Project

General

Profile

Feature #18865

rbd: wipe data in disk in rbd removing

Added by Yang Dongsheng about 7 years ago. Updated almost 7 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Target version:
-
% Done:

0%

Source:
Tags:
Backport:
Reviewed:
Affected Versions:
Pull request ID:

History

#1 Updated by Yang Dongsheng about 7 years ago

it should be a feature instead of bug.

#2 Updated by Nathan Cutler about 7 years ago

  • Tracker changed from Bug to Feature

#3 Updated by Jason Dillaman about 7 years ago

  • Status changed from New to Need More Info

@Yang: can you provide more background on your intended request use-case? If you are trying to implement a secure deletion, I think the only way to solve that would be directly on the OSDs upon truncate/remove operations. The rationale is that if an image has a snapshot, the removal of the backing copy-on-write objects is handled 100% by the OSDs and librbd would have no mechanism to overwrite the read-only snapshot data.

#4 Updated by Yang Dongsheng about 7 years ago

Jason Dillaman wrote:

@Yang: can you provide more background on your intended request use-case? If you are trying to implement a secure deletion, I think the only way to solve that would be directly on the OSDs upon truncate/remove operations. The rationale is that if an image has a snapshot, the removal of the backing copy-on-write objects is handled 100% by the OSDs and librbd would have no mechanism to overwrite the read-only snapshot data.

Yes, I mean the secure deletion. about the snapshots, what about iterating the all snapshots of an image and overwrite each of them by zero/random-data. Then we will delete the HEAD of this image. That means we overwrite the all copies of it even it is cow-ed in snapshots.

#5 Updated by Jason Dillaman about 7 years ago

@Yang: As I mentioned, there is no way for librbd to overwrite snapshot objects -- they are read-only from the point-of-view of librbd/librados users. Therefore, the only way this could be implemented would be directly within the OSDs as a global configurable option.

#6 Updated by Yang Dongsheng about 7 years ago

Okey, makes sense. will investigate more about it in osd. thanx

Jason Dillaman wrote:

@Yang: As I mentioned, there is no way for librbd to overwrite snapshot objects -- they are read-only from the point-of-view of librbd/librados users. Therefore, the only way this could be implemented would be directly within the OSDs as a global configurable option.

#7 Updated by Jason Dillaman almost 7 years ago

  • Status changed from Need More Info to Rejected

Also available in: Atom PDF