| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 23 Apr 2009 13:29:25 -0400
From: Theodore Tso <tytso@....edu>
To: Jamie Lokier <jamie@...reable.org>
Cc: Andrew Morton <akpm@...ux-foundation.org>,
Valerie Aurora Henson <vaurora@...hat.com>,
linux-fsdevel@...r.kernel.org, linux-kernel@...r.kernel.org,
Chris Mason <chris.mason@...cle.com>,
Eric Sandeen <sandeen@...hat.com>,
Ric Wheeler <rwheeler@...hat.com>
Subject: Re: [RFC PATCH] fpathconf() for fsync() behavior
On Thu, Apr 23, 2009 at 05:43:30PM +0100, Jamie Lokier wrote:
> Sure, most apps are low quality in all respects. Many don't care about
> a bit of corruption when the battery runs out. There's no pressure to
> get that right, and it's quite hard to get right without good practice
> to follow, and good APIs which encourage good practice naturally.
>
> Imho, the rename-automagic-safety rule now in ext3/4 is _better_ than
> requiring apps to call fsync, because it doesn't require an immediate,
> synchronous disk flush and hardware cache flush. Fsync requires those
> things, to be useful for databases and mail servers. If you're
> renaming a lot of files, 1000s of explicit fsyncs serialises badly on
> rotating media.
Well, some KDE deskops rewrites *hundreds* of files on on startup, and
users get very cranky when their window layouts, for which they have
spent *hours* optimizing just so, get lost on application crash. (It
doesn't help that KDE was rewriting files even though nothing had
changed.... I can't remember if it was via rename or truncate, but I
have a bad feeling it was via truncate.)
> sync_file_range() itself is just too weird to use. Reading the man
> page many times, I still couldn't be sure what it does or is meant to
> do until asking on l-k a few years ago. My guess, from reading the
> man page, turned out to be wrong. The recommended way to use it for a
> database-like application was quite convoluted and required the app to
> apply its own set of mm-style heuristics. I never did find out if it
> commits data-locating metadata and file size after extending a file or
> filling a hole. It never seemed to emit I/O barriers.
Have you looked at the man page for sync_file_range()? It's gotten a
lot better. My version says it was last updated 2008-05-27, and it
now answers your question about whether it commits data-locating
metadata (it doesn't). It now has a bunch of examples how how to use
the flags in combination.
In terms of making it easier to use, some predefined bitfield
combinations is all that's necessary.
As far as extending the implementation so it calls into filesystem to
commit data-locating metadata, and other semantics such as "flush on
next commit, or "flush-when-upcoming-metadata-changes-such-as-a-rename",
we might need to change the implementation somewhat (or a lot).
But the interface does make a lot of sense. (But maybe that's because
I've spent too much time staring at all of the page writeback call
paths, and compared to that even string theory is pretty simple. :-)
- Ted
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists