From: Michael Tokarev <mjt@tls.msk.ru>
To: Mikael Abrahamsson <swmike@swm.pp.se>
Cc: linux-raid <linux-raid@vger.kernel.org>
Subject: Re: stoppind md from kicking out "bad' drives
Date: Mon, 11 Nov 2013 11:51:14 +0400 [thread overview]
Message-ID: <52808C72.3000405@msgid.tls.msk.ru> (raw)
In-Reply-To: <alpine.DEB.2.02.1311110838190.26054@uplift.swm.pp.se>
11.11.2013 11:41, Mikael Abrahamsson wrote:
> On Mon, 11 Nov 2013, Michael Tokarev wrote:
>
>> The question is: what's missing currently to prevent kicking drives from md arrays at all? And I really mean preventing _both_ first failed drive (before start of resync) and second failed drive?
>
> Crank up the timeout settings a lot might help (I use 180 seconds), it would probably have stopped the first drive from being kicked out.
>
> But you really should be running RAID6 and not RAID5 (as you now have observed) to handle the failure case you just observed.
No, really, that's not the solutions I was asking for.
Yes raid6 is better in this context. But it has exactly the same properties
when drives start "semi-failing" - it is enough to have one bad sector in
different places of 3 drives for a catastrophic failure, while the array
can even continue to work normally because the bad sectors are in different
places.
It is the drive kick-off - the decision made by md driver - which makes the
failure catastrophic.
We may reduce probability of such event by using different configuration
tweaks, but the underlying problem remains.
> Write-intent bitmap would have stopped the initial full resync of the drive that was kicked out, which might have helped as well.
Nope, because the array were (re)syncing a hot spare, not the first failed
drive.
I asked about write-intent bitmap because it can act as a semi-permanent "list
of bad blocks on component devices" -- instead of kicking whole device out,
mark just the "bad place" on it in the bitmap (the place where we weren't
able to write _new_ data) and continue using it, just avoiding reading from
the marked-as-bad places (because even if it'll succees, the data will be
wrong already).
Thanks,
/mjt
next prev parent reply other threads:[~2013-11-11 7:51 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-11-11 7:28 stoppind md from kicking out "bad' drives Michael Tokarev
2013-11-11 7:41 ` Mikael Abrahamsson
2013-11-11 7:51 ` Michael Tokarev [this message]
2013-11-11 7:56 ` Mikael Abrahamsson
2013-11-11 8:05 ` Michael Tokarev
[not found] ` <CAPbD+Re7sVfSawjGFyMZMpU4Oaf3ULTW-UA3eoD_upcgxj3GOg@mail.gmail.com>
2013-11-13 15:45 ` Michael Tokarev
2013-11-11 15:55 ` Ian Pilcher
2013-11-23 22:05 ` Michael Tokarev
2013-11-24 23:00 ` NeilBrown
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=52808C72.3000405@msgid.tls.msk.ru \
--to=mjt@tls.msk.ru \
--cc=linux-raid@vger.kernel.org \
--cc=swmike@swm.pp.se \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.