Bug fix for liminal device code #3381
Conversation
There was a problem hiding this comment.
This looks correct to me, but I'm worried that it might have a bad consequence, due to the issue discussed here: #3353 . The consequence would be that there is a pool that is setup but has no mounted filesystems. But the LUKS metadata gets corrupted. The pool cannot be started and all the devices are torn down and now the pool is basically impossible to set up in the normal way and may be entirely unrecoverable. That may very well be better than the alternatives, but I'ld like to introduce the possibility for your consideration.
|
I think there are arguments on both ends. If we do tear down the pool, we could permanently lose data. If we don't, we could leave the devices in an unlocked state unintentionally which could leave sensitive data available to an attacker. I think data loss may be more of a concern here and I'm happy to simply default to putting the partially constructed pool into the partially constructed pool slot to be torn down through |
That seems like the best choice that we have available. |
jbaublitz
force-pushed
the
bug-fix-liminal
branch
from
2bea479 to
deeb45d
Compare
|
This is ready for review again. |
jbaublitz
force-pushed
the
bug-fix-liminal
branch
from
deeb45d to
0158e7c
Compare
|
I think this is actually a real bug. I need to fix the tests. |
jbaublitz
force-pushed
the
bug-fix-liminal
branch
3 times, most recently
from
110de51 to
3e0f140
Compare
|
Blocked by #3385 |
mulkieran
force-pushed
the
bug-fix-liminal
branch
from
3e0f140 to
5a4ddcb
Compare
jbaublitz
force-pushed
the
bug-fix-liminal
branch
from
5a4ddcb to
983c297
Compare
The path where starting pools automatically if the metadata indicates that they should be started did not correctly handle placing the partially stopped pool in the designated part of liminal devices.
jbaublitz
force-pushed
the
bug-fix-liminal
branch
from
983c297 to
2c7c31b
Compare
|
Merged in #3389 |
No description provided.