From owner-freebsd-arch  Fri Jan  1 20:46:58 1999
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id UAA08430
          for freebsd-arch-outgoing; Fri, 1 Jan 1999 20:46:58 -0800 (PST)
          (envelope-from owner-freebsd-arch@FreeBSD.ORG)
Received: from ns1.yes.no (ns1.yes.no [195.204.136.10])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA08425
          for <freebsd-arch@freebsd.org>; Fri, 1 Jan 1999 20:46:56 -0800 (PST)
          (envelope-from eivind@bitbox.follo.net)
Received: from bitbox.follo.net (bitbox.follo.net [195.204.143.218])
	by ns1.yes.no (8.9.1a/8.9.1) with ESMTP id FAA05627
	for <freebsd-arch@freebsd.org>; Sat, 2 Jan 1999 05:46:33 +0100 (CET)
Received: (from eivind@localhost)
	by bitbox.follo.net (8.8.8/8.8.6) id FAA93714
	for freebsd-arch@freebsd.org; Sat, 2 Jan 1999 05:46:31 +0100 (MET)
Received: from ns.mt.sri.com (sri-gw.MT.net [206.127.105.141])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA07533
          for <freebsd-arch@FreeBSD.ORG>; Fri, 1 Jan 1999 20:39:21 -0800 (PST)
          (envelope-from nate@mt.sri.com)
Received: from mt.sri.com (rocky.mt.sri.com [206.127.76.100])
	by ns.mt.sri.com (8.8.8/8.8.8) with SMTP id VAA11728;
	Fri, 1 Jan 1999 21:38:51 -0700 (MST)
	(envelope-from nate@rocky.mt.sri.com)
Received: by mt.sri.com (SMI-8.6/SMI-SVR4)
	id VAA15410; Fri, 1 Jan 1999 21:38:50 -0700
Date: Fri, 1 Jan 1999 21:38:50 -0700
Message-Id: <199901020438.VAA15410@mt.sri.com>
From: Nate Williams <nate@mt.sri.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
To: Warner Losh <imp@village.org>
Cc: Mike Smith <mike@smith.net.au>, freebsd-arch@FreeBSD.ORG
Subject: Re: DEVFS, the time has come... 
In-Reply-To: <199901020312.UAA09044@harmony.village.org>
References: <199901020116.RAA03885@dingo.cdrom.com>
	<199901020312.UAA09044@harmony.village.org>
X-Mailer: VM 6.34 under 19.16 "Lille" XEmacs Lucid
Sender: owner-freebsd-arch@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> > Personally, I think a persistent DEVFS would be "better" than a 
> > non-persistent DEVFS.  But it's been quite clear for some time that 
> > persistence is something that can be built onto a working DEVFS, so a 
> > non-persistent DEVFS is something that we definitely want to start with.
> 
> We must remember that rc.* is not an acceptible solution because
> devices can come and go.

Agreed, this is my point exactly.

To counter Joerg's 'not bothered by non-persistent DEVFS', I'd have to
say that my experience with Solaris has been less than enthusiastic.
Note, it only dealt with one device (the tape drive), but it was a pain
in the butt.

I setup the machine so that 'normal users' could do their own backups to
the tape drive, but the default permissions would not allow this to
work, so I had to 'chmod' the device special node.  The combination of
the Solaris init implementation (where do I stick the chmod call in the
mess of init files?), the fact that the tape drive was 'mobile' (it
moved to a PC for backups on occasion), and the fact that I couldn't
make the mods persistent w/out a lot of work.

Yes, it could be done, but it was a huge pain in the backside to get it
to work 100%, and it shouldn't be that much work IMO.

> If my mouse were plugged into a USB port,
> and I unplugged it then plugged it back in, the device would go away
> and come back.  If I chmod'd it on boot, those setting would be lost.

I hope this isn't lost in the noise.  Any 'boot' configuration is a loss
for the (hopefully soon to be coming) 'dynamic' scheme that keeps
getting talked about.  Devices will come and go, and any scheme that
doesn't take this into account will be a net loss.

Also, if it requires too much user intervention to mess with things it
will also be a net loss.

Ex: I want to add a modem card to my FreeBSD laptop system.
1) Edit /etc/pccard.conf and add the new devices.
2) Edit /etc/devfs.init to add the new serial devices permissions.
3) Kill -hup /var/run/devfs.pid
4) Insert the card, and hope you got everything right.

You get the point.  If we plan on making the system secure out of the
box, then we need a way for people to make it usable w/out too much
grief.


> [The problem of insecure device-creations can be solved by defaulting
> to not create devices dynamically after boot. -EE]

This is unacceptable with hardware such as laptops and such.  We are
trying to move to a more dynamic model for the kernel, and this flies
completely in the face of this.

Nate

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message