[Bug 510067] [NEW] ext3 default compile time option should be changed from writeback to ordered

Launchpad Bug Tracker 510067 at bugs.launchpad.net
Mon Mar 15 22:34:57 UTC 2010 

*** This bug is a security vulnerability ***

You have been subscribed to a public security bug:

SRU Justification:

Impact: The default writeback mode for ext3 changed implicitly in Karmic
without notice. The new default is supposed to be faster (though it
seems not that much) but also can cause more likely data corruption when
the system crashes.

Fix: Change back the default mode to "ordered" which was used before, is
used for Lucid too and is recommended by fs developers anyway.

Testcase: cat /proc/mounts should show ext3 filesystems with
data=ordered (if no special intervention was done to change that).

---

Imagine A and B to be the steps of a journaling operation.

data = ordered mode
A) Write data to FS on disk
B) Write metadata to journal

For data = writeback mode
the above steps - A) and B) could switch order.
So you could have the following:
A) write meta data to journal first and then
B) write data to FS on disk

OR

A) write data to FS on disk first and then
B) write metadata to journal.

(since the order is not guranteed in data=writeback mode)

Now imagine a reboot/crash/kernel lockup occurring in between steps A
and B

A)
CRASH
B) cannot take place because of the crash.

Now look at data = ordered mode. Since data is always first written to
disk before writing the metadata, you always have the most current data
on disk. Hence data = ordered gurantees that you will never have stale
data on disk.

Whereas for data=writeback mode, when the metadata is written first and  you crash before writing the data to fs, this is what happens:
You have stale data, but updated metadata. So what can now happen is, you still read old data and this could be
a security threat (since the user does not expect this behavior) .

However, such a threat does not exist in data=ordered mode. Hence the
default mount time option should rightly be data=ordered instead of data
= writeback. Change the compile time option accordingly to reflect this
change.

** Affects: linux (Ubuntu)
     Importance: High
     Assignee: Surbhi Palande (csurbhi)
         Status: Fix Committed

** Affects: linux (Ubuntu Lucid)
     Importance: High
     Assignee: Surbhi Palande (csurbhi)
         Status: Fix Committed

** Affects: linux (Ubuntu Karmic)
     Importance: High
     Assignee: Surbhi Palande (csurbhi)
         Status: Fix Committed

-- 
ext3 default compile time option should be changed from writeback to ordered
https://bugs.edge.launchpad.net/bugs/510067
You received this bug notification because you are a member of Kernel Bugs, which is subscribed to linux in ubuntu.

More information about the kernel-bugs mailing list