From owner-freebsd-arch@FreeBSD.ORG  Tue Jun 27 20:56:56 2006
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
X-Original-To: freebsd-arch@FreeBSD.org
Delivered-To: freebsd-arch@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id DC4C616AAC8;
	Tue, 27 Jun 2006 20:56:56 +0000 (UTC) (envelope-from gad@FreeBSD.org)
Received: from smtp8.server.rpi.edu (smtp8.server.rpi.edu [128.113.2.228])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C73FF45A98;
	Tue, 27 Jun 2006 20:38:28 +0000 (GMT) (envelope-from gad@FreeBSD.org)
Received: from [128.113.24.47] (gilead.netel.rpi.edu [128.113.24.47])
	by smtp8.server.rpi.edu (8.13.1/8.13.1) with ESMTP id k5RKcN0Q032616;
	Tue, 27 Jun 2006 16:38:24 -0400
Mime-Version: 1.0
Message-Id: <p06230900c0c744338e3e@[128.113.24.47]>
In-Reply-To: <62426.1151433799@critter.freebsd.dk>
References: <62426.1151433799@critter.freebsd.dk>
Date: Tue, 27 Jun 2006 16:38:23 -0400
To: "Poul-Henning Kamp" <phk@phk.freebsd.dk>, "M. Warner Losh" <imp@bsdimp.com>
From: Garance A Drosehn <gad@FreeBSD.org>
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
X-CanItPRO-Stream: default
X-RPI-SA-Score: undef - spam-scanning disabled
X-Scanned-By: CanIt (www . canit . ca)
Cc: pjd@FreeBSD.org, freebsd-arch@FreeBSD.org
Subject: Re: Accessing disks via their serial numbers.
X-BeenThere: freebsd-arch@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussion related to FreeBSD architecture <freebsd-arch.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-arch>
List-Post: <mailto:freebsd-arch@freebsd.org>
List-Help: <mailto:freebsd-arch-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Jun 2006 20:56:57 -0000

At 6:43 PM +0000 6/27/06, Poul-Henning Kamp wrote:
>
>I don't think we should allow names that are not "under
>control", and by not "under control" I mean device names
>which the device driver writer doesn't control or at the
>very least sanitize.
>
>For instance, if you want to create names that match random
>strings, like the tape labels in your robot, the sensible
>and security concious device driver writer makes sure the
>names have a unique prefix:
>
>	/dev/tape/$label
>
>or similar, so that devfs(8) rules can be written in a
>surefire way.

This strikes me as a worthwhile idea.  Leave the device-
entries in /dev as they are now, but then create some
sub-directories which would hold the more arbitrary (or
"non-sanitized") names.
      /dev/info/disk/serial-num
or   /dev/info/geom/whatever

etc.  That way there's only one new entry in /dev, and
people could just de-permit that directory (or turn the
feature off) if they didn't want or need to have that
extra info available.

-- 
Garance Alistair Drosehn     =               drosehn@rpi.edu
Senior Systems Programmer               or   gad@FreeBSD.org
Rensselaer Polytechnic Institute;             Troy, NY;  USA