From owner-cvs-all  Wed Jan 31  7:29: 1 2001
Delivered-To: cvs-all@freebsd.org
Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193])
	by hub.freebsd.org (Postfix) with ESMTP
	id 1E80937B65D; Wed, 31 Jan 2001 07:28:34 -0800 (PST)
Received: (from wollman@localhost)
	by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id KAA65294;
	Wed, 31 Jan 2001 10:28:06 -0500 (EST)
	(envelope-from wollman)
Date: Wed, 31 Jan 2001 10:28:06 -0500 (EST)
From: Garrett Wollman <wollman@khavrinen.lcs.mit.edu>
Message-Id: <200101311528.KAA65294@khavrinen.lcs.mit.edu>
To: Andrzej Bialecki <abial@webgiro.com>
Cc: cvs-all@FreeBSD.org, cvs-committers@FreeBSD.org
Subject: Re: cvs commit: src/sys/dev/ata ata-disk.c
In-Reply-To: <Pine.BSF.4.20.0101311019240.52835-100000@mx.webgiro.com>
References: <XFMail.010130163115.jhb@FreeBSD.org>
	<Pine.BSF.4.20.0101311019240.52835-100000@mx.webgiro.com>
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

<<On Wed, 31 Jan 2001 10:19:57 +0100 (CET), Andrzej Bialecki <abial@webgiro.com> said:

> Maybe what you want is the sysctl_add_oid(9)?

No, sysctl(3) should not be used to control device drivers.  That is a
job for ioctl(2).  sysctl(3) has (or should have) an all-or-nothing
security model: either the user is privileged, and can do anything, or
the user is not privileged, and can do nothing.  ioctl(2) provides for
a better security model: whatever permissions the filesystem has for
the device node in question.

-GAWollman

--
Garrett A. Wollman   | O Siem / We are all family / O Siem / We're all the same
wollman@lcs.mit.edu  | O Siem / The fires of freedom 
Opinions not those of| Dance in the burning flame
MIT, LCS, CRS, or NSA|                     - Susan Aglukark and Chad Irschick


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message