[linux-lvm] exposing snapshot block device
Ilia Zykov
mail at izyk.ru
Wed Oct 23 15:46:38 UTC 2019
On 23.10.2019 17:40, Gionatan Danti wrote:
> On 23/10/19 15:05, Zdenek Kabelac wrote:
>> Yep - we are recommending to disable zeroing as soon as chunksize >512K.
>>
>> But for 'security' reason the option it's up to users to select what
>> fits the needs in the best way - there is no 'one solution fits them
>> all' in this case.
>
> Sure, but again: if writing a block larger than the underlying chunk,
> zeroing can (and should) skipped. Yet I seem to remember that the new
At this case if we get reset before a full chunk written, the tail of
the chunk will be a foreign old data (if meta data already written) -
little security problem.
We need firstly write a data to the disk and then give the fully written
chunk to the volume. But I think it's 'little' complicate matters.
> block is zeroed in any case, even if it is going to be rewritten entirely.
>
> Do I remember wrongly?
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3695 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/linux-lvm/attachments/20191023/982235fa/attachment.p7s>
More information about the linux-lvm
mailing list