2011-09-08 18:49:54 +02:00
|
|
|
|
|
|
|
|
#define _SYSTEM
|
|
|
|
|
|
2012-10-16 17:40:39 +02:00
|
|
|
#include <assert.h>
|
2015-03-29 18:57:53 +02:00
|
|
|
#include <string.h>
|
2012-10-16 17:40:39 +02:00
|
|
|
#include <errno.h>
|
|
|
|
|
#include <math.h>
|
|
|
|
|
#include <stdlib.h>
|
|
|
|
|
|
2013-12-06 12:04:52 +01:00
|
|
|
#include <machine/vmparam.h>
|
|
|
|
|
|
2012-10-16 17:40:39 +02:00
|
|
|
#include <sys/param.h>
|
2013-03-20 20:18:52 +01:00
|
|
|
#include <sys/mman.h>
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2011-09-08 18:49:54 +02:00
|
|
|
#include <minix/dmap.h>
|
2012-10-16 17:40:39 +02:00
|
|
|
#include <minix/libminixfs.h>
|
|
|
|
|
#include <minix/syslib.h>
|
2011-11-14 11:07:49 +01:00
|
|
|
#include <minix/sysutil.h>
|
2012-10-16 17:40:39 +02:00
|
|
|
#include <minix/u64.h>
|
|
|
|
|
#include <minix/bdev.h>
|
2015-04-04 17:55:48 +02:00
|
|
|
#include <minix/bitmap.h>
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
#include "inc.h"
|
|
|
|
|
|
2015-03-28 01:45:28 +01:00
|
|
|
/* Buffer (block) cache. To acquire a block, a routine calls lmfs_get_block(),
|
|
|
|
|
* telling which block it wants. The block is then regarded as "in use" and
|
|
|
|
|
* has its reference count incremented. All the blocks that are not in use are
|
|
|
|
|
* chained together in an LRU list, with 'front' pointing to the least recently
|
|
|
|
|
* used block, and 'rear' to the most recently used block. A reverse chain is
|
|
|
|
|
* also maintained. Usage for LRU is measured by the time the put_block() is
|
|
|
|
|
* done. The second parameter to put_block() can violate the LRU order and put
|
|
|
|
|
* a block on the front of the list, if it will probably not be needed again.
|
|
|
|
|
* This is used internally only; the lmfs_put_block() API call has no second
|
|
|
|
|
* parameter. If a block is modified, the modifying routine must mark the
|
|
|
|
|
* block as dirty, so the block will eventually be rewritten to the disk.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/* Flags to put_block(). */
|
|
|
|
|
#define ONE_SHOT 0x1 /* set if block will not be needed again */
|
|
|
|
|
|
2015-03-30 12:44:09 +02:00
|
|
|
#define BUFHASH(b) ((unsigned int)((b) % nr_bufs))
|
2012-10-16 17:40:39 +02:00
|
|
|
#define MARKCLEAN lmfs_markclean
|
|
|
|
|
|
|
|
|
|
#define MINBUFS 6 /* minimal no of bufs for sanity check */
|
|
|
|
|
|
|
|
|
|
static struct buf *front; /* points to least recently used free block */
|
|
|
|
|
static struct buf *rear; /* points to most recently used free block */
|
|
|
|
|
static unsigned int bufs_in_use;/* # bufs currently in use (not on free list)*/
|
|
|
|
|
|
|
|
|
|
static void rm_lru(struct buf *bp);
|
2015-03-29 18:57:53 +02:00
|
|
|
static int read_block(struct buf *bp, size_t size);
|
2013-03-20 20:18:52 +01:00
|
|
|
static void freeblock(struct buf *bp);
|
2015-03-28 01:45:28 +01:00
|
|
|
static void cache_heuristic_check(void);
|
|
|
|
|
static void put_block(struct buf *bp, int put_flags);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
|
|
|
|
static int vmcache = 0; /* are we using vm's secondary cache? (initially not) */
|
|
|
|
|
|
|
|
|
|
static struct buf *buf;
|
|
|
|
|
static struct buf **buf_hash; /* the buffer hash table */
|
|
|
|
|
static unsigned int nr_bufs;
|
|
|
|
|
static int may_use_vmcache;
|
|
|
|
|
|
2014-09-30 23:04:09 +02:00
|
|
|
static size_t fs_block_size = PAGE_SIZE; /* raw i/o block size */
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-03-29 17:26:23 +02:00
|
|
|
static fsblkcnt_t fs_btotal = 0, fs_bused = 0;
|
|
|
|
|
|
2013-04-12 22:54:42 +02:00
|
|
|
static int quiet = 0;
|
|
|
|
|
|
2015-08-10 18:06:10 +02:00
|
|
|
typedef struct buf *noxfer_buf_ptr_t; /* annotation for temporary buf ptrs */
|
|
|
|
|
|
2014-02-24 14:00:17 +01:00
|
|
|
void lmfs_setquiet(int q) { quiet = q; }
|
2013-04-12 22:54:42 +02:00
|
|
|
|
2015-03-29 17:26:23 +02:00
|
|
|
static int fs_bufs_heuristic(int minbufs, fsblkcnt_t btotal,
|
|
|
|
|
fsblkcnt_t bused, int blocksize)
|
2011-09-08 18:49:54 +02:00
|
|
|
{
|
|
|
|
|
struct vm_stats_info vsi;
|
|
|
|
|
int bufs;
|
|
|
|
|
u32_t kbytes_used_fs, kbytes_total_fs, kbcache, kb_fsmax;
|
2013-04-18 14:42:15 +02:00
|
|
|
u32_t kbytes_remain_mem;
|
2011-09-08 18:49:54 +02:00
|
|
|
|
|
|
|
|
/* set a reasonable cache size; cache at most a certain
|
|
|
|
|
* portion of the used FS, and at most a certain %age of remaining
|
|
|
|
|
* memory
|
|
|
|
|
*/
|
2013-04-26 11:54:33 +02:00
|
|
|
if(vm_info_stats(&vsi) != OK) {
|
2011-09-08 18:49:54 +02:00
|
|
|
bufs = 1024;
|
2013-04-26 11:54:33 +02:00
|
|
|
if(!quiet)
|
|
|
|
|
printf("fslib: heuristic info fail: default to %d bufs\n", bufs);
|
2011-09-08 18:49:54 +02:00
|
|
|
return bufs;
|
|
|
|
|
}
|
|
|
|
|
|
2013-04-26 11:54:33 +02:00
|
|
|
/* remaining free memory is unused memory plus memory in used for cache,
|
|
|
|
|
* as the cache can be evicted
|
|
|
|
|
*/
|
|
|
|
|
kbytes_remain_mem = (u64_t)(vsi.vsi_free + vsi.vsi_cached) *
|
|
|
|
|
vsi.vsi_pagesize / 1024;
|
2011-09-08 18:49:54 +02:00
|
|
|
|
|
|
|
|
/* check fs usage. */
|
2013-11-21 12:09:58 +01:00
|
|
|
kbytes_used_fs = (unsigned long)(((u64_t)bused * blocksize) / 1024);
|
|
|
|
|
kbytes_total_fs = (unsigned long)(((u64_t)btotal * blocksize) / 1024);
|
2011-09-08 18:49:54 +02:00
|
|
|
|
|
|
|
|
/* heuristic for a desired cache size based on FS usage;
|
|
|
|
|
* but never bigger than half of the total filesystem
|
|
|
|
|
*/
|
|
|
|
|
kb_fsmax = sqrt_approx(kbytes_used_fs)*40;
|
|
|
|
|
kb_fsmax = MIN(kb_fsmax, kbytes_total_fs/2);
|
|
|
|
|
|
|
|
|
|
/* heuristic for a maximum usage - 10% of remaining memory */
|
|
|
|
|
kbcache = MIN(kbytes_remain_mem/10, kb_fsmax);
|
|
|
|
|
bufs = kbcache * 1024 / blocksize;
|
|
|
|
|
|
|
|
|
|
/* but we simply need MINBUFS no matter what */
|
|
|
|
|
if(bufs < minbufs)
|
|
|
|
|
bufs = minbufs;
|
|
|
|
|
|
|
|
|
|
return bufs;
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-29 17:26:23 +02:00
|
|
|
void lmfs_change_blockusage(int delta)
|
2013-04-26 11:54:33 +02:00
|
|
|
{
|
|
|
|
|
/* Change the number of allocated blocks by 'delta.'
|
|
|
|
|
* Also accumulate the delta since the last cache re-evaluation.
|
|
|
|
|
* If it is outside a certain band, ask the cache library to
|
|
|
|
|
* re-evaluate the cache size.
|
|
|
|
|
*/
|
2015-03-29 17:26:23 +02:00
|
|
|
static int bitdelta = 0, warn_low = TRUE, warn_high = TRUE;
|
|
|
|
|
|
|
|
|
|
/* Adjust the file system block usage counter accordingly. Do bounds
|
|
|
|
|
* checking, and report file system misbehavior.
|
|
|
|
|
*/
|
|
|
|
|
if (delta > 0 && (fsblkcnt_t)delta > fs_btotal - fs_bused) {
|
|
|
|
|
if (warn_high) {
|
|
|
|
|
printf("libminixfs: block usage overflow\n");
|
|
|
|
|
warn_high = FALSE;
|
|
|
|
|
}
|
|
|
|
|
delta = (int)(fs_btotal - fs_bused);
|
|
|
|
|
} else if (delta < 0 && (fsblkcnt_t)-delta > fs_bused) {
|
|
|
|
|
if (warn_low) {
|
|
|
|
|
printf("libminixfs: block usage underflow\n");
|
|
|
|
|
warn_low = FALSE;
|
|
|
|
|
}
|
|
|
|
|
delta = -(int)fs_bused;
|
|
|
|
|
}
|
|
|
|
|
fs_bused += delta;
|
|
|
|
|
|
|
|
|
|
bitdelta += delta;
|
|
|
|
|
|
|
|
|
|
#define BAND_KB (10*1024) /* recheck cache every 10MB change */
|
|
|
|
|
|
|
|
|
|
/* If the accumulated delta exceeds the configured threshold, resize
|
|
|
|
|
* the cache, but only if the cache isn't in use any more. In order to
|
|
|
|
|
* avoid that the latter case blocks a resize forever, we also call
|
|
|
|
|
* this function from lmfs_flushall(). Since lmfs_buf_pool() may call
|
|
|
|
|
* lmfs_flushall(), reset 'bitdelta' before doing the heuristics check.
|
|
|
|
|
*/
|
|
|
|
|
if (bufs_in_use == 0 &&
|
|
|
|
|
(bitdelta*(int)fs_block_size/1024 > BAND_KB ||
|
|
|
|
|
bitdelta*(int)fs_block_size/1024 < -BAND_KB)) {
|
|
|
|
|
bitdelta = 0;
|
|
|
|
|
cache_heuristic_check();
|
|
|
|
|
}
|
2013-04-26 11:54:33 +02:00
|
|
|
}
|
|
|
|
|
|
2014-02-24 14:00:17 +01:00
|
|
|
void lmfs_markdirty(struct buf *bp)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_flags |= VMMC_DIRTY;
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
2014-02-24 14:00:17 +01:00
|
|
|
void lmfs_markclean(struct buf *bp)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_flags &= ~VMMC_DIRTY;
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
2014-02-24 14:00:17 +01:00
|
|
|
int lmfs_isclean(struct buf *bp)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
2013-03-20 20:18:52 +01:00
|
|
|
return !(bp->lmfs_flags & VMMC_DIRTY);
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
2014-02-24 14:00:17 +01:00
|
|
|
static void free_unused_blocks(void)
|
2013-03-20 20:18:52 +01:00
|
|
|
{
|
|
|
|
|
struct buf *bp;
|
|
|
|
|
|
|
|
|
|
int freed = 0, bytes = 0;
|
|
|
|
|
printf("libminixfs: freeing; %d blocks in use\n", bufs_in_use);
|
|
|
|
|
for(bp = &buf[0]; bp < &buf[nr_bufs]; bp++) {
|
|
|
|
|
if(bp->lmfs_bytes > 0 && bp->lmfs_count == 0) {
|
|
|
|
|
freed++;
|
|
|
|
|
bytes += bp->lmfs_bytes;
|
|
|
|
|
freeblock(bp);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
printf("libminixfs: freeing; %d blocks, %d bytes\n", freed, bytes);
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
static void lmfs_alloc_block(struct buf *bp, size_t block_size)
|
2013-03-20 20:18:52 +01:00
|
|
|
{
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
int len;
|
2013-03-20 20:18:52 +01:00
|
|
|
ASSERT(!bp->data);
|
|
|
|
|
ASSERT(bp->lmfs_bytes == 0);
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
len = roundup(block_size, PAGE_SIZE);
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
if((bp->data = mmap(0, block_size, PROT_READ|PROT_WRITE,
|
|
|
|
|
MAP_PREALLOC|MAP_ANON, -1, 0)) == MAP_FAILED) {
|
2013-03-20 20:18:52 +01:00
|
|
|
free_unused_blocks();
|
2015-03-29 18:57:53 +02:00
|
|
|
if((bp->data = mmap(0, block_size, PROT_READ|PROT_WRITE,
|
2013-03-20 20:18:52 +01:00
|
|
|
MAP_PREALLOC|MAP_ANON, -1, 0)) == MAP_FAILED) {
|
|
|
|
|
panic("libminixfs: could not allocate block");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
assert(bp->data);
|
2015-03-29 18:57:53 +02:00
|
|
|
bp->lmfs_bytes = block_size;
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_needsetcache = 1;
|
|
|
|
|
}
|
|
|
|
|
|
2012-10-16 17:40:39 +02:00
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_get_block *
|
|
|
|
|
*===========================================================================*/
|
2015-03-29 18:57:53 +02:00
|
|
|
int lmfs_get_block(struct buf **bpp, dev_t dev, block64_t block, int how)
|
2013-03-20 20:18:52 +01:00
|
|
|
{
|
2015-03-29 18:57:53 +02:00
|
|
|
return lmfs_get_block_ino(bpp, dev, block, how, VMC_NO_INODE, 0);
|
2013-03-20 20:18:52 +01:00
|
|
|
}
|
|
|
|
|
|
2014-09-30 23:04:09 +02:00
|
|
|
static void munmap_t(void *a, int len)
|
2013-03-20 20:18:52 +01:00
|
|
|
{
|
|
|
|
|
assert(a);
|
|
|
|
|
assert(a != MAP_FAILED);
|
2015-09-25 21:22:27 +02:00
|
|
|
assert(!((vir_bytes)a % PAGE_SIZE));
|
2013-03-20 20:18:52 +01:00
|
|
|
assert(len > 0);
|
|
|
|
|
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
len = roundup(len, PAGE_SIZE);
|
|
|
|
|
|
|
|
|
|
assert(!(len % PAGE_SIZE));
|
|
|
|
|
|
2013-11-22 16:38:29 +01:00
|
|
|
if(munmap(a, len) < 0)
|
2013-03-20 20:18:52 +01:00
|
|
|
panic("libminixfs cache: munmap failed");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void raisecount(struct buf *bp)
|
|
|
|
|
{
|
2015-09-21 19:14:39 +02:00
|
|
|
ASSERT(bp->lmfs_count < CHAR_MAX);
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_count++;
|
|
|
|
|
if(bp->lmfs_count == 1) bufs_in_use++;
|
|
|
|
|
assert(bufs_in_use > 0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void lowercount(struct buf *bp)
|
|
|
|
|
{
|
|
|
|
|
assert(bufs_in_use > 0);
|
|
|
|
|
ASSERT(bp->lmfs_count > 0);
|
|
|
|
|
bp->lmfs_count--;
|
|
|
|
|
if(bp->lmfs_count == 0) bufs_in_use--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void freeblock(struct buf *bp)
|
|
|
|
|
{
|
|
|
|
|
ASSERT(bp->lmfs_count == 0);
|
|
|
|
|
/* If the block taken is dirty, make it clean by writing it to the disk.
|
|
|
|
|
* Avoid hysteresis by flushing all other dirty blocks for the same device.
|
|
|
|
|
*/
|
|
|
|
|
if (bp->lmfs_dev != NO_DEV) {
|
2014-08-24 11:40:52 +02:00
|
|
|
if (!lmfs_isclean(bp)) lmfs_flushdev(bp->lmfs_dev);
|
2015-03-29 18:57:53 +02:00
|
|
|
assert(bp->lmfs_bytes > 0);
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_dev = NO_DEV;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Fill in block's parameters and add it to the hash chain where it goes. */
|
|
|
|
|
MARKCLEAN(bp); /* NO_DEV blocks may be marked dirty */
|
|
|
|
|
if(bp->lmfs_bytes > 0) {
|
|
|
|
|
assert(bp->data);
|
2013-11-22 16:38:29 +01:00
|
|
|
munmap_t(bp->data, bp->lmfs_bytes);
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_bytes = 0;
|
|
|
|
|
bp->data = NULL;
|
|
|
|
|
} else assert(!bp->data);
|
|
|
|
|
}
|
|
|
|
|
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
/*===========================================================================*
|
|
|
|
|
* find_block *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
static struct buf *find_block(dev_t dev, block64_t block)
|
|
|
|
|
{
|
|
|
|
|
/* Search the hash chain for (dev, block). Return the buffer structure if
|
|
|
|
|
* found, or NULL otherwise.
|
|
|
|
|
*/
|
|
|
|
|
struct buf *bp;
|
|
|
|
|
int b;
|
|
|
|
|
|
|
|
|
|
assert(dev != NO_DEV);
|
|
|
|
|
|
|
|
|
|
b = BUFHASH(block);
|
|
|
|
|
for (bp = buf_hash[b]; bp != NULL; bp = bp->lmfs_hash)
|
|
|
|
|
if (bp->lmfs_blocknr == block && bp->lmfs_dev == dev)
|
|
|
|
|
return bp;
|
|
|
|
|
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
/*===========================================================================*
|
2015-03-29 18:57:53 +02:00
|
|
|
* get_block_ino *
|
2013-03-20 20:18:52 +01:00
|
|
|
*===========================================================================*/
|
2015-03-29 18:57:53 +02:00
|
|
|
static int get_block_ino(struct buf **bpp, dev_t dev, block64_t block, int how,
|
|
|
|
|
ino_t ino, u64_t ino_off, size_t block_size)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
2015-03-29 18:57:53 +02:00
|
|
|
/* Check to see if the requested block is in the block cache. The requested
|
|
|
|
|
* block is identified by the block number in 'block' on device 'dev', counted
|
|
|
|
|
* in the file system block size. The amount of data requested for this block
|
|
|
|
|
* is given in 'block_size', which may be less than the file system block size
|
|
|
|
|
* iff the requested block is the last (partial) block on a device. Note that
|
|
|
|
|
* the given block size does *not* affect the conversion of 'block' to a byte
|
|
|
|
|
* offset! Either way, if the block could be obtained, either from the cache
|
|
|
|
|
* or by reading from the device, return OK, with a pointer to the buffer
|
|
|
|
|
* structure stored in 'bpp'. If not, return a negative error code (and no
|
|
|
|
|
* buffer). If necessary, evict some other block and fetch the contents from
|
|
|
|
|
* disk (if 'how' is NORMAL). If 'how' is NO_READ, the caller intends to
|
|
|
|
|
* overwrite the requested block in its entirety, so it is only necessary to
|
|
|
|
|
* see if it is in the cache; if it is not, any free buffer will do. If 'how'
|
2015-04-04 17:55:48 +02:00
|
|
|
* is PEEK, the function returns the block if it is in the cache or the VM
|
|
|
|
|
* cache, and an ENOENT error code otherwise.
|
2012-10-16 17:40:39 +02:00
|
|
|
* In addition to the LRU chain, there is also a hash chain to link together
|
|
|
|
|
* blocks whose block numbers end with the same bit strings, for fast lookup.
|
|
|
|
|
*/
|
2015-03-29 18:57:53 +02:00
|
|
|
int b, r;
|
2013-03-20 20:18:52 +01:00
|
|
|
static struct buf *bp;
|
2015-03-30 12:44:09 +02:00
|
|
|
uint64_t dev_off;
|
2013-03-20 20:18:52 +01:00
|
|
|
struct buf *prev_ptr;
|
2012-10-16 17:40:39 +02:00
|
|
|
|
|
|
|
|
assert(buf_hash);
|
|
|
|
|
assert(buf);
|
|
|
|
|
assert(nr_bufs > 0);
|
|
|
|
|
|
|
|
|
|
ASSERT(fs_block_size > 0);
|
|
|
|
|
|
2012-11-12 19:15:10 +01:00
|
|
|
assert(dev != NO_DEV);
|
|
|
|
|
|
2015-03-30 12:44:09 +02:00
|
|
|
assert(block <= UINT64_MAX / fs_block_size);
|
|
|
|
|
|
|
|
|
|
dev_off = block * fs_block_size;
|
|
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
if((ino_off % fs_block_size)) {
|
|
|
|
|
|
|
|
|
|
printf("cache: unaligned lmfs_get_block_ino ino_off %llu\n",
|
|
|
|
|
ino_off);
|
|
|
|
|
util_stacktrace();
|
|
|
|
|
}
|
|
|
|
|
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
/* See if the block is in the cache. If so, we can return it right away. */
|
|
|
|
|
bp = find_block(dev, block);
|
|
|
|
|
if (bp != NULL && !(bp->lmfs_flags & VMMC_EVICTED)) {
|
2015-03-29 18:57:53 +02:00
|
|
|
ASSERT(bp->lmfs_dev == dev);
|
|
|
|
|
ASSERT(bp->lmfs_dev != NO_DEV);
|
|
|
|
|
|
|
|
|
|
/* The block must have exactly the requested number of bytes. */
|
|
|
|
|
if (bp->lmfs_bytes != block_size)
|
|
|
|
|
return EIO;
|
|
|
|
|
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
/* Block needed has been found. */
|
|
|
|
|
if (bp->lmfs_count == 0) {
|
|
|
|
|
rm_lru(bp);
|
|
|
|
|
ASSERT(bp->lmfs_needsetcache == 0);
|
|
|
|
|
ASSERT(!(bp->lmfs_flags & VMMC_BLOCK_LOCKED));
|
|
|
|
|
/* FIXME: race condition against the VMMC_EVICTED check */
|
|
|
|
|
bp->lmfs_flags |= VMMC_BLOCK_LOCKED;
|
|
|
|
|
}
|
|
|
|
|
raisecount(bp);
|
|
|
|
|
ASSERT(bp->lmfs_flags & VMMC_BLOCK_LOCKED);
|
|
|
|
|
ASSERT(bp->data);
|
|
|
|
|
|
|
|
|
|
if(ino != VMC_NO_INODE) {
|
|
|
|
|
if(bp->lmfs_inode == VMC_NO_INODE
|
|
|
|
|
|| bp->lmfs_inode != ino
|
|
|
|
|
|| bp->lmfs_inode_offset != ino_off) {
|
|
|
|
|
bp->lmfs_inode = ino;
|
|
|
|
|
bp->lmfs_inode_offset = ino_off;
|
|
|
|
|
bp->lmfs_needsetcache = 1;
|
2013-03-20 20:18:52 +01:00
|
|
|
}
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
}
|
|
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
*bpp = bp;
|
|
|
|
|
return OK;
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
}
|
2013-03-20 20:18:52 +01:00
|
|
|
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
/* We had the block in the cache but VM evicted it; invalidate it. */
|
|
|
|
|
if (bp != NULL) {
|
|
|
|
|
assert(bp->lmfs_flags & VMMC_EVICTED);
|
|
|
|
|
ASSERT(bp->lmfs_count == 0);
|
|
|
|
|
ASSERT(!(bp->lmfs_flags & VMMC_BLOCK_LOCKED));
|
|
|
|
|
ASSERT(!(bp->lmfs_flags & VMMC_DIRTY));
|
|
|
|
|
bp->lmfs_dev = NO_DEV;
|
|
|
|
|
bp->lmfs_bytes = 0;
|
|
|
|
|
bp->data = NULL;
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
/* Desired block is not on available chain. Find a free block to use. */
|
|
|
|
|
if(bp) {
|
|
|
|
|
ASSERT(bp->lmfs_flags & VMMC_EVICTED);
|
|
|
|
|
} else {
|
|
|
|
|
if ((bp = front) == NULL) panic("all buffers in use: %d", nr_bufs);
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
2013-03-20 20:18:52 +01:00
|
|
|
assert(bp);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
|
|
|
|
rm_lru(bp);
|
|
|
|
|
|
|
|
|
|
/* Remove the block that was just taken from its hash chain. */
|
|
|
|
|
b = BUFHASH(bp->lmfs_blocknr);
|
|
|
|
|
prev_ptr = buf_hash[b];
|
|
|
|
|
if (prev_ptr == bp) {
|
|
|
|
|
buf_hash[b] = bp->lmfs_hash;
|
|
|
|
|
} else {
|
|
|
|
|
/* The block just taken is not on the front of its hash chain. */
|
|
|
|
|
while (prev_ptr->lmfs_hash != NULL)
|
|
|
|
|
if (prev_ptr->lmfs_hash == bp) {
|
|
|
|
|
prev_ptr->lmfs_hash = bp->lmfs_hash; /* found it */
|
|
|
|
|
break;
|
|
|
|
|
} else {
|
|
|
|
|
prev_ptr = prev_ptr->lmfs_hash; /* keep looking */
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
freeblock(bp);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_inode = ino;
|
|
|
|
|
bp->lmfs_inode_offset = ino_off;
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_flags = VMMC_BLOCK_LOCKED;
|
|
|
|
|
bp->lmfs_needsetcache = 0;
|
2012-10-16 17:40:39 +02:00
|
|
|
bp->lmfs_dev = dev; /* fill in device number */
|
|
|
|
|
bp->lmfs_blocknr = block; /* fill in block number */
|
2013-03-20 20:18:52 +01:00
|
|
|
ASSERT(bp->lmfs_count == 0);
|
|
|
|
|
raisecount(bp);
|
2012-10-16 17:40:39 +02:00
|
|
|
b = BUFHASH(bp->lmfs_blocknr);
|
|
|
|
|
bp->lmfs_hash = buf_hash[b];
|
|
|
|
|
|
|
|
|
|
buf_hash[b] = bp; /* add to hash list */
|
|
|
|
|
|
2012-11-12 19:15:10 +01:00
|
|
|
assert(dev != NO_DEV);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-04-04 17:55:48 +02:00
|
|
|
/* The block is not found in our cache, but we do want it if it's in the VM
|
|
|
|
|
* cache. The exception is NO_READ, purely for context switching performance
|
|
|
|
|
* reasons. NO_READ is used for 1) newly allocated blocks, 2) blocks being
|
|
|
|
|
* prefetched, and 3) blocks about to be fully overwritten. In the first two
|
|
|
|
|
* cases, VM will not have the block in its cache anyway, and for the third
|
|
|
|
|
* we save on one VM call only if the block is in the VM cache.
|
2013-03-20 20:18:52 +01:00
|
|
|
*/
|
|
|
|
|
assert(!bp->data);
|
|
|
|
|
assert(!bp->lmfs_bytes);
|
2015-04-04 17:55:48 +02:00
|
|
|
if (how != NO_READ && vmcache) {
|
2013-03-20 20:18:52 +01:00
|
|
|
if((bp->data = vm_map_cacheblock(dev, dev_off, ino, ino_off,
|
2015-03-29 18:57:53 +02:00
|
|
|
&bp->lmfs_flags, roundup(block_size, PAGE_SIZE))) != MAP_FAILED) {
|
|
|
|
|
bp->lmfs_bytes = block_size;
|
2013-03-20 20:18:52 +01:00
|
|
|
ASSERT(!bp->lmfs_needsetcache);
|
2015-03-29 18:57:53 +02:00
|
|
|
*bpp = bp;
|
|
|
|
|
return OK;
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
}
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->data = NULL;
|
|
|
|
|
|
2015-03-27 21:00:55 +01:00
|
|
|
/* The block is not in the cache, and VM does not know about it. If we were
|
|
|
|
|
* requested to search for the block only, we can now return failure to the
|
|
|
|
|
* caller. Return the block to the pool without allocating data pages, since
|
|
|
|
|
* these would be freed upon recycling the block anyway.
|
|
|
|
|
*/
|
|
|
|
|
if (how == PEEK) {
|
|
|
|
|
bp->lmfs_dev = NO_DEV;
|
|
|
|
|
|
2015-03-28 01:45:28 +01:00
|
|
|
put_block(bp, ONE_SHOT);
|
2015-03-27 21:00:55 +01:00
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
return ENOENT;
|
2015-03-27 21:00:55 +01:00
|
|
|
}
|
|
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
/* Not in the cache; reserve memory for its contents. */
|
|
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
lmfs_alloc_block(bp, block_size);
|
2013-03-20 20:18:52 +01:00
|
|
|
|
|
|
|
|
assert(bp->data);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-04-04 17:55:48 +02:00
|
|
|
if (how == NORMAL) {
|
2015-03-29 18:57:53 +02:00
|
|
|
/* Try to read the block. Return an error code on failure. */
|
|
|
|
|
if ((r = read_block(bp, block_size)) != OK) {
|
|
|
|
|
put_block(bp, 0);
|
|
|
|
|
|
|
|
|
|
return r;
|
|
|
|
|
}
|
2015-03-27 21:00:55 +01:00
|
|
|
} else if(how == NO_READ) {
|
2013-03-20 20:18:52 +01:00
|
|
|
/* This block will be overwritten by new contents. */
|
2012-10-16 17:40:39 +02:00
|
|
|
} else
|
2015-03-27 21:00:55 +01:00
|
|
|
panic("unexpected 'how' value: %d", how);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
|
|
|
|
assert(bp->data);
|
|
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
*bpp = bp; /* return the newly acquired block */
|
|
|
|
|
return OK;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_get_block_ino *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
int lmfs_get_block_ino(struct buf **bpp, dev_t dev, block64_t block, int how,
|
|
|
|
|
ino_t ino, u64_t ino_off)
|
|
|
|
|
{
|
|
|
|
|
return get_block_ino(bpp, dev, block, how, ino, ino_off, fs_block_size);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_get_partial_block *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
int lmfs_get_partial_block(struct buf **bpp, dev_t dev, block64_t block,
|
|
|
|
|
int how, size_t block_size)
|
|
|
|
|
{
|
|
|
|
|
return get_block_ino(bpp, dev, block, how, VMC_NO_INODE, 0, block_size);
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
2015-03-28 01:45:28 +01:00
|
|
|
* put_block *
|
2012-10-16 17:40:39 +02:00
|
|
|
*===========================================================================*/
|
2015-03-28 01:45:28 +01:00
|
|
|
static void put_block(struct buf *bp, int put_flags)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
2015-03-28 01:45:28 +01:00
|
|
|
/* Return a block to the list of available blocks. Depending on 'put_flags'
|
2012-10-16 17:40:39 +02:00
|
|
|
* it may be put on the front or rear of the LRU chain. Blocks that are
|
2015-03-28 01:45:28 +01:00
|
|
|
* expected to be needed again at some point go on the rear; blocks that are
|
|
|
|
|
* unlikely to be needed again at all go on the front.
|
2012-10-16 17:40:39 +02:00
|
|
|
*/
|
2013-03-20 20:18:52 +01:00
|
|
|
dev_t dev;
|
2015-03-30 12:44:09 +02:00
|
|
|
uint64_t dev_off;
|
2015-08-13 14:23:06 +02:00
|
|
|
int r, setflags;
|
2013-03-20 20:18:52 +01:00
|
|
|
|
2015-03-28 01:45:28 +01:00
|
|
|
assert(bp != NULL);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
dev = bp->lmfs_dev;
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-03-30 12:44:09 +02:00
|
|
|
dev_off = bp->lmfs_blocknr * fs_block_size;
|
2013-03-20 20:18:52 +01:00
|
|
|
|
|
|
|
|
lowercount(bp);
|
|
|
|
|
if (bp->lmfs_count != 0) return; /* block is still in use */
|
2012-10-16 17:40:39 +02:00
|
|
|
|
|
|
|
|
/* Put this block back on the LRU chain. */
|
2015-03-28 01:45:28 +01:00
|
|
|
if (dev == NO_DEV || dev == DEV_RAM || (put_flags & ONE_SHOT)) {
|
|
|
|
|
/* Block will not be needed again. Put it on front of chain.
|
2012-10-16 17:40:39 +02:00
|
|
|
* It will be the next block to be evicted from the cache.
|
|
|
|
|
*/
|
|
|
|
|
bp->lmfs_prev = NULL;
|
|
|
|
|
bp->lmfs_next = front;
|
|
|
|
|
if (front == NULL)
|
|
|
|
|
rear = bp; /* LRU chain was empty */
|
|
|
|
|
else
|
|
|
|
|
front->lmfs_prev = bp;
|
|
|
|
|
front = bp;
|
|
|
|
|
}
|
|
|
|
|
else {
|
2015-03-28 01:45:28 +01:00
|
|
|
/* Block may be needed again. Put it on rear of chain.
|
2012-10-16 17:40:39 +02:00
|
|
|
* It will not be evicted from the cache for a long time.
|
|
|
|
|
*/
|
|
|
|
|
bp->lmfs_prev = rear;
|
|
|
|
|
bp->lmfs_next = NULL;
|
|
|
|
|
if (rear == NULL)
|
|
|
|
|
front = bp;
|
|
|
|
|
else
|
|
|
|
|
rear->lmfs_next = bp;
|
|
|
|
|
rear = bp;
|
|
|
|
|
}
|
2013-03-20 20:18:52 +01:00
|
|
|
|
|
|
|
|
assert(bp->lmfs_flags & VMMC_BLOCK_LOCKED);
|
|
|
|
|
bp->lmfs_flags &= ~VMMC_BLOCK_LOCKED;
|
|
|
|
|
|
2015-03-27 21:00:55 +01:00
|
|
|
/* block has sensible content - if necessary, identify it to VM */
|
2013-03-20 20:18:52 +01:00
|
|
|
if(vmcache && bp->lmfs_needsetcache && dev != NO_DEV) {
|
2015-03-27 21:00:55 +01:00
|
|
|
assert(bp->data);
|
|
|
|
|
|
2015-03-28 01:45:28 +01:00
|
|
|
setflags = (put_flags & ONE_SHOT) ? VMSF_ONCE : 0;
|
2015-03-29 18:57:53 +02:00
|
|
|
|
2015-08-13 14:23:06 +02:00
|
|
|
if ((r = vm_set_cacheblock(bp->data, dev, dev_off, bp->lmfs_inode,
|
2015-03-29 18:57:53 +02:00
|
|
|
bp->lmfs_inode_offset, &bp->lmfs_flags,
|
|
|
|
|
roundup(bp->lmfs_bytes, PAGE_SIZE), setflags)) != OK) {
|
2013-03-20 20:18:52 +01:00
|
|
|
if(r == ENOSYS) {
|
|
|
|
|
printf("libminixfs: ENOSYS, disabling VM calls\n");
|
|
|
|
|
vmcache = 0;
|
2015-03-29 18:57:53 +02:00
|
|
|
} else if (r == ENOMEM) {
|
|
|
|
|
/* Do not panic in this case. Running out of memory is
|
|
|
|
|
* bad, especially since it may lead to applications
|
|
|
|
|
* crashing when trying to access memory-mapped pages
|
|
|
|
|
* we haven't been able to pass off to the VM cache,
|
|
|
|
|
* but the entire file system crashing is always worse.
|
|
|
|
|
*/
|
|
|
|
|
printf("libminixfs: no memory for cache block!\n");
|
2013-03-20 20:18:52 +01:00
|
|
|
} else {
|
2013-11-15 19:01:25 +01:00
|
|
|
panic("libminixfs: setblock of %p dev 0x%llx off "
|
2013-03-20 20:18:52 +01:00
|
|
|
"0x%llx failed\n", bp->data, dev, dev_off);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
bp->lmfs_needsetcache = 0;
|
2015-08-13 14:23:06 +02:00
|
|
|
|
|
|
|
|
/* Now that we (may) have given the block to VM, invalidate the block if it
|
|
|
|
|
* is a one-shot block. Otherwise, it may still be reobtained immediately
|
|
|
|
|
* after, which could be a problem if VM already forgot the block and we are
|
|
|
|
|
* expected to pass it to VM again, which then wouldn't happen.
|
|
|
|
|
*/
|
2015-03-28 01:45:28 +01:00
|
|
|
if (put_flags & ONE_SHOT)
|
2015-08-13 14:23:06 +02:00
|
|
|
bp->lmfs_dev = NO_DEV;
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
}
|
|
|
|
|
|
2015-03-28 01:45:28 +01:00
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_put_block *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
void lmfs_put_block(struct buf *bp)
|
|
|
|
|
{
|
|
|
|
|
/* User interface to put_block(). */
|
|
|
|
|
|
|
|
|
|
if (bp == NULL) return; /* for poorly written file systems */
|
|
|
|
|
|
|
|
|
|
put_block(bp, 0);
|
|
|
|
|
}
|
|
|
|
|
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_free_block *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
void lmfs_free_block(dev_t dev, block64_t block)
|
|
|
|
|
{
|
|
|
|
|
/* The file system has just freed the given block. The block may previously
|
|
|
|
|
* have been in use as data block for an inode. Therefore, we now need to tell
|
|
|
|
|
* VM that the block is no longer associated with an inode. If we fail to do so
|
|
|
|
|
* and the inode now has a hole at this location, mapping in the hole would
|
|
|
|
|
* yield the old block contents rather than a zeroed page. In addition, if the
|
|
|
|
|
* block is in the cache, it will be removed, even if it was dirty.
|
|
|
|
|
*/
|
|
|
|
|
struct buf *bp;
|
|
|
|
|
int r;
|
2013-04-26 11:54:33 +02:00
|
|
|
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
/* Tell VM to forget about the block. The primary purpose of this call is to
|
|
|
|
|
* break the inode association, but since the block is part of a mounted file
|
|
|
|
|
* system, it is not expected to be accessed directly anyway. So, save some
|
|
|
|
|
* cache memory by throwing it out of the VM cache altogether.
|
|
|
|
|
*/
|
|
|
|
|
if (vmcache) {
|
|
|
|
|
if ((r = vm_forget_cacheblock(dev, block * fs_block_size,
|
|
|
|
|
fs_block_size)) != OK)
|
|
|
|
|
printf("libminixfs: vm_forget_cacheblock failed (%d)\n", r);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ((bp = find_block(dev, block)) != NULL) {
|
|
|
|
|
lmfs_markclean(bp);
|
|
|
|
|
|
|
|
|
|
/* Invalidate the block. The block may or may not be in use right now,
|
|
|
|
|
* so don't be smart about freeing memory or repositioning in the LRU.
|
|
|
|
|
*/
|
|
|
|
|
bp->lmfs_dev = NO_DEV;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Note that this is *not* the right place to implement TRIM support. Even
|
|
|
|
|
* though the block is freed, on the device it may still be part of a
|
|
|
|
|
* previous checkpoint or snapshot of some sort. Only the file system can
|
|
|
|
|
* be trusted to decide which blocks can be reused on the device!
|
|
|
|
|
*/
|
2013-04-26 11:54:33 +02:00
|
|
|
}
|
|
|
|
|
|
2015-08-13 14:23:06 +02:00
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_zero_block_ino *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
void lmfs_zero_block_ino(dev_t dev, ino_t ino, u64_t ino_off)
|
|
|
|
|
{
|
|
|
|
|
/* Files may have holes. From an application perspective, these are just file
|
|
|
|
|
* regions filled with zeroes. From a file system perspective however, holes
|
|
|
|
|
* may represent unallocated regions on disk. Thus, these holes do not have
|
|
|
|
|
* corresponding blocks on the disk, and therefore also no block number.
|
|
|
|
|
* Therefore, we cannot simply use lmfs_get_block_ino() for them. For reads,
|
|
|
|
|
* this is not a problem, since the file system can just zero out the target
|
|
|
|
|
* application buffer instead. For mapped pages however, this *is* a problem,
|
|
|
|
|
* since the VM cache needs to be told about the corresponding block, and VM
|
|
|
|
|
* does not accept blocks without a device offset. The role of this function is
|
|
|
|
|
* therefore to tell VM about the hole using a fake device offset. The device
|
|
|
|
|
* offsets are picked so that the VM cache will see a block memory-mapped for
|
|
|
|
|
* the hole in the file, while the same block is not visible when
|
|
|
|
|
* memory-mapping the block device.
|
|
|
|
|
*/
|
|
|
|
|
struct buf *bp;
|
|
|
|
|
static block64_t fake_block = 0;
|
2015-03-29 18:57:53 +02:00
|
|
|
int r;
|
2015-08-13 14:23:06 +02:00
|
|
|
|
|
|
|
|
if (!vmcache)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
assert(fs_block_size > 0);
|
|
|
|
|
|
|
|
|
|
/* Pick a block number which is above the threshold of what can possibly be
|
|
|
|
|
* mapped in by mmap'ing the device, since off_t is signed, and it is safe to
|
|
|
|
|
* say that it will take a while before we have 8-exabyte devices. Pick a
|
|
|
|
|
* different block number each time to avoid possible concurrency issues.
|
|
|
|
|
* FIXME: it does not seem like VM actually verifies mmap offsets though..
|
|
|
|
|
*/
|
|
|
|
|
if (fake_block == 0 || ++fake_block >= UINT64_MAX / fs_block_size)
|
|
|
|
|
fake_block = ((uint64_t)INT64_MAX + 1) / fs_block_size;
|
|
|
|
|
|
|
|
|
|
/* Obtain a block. */
|
2015-03-29 18:57:53 +02:00
|
|
|
if ((r = lmfs_get_block_ino(&bp, dev, fake_block, NO_READ, ino,
|
|
|
|
|
ino_off)) != OK)
|
|
|
|
|
panic("libminixfs: getting a NO_READ block failed: %d", r);
|
2015-08-13 14:23:06 +02:00
|
|
|
assert(bp != NULL);
|
|
|
|
|
assert(bp->lmfs_dev != NO_DEV);
|
|
|
|
|
|
|
|
|
|
/* The block is already zeroed, as it has just been allocated with mmap. File
|
|
|
|
|
* systems do not rely on this assumption yet, so if VM ever gets changed to
|
|
|
|
|
* not clear the blocks we allocate (e.g., by recycling pages in the VM cache
|
|
|
|
|
* for the same process, which would be safe), we need to add a memset here.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/* Release the block. We don't expect it to be accessed ever again. Moreover,
|
|
|
|
|
* if we keep the block around in the VM cache, it may erroneously be mapped
|
|
|
|
|
* in beyond the file end later. Hence, use VMSF_ONCE when passing it to VM.
|
|
|
|
|
* TODO: tell VM that it is an all-zeroes block, so that VM can deduplicate
|
|
|
|
|
* all such pages in its cache.
|
|
|
|
|
*/
|
2015-03-28 01:45:28 +01:00
|
|
|
put_block(bp, ONE_SHOT);
|
2015-08-13 14:23:06 +02:00
|
|
|
}
|
|
|
|
|
|
2015-03-29 17:26:23 +02:00
|
|
|
void lmfs_set_blockusage(fsblkcnt_t btotal, fsblkcnt_t bused)
|
2013-04-26 11:54:33 +02:00
|
|
|
{
|
2015-03-29 17:26:23 +02:00
|
|
|
|
|
|
|
|
assert(bused <= btotal);
|
|
|
|
|
fs_btotal = btotal;
|
|
|
|
|
fs_bused = bused;
|
|
|
|
|
|
|
|
|
|
/* if the cache isn't in use, we could resize it. */
|
|
|
|
|
if (bufs_in_use == 0)
|
2015-03-28 01:45:28 +01:00
|
|
|
cache_heuristic_check();
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* read_block *
|
|
|
|
|
*===========================================================================*/
|
2015-03-29 18:57:53 +02:00
|
|
|
static int read_block(struct buf *bp, size_t block_size)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
2015-03-29 18:57:53 +02:00
|
|
|
/* Read a disk block of 'size' bytes. The given size is always the FS block
|
|
|
|
|
* size, except for the last block of a device. If an I/O error occurs,
|
|
|
|
|
* invalidate the block and return an error code.
|
2012-10-16 17:40:39 +02:00
|
|
|
*/
|
2015-03-29 18:57:53 +02:00
|
|
|
ssize_t r;
|
2013-11-28 17:51:21 +01:00
|
|
|
off_t pos;
|
2012-11-12 19:15:10 +01:00
|
|
|
dev_t dev = bp->lmfs_dev;
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2012-11-12 19:15:10 +01:00
|
|
|
assert(dev != NO_DEV);
|
|
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
ASSERT(bp->lmfs_bytes == block_size);
|
2013-03-20 20:18:52 +01:00
|
|
|
ASSERT(fs_block_size > 0);
|
|
|
|
|
|
2013-11-28 17:51:21 +01:00
|
|
|
pos = (off_t)bp->lmfs_blocknr * fs_block_size;
|
2015-03-29 18:57:53 +02:00
|
|
|
if (block_size > PAGE_SIZE) {
|
2013-03-20 20:18:52 +01:00
|
|
|
#define MAXPAGES 20
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
vir_bytes blockrem, vaddr = (vir_bytes) bp->data;
|
|
|
|
|
int p = 0;
|
2013-03-20 20:18:52 +01:00
|
|
|
static iovec_t iovec[MAXPAGES];
|
2015-03-29 18:57:53 +02:00
|
|
|
blockrem = block_size;
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
while(blockrem > 0) {
|
|
|
|
|
vir_bytes chunk = blockrem >= PAGE_SIZE ? PAGE_SIZE : blockrem;
|
2013-03-20 20:18:52 +01:00
|
|
|
iovec[p].iov_addr = vaddr;
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
iovec[p].iov_size = chunk;
|
|
|
|
|
vaddr += chunk;
|
|
|
|
|
blockrem -= chunk;
|
|
|
|
|
p++;
|
2013-03-20 20:18:52 +01:00
|
|
|
}
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
r = bdev_gather(dev, pos, iovec, p, BDEV_NOFLAGS);
|
2013-03-20 20:18:52 +01:00
|
|
|
} else {
|
2015-03-29 18:57:53 +02:00
|
|
|
r = bdev_read(dev, pos, bp->data, block_size, BDEV_NOFLAGS);
|
2012-11-12 19:15:10 +01:00
|
|
|
}
|
2015-03-29 18:57:53 +02:00
|
|
|
if (r != (ssize_t)block_size) {
|
|
|
|
|
printf("fs cache: I/O error on device %d/%d, block %"PRIu64" (%zd)\n",
|
|
|
|
|
major(dev), minor(dev), bp->lmfs_blocknr, r);
|
|
|
|
|
if (r >= 0)
|
|
|
|
|
r = EIO; /* TODO: retry retrieving (just) the remaining part */
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
bp->lmfs_dev = NO_DEV; /* invalidate block */
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
return r;
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
2013-03-20 20:18:52 +01:00
|
|
|
|
2015-03-29 18:57:53 +02:00
|
|
|
return OK;
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_invalidate *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
void lmfs_invalidate(
|
|
|
|
|
dev_t device /* device whose blocks are to be purged */
|
|
|
|
|
)
|
|
|
|
|
{
|
|
|
|
|
/* Remove all the blocks belonging to some device from the cache. */
|
|
|
|
|
|
|
|
|
|
register struct buf *bp;
|
|
|
|
|
|
2015-03-27 21:00:55 +01:00
|
|
|
assert(device != NO_DEV);
|
|
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
for (bp = &buf[0]; bp < &buf[nr_bufs]; bp++) {
|
|
|
|
|
if (bp->lmfs_dev == device) {
|
|
|
|
|
assert(bp->data);
|
|
|
|
|
assert(bp->lmfs_bytes > 0);
|
2013-11-22 16:38:29 +01:00
|
|
|
munmap_t(bp->data, bp->lmfs_bytes);
|
2013-03-20 20:18:52 +01:00
|
|
|
bp->lmfs_dev = NO_DEV;
|
|
|
|
|
bp->lmfs_bytes = 0;
|
|
|
|
|
bp->data = NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
2013-09-15 18:55:42 +02:00
|
|
|
|
libminixfs/VM: fix memory-mapped file corruption
This patch employs one solution to resolve two independent but related
issues. Both issues are the result of one fundamental aspect of the
way VM's memory mapping works: VM uses its cache to map in blocks for
memory-mapped file regions, and for blocks already in the VM cache, VM
does not go to the file system before mapping them in. To preserve
consistency between the FS and VM caches, VM relies on being informed
about all updates to file contents through the block cache. The two
issues are both the result of VM not being properly informed about
such updates:
1. Once a file system provides libminixfs with an inode association
(inode number + inode offset) for a disk block, this association
is not broken until a new inode association is provided for it.
If a block is freed and reallocated as a metadata (non-inode)
block, its old association is maintained, and may be supplied to
VM's secondary cache. Due to reuse of inodes, it is possible
that the same inode association becomes valid for an actual file
block again. In that case, when that new file is memory-mapped,
under certain circumstances, VM may end up using the metadata
block to satisfy a page fault on the file, due to the stale inode
association. The result is a corrupted memory mapping, with the
application seeing data other than the current file contents
mapped in at the file block.
2. When a hole is created in a file, the underlying block is freed
from the device, but VM is not informed of this update, and thus,
if VM's cache contains the block with its previous inode
association, this block will remain there. As a result, if an
application subsequently memory-maps the file, VM will map in the
old block at the position of the hole, rather than an all-zeroes
block. Thus, again, the result is a corrupted memory mapping.
This patch resolves both issues by making the file system inform the
minixfs library about blocks being freed, so that libminixfs can
break the inode association for that block, both in its own cache and
in the VM cache. Since libminixfs does not know whether VM has the
block in its cache or not, it makes a call to VM for each block being
freed. Thus, this change introduces more calls to VM, but it solves
the correctness issues at hand; optimizations may be introduced
later. On the upside, all freed blocks are now marked as clean,
which should result in fewer blocks being written back to the device,
and the blocks are removed from the caches entirely, which should
result in slightly better cache usage.
This patch is necessary but not sufficient to resolve the situation
with respect to memory mapping of file holes in general. Therefore,
this patch extends test 74 with a (rather particular but effective)
test for the first issue, but not yet with a test for the second one.
This fixes #90.
Change-Id: Iad8b134d2f88a884f15d3fc303e463280749c467
2015-08-13 13:29:33 +02:00
|
|
|
/* Clear the cache even if VM caching is disabled for the file system:
|
|
|
|
|
* caching may be disabled as side effect of an error, leaving blocks behind
|
|
|
|
|
* in the actual VM cache.
|
|
|
|
|
*/
|
2013-09-15 18:55:42 +02:00
|
|
|
vm_clear_cache(device);
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
2015-04-04 17:55:48 +02:00
|
|
|
* sort_blocks *
|
2012-10-16 17:40:39 +02:00
|
|
|
*===========================================================================*/
|
2015-04-04 17:55:48 +02:00
|
|
|
static void sort_blocks(struct buf **bufq, unsigned int bufqsize)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
2015-04-04 17:55:48 +02:00
|
|
|
struct buf *bp;
|
|
|
|
|
int i, j, gap;
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-04-04 17:55:48 +02:00
|
|
|
gap = 1;
|
|
|
|
|
do
|
|
|
|
|
gap = 3 * gap + 1;
|
|
|
|
|
while ((unsigned int)gap <= bufqsize);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-04-04 17:55:48 +02:00
|
|
|
while (gap != 1) {
|
|
|
|
|
gap /= 3;
|
|
|
|
|
for (j = gap; (unsigned int)j < bufqsize; j++) {
|
|
|
|
|
for (i = j - gap; i >= 0 &&
|
|
|
|
|
bufq[i]->lmfs_blocknr > bufq[i + gap]->lmfs_blocknr;
|
|
|
|
|
i -= gap) {
|
|
|
|
|
bp = bufq[i];
|
|
|
|
|
bufq[i] = bufq[i + gap];
|
|
|
|
|
bufq[i + gap] = bp;
|
|
|
|
|
}
|
2015-03-29 14:30:45 +02:00
|
|
|
}
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
2015-04-04 17:55:48 +02:00
|
|
|
* rw_scattered *
|
2012-10-16 17:40:39 +02:00
|
|
|
*===========================================================================*/
|
2015-04-04 17:55:48 +02:00
|
|
|
static void rw_scattered(
|
2012-10-16 17:40:39 +02:00
|
|
|
dev_t dev, /* major-minor device number */
|
|
|
|
|
struct buf **bufq, /* pointer to array of buffers */
|
2015-04-04 17:55:48 +02:00
|
|
|
unsigned int bufqsize, /* number of buffers */
|
2012-10-16 17:40:39 +02:00
|
|
|
int rw_flag /* READING or WRITING */
|
|
|
|
|
)
|
|
|
|
|
{
|
|
|
|
|
/* Read or write scattered data from a device. */
|
|
|
|
|
|
|
|
|
|
register struct buf *bp;
|
|
|
|
|
register iovec_t *iop;
|
2013-10-03 17:22:07 +02:00
|
|
|
static iovec_t iovec[NR_IOREQS];
|
2013-11-28 17:51:21 +01:00
|
|
|
off_t pos;
|
2015-04-04 17:55:48 +02:00
|
|
|
unsigned int i, iov_per_block;
|
2015-09-25 21:22:27 +02:00
|
|
|
#if !defined(NDEBUG)
|
2014-09-30 23:04:09 +02:00
|
|
|
unsigned int start_in_use = bufs_in_use, start_bufqsize = bufqsize;
|
2015-09-25 21:22:27 +02:00
|
|
|
#endif /* !defined(NDEBUG) */
|
2013-11-05 15:43:27 +01:00
|
|
|
|
|
|
|
|
if(bufqsize == 0) return;
|
|
|
|
|
|
2015-09-25 21:22:27 +02:00
|
|
|
#if !defined(NDEBUG)
|
2013-11-05 15:43:27 +01:00
|
|
|
/* for READING, check all buffers on the list are obtained and held
|
|
|
|
|
* (count > 0)
|
|
|
|
|
*/
|
|
|
|
|
if (rw_flag == READING) {
|
2015-04-04 17:55:48 +02:00
|
|
|
assert(bufqsize <= LMFS_MAX_PREFETCH);
|
|
|
|
|
|
2013-11-05 15:43:27 +01:00
|
|
|
for(i = 0; i < bufqsize; i++) {
|
|
|
|
|
assert(bufq[i] != NULL);
|
|
|
|
|
assert(bufq[i]->lmfs_count > 0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* therefore they are all 'in use' and must be at least this many */
|
2015-03-29 18:57:53 +02:00
|
|
|
assert(start_in_use >= start_bufqsize);
|
2013-11-05 15:43:27 +01:00
|
|
|
}
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2013-03-20 20:18:52 +01:00
|
|
|
assert(dev != NO_DEV);
|
|
|
|
|
assert(fs_block_size > 0);
|
2015-03-29 18:57:53 +02:00
|
|
|
assert(howmany(fs_block_size, PAGE_SIZE) <= NR_IOREQS);
|
2015-09-25 21:22:27 +02:00
|
|
|
#endif /* !defined(NDEBUG) */
|
|
|
|
|
|
2015-04-04 17:55:48 +02:00
|
|
|
/* For WRITING, (Shell) sort buffers on lmfs_blocknr.
|
|
|
|
|
* For READING, the buffers are already sorted.
|
|
|
|
|
*/
|
|
|
|
|
if (rw_flag == WRITING)
|
|
|
|
|
sort_blocks(bufq, bufqsize);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
|
|
|
|
/* Set up I/O vector and do I/O. The result of bdev I/O is OK if everything
|
|
|
|
|
* went fine, otherwise the error code for the first failed transfer.
|
|
|
|
|
*/
|
|
|
|
|
while (bufqsize > 0) {
|
2015-04-04 17:55:48 +02:00
|
|
|
unsigned int p, nblocks = 0, niovecs = 0;
|
2013-03-20 20:18:52 +01:00
|
|
|
int r;
|
|
|
|
|
for (iop = iovec; nblocks < bufqsize; nblocks++) {
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
vir_bytes vdata, blockrem;
|
2013-03-20 20:18:52 +01:00
|
|
|
bp = bufq[nblocks];
|
2015-03-30 12:44:09 +02:00
|
|
|
if (bp->lmfs_blocknr != bufq[0]->lmfs_blocknr + nblocks)
|
2013-03-20 20:18:52 +01:00
|
|
|
break;
|
2015-03-29 18:57:53 +02:00
|
|
|
blockrem = bp->lmfs_bytes;
|
|
|
|
|
iov_per_block = howmany(blockrem, PAGE_SIZE);
|
2015-04-04 17:55:48 +02:00
|
|
|
if (niovecs > NR_IOREQS - iov_per_block) break;
|
2013-03-20 20:18:52 +01:00
|
|
|
vdata = (vir_bytes) bp->data;
|
|
|
|
|
for(p = 0; p < iov_per_block; p++) {
|
2015-03-29 18:57:53 +02:00
|
|
|
vir_bytes chunk =
|
|
|
|
|
blockrem < PAGE_SIZE ? blockrem : PAGE_SIZE;
|
2013-03-20 20:18:52 +01:00
|
|
|
iop->iov_addr = vdata;
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
iop->iov_size = chunk;
|
2013-03-20 20:18:52 +01:00
|
|
|
vdata += PAGE_SIZE;
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
blockrem -= chunk;
|
2013-03-20 20:18:52 +01:00
|
|
|
iop++;
|
|
|
|
|
niovecs++;
|
|
|
|
|
}
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
assert(p == iov_per_block);
|
|
|
|
|
assert(blockrem == 0);
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
2013-03-20 20:18:52 +01:00
|
|
|
|
|
|
|
|
assert(nblocks > 0);
|
2015-04-04 17:55:48 +02:00
|
|
|
assert(niovecs > 0 && niovecs <= NR_IOREQS);
|
2013-03-20 20:18:52 +01:00
|
|
|
|
2013-11-28 17:51:21 +01:00
|
|
|
pos = (off_t)bufq[0]->lmfs_blocknr * fs_block_size;
|
2012-10-16 17:40:39 +02:00
|
|
|
if (rw_flag == READING)
|
2013-03-20 20:18:52 +01:00
|
|
|
r = bdev_gather(dev, pos, iovec, niovecs, BDEV_NOFLAGS);
|
2012-10-16 17:40:39 +02:00
|
|
|
else
|
2013-03-20 20:18:52 +01:00
|
|
|
r = bdev_scatter(dev, pos, iovec, niovecs, BDEV_NOFLAGS);
|
2012-10-16 17:40:39 +02:00
|
|
|
|
|
|
|
|
/* Harvest the results. The driver may have returned an error, or it
|
|
|
|
|
* may have done less than what we asked for.
|
|
|
|
|
*/
|
|
|
|
|
if (r < 0) {
|
2015-03-30 12:44:09 +02:00
|
|
|
printf("fs cache: I/O error %d on device %d/%d, "
|
|
|
|
|
"block %"PRIu64"\n",
|
|
|
|
|
r, major(dev), minor(dev), bufq[0]->lmfs_blocknr);
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
2013-03-20 20:18:52 +01:00
|
|
|
for (i = 0; i < nblocks; i++) {
|
2012-10-16 17:40:39 +02:00
|
|
|
bp = bufq[i];
|
2015-03-29 18:57:53 +02:00
|
|
|
if (r < (ssize_t)bp->lmfs_bytes) {
|
2012-10-16 17:40:39 +02:00
|
|
|
/* Transfer failed. */
|
|
|
|
|
if (i == 0) {
|
|
|
|
|
bp->lmfs_dev = NO_DEV; /* Invalidate block */
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
if (rw_flag == READING) {
|
2015-03-28 01:45:28 +01:00
|
|
|
lmfs_put_block(bp);
|
2012-10-16 17:40:39 +02:00
|
|
|
} else {
|
|
|
|
|
MARKCLEAN(bp);
|
|
|
|
|
}
|
2015-03-29 18:57:53 +02:00
|
|
|
r -= bp->lmfs_bytes;
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
2013-11-05 15:43:27 +01:00
|
|
|
|
|
|
|
|
bufq += i;
|
|
|
|
|
bufqsize -= i;
|
|
|
|
|
|
2012-10-16 17:40:39 +02:00
|
|
|
if (rw_flag == READING) {
|
|
|
|
|
/* Don't bother reading more than the device is willing to
|
|
|
|
|
* give at this time. Don't forget to release those extras.
|
|
|
|
|
*/
|
|
|
|
|
while (bufqsize > 0) {
|
2015-04-04 17:55:48 +02:00
|
|
|
bp = *bufq++;
|
|
|
|
|
bp->lmfs_dev = NO_DEV; /* invalidate block */
|
|
|
|
|
lmfs_put_block(bp);
|
2012-10-16 17:40:39 +02:00
|
|
|
bufqsize--;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (rw_flag == WRITING && i == 0) {
|
|
|
|
|
/* We're not making progress, this means we might keep
|
|
|
|
|
* looping. Buffers remain dirty if un-written. Buffers are
|
|
|
|
|
* lost if invalidate()d or LRU-removed while dirty. This
|
|
|
|
|
* is better than keeping unwritable blocks around forever..
|
|
|
|
|
*/
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
2013-11-05 15:43:27 +01:00
|
|
|
|
2015-09-25 21:22:27 +02:00
|
|
|
#if !defined(NDEBUG)
|
2013-11-05 15:43:27 +01:00
|
|
|
if(rw_flag == READING) {
|
|
|
|
|
assert(start_in_use >= start_bufqsize);
|
|
|
|
|
|
|
|
|
|
/* READING callers assume all bufs are released. */
|
|
|
|
|
assert(start_in_use - start_bufqsize == bufs_in_use);
|
|
|
|
|
}
|
2015-09-25 21:22:27 +02:00
|
|
|
#endif /* !defined(NDEBUG) */
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
2015-04-04 17:55:48 +02:00
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_readahead *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
void lmfs_readahead(dev_t dev, block64_t base_block, unsigned int nblocks,
|
|
|
|
|
size_t last_size)
|
|
|
|
|
{
|
|
|
|
|
/* Read ahead 'nblocks' blocks starting from the block 'base_block' on device
|
|
|
|
|
* 'dev'. The number of blocks must be between 1 and LMFS_MAX_PREFETCH,
|
|
|
|
|
* inclusive. All blocks have the file system's block size, possibly except the
|
|
|
|
|
* last block in the range, which is of size 'last_size'. The caller must
|
|
|
|
|
* ensure that none of the blocks in the range are already in the cache.
|
|
|
|
|
* However, the caller must also not rely on all or even any of the blocks to
|
|
|
|
|
* be present in the cache afterwards--failures are (deliberately!) ignored.
|
|
|
|
|
*/
|
2015-08-10 18:06:10 +02:00
|
|
|
static noxfer_buf_ptr_t bufq[LMFS_MAX_PREFETCH]; /* static for size only */
|
2015-04-04 17:55:48 +02:00
|
|
|
struct buf *bp;
|
|
|
|
|
unsigned int count;
|
|
|
|
|
int r;
|
|
|
|
|
|
|
|
|
|
assert(nblocks >= 1 && nblocks <= LMFS_MAX_PREFETCH);
|
|
|
|
|
|
|
|
|
|
for (count = 0; count < nblocks; count++) {
|
|
|
|
|
if (count == nblocks - 1)
|
|
|
|
|
r = lmfs_get_partial_block(&bp, dev, base_block + count,
|
|
|
|
|
NO_READ, last_size);
|
|
|
|
|
else
|
|
|
|
|
r = lmfs_get_block(&bp, dev, base_block + count, NO_READ);
|
|
|
|
|
|
|
|
|
|
if (r != OK)
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
/* We could add a flag that makes the get_block() calls fail if the
|
|
|
|
|
* block is already in the cache, but it is not a major concern if it
|
|
|
|
|
* is: we just perform a useless read in that case. However, if the
|
|
|
|
|
* block is cached *and* dirty, we are about to lose its new contents.
|
|
|
|
|
*/
|
|
|
|
|
assert(lmfs_isclean(bp));
|
|
|
|
|
|
|
|
|
|
bufq[count] = bp;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rw_scattered(dev, bufq, count, READING);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_prefetch *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
unsigned int lmfs_readahead_limit(void)
|
|
|
|
|
{
|
|
|
|
|
/* Return the maximum number of blocks that should be read ahead at once. The
|
|
|
|
|
* return value is guaranteed to be between 1 and LMFS_MAX_PREFETCH, inclusive.
|
|
|
|
|
*/
|
|
|
|
|
unsigned int max_transfer, max_bufs;
|
|
|
|
|
|
|
|
|
|
/* The returned value is the minimum of two factors: the maximum number of
|
|
|
|
|
* blocks that can be transferred in a single I/O gather request (see how
|
|
|
|
|
* rw_scattered() generates I/O requests), and a policy limit on the number
|
|
|
|
|
* of buffers that any read-ahead operation may use (that is, thrash).
|
|
|
|
|
*/
|
|
|
|
|
max_transfer = NR_IOREQS / MAX(fs_block_size / PAGE_SIZE, 1);
|
|
|
|
|
|
|
|
|
|
/* The constants have been imported from MFS as is, and may need tuning. */
|
|
|
|
|
if (nr_bufs < 50)
|
|
|
|
|
max_bufs = 18;
|
|
|
|
|
else
|
|
|
|
|
max_bufs = nr_bufs - 4;
|
|
|
|
|
|
|
|
|
|
return MIN(max_transfer, max_bufs);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_prefetch *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
void lmfs_prefetch(dev_t dev, const block64_t *blockset, unsigned int nblocks)
|
|
|
|
|
{
|
|
|
|
|
/* The given set of blocks is expected to be needed soon, so prefetch a
|
|
|
|
|
* convenient subset. The blocks are expected to be sorted by likelihood of
|
|
|
|
|
* being accessed soon, making the first block of the set the most important
|
|
|
|
|
* block to prefetch right now. The caller must have made sure that the blocks
|
|
|
|
|
* are not in the cache already. The array may have duplicate block numbers.
|
|
|
|
|
*/
|
|
|
|
|
bitchunk_t blocks_before[BITMAP_CHUNKS(LMFS_MAX_PREFETCH)];
|
|
|
|
|
bitchunk_t blocks_after[BITMAP_CHUNKS(LMFS_MAX_PREFETCH)];
|
|
|
|
|
block64_t block, base_block;
|
|
|
|
|
unsigned int i, bit, nr_before, nr_after, span, limit, nr_blocks;
|
|
|
|
|
|
|
|
|
|
if (nblocks == 0)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/* Here is the deal. We are going to prefetch one range only, because seeking
|
|
|
|
|
* is too expensive for just prefetching. The range we select should at least
|
|
|
|
|
* include the first ("base") block of the given set, since that is the block
|
|
|
|
|
* the caller is primarily interested in. Thus, the rest of the range is
|
|
|
|
|
* going to have to be directly around this base block. We first check which
|
|
|
|
|
* blocks from the set fall just before and after the base block, which then
|
|
|
|
|
* allows us to construct a contiguous range of desired blocks directly
|
|
|
|
|
* around the base block, in O(n) time. As a natural part of this, we ignore
|
|
|
|
|
* duplicate blocks in the given set. We then read from the beginning of this
|
|
|
|
|
* range, in order to maximize the chance that a next prefetch request will
|
|
|
|
|
* continue from the last disk position without requiring a seek. However, we
|
|
|
|
|
* do correct for the maximum number of blocks we can (or should) read in at
|
|
|
|
|
* once, such that we will still end up reading the base block.
|
|
|
|
|
*/
|
|
|
|
|
base_block = blockset[0];
|
|
|
|
|
|
|
|
|
|
memset(blocks_before, 0, sizeof(blocks_before));
|
|
|
|
|
memset(blocks_after, 0, sizeof(blocks_after));
|
|
|
|
|
|
|
|
|
|
for (i = 1; i < nblocks; i++) {
|
|
|
|
|
block = blockset[i];
|
|
|
|
|
|
|
|
|
|
if (block < base_block && block + LMFS_MAX_PREFETCH >= base_block) {
|
|
|
|
|
bit = base_block - block - 1;
|
|
|
|
|
assert(bit < LMFS_MAX_PREFETCH);
|
|
|
|
|
SET_BIT(blocks_before, bit);
|
|
|
|
|
} else if (block > base_block &&
|
|
|
|
|
block - LMFS_MAX_PREFETCH <= base_block) {
|
|
|
|
|
bit = block - base_block - 1;
|
|
|
|
|
assert(bit < LMFS_MAX_PREFETCH);
|
|
|
|
|
SET_BIT(blocks_after, bit);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (nr_before = 0; nr_before < LMFS_MAX_PREFETCH; nr_before++)
|
|
|
|
|
if (!GET_BIT(blocks_before, nr_before))
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
for (nr_after = 0; nr_after < LMFS_MAX_PREFETCH; nr_after++)
|
|
|
|
|
if (!GET_BIT(blocks_after, nr_after))
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
/* The number of blocks to prefetch is the minimum of two factors: the number
|
|
|
|
|
* of blocks in the range around the base block, and the maximum number of
|
|
|
|
|
* blocks that should be read ahead at once at all.
|
|
|
|
|
*/
|
|
|
|
|
span = nr_before + 1 + nr_after;
|
|
|
|
|
limit = lmfs_readahead_limit();
|
|
|
|
|
|
|
|
|
|
nr_blocks = MIN(span, limit);
|
|
|
|
|
assert(nr_blocks >= 1 && nr_blocks <= LMFS_MAX_PREFETCH);
|
|
|
|
|
|
|
|
|
|
/* Start prefetching from the lowest block within the contiguous range, but
|
|
|
|
|
* make sure that we read at least the original base block itself, too.
|
|
|
|
|
*/
|
|
|
|
|
base_block -= MIN(nr_before, nr_blocks - 1);
|
|
|
|
|
|
|
|
|
|
lmfs_readahead(dev, base_block, nr_blocks, fs_block_size);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_flushdev *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
void lmfs_flushdev(dev_t dev)
|
|
|
|
|
{
|
|
|
|
|
/* Flush all dirty blocks for one device. */
|
|
|
|
|
|
|
|
|
|
register struct buf *bp;
|
2015-08-10 18:06:10 +02:00
|
|
|
static noxfer_buf_ptr_t *dirty;
|
2015-04-04 17:55:48 +02:00
|
|
|
static unsigned int dirtylistsize = 0;
|
|
|
|
|
unsigned int ndirty;
|
|
|
|
|
|
|
|
|
|
if(dirtylistsize != nr_bufs) {
|
|
|
|
|
if(dirtylistsize > 0) {
|
|
|
|
|
assert(dirty != NULL);
|
|
|
|
|
free(dirty);
|
|
|
|
|
}
|
|
|
|
|
if(!(dirty = malloc(sizeof(dirty[0])*nr_bufs)))
|
|
|
|
|
panic("couldn't allocate dirty buf list");
|
|
|
|
|
dirtylistsize = nr_bufs;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (bp = &buf[0], ndirty = 0; bp < &buf[nr_bufs]; bp++) {
|
|
|
|
|
/* Do not flush dirty blocks that are in use (lmfs_count>0): the file
|
|
|
|
|
* system may mark the block as dirty before changing its contents, in
|
|
|
|
|
* which case the new contents could end up being lost.
|
|
|
|
|
*/
|
|
|
|
|
if (!lmfs_isclean(bp) && bp->lmfs_dev == dev && bp->lmfs_count == 0) {
|
|
|
|
|
dirty[ndirty++] = bp;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rw_scattered(dev, dirty, ndirty, WRITING);
|
|
|
|
|
}
|
|
|
|
|
|
2012-10-16 17:40:39 +02:00
|
|
|
/*===========================================================================*
|
|
|
|
|
* rm_lru *
|
|
|
|
|
*===========================================================================*/
|
2014-02-24 14:00:17 +01:00
|
|
|
static void rm_lru(struct buf *bp)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
|
|
|
|
/* Remove a block from its LRU chain. */
|
|
|
|
|
struct buf *next_ptr, *prev_ptr;
|
|
|
|
|
|
|
|
|
|
next_ptr = bp->lmfs_next; /* successor on LRU chain */
|
|
|
|
|
prev_ptr = bp->lmfs_prev; /* predecessor on LRU chain */
|
|
|
|
|
if (prev_ptr != NULL)
|
|
|
|
|
prev_ptr->lmfs_next = next_ptr;
|
|
|
|
|
else
|
|
|
|
|
front = next_ptr; /* this block was at front of chain */
|
|
|
|
|
|
|
|
|
|
if (next_ptr != NULL)
|
|
|
|
|
next_ptr->lmfs_prev = prev_ptr;
|
|
|
|
|
else
|
|
|
|
|
rear = prev_ptr; /* this block was at rear of chain */
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* cache_resize *
|
|
|
|
|
*===========================================================================*/
|
2015-03-29 17:26:23 +02:00
|
|
|
static void cache_resize(size_t blocksize, unsigned int bufs)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
|
|
|
|
struct buf *bp;
|
|
|
|
|
|
|
|
|
|
assert(blocksize > 0);
|
|
|
|
|
assert(bufs >= MINBUFS);
|
|
|
|
|
|
|
|
|
|
for (bp = &buf[0]; bp < &buf[nr_bufs]; bp++)
|
|
|
|
|
if(bp->lmfs_count != 0) panic("change blocksize with buffer in use");
|
|
|
|
|
|
|
|
|
|
lmfs_buf_pool(bufs);
|
|
|
|
|
|
|
|
|
|
fs_block_size = blocksize;
|
|
|
|
|
}
|
|
|
|
|
|
2015-03-28 01:45:28 +01:00
|
|
|
static void cache_heuristic_check(void)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
2013-04-26 11:54:33 +02:00
|
|
|
int bufs, d;
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2015-03-29 17:26:23 +02:00
|
|
|
bufs = fs_bufs_heuristic(MINBUFS, fs_btotal, fs_bused, fs_block_size);
|
2013-04-26 11:54:33 +02:00
|
|
|
|
|
|
|
|
/* set the cache to the new heuristic size if the new one
|
|
|
|
|
* is more than 10% off from the current one.
|
|
|
|
|
*/
|
|
|
|
|
d = bufs-nr_bufs;
|
|
|
|
|
if(d < 0) d = -d;
|
|
|
|
|
if(d*100/nr_bufs > 10) {
|
|
|
|
|
cache_resize(fs_block_size, bufs);
|
|
|
|
|
}
|
|
|
|
|
}
|
2012-10-16 17:40:39 +02:00
|
|
|
|
2013-04-26 11:54:33 +02:00
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_set_blocksize *
|
|
|
|
|
*===========================================================================*/
|
2015-03-29 17:26:23 +02:00
|
|
|
void lmfs_set_blocksize(size_t new_block_size)
|
2013-04-26 11:54:33 +02:00
|
|
|
{
|
|
|
|
|
cache_resize(new_block_size, MINBUFS);
|
2015-03-28 01:45:28 +01:00
|
|
|
cache_heuristic_check();
|
2012-10-16 17:40:39 +02:00
|
|
|
|
|
|
|
|
/* Decide whether to use seconday cache or not.
|
2015-03-28 01:45:28 +01:00
|
|
|
* Only do this if the block size is a multiple of the page size, and using
|
|
|
|
|
* the VM cache has been enabled for this FS.
|
2012-10-16 17:40:39 +02:00
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
vmcache = 0;
|
2013-03-20 20:18:52 +01:00
|
|
|
|
libminixfs: allow non-pagesize-multiple FSes
The memory-mapped files implementation (mmap() etc.) is implemented with
the help of the filesystems using the in-VM FS cache. Filesystems tell it
about all cached blocks and their metadata. Metadata is: device offset and,
if any (and known), inode number and in-inode offset. VM can then map in
requested memory-mapped file blocks, and request them if necessary.
A limitation of this system is that filesystem block sizes that are not
a multiple of the VM system (and VM hardware) page size are not possible;
we can't map blocks in partially. (We can copy, but then the benefits of
mapping and sharing the physical pages is gone.) So until before this
commit various pieces of caching code assumed page size multiple
blocksizes. This isn't strictly necessary as long as mmap() needn't be
supported on that FS.
This change allows the in-FS cache code (libminixfs) to allocate any-sized
blocks, and will not interact with the VM cache for non-pagesize-multiple
blocks. In that case it will also signal requestors, by failing 'peek'
requests, that mmap() should not be supported on this FS. VM and VFS
will then gracefully fail all file-mapping mmap() calls, and exec() will
fall back to copying executable blocks instead of mmap()ping executables.
As a result, 3 diagnostics that signal file-mapped mmap()s failing
(hitherto an unusual occurence) are disabled, as ld.so does file-mapped
mmap()s to map in objects it needs. On FSes not supporting it this situation
is legitimate and shouldn't cause so much noise. ld.so will revert to its own
minix-specific allocate+copy style of starting executables if mmap()s fail.
Change-Id: Iecb1c8090f5e0be28da8f5181bb35084eb18f67b
2013-11-19 16:59:52 +01:00
|
|
|
if(may_use_vmcache && !(new_block_size % PAGE_SIZE))
|
2012-10-16 17:40:39 +02:00
|
|
|
vmcache = 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*===========================================================================*
|
|
|
|
|
* lmfs_buf_pool *
|
|
|
|
|
*===========================================================================*/
|
|
|
|
|
void lmfs_buf_pool(int new_nr_bufs)
|
|
|
|
|
{
|
|
|
|
|
/* Initialize the buffer pool. */
|
|
|
|
|
register struct buf *bp;
|
|
|
|
|
|
|
|
|
|
assert(new_nr_bufs >= MINBUFS);
|
|
|
|
|
|
|
|
|
|
if(nr_bufs > 0) {
|
|
|
|
|
assert(buf);
|
2014-08-24 11:38:25 +02:00
|
|
|
lmfs_flushall();
|
2012-10-16 17:40:39 +02:00
|
|
|
for (bp = &buf[0]; bp < &buf[nr_bufs]; bp++) {
|
|
|
|
|
if(bp->data) {
|
|
|
|
|
assert(bp->lmfs_bytes > 0);
|
2013-11-22 16:38:29 +01:00
|
|
|
munmap_t(bp->data, bp->lmfs_bytes);
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if(buf)
|
|
|
|
|
free(buf);
|
|
|
|
|
|
|
|
|
|
if(!(buf = calloc(sizeof(buf[0]), new_nr_bufs)))
|
|
|
|
|
panic("couldn't allocate buf list (%d)", new_nr_bufs);
|
|
|
|
|
|
|
|
|
|
if(buf_hash)
|
|
|
|
|
free(buf_hash);
|
|
|
|
|
if(!(buf_hash = calloc(sizeof(buf_hash[0]), new_nr_bufs)))
|
|
|
|
|
panic("couldn't allocate buf hash list (%d)", new_nr_bufs);
|
|
|
|
|
|
|
|
|
|
nr_bufs = new_nr_bufs;
|
|
|
|
|
|
|
|
|
|
bufs_in_use = 0;
|
|
|
|
|
front = &buf[0];
|
|
|
|
|
rear = &buf[nr_bufs - 1];
|
|
|
|
|
|
|
|
|
|
for (bp = &buf[0]; bp < &buf[nr_bufs]; bp++) {
|
|
|
|
|
bp->lmfs_blocknr = NO_BLOCK;
|
|
|
|
|
bp->lmfs_dev = NO_DEV;
|
|
|
|
|
bp->lmfs_next = bp + 1;
|
|
|
|
|
bp->lmfs_prev = bp - 1;
|
|
|
|
|
bp->data = NULL;
|
|
|
|
|
bp->lmfs_bytes = 0;
|
|
|
|
|
}
|
|
|
|
|
front->lmfs_prev = NULL;
|
|
|
|
|
rear->lmfs_next = NULL;
|
|
|
|
|
|
|
|
|
|
for (bp = &buf[0]; bp < &buf[nr_bufs]; bp++) bp->lmfs_hash = bp->lmfs_next;
|
|
|
|
|
buf_hash[0] = front;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void lmfs_flushall(void)
|
|
|
|
|
{
|
|
|
|
|
struct buf *bp;
|
|
|
|
|
for(bp = &buf[0]; bp < &buf[nr_bufs]; bp++)
|
2013-03-20 20:18:52 +01:00
|
|
|
if(bp->lmfs_dev != NO_DEV && !lmfs_isclean(bp))
|
2014-08-24 11:40:52 +02:00
|
|
|
lmfs_flushdev(bp->lmfs_dev);
|
2015-03-29 17:26:23 +02:00
|
|
|
|
|
|
|
|
/* This is the moment where it is least likely (although certainly not
|
|
|
|
|
* impossible!) that there are buffers in use, since buffers should not
|
|
|
|
|
* be held across file system syncs. See if we already intended to
|
|
|
|
|
* resize the buffer cache, but couldn't. Be aware that we may be
|
|
|
|
|
* called indirectly from within lmfs_change_blockusage(), so care must
|
|
|
|
|
* be taken not to recurse infinitely. TODO: see if it is better to
|
|
|
|
|
* resize the cache from here *only*, thus guaranteeing a clean cache.
|
|
|
|
|
*/
|
|
|
|
|
lmfs_change_blockusage(0);
|
2012-10-16 17:40:39 +02:00
|
|
|
}
|
|
|
|
|
|
2015-03-29 17:26:23 +02:00
|
|
|
size_t lmfs_fs_block_size(void)
|
2012-10-16 17:40:39 +02:00
|
|
|
{
|
|
|
|
|
return fs_block_size;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void lmfs_may_use_vmcache(int ok)
|
|
|
|
|
{
|
|
|
|
|
may_use_vmcache = ok;
|
|
|
|
|
}
|
