| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 01 Apr 2009 08:53:33 -0400 From: Chris Mason <chris.mason@...cle.com> To: Dave Chinner <david@...morbit.com> Cc: Mark Lord <lkml@....ca>, Stefan Richter <stefanr@...6.in-berlin.de>, Jeff Garzik <jeff@...zik.org>, Linus Torvalds <torvalds@...ux-foundation.org>, Matthew Garrett <mjg59@...f.ucam.org>, Alan Cox <alan@...rguk.ukuu.org.uk>, Theodore Tso <tytso@....edu>, Andrew Morton <akpm@...ux-foundation.org>, David Rees <drees76@...il.com>, Jesper Krogh <jesper@...gh.cc>, Linux Kernel Mailing List <linux-kernel@...r.kernel.org> Subject: Re: Linux 2.6.29 On Wed, 2009-04-01 at 10:55 +1100, Dave Chinner wrote: > On Mon, Mar 30, 2009 at 08:55:51AM -0400, Chris Mason wrote: > > On Mon, 2009-03-30 at 10:14 +1100, Dave Chinner wrote: > > > On Sat, Mar 28, 2009 at 11:17:08AM -0400, Mark Lord wrote: > > > > The better solution seems to be the rather obvious one: > > > > > > > > the filesystem should commit data to disk before altering metadata. > > > > > > Generalities are bad. For example: > > > > > > write(); > > > unlink(); > > > <do more stuff> > > > close(); > > > > > > This is a clear case where you want metadata changed before data is > > > committed to disk. In many cases, you don't even want the data to > > > hit the disk here. > > > > > > Similarly, rsync does the magic open,write,close,rename sequence > > > without an fsync before the rename. And it doesn't need the fsync, > > > either. The proposed implicit fsync on rename will kill rsync > > > performance, and I think that may make many people unhappy.... > > > > > > > Sorry, I'm afraid that rsync falls into the same category as the > > kde/gnome apps here. > > I disagree. > > > There are a lot of backup programs built around rsync, and every one of > > them risks losing the old copy of the file by renaming an unflushed new > > copy over it. > > If you crash while rsync is running, then the state of the copy > is garbage anyway. You have to restart from scratch and rsync will > detect such failures and resync the file. gnome/kde have no > mechanism for such recovery. > If this were the recovery system they had in mind, then why use rename at all? They could just as easily overwrite the original in place. Using rename implies they want to replace the old with a complete new version. There's also the window where you crash after the rsync is done but before all the new data safely makes it into the replacement files. > > rsync needs the flushing about a million times more than gnome and kde, > > and it doesn't have any option to do it automatically. > > And therein lies the problem with a "flush-before-rename" > semantic.... Here I was just talking about a rsync --flush-after-rename or something, not an option from the kernel. -chris -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists