Panic in ffs_valloc (Was: Unexpected SU+J inconsistency AGAIN -- please, don't shift topic to ZFS!)
Don Lewis
truckman at FreeBSD.org
Wed Mar 6 08:23:32 UTC 2013
On 6 Mar, Lev Serebryakov wrote:
> Hello, Don.
> You wrote 6 марта 2013 г., 10:43:11:
>
> DL> When growing a file, the data *must* be written before writing the block
> DL> pointer that points to it. If this ordering isn't obeyed, then a system
> DL> crash that occurs between the block pointer write and the data write
> DL> would result in the file containing whatever garbage was in the data
> DL> block. That garbage could be the confidential contents of some other
> DL> user's previously deleted file.
> It is why confidential data should be zeored-out before file deletion
> :)
Performance when deleting multi-gigabyte, low-value files would kind of
suck if we did that ...
More information about the freebsd-fs
mailing list