From owner-freebsd-arch  Sun Jan  3 11:21:28 1999
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id LAA26936
          for freebsd-arch-outgoing; Sun, 3 Jan 1999 11:21:28 -0800 (PST)
          (envelope-from owner-freebsd-arch@FreeBSD.ORG)
Received: from ns1.yes.no (ns1.yes.no [195.204.136.10])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA26931
          for <freebsd-arch@freebsd.org>; Sun, 3 Jan 1999 11:21:26 -0800 (PST)
          (envelope-from eivind@bitbox.follo.net)
Received: from bitbox.follo.net (bitbox.follo.net [195.204.143.218])
	by ns1.yes.no (8.9.1a/8.9.1) with ESMTP id UAA18063
	for <freebsd-arch@freebsd.org>; Sun, 3 Jan 1999 20:20:54 +0100 (CET)
Received: (from eivind@localhost)
	by bitbox.follo.net (8.8.8/8.8.6) id UAA99499
	for freebsd-arch@freebsd.org; Sun, 3 Jan 1999 20:20:54 +0100 (MET)
Received: from spinner.netplex.com.au (spinner.netplex.com.au [202.12.86.3])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA03944
          for <freebsd-arch@FreeBSD.ORG>; Sat, 2 Jan 1999 18:52:59 -0800 (PST)
          (envelope-from peter@netplex.com.au)
Received: from spinner.netplex.com.au (peter@localhost [127.0.0.1])
	by spinner.netplex.com.au (8.9.1/8.9.1/Netplex) with ESMTP id KAA06791
	for <freebsd-arch@FreeBSD.ORG>; Sun, 3 Jan 1999 10:52:10 +0800 (WST)
	(envelope-from peter@spinner.netplex.com.au)
Message-Id: <199901030252.KAA06791@spinner.netplex.com.au>
X-Mailer: exmh version 2.0.2 2/24/98
To: freebsd-arch@FreeBSD.ORG
Subject: Re: DEVFS, the time has come... 
In-reply-to: Your message of "Sat, 02 Jan 1999 12:43:31 +0100."
             <19990102124331.02468@uriah.heep.sax.de> 
Date: Sun, 03 Jan 1999 10:52:05 +0800
From: Peter Wemm <peter@netplex.com.au>
Sender: owner-freebsd-arch@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

J Wunsch wrote:
> As Mike Smith wrote:
> 
> > I was just discussing this with Eivind; I think that we can comfortably 
> > cover every set of requirements with:
> > 
> >  - a kernel-wide default owner/group/permissions for new nodes, which 
> >    can be overridden by the device driver in response to eg. 
> >    configuration arguments or device-specific concerns.
> 
> I think (and I know i'm not alone with this) that the kernel should
> have no further knowledge of UIDs and GIDs except UID/GID 0:0.
> Everything else violates the POLA in case someone edits her
> /etc/master.passwd and /etc/group (and I hope you don't suggest that
> the kernel might read those files ;-)

Just repeating something I said earlier.  I think it would be better to 
enable drivers to choose a "class" much moreso than permissions.  This 
allows default uid/gid/mode etc to be exported to userland, but still 
comes up with a functional devfs (600, root, wheel) at boot and single 
user.

If we can do a:
  sysctl -w vfs.devfs.class.console.uid=`id -u peter`
and have all past and future console related devices being owned by uid 
433 instead of 0, then I'd be as happy as a clam.  However, doing an 
explicit 'chmod joebloggs /dev/ttyv8' would assign it a uid and sperate it 
from class updates via sysctl.  An /etc/*rc* script would handle setting 
permissions of the default classes at boot, and any explicit overrides.

[I'm somewhat doubtfully letting this repeat through, given that the
concept seems interesting and some people might have lost some of the
core of the other (long) mail in the heat of the moment. -EE]

Cheers,
-Peter

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message