Received: by 2002:ac0:a582:0:0:0:0:0 with SMTP id m2-v6csp3087057imm; Fri, 19 Oct 2018 05:02:47 -0700 (PDT) X-Google-Smtp-Source: ACcGV60vddntAQC809jHkr9XEifA1/FCOnOv6BlJon2cSIfbzVMsO6MVABmCU8XHfDIbb+93AnUV X-Received: by 2002:a17:902:bb0a:: with SMTP id l10-v6mr2056026pls.325.1539950567169; Fri, 19 Oct 2018 05:02:47 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1539950567; cv=none; d=google.com; s=arc-20160816; b=xp/5xZ73dfBJujSt4k2PcxBTaS1aQZ98OPTAnrb9n6W7HkRdtvysWk/7OIbCDmI6S8 wkqcjpjzYNGtChSDq1mAp0H3qQld63t0Fy3H5AjPD/ehAFamGdCGx9c+E9wNpFWXty9w bCQwz8rIpDhk5nzPzzdFpSbWeNNE4+KoJsInTmqKkwlGBDqyX6vtO1QkPKDg5PQR+288 +q/kyWCyV8GiXrhoGVwQhcTTrh+u5V4ciZWGUvmBZJ6KeJoNPJpqLA62h4m2fMdKeIq1 Yd/jsv2BpRUTr5SpxPEtj/iCY35GbvfzMW2+WC+4hQo/fUSFCizxShOpaIW4IDqmnIWW uAUg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:dkim-signature; bh=WpJ5D07eJ33zRkw9eHZ6OBLrJWSPkwsd/VPUtOLOtKQ=; b=mPy9BaGjH95ayEtBvdN5RWUFt1RUeyRxF1hZiJjeDx2GoJV8fRjBybji8WqzC9oOn4 Uk1wuNJMRNtQAdiRLUKsifVQXFiylV9KntWH3c0aYf1cb2VZz2o/YNR5QRdW2o83IFg0 5dBPk8As27r50NIOs60x0h6FTT+kdWESPNIIQX06UeNZWLp8HNPrPXTOgr08zu5oAAlm rvgFJBtC3k7kCOAbP41uHkvdDGufvJcknYCOcrmdRQ0NJjRm/UnRuJVQeLtnjg89/6jO t2L5xLl7zWGf4JZIA8EM5lO/kByCNcTgqxmmM1OXOLzz3VpmZVjSM8BLq0MXDw3Q4PjU 44aw== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@infradead.org header.s=bombadil.20170209 header.b=b6V+vzHN; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id e11-v6si24095813pgi.139.2018.10.19.05.02.31; Fri, 19 Oct 2018 05:02:47 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=fail header.i=@infradead.org header.s=bombadil.20170209 header.b=b6V+vzHN; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727503AbeJSUGW (ORCPT + 99 others); Fri, 19 Oct 2018 16:06:22 -0400 Received: from bombadil.infradead.org ([198.137.202.133]:40496 "EHLO bombadil.infradead.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727170AbeJSUGW (ORCPT ); Fri, 19 Oct 2018 16:06:22 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=bombadil.20170209; h=In-Reply-To:Content-Type:MIME-Version :References:Message-ID:Subject:Cc:To:From:Date:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=WpJ5D07eJ33zRkw9eHZ6OBLrJWSPkwsd/VPUtOLOtKQ=; b=b6V+vzHNTNNiuF+hlKCPvhVLn o7Ah1sVWOxXkyRz1AVA2lPrUGE9Wk40CrPoZBzpeVOMj5xnvVbgXyBM/15VWlBNtwBuOOcXHtNngB cfvkO3t5LAx06SaAKvn5+PZ1mmNJhrXenJ1as5HejN+ZIMhVbgyDUdNMRa+Z6m8EyZ4SSOt9lGhbp rylLy3fQsWVcC1qBRyaT68k4hPUDPy7lHaGvfbgBHvF3k5TCKq5l4dXk9Psc8rsUI27uqNgv/ohzz YFzXLxZPVtiB7WMkAua41Fndk5lgCXshzpMPwKtfP3y5PWGjWyxGwS91XYxSBUS73l43qKHI7k1Or +NAHxUqKg==; Received: from hch by bombadil.infradead.org with local (Exim 4.90_1 #2 (Red Hat Linux)) id 1gDTSE-0006yc-6B; Fri, 19 Oct 2018 12:00:34 +0000 Date: Fri, 19 Oct 2018 05:00:33 -0700 From: Christoph Hellwig To: Vitaly Chikunov Cc: Christoph Hellwig , Alasdair Kergon , Mike Snitzer , dm-devel@redhat.com, Jonathan Corbet , Shaohua Li , linux-doc@vger.kernel.org, linux-kernel@vger.kernel.org, linux-raid@vger.kernel.org Subject: Re: [dm-devel] [PATCH] dm: add secdel target Message-ID: <20181019120033.GA7869@infradead.org> References: <20181014112439.8119-1-vt@altlinux.org> <20181019061945.GA7403@infradead.org> <20181019114944.syemvziebwfuruof@sole.flsd.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20181019114944.syemvziebwfuruof@sole.flsd.net> User-Agent: Mutt/1.9.2 (2017-12-15) X-SRS-Rewrite: SMTP reverse-path rewritten from by bombadil.infradead.org. See http://www.infradead.org/rpr.html Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Oct 19, 2018 at 02:49:44PM +0300, Vitaly Chikunov wrote: > On Thu, Oct 18, 2018 at 11:19:45PM -0700, Christoph Hellwig wrote: > > Just as a note: the name is a complete misowner, a couple overwrite > > are not in any way secure deletion. So naming it this way and exposing > > this as erase is a problem that is going to get back to bite us. > > In what way it's not secure deletion? > > It's secure deletion by overwriting discarded data instead of leaving it > as is. Overwriting data does not delete data. Most certainly not in Flash based SSDs, but also not in many storage arrays, or for that matter many modern disks that have sectore remapping and various kinds of non-volatile caches. There is a reason why devices tend to have special commands to perform secure erase - depending on the media they might or might not overwrite internally, but at least they do it in a way that actually works for the given media and device configuration. > dm-erase or dm-wipe? dm-discerase? dm-overwrite? > But still provide REQ_OP_SECURE_ERASE > support? On the one hand that is highly misleading and would warrant a warning (see above), on the other hand discard is purely advisory and can be skipped any time, including by intermediate layers. So I don't think you can actually do what you want without major changes to the whole I/O stack.