06.10.2017 20:49, Hans van Kranenburg пишет: > On 10/06/2017 07:24 PM, David Sterba wrote: >> On Thu, Oct 05, 2017 at 05:03:47PM +0800, Anand Jain wrote: >>> On 10/05/2017 04:22 PM, Nikolay Borisov wrote: >>>> Currently when a read-only snapshot is received and subsequently its ro >>>> property >>>> is set to false i.e. switched to rw-mode the received_uuid of that subvol >>>> remains >>>> intact. However, once the received volume is switched to RW mode we cannot >>>> guaranteee that it contains the same data, so it makes sense to remove the >>>> received uuid. The presence of the received_uuid can also cause problems >>>> when >>>> the volume is being send. > > Are the 'can cause problems when being send' explained somewhere? >
If received_uuid is present, btrfs send will use it instead of subvolume uuid. It means btrfs receive may find wrong volume as differential stream base. Example that was demonstrated earlier 1. A -> B on remote system S. B now has received_uui == A 2. A -> C on local system. C now has received_uuid == A 3. C is made read-write and changed. 4. Create snapshot D from C and do "btrfs send -p C D" to system S. Now btrfs receive on S will get base uuid of A and will find B. So any changes between B and C are silently lost. >>> >>> Wonder if this [1] approach was considered >>> [1] >>> - set a flag on the subvolume to indicate its dirtied so that >>> received_uuid can be kept forever just in case if user needs it for some >>> reference at a later point of time. >> >> Yeah, we need to be careful here. There are more items related to the >> recived subvolume, besides received_uuid there's rtransid and rtime so >> they might need to be cleared as well. >> >> I don't remember all the details how the send/receive and uuids >> interact. Switching from ro->rw needs to affect the 'received' status, >> but I don't know how. The problem is that some information is being lost >> although it may be quite important to the user/administrator. In such >> cases it would be convenient to request a confirmation via a --force >> flag or something like that. > > On IRC I think we generally recommends users to never do this, and as a > best practice always clone the snapshot to a rw subvolume in a different > location if someone wants to proceed working with the contents and > changing them as opposed to messing with the ro/rw attributes. > > So, what about option [2]: > > [2] if a subvolume has a received_uuid, then just do not allow changing > it to rw. > What is reason behind allowing change from ro to rw in the first place? What is the use case? > Even if it wouldn't make sense for some reason, it's a nice thought > experiment. :) > -- To unsubscribe from this list: send the line "unsubscribe linux-btrfs" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html