Am 7/15/2013 19:48, schrieb Greg Troxel: > Clearly there is the possibility of creating a corrupt repository when > receiving objects and updating refs, if a crash or power failure causes > data not to get written to disk but that data is pointed to. Journaling > mitigates this, but I'd argue that programs should function safely with > only the guarantees from POSIX. Even under POSIX, "guarantees" and "crash/power failure" do not mesh well. This has been under dispute recently, for example: http://thread.gmane.org/gmane.comp.standards.posix.austin.general/7456/focus=7487 The best we can achieve with POSIX alone is "to make bad consequences less likely". Jonathan already mentioned the knob that allows you to trade performance for more safety. -- Hannes -- To unsubscribe from this list: send the line "unsubscribe git" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html