From: Theodore Tso <tytso@mit.edu>
To: Greg Freemyer <greg.freemyer@gmail.com>
Cc: Ted Augustine <taugustine@techpathways.com>,
Alexey Fisher <bug-track@fisher-privat.net>,
linux-ext4@vger.kernel.org
Subject: Re: xt4 - True Readonly mount [WAS - Re: [Bug 14354] Bad corruption with 2.6.32-rc1 and upwards]
Date: Sun, 1 Nov 2009 01:45:42 -0400 [thread overview]
Message-ID: <20091101054542.GP18464@mit.edu> (raw)
In-Reply-To: <87f94c370910300720s5ea3d780o45fcf32303820a3c@mail.gmail.com>
On Fri, Oct 30, 2009 at 10:20:35AM -0400, Greg Freemyer wrote:
> Ignoring computer forensics, with LVM snapshots, hardware raid array
> snapshots, etc. even in the presence of a dirty log, we need to be
> able to mount a drive in true read-only fashion fro many backup
> operations to function correctly.
Can you go into more detail about "many backup operations"?
> XFS added an extra mount flag for that 5 or so years ago.
As Eric has already pointed out, "norecovery" and "noload" mean the
same thing. But not recovering the journal is dangerous; the file
system is not necessarily going to be consistent, and while the kernel
_shouldn't_ crash given an inconsistent filesystem image --- and a lot
of fsfuzzer testing and bug fixing means that it _probably_ won't
crash --- taking a backup of an inconsistent file system image due to
the journal recovery being suppressed isn't such a great idea.
As I mentioned, trying to _simulate_ a journal recovery by using the
journal instead of data blocks for those blocks in the journal is
possible, but it's a non-trival task to code up. A Google Summer of
Student project could probably do it, but it's not a day or half-day
project.
If someone is interested in simulating a journal recovery in a true ro
fashion, I'm happy to lay out the design for such a thing. Contact me
if you're interested....
- Ted
P.S. We can certainly add an alias so that ext4 understands
norecovery much like XFS does. If we are going to standardize on a
mount option, I'd agree that XFS's norecovery is probably a better
choice than ext3/4's noload.
next prev parent reply other threads:[~2009-11-01 5:45 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-10-30 14:20 xt4 - True Readonly mount [WAS - Re: [Bug 14354] Bad corruption with 2.6.32-rc1 and upwards] Greg Freemyer
2009-10-30 15:14 ` Eric Sandeen
2009-10-30 15:31 ` Alexey Fisher
2009-10-30 16:14 ` Eric Sandeen
2009-10-30 16:52 ` Alexey Fisher
2009-10-30 17:13 ` Eric Sandeen
2009-10-30 17:43 ` Duane Griffin
2009-10-30 15:47 ` Alexey Fisher
2009-11-01 5:45 ` Theodore Tso [this message]
2009-11-02 21:59 ` Greg Freemyer
2009-11-02 22:53 ` Andreas Dilger
2009-11-02 23:02 ` Eric Sandeen
2009-11-04 8:05 ` Andreas Dilger
2009-11-04 16:20 ` Eric Sandeen
2009-11-03 13:52 ` Theodore Tso
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20091101054542.GP18464@mit.edu \
--to=tytso@mit.edu \
--cc=bug-track@fisher-privat.net \
--cc=greg.freemyer@gmail.com \
--cc=linux-ext4@vger.kernel.org \
--cc=taugustine@techpathways.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox