From owner-freebsd-fs@FreeBSD.ORG Thu Feb 22 15:12:29 2007 Return-Path: X-Original-To: freebsd-fs@freebsd.org Delivered-To: freebsd-fs@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id C5B5816A405; Thu, 22 Feb 2007 15:12:29 +0000 (UTC) (envelope-from bjoern.koenig@alpha-tierchen.de) Received: from mail.liberty-hosting.de (mail.liberty-hosting.de [195.225.132.203]) by mx1.freebsd.org (Postfix) with ESMTP id 86B3B13C48D; Thu, 22 Feb 2007 15:12:29 +0000 (UTC) (envelope-from bjoern.koenig@alpha-tierchen.de) Received: from mail.liberty-hosting.de ([195.225.132.203]) by localhost (liberty-mail [195.225.132.203]) (amavisd-new, port 10024) with ESMTP id 67049-10; Thu, 22 Feb 2007 15:53:27 +0100 (CET) Received: from alpha-tierchen.de (port-212-202-170-218.dynamic.qsc.de [212.202.170.218]) by mail.liberty-hosting.de (Postfix) with ESMTP id D11AD180F4E; Thu, 22 Feb 2007 15:53:26 +0100 (CET) Received: from [192.168.1.2] (muhkuh.lan [192.168.1.2]) by alpha-tierchen.de (Postfix) with ESMTP id A083450907; Thu, 22 Feb 2007 15:53:24 +0100 (CET) Message-ID: <45DDAE70.8010508@alpha-tierchen.de> Date: Thu, 22 Feb 2007 15:53:36 +0100 From: =?ISO-8859-1?Q?Bj=F6rn_K=F6nig?= User-Agent: Thunderbird 1.5.0.9 (Windows/20061207) MIME-Version: 1.0 To: Eric Anderson References: <4d3557900702210155n2f57761fl6b8b4df500a1cf77@mail.gmail.com> <45DC59C0.8080206@freebsd.org> In-Reply-To: <45DC59C0.8080206@freebsd.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at mail.smartterra.de Cc: freebsd-fs@freebsd.org Subject: Re: The patch delete no umount eject flash disk freebsd panic X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Feb 2007 15:12:29 -0000 Eric Anderson schrieb: > So what happens when you have a regular drive fail then? Or yank a SATA > or other drive out from under the OS? > > This patch seems awfully dangerous to me.. I don't want to disagree. This is dangerous. Seriously, I have another thought: is it less dangerous to risk data loss or corruption of other file systems that are not affected just because we killed the whole system immediately? I had this problem several times: device removed and access to one of its file systems causes the death of the machine. For example: - insert a disk into floppy disk drive - mount its file system - remove floppy disk (oops!) - insert it again (quickly, before anything notice) - umount the file system => kernel panic The result is that other well running file systems on this machine became corrupt or inconsistent. This issue definitively needs a solution. I understand if you don't want to ignore and override the disappearance of a file system, but in this case we probably either need a kind of "soft panic" that tries to unmount other file systems before death blow, a safe way to force unmounting a broken file system without kernel panic explicitely or a configurable case differentiation. Regards Björn