[Drbd-dev] [PATCH 23/27] drbd: make intelligent use of blkdev_issue_zeroout
Lars Ellenberg
lars.ellenberg at linbit.com
Tue Jan 16 09:55:45 CET 2018
On Mon, Jan 15, 2018 at 10:07:38AM -0500, Mike Snitzer wrote:
> > See also:
> > https://www.redhat.com/archives/dm-devel/2017-March/msg00213.html
> > https://www.redhat.com/archives/dm-devel/2017-March/msg00226.html
>
> Right, now that you mention it it is starting to ring a bell (especially
> after I read your 2nd dm-devel archive url above).
> > In tree, either dm-thin learns to do REQ_OP_WRITE_ZEROES "properly",
> > so the result in this scenario is what we expect:
> >
> > _: unprovisioned, not allocated, returns zero on read anyways
> > *: provisioned, some arbitrary data
> > 0: explicitly zeroed:
> >
> > |gran|ular|ity | | | |
> > |****|****|____|****|
> > to|-be-|zero|ed
> > |**00|____|____|00**|
> >
> > (leave unallocated blocks alone,
> > de-allocate full blocks just like with discard,
> > explicitly zero unaligned head and tail)
>
> "de-allocate full blocks just like with discard" is an interesting take
> what it means for dm-thin to handle REQ_OP_WRITE_ZEROES "properly".
>
> > Or DRBD will have to resurrect that reinvented zeroout again,
> > with exactly those semantics. I did reinvent it for a reason ;)
>
> Yeah, I now recall dropping that line of development because it
> became "hard" (or at least harder than originally thought).
>
> Don't people use REQ_OP_WRITE_ZEROES to initialize a portion of the
> disk? E.g. zeroing superblocks, metadata areas, or whatever?
>
> If we just discarded the logical extent and then a user did a partial
> write to the block, areas that a user might expect to be zeroed wouldn't
> be (at least in the case of dm-thinp if "skip_block_zeroing" is
> enabled).
Oh-kay.
So "immediately after" such an operation
("zero-out head and tail and de-alloc full blocks")
a read to that area would return all zeros, as expected.
But once you do a partial write of something to one of those
de-allocated blocks (and skip_block_zeroing is enabled,
which it likely is due to "performance"),
"magically" arbitrary old garbage data springs into existence
on the LBAs that just before read as zeros.
lvmthin lvm.conf
Would that not break a lot of other things
(any read-modify-write of "upper layers")?
Would that not even be a serious "information leak"
(old garbage of other completely unrelated LVs leaking into this one)?
But thank you for that, I start to see the problem ;-)
> No, dm-thinp doesn't have an easy way to mark an allocated block as
> containing zeroes (without actually zeroing). I toyed with adding that
> but then realized that even if we had it it'd still require block
> zeroing be enabled. But block zeroing is done at allocation time. So
> we'd need to interpret the "this block is zeroes" flag to mean "on first
> write or read to this block it needs to first zero it". Fugly to say
> the least...
Maybe have a "known zeroed block" pool, allocate only from there,
and "lazy zero" unallocated blocks, add to the known-zero pool?
Fallback to zero-on-alloc if that known-zero-pool is depleted.
Easier said than done, I know.
> But sadly, in general, this is a low priority for me, so you might do
> well to reintroduce your drbd workaround.. sorry about that :(
No problem.
I'll put that back in, and document that we strongly recommend to
NOT skip_block_zeroing in those setups.
Thanks,
Lars
More information about the drbd-dev
mailing list