nefarious

April 4, 2015 ยท View on GitHub

Nefarious is an NFS implementation in Common Lisp providing both client and server.

1. Introduction

Nefarious is an NFS implemention in Common Lisp, supporting both client and server. Currently only NFSv3 is supported.

The Nefarious client has been used successfully with the FreeNFS on Windows 8.1.

The Nefarious server has been successfully mounted with nekodrive, the Linux NFS client, and the NFS client for Windows Server.

The Nefarious server does not implement the "raw" filesystem interface. Instead, it provides the interaction with the RPC layer and defines an API that users should implement to provide the underlying functionality. This makes it easy to export arbitrary filesystems over NFS.

Nefarious comes with a built-in provider which exports the host filesystem using the standard Common Lisp functions. Users are free to write their own provider. Indeed this is encouraged because the built-in functionality is intentionally simple and does not scale to anything beyond a trivial environment.

2. Client

All the NFS and mount protocol messages are implemented. Find the mount protocol messages in NEFARIOUS.MOUNT package and the NFS messages in NEFARIOUS package. For example:

(defvar dhandle (nfs.mount:call-mount "/" :host "myhost" :protocol :udp))

(nfs:call-read-dir dhandle :host "myhost" :protocol :udp)

(defvar fh (nfs:call-lookup dhandle "foo.txt" :host "myhost" :protocol :udp))

(nfs:call-read fh 0 1024 :host "myhost" :protocol :udp)

(nfs.mount:call-unmount "/" :host "myhost" :protocol :udp)

3. Server

In order for the server to actually export any filesystems over NFS, users should first register a provider. They should then simply start an RPC server.

3.1 Providers

Users should register providers to implement the NFS functionality. Providers are instances of subclasses of NFS-PROVIDER. Users should specialize the generic functions defined in providers.lisp to implement the functionality of each NFS method they wish to support. The generic functions correspond more or less to each NFS procedure. See the simple provider or the registry provider examples. It is possible to define providers which export a virtual filesystem, the Windows registry etc.

3.1.1 Simple provider

The default provider, SIMPLE-PROVIDER, can be used to export a directory from the local filesystem.

;; registers a simple provider that exports the directory named by *default-pathname-defaults* as "/"
(register-provider (make-simple-provider) "/")

;; registers a simple provider that exports the user's home directory
(register-provider (make-simple-provider (user-homedir-pathname)) "/home")

Please note that this provider really is very "simple". It does not try to do anything fancy, it will not scale to large directories of files (because it builds up a list of file handles and makes no attempt to purge them). It's main aim is to provide an example of a working provider. More serious users should endeavour to write their own provider.

3.1.2 Registry provider

Windows only. Exports the Windows registry as an NFS filesystem.

;; export the HKEY_LOCAL_MACHINE hive as "/reg"
(register-provider (nfs.registry:make-registry-provider :local-machine) "/reg")

;; export HKEY_LOCAL_MACHINE\SOFTWARE as "/hklm/software"
(register-provider (nfs.registry:make-registry-provider :local-machine "SOFTWARE") "/hklm/software")

3.2 Example

The server component is an RPC server which implements the port-mapper, mount and NFS programs. By default it listens on port 2049 (TCP and UDP). It will also listen on port 111 if a port mapper program is requred.

Run the server using:

;; if running on systems without a port mapper (such as Windows)
(nfs:start :port-mapper t)

(nfs:stop :port-mapper t)

;; if running on systems with a port mapper program (such as Linux)
(nfs:start :port-mapper nil)

(nfs:stop :port-mapper nil)

Mount from Linux using the typical command,

$ mount -t nfs -o udp,nolock,nfsvers=3 192.168.0.1:/ /media/nfs
$ ls -l /media/nfs
$ umount /media/nfs

If you have the NFS client for Windows Server installed, you can simply map the network drive from Windows explorer.

4. Network status Monitor

The NSM protocol is implemented. Clients should register to receive notifications of state changes in remote hosts by providing a callback function. The callback will be executed when the status change is received.

The local server must also persist a state sequence number. By default nefarious uses the file named by default-nsm-pathspec. You should ensure this has been set before starting the nefarious server.

5. TODO

Bad things will happen when calling READ-DIR and READ-DIR-PLUS on directories with lots of files. The specifications requires that the server be able to break these calls up into smaller pieces, so that their packed return vales fit within a specified number of bytes. This feels a bit wrong because the XDR serialization lives in the RPC layer, not at the application layer. As a result there is no way for the nfs server to "know" anything about the serialization (nor should it).

Nevertheless, we need to properly support it. The relevant generic function, nfs-provider-read-dir, accepts a cookie and cookie-verifier, as well as a count parameter. It can return the filenames, in addition to file cookies and a verifier. At present this is optional, although strongly recommended. The simple provider ignores the cookie and verifier, and does not return cookies or a verifier. So it does not scale to large directories. Also, experiements show that this is only a serious issue with directories with roughly 1000 files or more.

6. Notes

  • Nefarious is based on frpc, the underlying ONC-RPC implementation.
  • The primary purpose of both projects is to get something simple which works, rather than a high-performance, professional product. At best, it should be considered an educational project which could be used to form the basis of something better. Please do not expect high performance or a bug-free experience, although it would be nice to have both eventually.
  • The NSM protocol, which supports state change notifications, has been implemented but has not been rigorously tested.
  • The NLM protocol, which is used to implement file locking, has not been implemented.
  • Nefarious, like frpc, uses pounds for debug logging.
  • Would be nice to have a stream class to proxy reads/writes to the remote filesystem.

If running nefarious on systems with a port-mapper program already running (such as all typical Linux systems), you should not run the port-mapper program from Lisp. Set the PORT-MAPPER option to NFS:START as nil. This will register the nefarious RPC programs with the local portmapper instead of the Lisp port mapper.

7. License

Released under the terms of the MIT license.

Frank James Febuary 2015