From: Oleg Drokin <green@namesys.com>
To: Jakob Oestergaard <jakob@unthought.net>,
linux-kernel@vger.kernel.org, Hans Reiser <reiser@namesys.com>
Subject: Re: ReiserFS buglet
Date: Tue, 24 Sep 2002 13:48:16 +0400 [thread overview]
Message-ID: <20020924134816.A23185@namesys.com> (raw)
In-Reply-To: <20020924092720.GF2442@unthought.net>
Hello!
On Tue, Sep 24, 2002 at 11:27:20AM +0200, Jakob Oestergaard wrote:
> > > I would suggest replacing the '!=' with a '<' in the while loop and
> > > adding a sanity check afterwards.
> > What if overheated CPU will cause a bitflip exactly after such checks?
> > You cannot protect against broken hardware. Such problems should be
> > fixed by fsck.
> Disk errors are common. Software can also flip that bit.
Not only disk errors are common, but also CPU/memory/chipset/wiring errors are.
> > > As I see it, the ReiserFS journal has the same problems as jbd wrt. to
> > > atomicity of write operations of indexes. Please see my recent mail
> > > about the jbd problems.
> > journal header in reiserfs only occupies first 20 bytes of the block,
> > since this fells within 1st 512 bytes hardware sector, it will be written
> > atomically, I presume.
> You presume wrong.
Oh, I missed your original email, thanks for noticing me.
> I posted to LKML about a month ago with some questions regarding exactly
> this issue. I had a disk that worked on 128 byte atomic writes - a
> standard IDE disk.
Hm. This is still much larger than 20 bytes we use.
> The conclusion was something like "we know jack about the disk's
> internal logic" so we need consistency measures instead of relying on
> anything from the disk.
Actually we submit data to disk in 512 byte chunks (4k blocksize case),
and disk should not write any data before it receives all of it and
checks the integrity (hm, this is only true for UDMA, though.)
Still I do not see why any sane disk would start to write a sector before fully
receiving new sector's content (thinking of disk drives of course, solid state
stuff should take its own measures in this direction too).
This is even more insane than ACKing data and putting it in not battery
backed cache to be lost on power loss (Yes, I know this is a common
practice now. At least there is a way either to turn such feature off
or to flush a cache on demand).
Thanks for bringing our attention to such issues, though changing disk format
is our of questions for reiser3 now, some kind of verifying single instance
on-disk structures may/will be incorporated in reiser4.
Bye,
Oleg
next prev parent reply other threads:[~2002-09-24 9:43 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-09-24 7:24 ReiserFS buglet Jakob Oestergaard
2002-09-24 9:21 ` Oleg Drokin
2002-09-24 9:27 ` Jakob Oestergaard
2002-09-24 9:42 ` Hans Reiser
2002-09-24 9:47 ` Jakob Oestergaard
2002-09-24 9:48 ` Oleg Drokin [this message]
2002-09-24 10:03 ` Jakob Oestergaard
2002-09-24 10:25 ` Oleg Drokin
2002-09-24 10:39 ` Jakob Oestergaard
2002-09-24 10:54 ` Oleg Drokin
2002-09-24 11:30 ` Hans Reiser
2002-09-24 11:35 ` Oleg Drokin
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20020924134816.A23185@namesys.com \
--to=green@namesys.com \
--cc=jakob@unthought.net \
--cc=linux-kernel@vger.kernel.org \
--cc=reiser@namesys.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox