| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 2 Aug 2010 13:05:17 +0200 From: Christof Schmitt <christof.schmitt@...ibm.com> To: "Martin K. Petersen" <martin.petersen@...cle.com> Cc: Jens Axboe <axboe@...nel.dk>, linux-scsi@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [patch 0/1] Apply segment size and segment boundary to integrity data On Wed, Jul 21, 2010 at 12:20:01AM -0400, Martin K. Petersen wrote: > >>>>> "Christof" == Christof Schmitt <christof.schmitt@...ibm.com> writes: > > Christof> To have a simple approach that covers the case with one > Christof> integrity data segment per user data segment, we only report > Christof> half the size for the scatterlist length when running > Christof> DIX. This guarantees that the other half can be used for > Christof> integrity data. > > Yup, a few of our partners did something similar. > > My concern is the scenario where we submit lots of 512-byte writes that > get merged into (in your case) 4 KB segments. Each of those 512-byte > writes could come with an 8-byte integrity metadata tuple. And so you'd > need 8 DI scatterlist elements per data element. > > > Christof> Meaning the integrity data sg list would have more entries > Christof> than max_segments? I have not seen this during my experiments, > Christof> but then i likely have not hit every case of a possible > Christof> request layout. > > dd to the block device is usually a good way to issue long scatterlists. > > > Christof> Ok, i have to look into that as well. It would be an issue > Christof> with the approach we are looking at now: If there are > Christof> max_segments data segments, and more than max_segments > Christof> integrity data segments, we will overrun the hardware > Christof> constraint. > > Ok. After looking at the given facts, this seems to be the missing part: The zfcp hardware interface has an maximum number of data segments that can be part of one request. In the experimental zfcp DIF/DIX patch (now in scsi-misc), zfcp reserves half of the data segments for integrity data. But if small bios have been merged until hitting queue_max_segments, there may be more integrity data segments. To summarize the limits i see in the zfcp hardware: - Maximum size of 4k per segment - The segments must not cross page boundaries - The number of segments per request is limited My preferred approach would be to set the limits on the queue, so that the request adheres to the hardware limitations and can be passed on directly to the hardware. I would like to avoid splitting large segments in the driver code, and i especially want to avoid having to copy the integrity data to new buffers to adhere to the hardware constraints. Looking at the block layer, the number of integrity data segments could be limited with an additional check in ll_new_hw_segment. What would be the preferred approach for handling the integrity data limits in the block layer? Introduce new queue limits for integrity data, or assume that the limits for integrity data are the same as for user data? I can update my patch accordingly and include a check for the maximum number of segments. Christof -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists