From: David Chinner <dgc@sgi.com>
To: Alberto Alonso <alberto@ggsys.net>
Cc: David Chinner <dgc@sgi.com>, Pallai Roland <dap@mail.index.hu>,
Linux-Raid <linux-raid@vger.kernel.org>,
xfs@oss.sgi.com
Subject: Re: raid5: I lost a XFS file system due to a minor IDE cable problem
Date: Fri, 25 May 2007 18:36:50 +1000 [thread overview]
Message-ID: <20070525083650.GO85884050@sgi.com> (raw)
In-Reply-To: <1180071831.21028.125.camel@w100>
On Fri, May 25, 2007 at 12:43:51AM -0500, Alberto Alonso wrote:
> > > The difference between ext3 and XFS is that ext3 will remount to
> > > read-only on the first write error but the XFS won't, XFS only fails
> > > only the current operation, IMHO. The method of ext3 isn't perfect, but
> > > in practice, it's working well.
> >
> > XFS will shutdown the filesystem if metadata corruption will occur
> > due to a failed write. We don't immediately fail the filesystem on
> > data write errors because on large systems you can get *transient*
> > I/O errors (e.g. FC path failover) and so retrying failed data
> > writes is useful for preventing unnecessary shutdowns of the
> > filesystem.
> >
> > Different design criteria, different solutions...
>
> I think his point was that going into a read only mode causes a
> less catastrophic situation (ie. a web server can still serve
> pages).
Sure - but once you've detected one corruption or had metadata
I/O errors, can you trust the rest of the filesystem?
> I think that is a valid point, rather than shutting down
> the file system completely, an automatic switch to where the least
> disruption of service can occur is always desired.
I consider the possibility of serving out bad data (i.e after
a remount to readonly) to be the worst possible disruption of
service that can happen ;)
> Maybe the automatic failure mode could be something that is
> configurable via the mount options.
If only it were that simple. Have you looked to see how many
hooks there are in XFS to shutdown without causing further
damage?
% grep FORCED_SHUTDOWN fs/xfs/*.[ch] fs/xfs/*/*.[ch] | wc -l
116
Changing the way we handle shutdowns would take a lot of time,
effort and testing. When can I expect a patch? ;)
> I personally have found the XFS file system to be great for
> my needs (except issues with NFS interaction, where the bug report
> never got answered), but that doesn't mean it can not be improved.
Got a pointer?
Cheers,
Dave.
--
Dave Chinner
Principal Engineer
SGI Australian Software Group
next prev parent reply other threads:[~2007-05-25 8:37 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <200705241318.30711.dap@mail.index.hu>
2007-05-24 11:20 ` raid5: I lost a XFS file system due to a minor IDE cable problem Justin Piszcz
2007-05-25 0:05 ` David Chinner
2007-05-25 1:35 ` Pallai Roland
2007-05-25 4:55 ` David Chinner
2007-05-25 5:43 ` Alberto Alonso
2007-05-25 8:36 ` David Chinner [this message]
2007-05-28 22:45 ` Alberto Alonso
2007-05-29 3:28 ` David Chinner
2007-05-29 3:37 ` Alberto Alonso
2007-05-25 14:35 ` Pallai Roland
2007-05-28 0:30 ` David Chinner
2007-05-28 1:50 ` Pallai Roland
2007-05-28 2:17 ` David Chinner
2007-05-28 11:17 ` Pallai Roland
2007-05-28 23:06 ` David Chinner
2007-05-25 14:01 ` Pallai Roland
2007-05-28 12:53 ` Pallai Roland
2007-05-28 15:30 ` Pallai Roland
2007-05-28 23:36 ` David Chinner
2007-05-30 16:11 ` Christian Kujau
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20070525083650.GO85884050@sgi.com \
--to=dgc@sgi.com \
--cc=alberto@ggsys.net \
--cc=dap@mail.index.hu \
--cc=linux-raid@vger.kernel.org \
--cc=xfs@oss.sgi.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox