ext3

ext3
Developer Stephen Tweedie
Full name Third extended file system
Introduced November 2001 (Linux 2.4.15)
Partition identifier 0x83 (MBR)
EBD0A0A2-B9E5-4433-87C0-68B6B72699C7 (GPT)
Structures
Directory contents Table, hashed B-tree with dir_index enabled
File allocation bitmap (free space), table (metadata)
Bad blocks Table
Limits
Max file size 16 GiB – 2 TiB
Max number of files Variable, allocated at creation time[1]
Max filename length 255 bytes
Max volume size 2 TiB – 16 TiB
Allowed characters in filenames All bytes except '\0' and '/'
Features
Dates recorded modification (mtime), attribute modification (ctime), access (atime)
Date range December 14, 1901 - January 18, 2038
Date resolution 1s
Attributes allow-undelete, append-only, h-tree (directory), immutable, journal, no-atime, no-dump, secure-delete, synchronous-write, top (directory)
File system permissions Unix permissions, ACLs and arbitrary security attributes (Linux 2.6 and later)
Transparent compression No
Transparent encryption No (provided at the block device level)
Data deduplication No
Supported operating systems Linux, BSD, Windows (through an IFS)

ext3, or third extended filesystem, is a journaled file system that is commonly used by the Linux kernel. It is the default file system for many popular Linux distributions, including Debian. Stephen Tweedie first revealed that he was working on extending ext2 in Journaling the Linux ext2fs Filesystem in a 1998 paper and later in a February 1999 kernel mailing list posting, and the filesystem was merged with the mainline Linux kernel in November 2001 from 2.4.15 onward.[2][3][4] Its main advantage over ext2 is journaling, which improves reliability and eliminates the need to check the file system after an unclean shutdown. Its successor is ext4.

Contents

Advantages

Although its performance (speed) is less attractive than competing Linux filesystems such as ext4, JFS, ReiserFS and XFS, it has a significant advantage in that it allows in-place upgrades from the ext2 file system without having to back up and restore data. Benchmarks suggest that ext3 also uses less CPU power than ReiserFS and XFS.[5][6] It is also considered safer than the other Linux file systems due to its relative simplicity and wider testing base.[7][8]

The ext3 file system adds, over its predecessor:

Without these, any ext3 file system is also a valid ext2 file system. This has allowed well-tested and mature file system maintenance utilities for maintaining and repairing ext2 file systems to also be used with ext3 without major changes. The ext2 and ext3 file systems share the same standard set of utilities, e2fsprogs, which includes an fsck tool. The close relationship also makes conversion between the two file systems (both forward to ext3 and backward to ext2) straightforward.

While in some contexts the lack of "modern" filesystem features such as dynamic inode allocation and extents could be considered a disadvantage, in terms of recoverability this gives ext3 a significant advantage over file systems with those features. The file system metadata is all in fixed, well-known locations, and there is some redundancy inherent in the data structures that may allow ext2 and ext3 to be recoverable in the face of significant data corruption, where tree-based file systems may not be recoverable.

Size limits

ext3 has a maximum size for both individual files and the entire filesystem. For the filesystem as a whole that limit is 232 blocks. Both limits are dependent on the block size of the filesystem; the following chart summarizes the limits:[10]

Block size Maximum
file size		 Maximum
file system size
1 KiB 16 GiB 2 TiB
2 KiB 256 GiB 8 TiB
4 KiB 2 TiB 16 TiB
8 KiB[limits 1] 2 TiB 32 TiB
  1. ^ In Linux, 8 KiB block size is only available on architectures which allow 8 KiB pages, such as Alpha.

Journaling levels

There are three levels of journaling available in the Linux implementation of ext3:

Journal (lowest risk)
Both metadata and file contents are written to the journal before being committed to the main file system. Because the journal is relatively continuous on disk, this can improve performance provided journal size is sufficient. In other cases, performance gets worse because the data must be written twice - once to the journal, and once to the main part of the filesystem.[11]
Ordered (medium risk)
Only metadata is journaled; file contents are not, but it's guaranteed that file contents are written to disk before associated metadata is marked as committed in the journal. This is the default on many Linux distributions. If there is a power outage or kernel panic while a file is being written or appended to, the journal will indicate the new file or appended data has not been "committed", so it will be purged by the cleanup process. (Thus appends and new files have the same level of integrity protection as the "journaled" level.) However, files being overwritten can be corrupted because the original version of the file is not stored. Thus it's possible to end up with a file in an intermediate state between new and old, without enough information to restore either one or the other (the new data never made it to disk completely, and the old data is not stored anywhere). Even worse, the intermediate state might intersperse old and new data, because the order of the write is left up to the disk's hardware.[12][13] XFS uses this form of journaling.[14]
Writeback (highest risk)
Only metadata is journaled; file contents are not. The contents might be written before or after the journal is updated. As a result, files modified right before a crash can become corrupted. For example, a file being appended to may be marked in the journal as being larger than it actually is, causing garbage at the end. Older versions of files could also appear unexpectedly after a journal recovery. The lack of synchronization between data and journal is faster in many cases. JFS uses this level of journaling, but ensures that any "garbage" due to unwritten data is zeroed out on reboot.

In all three modes, internal structure of file system is assured to be consistent even after a crash. Risk only affects user data content and users metadata of files. In any case, only the data content of files or directories which were being modified when the system crashed will be affected; the rest will be intact after recovery.

Disadvantages

Functionality

Since ext3 aims to be backwards compatible with the earlier ext2, many of the on-disk structures are similar to those of ext2. Because of that, ext3 lacks a number of features of more recent designs, such as extents, dynamic allocation of inodes, and block suballocation.[15] There is a limit of 31998 sub-directories per one directory, stemming from its limit of 32000 links per inode.[16]

ext3, like most current Linux filesystems, cannot be fsck-ed while the filesystem is mounted for writing. Attempting to check a file system that is already mounted may detect bogus errors where changed data has not reached the disk yet, and corrupt the file system in an attempt to "fix" these errors.

Defragmentation

There is no online ext3 defragmentation tool that works on the filesystem level. An offline ext2 defragmenter, e2defrag, exists but requires that the ext3 filesystem be converted back to ext2 first. But depending on the feature bits turned on in the filesystem, e2defrag may destroy data; it does not know how to treat many of the newer ext3 features.[17]

There are userspace defragmentation tools like Shake[18] and defrag.[19][20] Shake works by allocating space for the whole file as one operation, which will generally cause the allocator to find contiguous disk space. It also tries to write files used at the same time next to each other. Defrag works by copying each file over itself. However they only work if the filesystem is reasonably empty. A true defragmentation tool does not exist for ext3.[21]

That being said, as the Linux System Administrator Guide states, "Modern Linux filesystem(s) keep fragmentation at a minimum by keeping all blocks in a file close together, even if they can't be stored in consecutive sectors. Some filesystems, like ext3, effectively allocate the free block that is nearest to other blocks in a file. Therefore it is not necessary to worry about fragmentation in a Linux system."[22]

While ext3 is more resistant to file fragmentation than the FAT filesystem, nonetheless ext3 filesystems can get fragmented over time or on specific usage patterns, like slowly-writing large files.[23][24] Consequently the successor to the ext3 filesystem, ext4, is planned to eventually include an online filesystem defragmentation utility,[25] and currently supports extents (contiguous file regions).

Recovery

There is no support of deleted file recovery in the file system design. The ext3 driver actively deletes files by wiping file inodes[26] for crash safety reasons. This is why an accidental 'rm -rf ...' command may cause permanent data loss.

There are still several techniques[27] and some free[28] and commercial[29] software for recovery of deleted or lost files using file system journal analysis; however, they do not guarantee any specific file recovery.

Compression

Support for transparent compression is available as an unofficial patch for ext3. This patch is a direct port of e2compr and still needs further development, it compiles and boots well with upstream kernels but journaling is not implemented yet. The current patch is named e3compr.[30]

Lack of snapshots support

Unlike a number of modern file systems, Ext3 does not have native support for snapshots - the ability to quickly capture the state of the filesystem at arbitrary times, instead relying on less space-efficient volume level snapshots provided by the Linux LVM. The Next3 file system is a modified version of Ext3 which offers snapshots support, yet retains compatibility to the EXT3 on-disk format.[31]

No checksumming in journal

Ext3 does not do checksumming when writing to the journal. If barrier=1 is not enabled as a mount option (in /etc/fstab), and if the hardware is doing out-of-order write caching, one runs the risk of severe filesystem corruption during a crash.[32][33]

Consider the following scenario: If hard disk writes are done out-of-order (due to modern hard disks caching writes in order to amortize write speeds), it is likely that one will write a commit block of a transaction before the other relevant blocks are written. If a power failure or unrecoverable crash should occur before the other blocks get written, the system will have to be rebooted. Upon reboot, the file system will replay the log as normal, and replay the "winners" (transactions with a commit block, including the invalid transaction above which happened to be tagged with a valid commit block). The unfinished disk write above will thus proceed, but using corrupt journal data. The file system will thus mistakenly overwrite normal data with corrupt data while replaying the journal. There is a test program available to trigger the problematic behavior. If checksums had been used, where the blocks of the "fake winner" transaction were tagged with a mutual checksum, the file system could have known better and not replayed the corrupt data onto the disk. Journal checksumming has been added to ext4.[34]

Filesystems going through the device mapper interface (including software RAID and LVM implementations) may not support barriers, and will issue a warning if that mount option is used.[35][36] There are also some disks that do not properly implement the write cache flushing extension necessary for barriers to work, which causes a similar warning.[37] In these situations, where barriers are not supported or practical, reliable write ordering is possible by turning off the disk's write cache and using the data=journal mount option.[32] Turning off the disk's write cache may be required even when barriers are available. Applications like databases expect a call to fsync() will flush pending writes to disk, and the barrier implementation doesn't always clear the drive's write cache in response to that call.[38] There is also a potential issue with the barrier implementation related to error handling during events such as a drive failure[39] It is also known that sometimes some virtualization technologies do not properly forward flush command to the underlying devices (files, volumes, disk) from guest operating system. Similarly some hard disks or controllers implements cache flushing incorrectly or not at all, but still advertise that it is supported, and do not return any error when it is used. For this reasons it is safer to assume that cache flushing do not work, or test it extensively with more reliable and tested components (like SCSI disks).

ext4

Main article: ext4

An enhanced version of the file system was announced by Theodore Ts'o, the principal developer of ext3, [40] on June 28, 2006 under the name of ext4. On October 11, 2008, the patches that mark ext4 as stable code were merged in the Linux 2.6.28 source code repositories, marking the end of the development phase and recommending its adoption. In 2008, Ts'o stated that although ext4 has improved features, it is not a major advance, it uses old technology, and is a stop-gap; Ts'o believes that Btrfs is the better direction because "it offers improvements in scalability, reliability, and ease of management".[41] Btrfs also has "a number of the same design ideas that reiser3/4 had".[42]

See also

References

  1. ^ The maximum number of inodes (and hence the maximum number of files and directories) is set when the file system is created. If V is the volume size in bytes, then the default number of inodes is given by V/213 (or the number of blocks, whichever is less), and the minimum by V/223. The default was deemed sufficient for most applications. The max number of subdirectories in one directory is fixed to 32000.
  2. ^ Stephen C. Tweedie (May 1998). "Journaling the Linux ext2fs Filesystem" (PDF). Proceedings of the 4th Annual LinuxExpo, Durham, NC. http://jamesthornton.com/hotlist/linux-filesystems/ext3-journal-design.pdf. Retrieved 2007-06-23. 
  3. ^ Stephen C. Tweedie (February 17, 1999). "Re: fsync on large files". Linux kernel mailing list. http://marc.info/?l=linux-kernel&m=91926557602501&w=2. 
  4. ^ Rob Radez (November 23, 2001). "2.4.15-final". Linux kernel mailing list. http://marc.info/?l=linux-kernel&m=100650331813822&w=2. 
  5. ^ Justin Piszcz. "Benchmarking Filesystems Part II". Linux Gazette (122). http://linuxgazette.net/122/TWDT.html#piszcz. 
  6. ^ Hans Ivers. Filesystems (ext3, reiser, xfs, jfs) comparison on Debian Etch. http://www.debian-administration.org/articles/388. 
  7. ^ Roderick W. Smith (2003-10-09). "Introduction to Linux filesystems and files". Linux.com. http://www.linux.com/archive/feature/31939. 
  8. ^ James Trageser (2010-04-23). "Which Linux filesystem to choose for your PC? Ext2, Ext3, Ext4, ReiserFS (Reiser3), Reiser4, XFS, Btrfs". http://linuxtweaks.wordpress.com/2010/04/23/which-linux-filesystem-to-choose/. 
  9. ^ Mingming Cao. "Directory indexing". Features found in Linux 2.6. http://ext2.sourceforge.net/2005-ols/paper-html/node3.html. 
  10. ^ Matthew Wilcox. "Documentation/filesystems/ext2.txt". Linux kernel source documentation. http://lxr.linux.no/linux+v2.6.29/Documentation/filesystems/ext2.txt. 
  11. ^ Daniel Robbins (2001-12-01). Advannced filesystem implementor's guide, Part 8. IBM developerWorks. http://www.ibm.com/developerworks/linux/library/l-fs8.html. 
  12. ^ curious onloooker: Speeding up ext3 filesystems
  13. ^ Common threads: Advanced filesystem implementor's guide, Part 8
  14. ^ "Failure Analysis of SGI XFS File System". http://pages.cs.wisc.edu/~vshree/xfs.pdf. 
  15. ^ Rob Radez (2005). "Extents,delayed allocation". future of ext3. http://ext2.sourceforge.net/2005-ols/paper-html/node18.html. 
  16. ^ "How many sub-directories?". (Web link). 
  17. ^ Andreas Dilger. "Post to the ext3-users mailing list". ext3-users mailing list post. http://marc.info/?l=ext3-users&m=116231468911590&w=2. 
  18. ^ Vleu.net: Shake
  19. ^ Defrag written in shell
  20. ^ http://bazaar.launchpad.net/~jdong/pyfragtools/trunk/files Defrag written in Python
  21. ^ RE: searching for ext3 defrag/file move program
  22. ^ http://www.tldp.org/LDP/sag/html/filesystems.html
  23. ^ http://trac.transmissionbt.com/ticket/849 "The default Ubuntu filesystem ("ext3") will fragment large (>1GB), slowly-growing files (<1MB/s)."
  24. ^ "We found heavily fragmented free areas on an intensively used IMAP server which stores all its emails in individual files - although more than 900 GB of the total disk space of 1.4 TB were still available." http://www.heise-online.co.uk/open/Tuning-the-Linux-file-system-Ext3--/features/110398/3
  25. ^ http://kernelnewbies.org/Ext4#head-38e6ac2b5f58f10989d72386e6f9cc2ef7217fb0
  26. ^ Linux ext3 FAQ
  27. ^ HOWTO recover deleted files on an ext3 file system
  28. ^ PhotoRec - GPL'd File Recovery
  29. ^ UFS Explorer Standard Recovery version 4
  30. ^ e3compr - ext3 compression
  31. ^ Corbet, Jonathan. "The Next3 filesystem". LWN. https://lwn.net/Articles/387231/. 
  32. ^ a b Re: Frequent metadata corruption with ext3 + hard power-off
  33. ^ Re: Frequent metadata corruption with ext3 + hard power-off
  34. ^ ext4: Add the journal checksum feature
  35. ^ Re: write barrier over device mapper supported or not?
  36. ^ XFS and zeroed files
  37. ^ Barrier Sync
  38. ^ Re: Proposal for "proper" durable fsync() and fdatasync()
  39. ^ I/O Barriers, as of kernel version 2.6.31
  40. ^ LKML: "Theodore Ts'o": Proposal and plan for ext2/3 future development work
  41. ^ Paul, Ryan (2009-04-13). Panelists ponder the kernel at Linux Collaboration Summit. Ars Technica. http://arstechnica.com/open-source/news/2009/04/linux-collaboration-summit-the-kernel-panel.ars. Retrieved 2009-08-22 
  42. ^ Theodore Ts'o (2008-08-01). "Re: reiser4 for 2.6.27-rc1". linux-kernel mailing list. http://lkml.org/lkml/2008/8/1/217. Retrieved 2010-12-31. 

External links

Disk
NAS
Specialized
Pseudo- and virtual
Encrypted