From: Thiemo Nagel <thiemo.nagel@ph.tum.de>
To: "Aneesh Kumar K.V" <aneesh.kumar@linux.vnet.ibm.com>
Cc: Theodore Tso <tytso@mit.edu>,
Ext4 Developers List <linux-ext4@vger.kernel.org>
Subject: Re: [PATCH] introduce range check for extent pblock references
Date: Sat, 07 Feb 2009 19:49:25 +0100 [thread overview]
Message-ID: <498DD7B5.2040308@ph.tum.de> (raw)
In-Reply-To: <20090207173239.GA25942@skywalker>
Aneesh Kumar K.V wrote:
> On Sat, Feb 07, 2009 at 04:36:58PM +0100, Thiemo Nagel wrote:
>> This time I have aimed to catch all cases in which an invalid physical
>> block might be used and implemented checks directly in ext_pblock() and
>> idx_pblock() following the assumption that most of the times one of
>> these functions is called a device access to that address will follow.
>> If you think this is too heavy, I could also split the check from the
>> pblock calculation, but in that case I could only guess at which of the
>> several accesses to *_pblock() in extents.c a check would be necessary
>> and where it wouldn't and there would be the possibility of missing
>> something.
>
>
> Do we want to check for validity every time we look at the physical
> block of the extent. I guess that would be bad performance wise. I guess
> we should check only once when we read the extent from the disk. ??
Then we need to be careful not to miss a case. We would need to check
every time we either a) read from the physical block ourselves or b)
return the physical block number to a caller outside of ext4. On the
other hand I wonder if there are cases where one looks at the physical
block number which are not a) or b) and which would not benefit from the
added sanity check?
For repeated accesses to the same physical block number I cannot think
of a way to bookkeep whether the check already has been done, except if
that is implicit in the code flow and I don't know how frequent that
case is. If you think the performance gain is worth the risk of missing
a case (either now or during some future change), I can try to rewrite
the patch to implement the check on a case-by-case basis.
Kind regards,
Thiemo
next prev parent reply other threads:[~2009-02-07 18:49 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-02-07 15:36 [PATCH] introduce range check for extent pblock references Thiemo Nagel
2009-02-07 17:32 ` Aneesh Kumar K.V
2009-02-07 18:49 ` Thiemo Nagel [this message]
2009-02-07 19:59 ` Aneesh Kumar K.V
2009-02-07 20:01 ` [PATCH] Add checks to validate extent entries Aneesh Kumar K.V
2009-02-07 20:01 ` [PATCH] Validate extent details only when read from the disk Aneesh Kumar K.V
2009-02-09 10:31 ` Thiemo Nagel
2009-02-09 10:48 ` Aneesh Kumar K.V
2009-02-09 11:12 ` Thiemo Nagel
2009-02-09 10:26 ` [PATCH] Add checks to validate extent entries Thiemo Nagel
2009-02-09 10:31 ` Aneesh Kumar K.V
2009-02-09 10:40 ` Thiemo Nagel
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=498DD7B5.2040308@ph.tum.de \
--to=thiemo.nagel@ph.tum.de \
--cc=aneesh.kumar@linux.vnet.ibm.com \
--cc=linux-ext4@vger.kernel.org \
--cc=tytso@mit.edu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).