From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751751AbbEZVuF (ORCPT ); Tue, 26 May 2015 17:50:05 -0400 Received: from mail.phunq.net ([184.71.0.62]:44984 "EHLO starbase.phunq.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751262AbbEZVuB (ORCPT ); Tue, 26 May 2015 17:50:01 -0400 Message-ID: <5564EA83.80108@phunq.net> Date: Tue, 26 May 2015 14:49:55 -0700 From: Daniel Phillips User-Agent: Mozilla/5.0 (X11; Linux i686; rv:31.0) Gecko/20100101 Thunderbird/31.6.0 MIME-Version: 1.0 To: Rik van Riel , Jan Kara CC: David Lang , tux3@tux3.org, linux-kernel@vger.kernel.org, linux-fsdevel@vger.kernel.org, OGAWA Hirofumi Subject: Re: [FYI] tux3: Core changes References: <555D0FDF.3070303@phunq.net> <555D500B.4080901@phunq.net> <13c8bcdf-70e8-43d5-a05f-58ad839dbfd0@phunq.net> <5563F5C8.2040806@redhat.com> <67294911-1776-46b8-916d-0e5642a38725@phunq.net> <20150526070910.GA3307@quack.suse.cz> <20150526090058.GA8024@quack.suse.cz> <5564D60E.6000306@phunq.net> <5564E76D.7080901@redhat.com> In-Reply-To: <5564E76D.7080901@redhat.com> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 05/26/2015 02:36 PM, Rik van Riel wrote: > On 05/26/2015 04:22 PM, Daniel Phillips wrote: >> On 05/26/2015 02:00 AM, Jan Kara wrote: >>> So my opinion is: Don't fork the page if page_count is elevated. You can >>> just wait for the IO if you need stable pages in that case. It's slow but >>> it's safe and it should be pretty rare. Is there any problem with that? >> >> That would be our fallback if anybody discovers a specific case where page >> fork breaks something, which so far has not been demonstrated. >> >> With a known fallback, it is hard to see why we should delay merging over >> that. Perfection has never been a requirement for merging filesystems. On > > However, avoiding data corruption by erring on the side of safety is > a pretty basic requirement. Erring on the side of safety is still an error. As a community we have never been fond of adding code or overhead to fix theoretical bugs. I do not see why we should relax that principle now. We can fix actual bugs, but theoretical bugs are only shapeless specters passing in the night. We should not become frozen in fear of them. >> the contrary, imperfection is a reason for merging, so that the many >> eyeballs effect may prove its value. > > If you skip the page fork when there is an elevated page count, tux3 > should be safe (at least from that aspect). Only do the COW when there > is no "strange" use of the page going on. Then you break the I in ACID. There must be a compelling reason to do that. Regards, Daniel From mboxrd@z Thu Jan 1 00:00:00 1970 From: Daniel Phillips Subject: Re: [FYI] tux3: Core changes Date: Tue, 26 May 2015 14:49:55 -0700 Message-ID: <5564EA83.80108@phunq.net> References: <555D0FDF.3070303@phunq.net> <555D500B.4080901@phunq.net> <13c8bcdf-70e8-43d5-a05f-58ad839dbfd0@phunq.net> <5563F5C8.2040806@redhat.com> <67294911-1776-46b8-916d-0e5642a38725@phunq.net> <20150526070910.GA3307@quack.suse.cz> <20150526090058.GA8024@quack.suse.cz> <5564D60E.6000306@phunq.net> <5564E76D.7080901@redhat.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Cc: David Lang , tux3@tux3.org, linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, OGAWA Hirofumi To: Rik van Riel , Jan Kara Return-path: In-Reply-To: <5564E76D.7080901@redhat.com> List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: tux3-bounces@phunq.net Sender: "Tux3" List-Id: linux-fsdevel.vger.kernel.org On 05/26/2015 02:36 PM, Rik van Riel wrote: > On 05/26/2015 04:22 PM, Daniel Phillips wrote: >> On 05/26/2015 02:00 AM, Jan Kara wrote: >>> So my opinion is: Don't fork the page if page_count is elevated. You can >>> just wait for the IO if you need stable pages in that case. It's slow but >>> it's safe and it should be pretty rare. Is there any problem with that? >> >> That would be our fallback if anybody discovers a specific case where page >> fork breaks something, which so far has not been demonstrated. >> >> With a known fallback, it is hard to see why we should delay merging over >> that. Perfection has never been a requirement for merging filesystems. On > > However, avoiding data corruption by erring on the side of safety is > a pretty basic requirement. Erring on the side of safety is still an error. As a community we have never been fond of adding code or overhead to fix theoretical bugs. I do not see why we should relax that principle now. We can fix actual bugs, but theoretical bugs are only shapeless specters passing in the night. We should not become frozen in fear of them. >> the contrary, imperfection is a reason for merging, so that the many >> eyeballs effect may prove its value. > > If you skip the page fork when there is an elevated page count, tux3 > should be safe (at least from that aspect). Only do the COW when there > is no "strange" use of the page going on. Then you break the I in ACID. There must be a compelling reason to do that. Regards, Daniel