From owner-freebsd-hackers Tue Aug 24 6: 9: 8 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from antioche.lip6.fr (antioche.lip6.fr [132.227.74.11]) by hub.freebsd.org (Postfix) with ESMTP id 475A314E8D for ; Tue, 24 Aug 1999 06:08:53 -0700 (PDT) (envelope-from bouyer@antioche.lip6.fr) Received: from antifer.ipv6.lip6.fr (antifer.ipv6.lip6.fr [132.227.72.132]) by antioche.lip6.fr (8.9.3/8.9.3) with ESMTP id PAA12670; Tue, 24 Aug 1999 15:06:54 +0200 (MEST) Received: (bouyer@localhost) by antifer.ipv6.lip6.fr (8.8.8/8.6.4) id PAA04117; Tue, 24 Aug 1999 15:06:53 +0200 (MEST) Date: Tue, 24 Aug 1999 15:06:52 +0200 From: Manuel Bouyer To: Wolfgang Solfrank Cc: freebsd-hackers@FreeBSD.ORG, tech-userlevel@netbsd.org, tech-kern@netbsd.org Subject: Re: Need some advice regarding portable user IDs Message-ID: <19990824150652.A4107@antioche.lip6.fr> References: <199908241259.OAA22272@kurt.tools.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.6us In-Reply-To: <199908241259.OAA22272@kurt.tools.de>; from Wolfgang Solfrank on Tue, Aug 24, 1999 at 02:59:09PM +0200 Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, Aug 24, 1999 at 02:59:09PM +0200, Wolfgang Solfrank wrote: > [...] > What I meant to say was that code of the various filesystems currently > assumes that the data on the media is somewhat consistent. Since the > intention is that Joe User can mount some arbitrary floppy (or zip disk, > or ...), the in kernel filesystem code needs to check any data it > reads off the media for plausibility. Sure, at last for some filesystems it's possible to crash the machine with a bad FS on a media. But you trust your users don't you ? :) Solving this is not trivial, I don't think changing the panic() to return(appropriate_error_code) is the rigth thing to do, in some case you want to panic if a filesystem gets corrupted. This could probably be switched on/off for root/non-root mounts. Also I think there are some cases where it's too late to recover gracefully. -- Manuel Bouyer, LIP6, Universite Paris VI. Manuel.Bouyer@lip6.fr -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message