On Tue, Jun 03, 2008 at 12:12:49PM -0700, Jordan Brown wrote:
> Ceri Davies wrote:
>> I'm completely with you. I'm suggesting that svc.startd is the best place
>> to put the hook rather than the kernel.
>
> The problem is that one of the very last things that is done before the
> system shuts down completely is that the file systems are fully sync'ed out
> and unmounted. For UFS at least, that has to happen before the power is
> removed. That final sync happens inside uadmin(2), inside the kernel.
Hmm, the final sync of / may do, but by the time do_uadmin in svc.startd
calls uadmin(2) then all other filesystems are gone in which case there's
not much left for any UPS scripts to work with either.
> (I believe ZFS is more robust. Perhaps for Nevada/OpenSolaris we can
> require a ZFS root and unmount all UFS file systems before the final
> uadmin(2).)
Special casing for the root file system is undesirable; requiring a ZFS
root just because of this special case would be a travesty, IMHO.
As others have suggested, downgrading / to read-only sounds like the
best bet. Solving the question of what the hook mechanism would
actually look like might be the issue now. One presupposes that a
"magic" FMRI is out of the question?
Ceri
--
That must be wonderful! I don't understand it at all.
-- Moliere
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
URL:
<http://mail.opensolaris.org/pipermail/smf-discuss/attachments/20080603/26e25214/attachment.bin>
