2 <!DOCTYPE service_bundle SYSTEM "/usr/share/lib/xml/dtd/service_bundle.dtd.1">
4 Copyright (c) 2008, 2010, Oracle and/or its affiliates. All rights reserved.
5 Copyright 2016 Hans Rosenfeld <rosenfeld@grumpf.hope-2000.org>
9 The contents of this file are subject to the terms of the
10 Common Development and Distribution License (the "License").
11 You may not use this file except in compliance with the License.
13 You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
14 or http://www.opensolaris.org/os/licensing.
15 See the License for the specific language governing permissions
16 and limitations under the License.
18 When distributing Covered Code, include this CDDL HEADER in each
19 file and include the License file at usr/src/OPENSOLARIS.LICENSE.
20 If applicable, add the following below this CDDL HEADER, with the
21 fields enclosed by brackets "[]" replaced with your own identifying
22 information: Portions Copyright [yyyy] [name of copyright owner]
26 NOTE: This service manifest is not editable; its contents will
27 be overwritten by package or patch operations, including
28 operating system upgrade. Make customizations in a different
32 <service_bundle type='manifest' name='SUNWcsr:global'>
35 name='system/svc/global'
40 There's no running configuration to manage here. However,
41 this service stores the system-wide definitions for
45 <create_default_instance enabled='false' />
53 timeout_seconds='0' />
59 timeout_seconds='0' />
61 <stability value='Unstable' />
65 <loctext xml:lang='C'>
66 system-wide configuration definitions
70 <manpage title='smf' section='5'
71 manpath='/usr/share/man' />
72 <manpage title='smf_template' section='5'
73 manpath='/usr/share/man' />
76 <pg_pattern name='general' type='framework'
77 target='all' required='true'>
79 <loctext xml:lang='C'>
80 Basic information about a service instance which is supplied by the service author, sometimes modified by the administrator, and consumed by SMF and the service's restarter.
83 <prop_pattern name='enabled' type='boolean'
86 <loctext xml:lang='C'>
87 The service instance is expected to be started once all of its dependencies are satisfied. If this property is not defined, the restarter will not be notified about this service instance.
90 <cardinality min='1' max='1'/>
92 <prop_pattern name='restarter' type='fmri'
95 <loctext xml:lang='C'>
96 The restarter responsible for managing this service instance. If the property is unset, the default restarter, svc.startd, is assumed.
99 <cardinality min='1' max='1'/>
101 <prop_pattern name='single_instance' type='boolean'
104 <loctext xml:lang='C'>
105 Only one instance of this service may be run. This property is currently unenforced, but will be at some point in the future.
108 <cardinality min='1' max='1'/>
112 <pg_pattern type='dependency' target='all' required='false'>
114 <loctext xml:lang='C'>
115 A dependency declares a required condition for a service instance to start or stay running. It is defined by the service author and consumed by SMF.
118 <prop_pattern name='entities' type='fmri'
121 <loctext xml:lang='C'>
122 The services, service instances, or files used to calculate this dependency.
125 <cardinality min='1'/>
127 <prop_pattern name='external' type='boolean'>
129 <loctext xml:lang='C'>
130 This dependency was declared by the service defined in entities. It will be removed only when that service is deleted.
133 <visibility value='readonly'/>
134 <cardinality min='1' max='1'/>
136 <prop_pattern name='grouping' type='astring'
139 <loctext xml:lang='C'>
140 How to decide whether this dependency is satisfied.
143 <cardinality min='1' max='1'/>
145 <value name='require_all'>
147 <loctext xml:lang='C'>
148 Satisfied when all cited services are running (online or degraded), or when all indicated files are present.
152 <value name='require_any'>
154 <loctext xml:lang='C'>
155 Satisfied when one of the cited services is running (online or degraded), or when at least one of the indicated files is present.
159 <value name='optional_all'>
161 <loctext xml:lang='C'>
162 Satisfied if the cited services are running (online or degraded) or will not run without administrative action (disabled, maintenance, not present, or offline waiting for dependencies which will not start without administrative action).
167 <value name='exclude_all'>
169 <loctext xml:lang='C'>
170 Satisfied when all of the cited services are disabled, in the maintenance state, or when cited services or files are not present.
176 <include_values type='constraints'/>
179 <prop_pattern name='restart_on' type='astring'
182 <loctext xml:lang='C'>
183 Determines whether to restart the service due to a dependency refresh, restart, or failure.
186 <cardinality min='1' max='1'/>
190 <loctext xml:lang='C'>
191 Never restart due to dependency refresh, restart, or failure.
197 <loctext xml:lang='C'>
198 Restart only if the dependency encounters an error, such as an uncorrectable hardware error, or a software error such as a core dump.
202 <value name='restart'>
204 <loctext xml:lang='C'>
205 Restart if the dependency encounters an error or is explicitly restarted.
209 <value name='refresh'>
211 <loctext xml:lang='C'>
212 Restart if the dependency encounters an error, is explicitly restarted, or explicitly refreshed.
218 <include_values type='constraints'/>
221 <prop_pattern name='type' type='astring'
224 <loctext xml:lang='C'>
225 The type of the dependency: service or file.
228 <cardinality min='1' max='1'/>
230 <value name='service'>
232 <loctext xml:lang='C'>
233 Depend on services or instances.
239 <loctext xml:lang='C'>
240 Depend on the existance of a file path.
246 <include_values type='constraints'/>
251 <pg_pattern type='template_pg_pattern' target='all'
254 <loctext xml:lang='C'>
255 Template data about property groups. This information is provided in the manifest by the service author and should not be modified directly.
259 <prop_pattern name='name' type='astring'
262 <loctext xml:lang='C'>
263 Optional name of a property group which is described by this template. No name means the name is wildcarded.
266 <visibility value='hidden'/>
267 <cardinality min='1' max='1'/>
269 <prop_pattern name='type' type='astring'
272 <loctext xml:lang='C'>
273 Optional type of property groups which are described by this template. No type means that the type is wildcarded.
276 <visibility value='hidden'/>
277 <cardinality min='1' max='1'/>
279 <prop_pattern name='required' type='boolean'
282 <loctext xml:lang='C'>
283 If true, entities without a property group which matches this pattern are considered invalid.
286 <visibility value='hidden'/>
287 <cardinality min='1' max='1'/>
289 <prop_pattern name='target' type='astring'
292 <loctext xml:lang='C'>
293 The services or service instances to which this template should be applied.
296 <visibility value='hidden'/>
297 <cardinality min='1' max='1'/>
301 <loctext xml:lang='C'>
302 The service or instance on which the property group resides.
306 <value name='instance'>
308 <loctext xml:lang='C'>
309 This instance, or any instance of this service.
313 <value name='delegate'>
315 <loctext xml:lang='C'>
316 All instances which currently define this service as their restarter.
322 <loctext xml:lang='C'>
323 All services and instances on the system. "all" may only be set on the global service.
331 <pg_pattern type='template_prop_pattern' target='all'
334 <loctext xml:lang='C'>
335 Template data about properties. This information is provided in the manifest by the service author and should not be modified directly.
338 <prop_pattern name='name' type='astring'
341 <loctext xml:lang='C'>
342 Name of property this template applies to.
345 <visibility value='hidden'/>
346 <cardinality min='1' max='1'/>
348 <prop_pattern name='pg_pattern' type='astring'
351 <loctext xml:lang='C'>
352 Name of property group that describes the enclosing property group pattern.
355 <visibility value='hidden'/>
356 <cardinality min='1' max='1'/>
358 <prop_pattern name='required' type='boolean'
361 <loctext xml:lang='C'>
362 Defines whether a property matched by this template is required.
365 <visibility value='hidden'/>
366 <cardinality min='1' max='1'/>
368 <prop_pattern name='type' type='astring'
371 <loctext xml:lang='C'>
372 The type that a property which this template refers to should be.
375 <visibility value='hidden'/>
376 <cardinality min='1' max='1'/>
378 <prop_pattern name='visibility' type='astring'
381 <loctext xml:lang='C'>
382 The visibility of this property, which is readwrite by default. Visibility is only a cue to the user interface, and will not be explicitly enforced by SMF.
385 <visibility value='hidden'/>
386 <cardinality min='1' max='1'/>
388 <value name='hidden'>
390 <loctext xml:lang='C'>
391 Hidden in default user interface views.
395 <value name='readonly'>
397 <loctext xml:lang='C'>
398 Expected to be read only in most user interfaces.
402 <value name='readwrite'>
404 <loctext xml:lang='C'>
405 Expected to be manipulated in many user interfaces.
411 <prop_pattern name='cardinality_min' type='count'
414 <loctext xml:lang='C'>
415 Minimum number of required values.
418 <cardinality min='1' max='1'/>
420 <prop_pattern name='cardinality_max' type='count'
423 <loctext xml:lang='C'>
424 Maximum number of required values.
427 <visibility value='hidden'/>
428 <cardinality min='1' max='1'/>
430 <prop_pattern name='internal_separators' type='astring'
433 <loctext xml:lang='C'>
434 List of separator characters for values.
437 <visibility value='hidden'/>
438 <cardinality min='1'/>
440 <prop_pattern name='constraint_name' type='astring'
443 <loctext xml:lang='C'>
444 Values the property is expected to be constrained to.
447 <visibility value='hidden'/>
448 <cardinality min='1'/>
450 <prop_pattern name='constraint_range' type='astring'
453 <loctext xml:lang='C'>
454 Ranges the property is expected to be constrained to.
457 <visibility value='hidden'/>
458 <cardinality min='1'/>
459 <internal_separators>,</internal_separators>
461 <prop_pattern name='choices_range' type='astring'
464 <loctext xml:lang='C'>
465 Ranges a user should be offered as a choice for this property.
468 <visibility value='hidden'/>
469 <cardinality min='1'/>
470 <internal_separators>,</internal_separators>
472 <prop_pattern name='choices_name' type='astring'
475 <loctext xml:lang='C'>
476 Values a users should be offered as a choice for this property.
479 <visibility value='hidden'/>
480 <cardinality min='1'/>
482 <prop_pattern name='choices_include_values'
483 type='astring' required='false'>
485 <loctext xml:lang='C'>
486 Whether the choices should include the defined constraints or values.
489 <visibility value='hidden'/>
490 <cardinality min='1' max='1'/>
492 <value name='constraints'>
494 <loctext xml:lang='C'>
495 Include all defined constraints as choices.
499 <value name='values'>
501 <loctext xml:lang='C'>
502 Include all defined values as choices.
510 <pg_pattern name='method_context' type='framework'
511 target='all' required='false'>
513 <loctext xml:lang='C'>
514 Specifies the default execution context for all service methods. It is defined by the service author, may be augmented by an administrator, and is consumed by the service's restarter.
518 <!-- method_context direct properties -->
519 <prop_pattern name='working_directory' type='astring'
522 <loctext xml:lang='C'>
523 The working directory to launch the method from. ":default" can be used as a token to indicate the home directory of the user specified by the credential or profile.
526 <cardinality min='1' max='1'/>
528 <prop_pattern name='project' type='astring'
531 <loctext xml:lang='C'>
532 The project ID in numeric or text form. ":default" can be used as a token to indicate a project identified by getdefaultproj(3PROJECT) for the user whose uid is used to launch the method.
535 <cardinality min='1' max='1'/>
537 <prop_pattern name='resource_pool' type='astring'
540 <loctext xml:lang='C'>
541 The resource pool name in which to launch the method. ":default" can be used
542 as a token to indicate the pool specified in the project(4) entry given in
543 the project attribute.
546 <cardinality min='1' max='1'/>
548 <prop_pattern name='security_flags' type='astring'
551 <loctext xml:lang='C'>
552 An optional string specifying the security flags as defined in security-flags(5).
555 <cardinality min='1' max='1'/>
558 <!-- method_credential properties -->
559 <prop_pattern name='user' type='astring'
562 <loctext xml:lang='C'>
563 The user ID in numeric or text form.
566 <cardinality min='1' max='1'/>
568 <prop_pattern name='group' type='astring'
571 <loctext xml:lang='C'>
572 The group ID in numeric or text form.
575 <cardinality min='1' max='1'/>
577 <prop_pattern name='supp_groups' type='astring'
580 <loctext xml:lang='C'>
581 An optional string that specifies the supplemental group memberships by ID,
582 in numeric or text form.
585 <cardinality min='1' max='1'/>
587 <prop_pattern name='privileges' type='astring'
590 <loctext xml:lang='C'>
591 An optional string specifying the privilege set as defined in privileges(5).
594 <cardinality min='1' max='1'/>
596 <prop_pattern name='limit_privileges' type='astring'
599 <loctext xml:lang='C'>
600 An optional string specifying the limit privilege set as defined in
604 <cardinality min='1' max='1'/>
607 <!-- method_profile properties -->
608 <prop_pattern name='use_profile' type='boolean'
611 <loctext xml:lang='C'>
612 A boolean that specifies whether the profile should be used instead of the
613 user, group, privileges, and limit_privileges properties.
616 <cardinality min='1' max='1'/>
618 <prop_pattern name='profile' type='astring'
621 <loctext xml:lang='C'>
622 The name of an RBAC (role-based access control) profile which, along with the
623 method executable, identifies an entry in exec_attr(4).
626 <cardinality min='1' max='1'/>
630 <pg_pattern name='firewall_context'
631 type='com.sun,fw_definition' target='all' required='false'>
633 <loctext xml:lang='C'>
638 <loctext xml:lang='C'>
639 Service static network and firewall definition.
642 <prop_pattern name='name' type='astring'
645 <loctext xml:lang='C'>
650 <loctext xml:lang='C'>
651 IANA name or RPC name for non-inetd service, equivalent to inetd/name property. For RPC services, the value of this property is not an IANA name but is either an RPC program number or name, see rpc(4).
655 <prop_pattern name='isrpc' type='boolean'
658 <loctext xml:lang='C'>
663 <loctext xml:lang='C'>
664 A boolean property where a "true" value indicates an RPC service, equivalent to inetd/isrpc property.
668 <prop_pattern name='ipf_method' type='astring'
671 <loctext xml:lang='C'>
672 Custom firewall script
676 <loctext xml:lang='C'>
677 A script that generates ipf rules for a service. Services that require custom IPfilter configuration can use this mechanism to generate and supply their own ipf rules. The firewall framework does not generate rules for services that has this property definition but expect these services to provide their own rules.
680 </prop_pattern> </pg_pattern>
682 <pg_pattern name='firewall_config'
683 type='com.sun,fw_configuration' target='all'
686 <loctext xml:lang='C'>
687 Firewall configuration
691 <loctext xml:lang='C'>
692 Service firewall configuration.
695 <prop_pattern name='policy' type='astring'
698 <loctext xml:lang='C'>
703 <loctext xml:lang='C'>
704 Service firewall policy.
707 <visibility value='readwrite'/>
708 <cardinality min='1' max='1'/>
710 <value name='use_global'>
712 <loctext xml:lang='C'>
713 Apply Global Default policy, specified in network/ipfilter for the service. This is the default value.
719 <loctext xml:lang='C'>
720 No firewall (allow all).
726 <loctext xml:lang='C'>
727 Deny access to entities specified in 'apply_to' property.
733 <loctext xml:lang='C'>
734 Allow access to entities specified in 'apply_to' property.
740 <include_values type='values'/>
743 <prop_pattern name='block_policy' type='astring'
746 <loctext xml:lang='C'>
747 Firewall block policy
751 <loctext xml:lang='C'>
752 Service firewall block policy.
755 <visibility value='readwrite'/>
756 <cardinality min='1' max='1'/>
758 <value name='use_global'>
760 <loctext xml:lang='C'>
761 Apply Global Default block policy, specified in network/ipfilter for the service. This is the default value.
767 <loctext xml:lang='C'>
768 Block by dropping packets.
772 <value name='return'>
774 <loctext xml:lang='C'>
775 Block by returning RST or ICMP messages.
781 <include_values type='values'/>
784 <prop_pattern name="apply_to" type="astring"
787 <loctext xml:lang='C'>
792 <loctext xml:lang="C">
793 The source host and network IPv4 addresses, incoming network interfaces, and ippools to deny if the policy is set to deny, or accept if the policy is set to accept.
797 <prop_pattern name="apply_to_6" type="astring"
800 <loctext xml:lang='C'>
805 <loctext xml:lang="C">
806 The source host and network IPv6 addresses, incoming network interfaces, and ippools to deny if the policy is set to deny, or accept if the policy is set to accept.
810 <prop_pattern name="exceptions" type="astring"
813 <loctext xml:lang='C'>
818 <loctext xml:lang="C">
819 The source host and network IPv4 addresses, incoming network interfaces, and ippools to exempt from the set policy. That is, those to accept if the policy is set to deny, or to deny if the policy is set to accept.
823 <prop_pattern name="exceptions_6" type="astring"
826 <loctext xml:lang='C'>
831 <loctext xml:lang="C">
832 The source host and network IPv6 addressess, incoming network interfaces, and ippools to exempt from the set policy. That is, those to accept if the policy is set to deny, or to deny if the policy is set to accept.
836 <prop_pattern name="target" type="astring"
839 <loctext xml:lang='C'>
844 <loctext xml:lang="C">
845 The destination host and network IPv4 addresses, and ippools to deny if the policy is set to deny, or accept if the policy is set to accept.
849 <prop_pattern name="target6" type="astring"
852 <loctext xml:lang='C'>
857 <loctext xml:lang="C">
858 The destination host and network IPv6 addresses, and ippools to deny if the policy is set to deny, or accept if the policy is set to accept.
863 <pg_pattern type='notify_params' target='all' required='false'>
865 <loctext xml:lang='C'>
866 FMA and SMF notification parameters
870 <loctext xml:lang='C'>
871 Parameters for notification of FMA events and SMF state transitions.
874 <prop_pattern name='smtp,active' type='boolean'
877 <loctext xml:lang='C'>
878 smtp notification active
882 <loctext xml:lang='C'>
883 Notifcation mechanism smtp active status.
887 <prop_pattern name='smtp,to' type='astring'
890 <loctext xml:lang='C'>
891 smtp notification recipient
895 <loctext xml:lang='C'>
896 Recipient for smtp notification mechanism.
900 <prop_pattern name='smtp,reply-to' type='astring'
903 <loctext xml:lang='C'>
904 smtp notification reply-to
908 <loctext xml:lang='C'>
909 Header reply-to for smtp notification mechanism.
913 <prop_pattern name='snmp,active' type='boolean'
916 <loctext xml:lang='C'>
917 snmp notification active
921 <loctext xml:lang='C'>
922 Notifcation mechanism snmp active status.
926 <prop_pattern name='syslog,active' type='boolean'
929 <loctext xml:lang='C'>
930 syslog notification active
934 <loctext xml:lang='C'>
935 Notifcation mechanism syslog active status.