Re: The danger of dishonest disk drives (WAS:Re: Need to remove a ghost file, but can't because it doesn't exist)

To: debian-user@lists.debian.org
Subject: Re: The danger of dishonest disk drives (WAS:Re: Need to remove a ghost file, but can't because it doesn't exist)
From: Douglas Tutty <dtutty@porchlight.ca>
Date: Thu, 23 Nov 2006 17:31:52 -0500
Message-id: <[🔎] 20061123223152.GA4327@pluto>
In-reply-to: <[🔎] 20061123213715.GA22205@topoi.pooq.com>
References: <[🔎] 20061115150223.GB2961@jadev.org> <[🔎] 20061117002840.GH2621@pluto> <[🔎] 87vel965x1.fsf@sophia.axel.nom> <[🔎] 20061121025226.GA14535@topoi.pooq.com> <[🔎] 20061121153845.GA1483@pluto> <[🔎] 20061122155207.GA19004@topoi.pooq.com> <[🔎] 20061123192557.GB2050@pluto> <[🔎] 20061123213715.GA22205@topoi.pooq.com>

On Thu, Nov 23, 2006 at 04:37:15PM -0500, hendrik@topoi.pooq.com wrote:
> On Thu, Nov 23, 2006 at 02:25:57PM -0500, Douglas Tutty wrote:

> > 
> > Note that IBM does say that jfs focus more on being able to restore
> > filesystem integrity than on data integrity.  For higher integrity they
> > suggest the sync mount option.
> 
> reiser4 is *supposed* to care about data integrity as well.  But it's 
> still not in a stable release according to its developer (last time I 
> looked) and he seems to be in jail at the moment.
> 

Hi Hendrik

Its not that JFS doesn't care about data integrity it just that, given
the choice to being able to mount a file system with some loss of data
or not being able to mount it after fixing and leaving the data
somewhere on the disk, JFS choses the former.  If it chose the latter,
then it would have to say something like "The file system is FUBAR and
you need to use alternate methods to retreive your data off this drive".
IBM would rather have the server come back up and carry on running, then
the sysadmin can restore a file from backups.

Since I haven't run into this problem, I don't know what types of error
messages it says, like "File system integrety has been restored, however,
some data has been lost from files x,y,z".  I have had FUBARed ext3 and
reiserfs partitions.

The question is how does the file system know that a write has made it
to disk.  E.g. if the file system is atomic transaction oriented, how
can the file system know that a commit has been committed if the drive
lies?

Doug.

Reply to:

Follow-Ups:
- Re: The danger of dishonest disk drives (WAS:Re: Need to remove a ghost file, but can't because it doesn't exist)
  - From: Tim Post <tim.post@netkinetics.net>

References:
- Need to remove a ghost file, but can't because it doesn't exist
  - From: hdv@jadev.org (J.A. de Vries)
- Re: Need to remove a ghost file, but can't because it doesn't exist
  - From: Douglas Tutty <dtutty@porchlight.ca>
- Re: Need to remove a ghost file, but can't because it doesn't exist
  - From: Johan Kullstam <kullstj-ml@comcast.net>
- Re: Need to remove a ghost file, but can't because it doesn't exist
  - From: hendrik@topoi.pooq.com
- Re: Need to remove a ghost file, but can't because it doesn't exist
  - From: Douglas Tutty <dtutty@porchlight.ca>
- The danger of dishonest disk drives (WAS:Re: Need to remove a ghost file, but can't because it doesn't exist)
  - From: hendrik@topoi.pooq.com
- Re: The danger of dishonest disk drives (WAS:Re: Need to remove a ghost file, but can't because it doesn't exist)
  - From: Douglas Tutty <dtutty@porchlight.ca>
- Re: The danger of dishonest disk drives (WAS:Re: Need to remove a ghost file, but can't because it doesn't exist)
  - From: hendrik@topoi.pooq.com

Prev by Date: RE: [OT] M$ collaborates with Suse
Next by Date: new podcast with stallman, allison and waugh
Previous by thread: Re: The danger of dishonest disk drives (WAS:Re: Need to remove a ghost file, but can't because it doesn't exist)
Next by thread: Re: The danger of dishonest disk drives (WAS:Re: Need to remove a ghost file, but can't because it doesn't exist)
Index(es):
- Date
- Thread