| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 21 Oct 2013 10:15:40 +1100 From: Dave Chinner <david@...morbit.com> To: Theodore Ts'o <tytso@....edu> Cc: Eric Sandeen <sandeen@...hat.com>, Ext4 Developers List <linux-ext4@...r.kernel.org> Subject: Re: [PATCH] ext4: add ratelimiting to ext4 messages On Sun, Oct 20, 2013 at 07:18:00AM -0400, Theodore Ts'o wrote: > On Sat, Oct 19, 2013 at 06:04:55PM -0500, Eric Sandeen wrote: > > > When xfs "shuts down" the file system, it doesn't allow any read or > > > write accesses, right? So it's basically an even stronger version of > > > errors=remount-ro. We should perhaps discuss whether it would be > > > better to squelch errors if we've remounted the file system read-only, > > > or whether we should implement a complete shutdown errors option. > > > > Yeah, there is no errors=continue type option, that is probably too > > dangerous in general for the majority of users. > > What I was asking was whether it might make sense for us to implement > a errors=shutdown-fs option which causes all read operations (in > addition to write operations) to immediately return EIO. That would > certainly reduce the error flood risk, but if you did this on the root > file system, you might as well set errors=panic. This is what XFS's > default behavior on fserrors, correct? No. XFS's behaviour is dependent on the context the error occurs in. If it's a fatal or corruption inducing error, then it shuts down and returns errors to any attempt to read, write or modify anything in the filesystem. If the error is not fatal, then XFS behaves like errors=continue. IOWs, if you read a directory and trip over a corruption, the XFS filesystem will not shut down - it will just throw the EFSCORRUPTED/EIO error back to userspace and log it. However, if you are trying to modify that directory, and the IO error occurs after modifications have already been made to the directory but are not yet committed, then that's a fatal error and a shutdown will occur. i.e. IO errors in metadata are only fatal if we can't back out cleanly, otherwise they are simply logged and reported to userspace like any other IO error during a data read... Cheers, Dave. -- Dave Chinner david@...morbit.com -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists