| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 14 Feb 2009 22:24:43 +1100 From: Dave Chinner <david@...morbit.com> To: Fernando Luis Vazquez Cao <fernando@....ac.jp> Cc: Eric Sandeen <sandeen@...hat.com>, Fernando Luis Vázquez Cao <fernando@....ntt.co.jp>, Jan Kara <jack@...e.cz>, Theodore Tso <tytso@....EDU>, Alan Cox <alan@...rguk.ukuu.org.uk>, Pavel Machek <pavel@...e.cz>, kernel list <linux-kernel@...r.kernel.org>, Jens Axboe <jens.axboe@...cle.com>, Ric Wheeler <rwheeler@...hat.com> Subject: Re: vfs: Add MS_FLUSHONFSYNC mount flag On Sat, Feb 14, 2009 at 01:29:28AM +0900, Fernando Luis Vazquez Cao wrote: > On Fri, 2009-02-13 at 23:20 +1100, Dave Chinner wrote: > > On Fri, Feb 13, 2009 at 12:20:17AM -0600, Eric Sandeen wrote: > > > I'm just a little leery of the "dangerous" mount option proliferation, I > > > guess. > > > > You're not the only one, Eric. It's bad enough having to explain to > > users what barriers do once they have lost data after a power loss, > > let alone confusing them further by adding more mount options they > > will get wrong by accident.... > > That is precisely the reason why we should use sensible defaults, which > in this case means enabling barriers and flushing disk caches on > fsync()/fdatasync() by default. > > Adding either a new mount option (as you yourself suggest below) or a > sysfs tunable is desirable for those cases when we really do not need to > flush the disk write cache to guarantee integrity (battery-backed block > devices come to mind), or we want to be fast at the cost of potentially > losing some data. Mount options are the wrong place for this. if you want to change the behaviour of the block device, then it should be at that level. > > Quite frankly, the VFS should do stuff that is slow and safe > > and filesystems can choose to ignore the VFS (via filesystem > > specific mount options) if they want to be fast and potentially > > unsafe. > > To avoid unnecessary flushes and allow for filesystem-specific > optimizations I was considering the following approach: > > 1- Add flushonfsync mount option (as an aside, I am of the opinion that > it should be set by default). No mount option - too confusing for someone to work out what combination of barriers and flushing for things to work correctly. Just make filesystems issue the necessary flush calls or barrier IOs and allow the block devices to ignore flushes. > 2- Modify file_fsync() so that it checks whether FLUSHONFSYNC is set and > flushes the underlying device accordingly. With this we would cover all > filesystems that use the vfs-provided file_fsync() as their fsync method > (commonly used filesystems such as fat fall in this group). Just make it flush the block device. > 3- Advanced filesystems (ext3/4, XFS, btrfs, etc) which provide their > own fsync implementations are allowed to perform filesystem-specific > optimizations there to minimize the number of flushes and maximize > throughput. Um, you are describing what we already have in place. Almost every filesystem provides it's own ->fsync method, not just the "advanced" ones. It is those methods that need to be fixed to issue flushes, not just file_fsync(). > In this patch set I implemented (1) and (3) for ext3/4 to have some code > to comment on. I don't think we want (1) at all, and I thought that if ext3/4 are using barriers then the barrier I/O issued by the journal does the flush already. Hence (3) is redundant, right? FWIW, block device flushes are implemented by barrier IOs, so if the underlying block device doesn't support barriers then you can't flush the cache, either... Cheers, Dave. -- Dave Chinner david@...morbit.com -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists