| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 30 Aug 2009 10:12:06 -0400 From: Ric Wheeler <rwheeler@...hat.com> To: david@...g.hm CC: Pavel Machek <pavel@....cz>, Theodore Tso <tytso@....edu>, NeilBrown <neilb@...e.de>, Rob Landley <rob@...dley.net>, Florian Weimer <fweimer@....de>, Goswin von Brederlow <goswin-v-b@....de>, kernel list <linux-kernel@...r.kernel.org>, Andrew Morton <akpm@...l.org>, mtk.manpages@...il.com, rdunlap@...otime.net, linux-doc@...r.kernel.org, linux-ext4@...r.kernel.org, corbet@....net Subject: Re: raid is dangerous but that's secret (was Re: [patch] ext2/3: document conditions when reliable operation is possible) On 08/30/2009 08:55 AM, david@...g.hm wrote: > On Sun, 30 Aug 2009, Pavel Machek wrote: > >>>> From: Theodore Tso <tytso@....edu> >>>> >>> To use your ABS brakes analogy, just becase it's not safe to rely on >>> ABS brakes if the "check brakes" light is on, that doesn't justify >>> writing something alarmist which claims that ABS brakes don't work >>> 100% of the time, don't use ABS brakes, they're broken!!!! >> >> If it only was this simple. We don't have 'check brakes' (aka >> 'journalling ineffective') warning light. If we had that, I would not >> have problem. >> >> It is rather that your ABS brakes are ineffective if 'check engine' >> (RAID degraded) is lit. And yes, running with 'check engine' for >> extended periods may be bad idea, but I know people that do >> that... and I still hope their brakes work (and believe they should >> have won suit for damages should their ABS brakes fail). > > the 'RAID degraded' warning says that _anything_ you put on that block > device is at risk. it doesn't matter if you are using a filesystem > with a journal, one without, or using the raw device directly. > > David Lang The easiest way to lose your data in Linux - with RAID, without RAID, S-ATA or SAS - is to run with the write cache enabled. If you compare the size of even a large RAID stripe it will be measured in KB and as this thread has mentioned already, you stand to have damage to just one stripe (or even just a disk sector or two). If you lose power with the write caches enabled on that same 5 drive RAID set, you could lose as much as 5 * 32MB of freshly written data on a power loss (16-32MB write caches are common on s-ata disks these days). For MD5 (and MD6), you really must run with the write cache disabled until we get barriers to work for those configurations. It would be interesting for Pavel to retest with the write cache enabled/disabled on his power loss scenarios with multi-drive RAID. Regards, Ric -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists