geli+trim support
John-Mark Gurney
jmg at funkthat.com
Sat Jul 5 10:58:11 UTC 2014
Jesse Gooch wrote this message on Fri, Jul 04, 2014 at 18:11 -0700:
> Hi,
>
> On 04/07/14 01:19 AM, Poul-Henning Kamp wrote:
> > In message <53B6427D.1010403 at gooch.io>, Jesse Gooch writes:
> >
> >> IIRC, TRIM is bad for encryption anyway. You want everything to be
> >> random noise, even the empty sectors. TRIM defeats this.
> >
> > The problem is that there is nothing you can do.
> >
> > If you overwrite, your old sector is still unchanged somewhere in flash.
> >
> > If you TRIM, your old sector is still unchanged somewhere in flash, but
> > if you're lucky for slightly less time.
>
> Perhaps I misunderstand TRIM, isn't the point of TRIM that it zeroes out
> the sector ahead of time so it doesn't have to re-do it again when it
> stores more data in that sector later?
It is up the the implementation to choose what to do, depending upon
spec.. For SATA, there are three options... One is non-deterministic
read (meaning each read could return different data), one is deterministic
read where each read returns the same value, but it is random data, and
the third is data set to zero...
--
John-Mark Gurney Voice: +1 415 225 5579
"All that I will do, has been done, All that I have, has not."
More information about the freebsd-hackers
mailing list