix-daemon' has provisions to remount it read-write in its own name
195 (device (%store-prefix))
196 (mount-point (%store-prefix))
199 (flags '(read-only bind-mount))))
201 (define %control-groups
202 (let ((parent (file-system
204 (mount-point "/sys/fs/cgroup")
208 (map (lambda (subsystem)
211 (mount-point (string-append "/sys/fs/cgroup/" subsystem))
215 (create-mount-point? #t)
217 ;; This must be mounted after, and unmounted before the
219 (dependencies (list parent))))
220 '("cpuset" "cpu" "cpuacct" "memory" "devices" "freezer"
221 "blkio" "perf_event" "hugetlb")))))
223 (define %elogind-file-systems
224 ;; We don't use systemd, but these file systems are needed for elogind,
225 ;; which was extracted from systemd.
228 (mount-point "/run/systemd")
231 (flags '(no-suid no-dev no-exec))
232 (options "mode=0755")
233 (create-mount-point? #t))
236 (mount-point "/run/user")
239 (flags '(no-suid no-dev no-exec))
240 (options "mode=0755")
241 (create-mount-point? #t))
242 ;; Elogind uses cgroups to organize processes, allowing it to map PIDs
243 ;; to sessions. Elogind's cgroup hierarchy isn't associated with any
244 ;; resource controller ("subsystem").
247 (mount-point "/sys/fs/cgroup/elogind")
250 (options "none,name=elogind")
251 (create-mount-point? #t)
252 (dependencies (list (car %control-groups))))))
254 (define %base-file-systems
255 ;; List of basic file systems to be mounted. Note that /proc and /sys are
256 ;; currently mounted by the initrd.
257 (append (list %pseudo-terminal-file-system
258 %shared-memory-file-system
260 %elogind-file-systems
263 ;; File systems for Linux containers differ from %base-file-systems in that
264 ;; they impose additional restrictions such as no-exec or need different
265 ;; options to function properly.
267 ;; The file system flags and options conform to the libcontainer
269 ;; https://github.com/docker/libcontainer/blob/master/SPEC.md#filesystem
270 (define %container-file-systems
272 ;; Pseudo-terminal file system.
275 (mount-point "/dev/pts")
277 (flags '(no-exec no-suid))
278 (needed-for-boot? #t)
279 (create-mount-point? #t)
281 (options "newinstance,ptmxmode=0666,mode=620"))
282 ;; Shared memory file system.
285 (mount-point "/dev/shm")
287 (flags '(no-exec no-suid no-dev))
288 (options "mode=1777,size=65536k")
289 (needed-for-boot? #t)
290 (create-mount-point? #t)
292 ;; Message queue file system.
295 (mount-point "/dev/mqueue")
297 (flags '(no-exec no-suid no-dev))
298 (needed-for-boot? #t)
299 (create-mount-point? #t)
304 ;;; Shared file systems, for VMs/containers.
307 ;; Mapping of host file system SOURCE to mount point TARGET in the guest.
308 (define-record-type* <file-system-mapping> file-system-mapping
309 make-file-system-mapping
311 (source file-system-mapping-source) ;string
312 (target file-system-mapping-target) ;string
313 (writable? file-system-mapping-writable? ;Boolean
316 (define %store-mapping
317 ;; Mapping of the host's store into the guest.
319 (source (%store-prefix))
320 (target (%store-prefix))
323 ;;; file-systems.scm ends here
HCoop / jackhill / guix / guix.git / blob