Re: POSIX violation by writeback error

From: çæå
Date: Wed Sep 05 2018 - 04:37:44 EST

Next message: Jia-Ju Bai: "Re: [PATCH] lightnvm: pblk: Fix two sleep-in-atomic-context bugs in pblk_line_submit_smeta_io()"
Previous message: Minas Harutyunyan: "Re: [PATCH RFC] usb: dwc2: power off during shutdown"
In reply to: Rogier Wolff: "Re: POSIX violation by writeback error"
Next in thread: Austin S. Hemmelgarn: "Re: POSIX violation by writeback error"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Sep 5, 2018 at 4:04 PM Rogier Wolff <R.E.Wolff@xxxxxxxxxxxx> wrote:
>
> On Wed, Sep 05, 2018 at 09:39:58AM +0200, Martin Steigerwald wrote:
> > Rogier Wolff - 05.09.18, 09:08:
> > > So when a mail queuer puts mail the mailq files and the mail processor
> > > can get them out of there intact, nobody is going to notice. (I know
> > > mail queuers should call fsync and report errors when that fails, but
> > > there are bound to be applications where calling fsync is not
> > > appropriate (*))
> >
> > AFAIK at least Postfix MDA only reports mail as being accepted over SMTP
> > once fsync() on the mail file completed successfully. And IÂd expect
> > every sensible MDA to do this. I donÂt know how Dovecot MDA which I
> > currently use for sieve support does this tough.
>

Is every implementation of mail editor really going to call fsync()? Why
they are going to call fsync(), when fsync() is meant to persist the file
on disk which is apparently unnecessary if the delivering to SMTP task
won't start again after reboot?

> Yes. That's why I added the remark that mailers will call fsync and know
> about it on the write side. I encountered a situation in the last few
> days that when a developer runs into this while developing, would have
> caused him to write:
> /* Calling this fsync causes unacceptable performance */
> // fsync (fd);
>
> I know of an application somewhere that does realtime-gathering of
> call-records (number X called Y for Z seconds). They come in from a
> variety of sources, get de-duplicated standardized and written to
> files. Then different output modules push the data to the different
> consumers within the company. Billing among them.
>
> Now getting old data there would be pretty bad. And calling fsync
> all the time might have performance issues....
>
> That's the situation where "old data is really bad".
>
> But when apt-get upgrade replaces your /bin/sh and gets a write error
> returning error on subsequent reads is really bad.

At this point, the /bin/sh may be partially old and partially new. Execute
this corrupted bin is also dangerous though.

>
> It is more difficult than you think.
>
> Roger.
>
> --
> ** R.E.Wolff@xxxxxxxxxxxx ** http://www.BitWizard.nl/ ** +31-15-2600998 **
> ** Delftechpark 26 2628 XH Delft, The Netherlands. KVK: 27239233 **
> *-- BitWizard writes Linux device drivers for any device you may have! --*
> The plan was simple, like my brother-in-law Phil. But unlike
> Phil, this plan just might work.

Next message: Jia-Ju Bai: "Re: [PATCH] lightnvm: pblk: Fix two sleep-in-atomic-context bugs in pblk_line_submit_smeta_io()"
Previous message: Minas Harutyunyan: "Re: [PATCH RFC] usb: dwc2: power off during shutdown"
In reply to: Rogier Wolff: "Re: POSIX violation by writeback error"
Next in thread: Austin S. Hemmelgarn: "Re: POSIX violation by writeback error"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]