From: Tillmann Steinbrecher <tsteinbr@igd.fraunhofer.de>
To: linux-kernel@vger.kernel.org, dm-crypt@saout.de
Subject: dm-crypt is broken and causes massive data corruption
Date: Mon, 08 May 2006 19:20:12 +0200 [thread overview]
Message-ID: <445F7DCC.2000508@igd.fraunhofer.de> (raw)
Hi,
it's been many months that dm-crypt has been broken, and is known to
cause massive data corruption.
Various people have noticed this, have lost data and wasted many hours
trying to find the reason, and still NOTHING is being done about it. The
problem seems to occur only in conjunction with RAID (dm-crypt on top of
RAID) (or possibly it occurs only in conjunction with large
filesystems). I've had issues with that for many months as well, trying
to eliminate other possible reasons. There are none.
Let's say this loud and clear:
dm-crypt causes data corruption. Yet it is not even marked as
"EXPERIMENTAL" in the kernel config, when in fact it's more than just
experimental, it's "DANGEROUS/BROKEN".
Here are some more reports:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336153
(That was for 2.6.8, but the problems are still the same in recent
kernel versions)
http://www.ubuntuforums.org/showthread.php?t=170304
(Similar config, similar problem - this time with 2.6.12 and 2.6.15)
http://episteme.arstechnica.com/groupee/forums/a/tpc/f/96509133/m/282007248731/r/224008458731
(Again the same constellation, and the same problem.)
http://marc.theaimsgroup.com/?l=linux-kernel&m=114664786711245&w=2
(Same config, same problem. This time with 2.6.16!)
BTW the problem seems to be independent from the filesystem used;
however, filesystems seem to be more or less robust against this type of
corruption. With ext3, the filesystem would mess itself up within hours
on my system. With XFS, massive corruption (all data lost) had occured
after a few weeks. With ReiserFS 3, occasional problems that were
fixable using reiserfsck --rebuild-tree occured.
Sorry for the rant. But I think this is an important issue that needs to
be adressed ASAP, before even more people lose their data. Keep in mind
that crypto filesystems are typically used for systems where the data is
sensitive and important! Something must be done about it - in the worst
case, removing dm-crypt from the mainline kernel.
Please CC replies to me, as I'm not subscribed to either linux-kernel or
dm-crypt.
bye,
Tillmann
--
Dipl.-Ing. Tillmann Steinbrecher http://www.igd.fhg.de/~tsteinbr/
Cognitive Computing & Medical Imaging
Fraunhofer IGD, Fraunhoferstr. 5, D-64283 Darmstadt, Germany
All opinions are mine and not those of my employer.
next reply other threads:[~2006-05-08 17:20 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-05-08 17:20 Tillmann Steinbrecher [this message]
2006-05-08 17:57 ` [dm-crypt] dm-crypt is broken and causes massive data corruption Simpson, Brett
2006-05-08 18:27 ` Christophe Saout
2006-05-09 19:04 ` Alasdair G Kergon
2006-05-11 15:15 ` Paul Slootman
2006-05-11 15:42 ` Andrea Gelmini
2006-05-11 23:17 ` Christian Schmidt
2006-05-12 21:47 ` Dan Merillat
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=445F7DCC.2000508@igd.fraunhofer.de \
--to=tsteinbr@igd.fraunhofer.de \
--cc=dm-crypt@saout.de \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox