From owner-svn-src-head@freebsd.org Mon Jan 4 17:41:23 2016 Return-Path: Delivered-To: svn-src-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 70551A61DE1 for ; Mon, 4 Jan 2016 17:41:23 +0000 (UTC) (envelope-from 000001520dbaa2ff-ae816bbe-034d-417e-a719-809d1614db70-000000@amazonses.com) Received: from a9-121.smtp-out.amazonses.com (a9-121.smtp-out.amazonses.com [54.240.9.121]) (using TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 35A52157F for ; Mon, 4 Jan 2016 17:41:22 +0000 (UTC) (envelope-from 000001520dbaa2ff-ae816bbe-034d-417e-a719-809d1614db70-000000@amazonses.com) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=dqtolf56kk3wpt62c3jnwboqvr7iedax; d=tarsnap.com; t=1451929281; h=Subject:To:References:Cc:From:Message-ID:Date:MIME-Version:In-Reply-To:Content-Type:Content-Transfer-Encoding; bh=A0OpwxBHpxI3McOcuL0s1rPa14kh/Z0XACCtwEgZVGE=; b=g5iWINCuuDTF0dR/TdJMFTjQsvr9mbIbUXqihXgVEc50dd/Saup/q1yWRQGh04gz FN5xsfsZIP56RhgPK4rnXBgsR2AquPxiZGIE+KJpcWLgcQMZWe5RRbYuQ+LiuR2aFft Qk3eCmJxMko1B8Yz82gc3CyWwpNhGZI5AEu3ytEE= DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=ug7nbtf4gccmlpwj322ax3p6ow6yfsug; d=amazonses.com; t=1451929281; h=Subject:To:References:Cc:From:Message-ID:Date:MIME-Version:In-Reply-To:Content-Type:Content-Transfer-Encoding:Feedback-ID; bh=A0OpwxBHpxI3McOcuL0s1rPa14kh/Z0XACCtwEgZVGE=; b=iWG17Q1RiJl0urUj/uV/MnQT4K2XSqKJxYPsO5rgEGaIuZDZrF4X4eOGWoq6vX9k MrzMoxocPBIVjUtDUYaXuQHgOpQDQaDMYt0ilUSyLpIAJLWIEaAjJPlvNkBhuzJX8b5 oIA9Ht2VXTarAEJVgq1UkUyvkz8MwChEi51MeHMg= Subject: Re: svn commit: r293115 - head/etc To: Warner Losh References: <201601031918.u03JImBs012182@repo.freebsd.org> <000001520d9553a7-b3ef495a-89d6-44ec-91c1-c4f9afc2c55b-000000@email.amazonses.com> Cc: Warner Losh , src-committers , "svn-src-all@freebsd.org" , "svn-src-head@freebsd.org" From: Colin Percival Message-ID: <000001520dbaa2ff-ae816bbe-034d-417e-a719-809d1614db70-000000@email.amazonses.com> Date: Mon, 4 Jan 2016 17:41:21 +0000 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:38.0) Gecko/20100101 Thunderbird/38.4.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-SES-Outgoing: 2016.01.04-54.240.9.121 Feedback-ID: 1.us-east-1.Lv9FVjaNvvR5llaqfLoOVbo2VxOELl7cjN0AOyXnPlk=:AmazonSES X-BeenThere: svn-src-head@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: SVN commit messages for the src tree for head/-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 Jan 2016 17:41:23 -0000 On 01/04/16 09:09, Warner Losh wrote: > On Mon, Jan 4, 2016 at 10:00 AM, Colin Percival > wrote: > On 01/03/16 11:18, Warner Losh wrote: > > Fix the read-only > > root case with horrible kludge of mounting rw removing the files, then > > mounting ro. > > The solution I intended when I introduced this (and used elsewhere) was to > set $firstboot_sentinel in /etc(/defaults)?/rc.conf. This case is precisely > why it's a shell variable, in fact. > > Except that's not exactly useful. NanoBSD boots with no filesystems writable > that are permanent. So I could set it to /var/firstboot or something like that, > and the error would go away. However, that wouldn't solve the problem > because /var is repopulated from base seed files every boot with NanoBSD > so we'd get firstboot behavior on every single boot. Or, we could remount > / rw and remove the file and remount it ro when a read-only root was > requested. Huh, ok. I assumed that you had a /conf/ or something like that for storing persistent configuration data. > I wondered to myself why we didn't use the same mechanism as nextboot > for this feature. Do you know? Doesn't that still write to the filesystem? -- Colin Percival Security Officer Emeritus, FreeBSD | The power to serve Founder, Tarsnap | www.tarsnap.com | Online backups for the truly paranoid