From: Christoph Anton Mitterer <calestyo@scientia.net>
To: dsterba@suse.cz
Cc: "linux-btrfs@vger.kernel.org" <linux-btrfs@vger.kernel.org>
Subject: Re: zerofree btrfs support?
Date: Thu, 15 Mar 2018 03:54:19 +0100 [thread overview]
Message-ID: <1521082459.4631.18.camel@scientia.net> (raw)
In-Reply-To: <20180314193847.GR32007@twin.jikos.cz>
Hey.
On Wed, 2018-03-14 at 20:38 +0100, David Sterba wrote:
> I have a prototype code for that and after the years, seeing the
> request
> again, I'm not against adding it as long as it's not advertised as a
> security feature.
I'd expect that anyone in the security area should know that securely
deleting data is not done by overwriting it (not even overwriting it
multiple times may be enough).
So I don't think that it would be btrfs' or zerofree's duty do teach
that to users.
The later's manpage doesn't advertise it for such purpose and even
contains a (though perhaps a bit too vague) warning:
>It may however be useful in other situations: for instance it can be
>used to make it more difficult to retrieve deleted data. Beware that
>securely deleting sensitive data is not in general an easy task and
>usually requires writing several times on the deleted blocks.
They should probably drop the first "can be used to make it difficult"
sentence... and add that even overwriting multiple times is often not
enough.
> The zeroing simply builds on top of the trim code, so it's merely
> adding
> the ioctl interface and passing down the desired operation.
Well I think what would be really mandatory if such support is added to
an 3rd party tools is, that it will definitely continue to work
(without causing corruptions or so), even if btrfs changes.
And if it's just using existing btrfs kernel code (and zerofree itself
would mostly do nothing)... than that seems quite promising. :-)
I personally don't need it that desperate anymore, since I got discard
support working in my qemu... but others may still benefit from it, so
if it's easy, why not!? :-)
Cheers,
Chris.
prev parent reply other threads:[~2018-03-15 2:54 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-03-10 2:55 zerofree btrfs support? Christoph Anton Mitterer
2018-03-10 8:16 ` Adam Borowski
2018-03-10 14:19 ` Christoph Anton Mitterer
2018-03-10 14:37 ` Roman Mamedov
2018-03-10 15:50 ` Adam Borowski
2018-03-10 16:58 ` Christoph Anton Mitterer
2018-03-10 18:31 ` Roman Mamedov
2018-03-10 18:39 ` Christoph Anton Mitterer
2018-03-10 16:55 ` Christoph Anton Mitterer
2018-03-14 19:38 ` David Sterba
2018-03-15 2:54 ` Christoph Anton Mitterer [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1521082459.4631.18.camel@scientia.net \
--to=calestyo@scientia.net \
--cc=dsterba@suse.cz \
--cc=linux-btrfs@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).