| blob | 84f9e4c4c1885d14060b2e9b06484901ae4aed06 |
1 /*
2 * Copyright (c) 2007-2008 The DragonFly Project. All rights reserved.
3 *
4 * This code is derived from software contributed to The DragonFly Project
5 * by Matthew Dillon <dillon@backplane.com>
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 *
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in
15 * the documentation and/or other materials provided with the
16 * distribution.
17 * 3. Neither the name of The DragonFly Project nor the names of its
18 * contributors may be used to endorse or promote products derived
19 * from this software without specific, prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
22 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
23 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
24 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
25 * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
26 * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING,
27 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
28 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
29 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
30 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
31 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 * SUCH DAMAGE.
33 */
44 hammer_btree_leaf_elm_t leaf);
46 hammer_btree_leaf_elm_t leaf);
51 };
54 hammer_record_t record;
55 hammer_record_t conflict;
56 };
58 /*
59 * Red-black tree support. Comparison code for insertion.
60 */
61 static int
63 {
74 /*
75 * For search & insertion purposes records deleted by the
76 * frontend or deleted/committed by the backend are silently
77 * ignored. Otherwise pipelined insertions will get messed
78 * up.
79 *
80 * rec1 is greater then rec2 if rec1 is marked deleted.
81 * rec1 is less then rec2 if rec2 is marked deleted.
82 *
83 * Multiple deleted records may be present, do not return 0
84 * if both are marked deleted.
85 */
87 HAMMER_RECF_COMMITTED)) {
89 }
91 HAMMER_RECF_COMMITTED)) {
93 }
96 }
98 /*
99 * Basic record comparison code similar to hammer_btree_cmp().
100 *
101 * obj_id is not compared and may not yet be assigned in the record.
102 */
103 static int
105 {
116 /*
117 * Never match against an item deleted by the frontend
118 * or backend, or committed by the backend.
119 *
120 * elm is less then rec if rec is marked deleted.
121 */
123 HAMMER_RECF_COMMITTED)) {
125 }
127 }
129 /*
130 * Ranged scan to locate overlapping record(s). This is used by
131 * hammer_ip_get_bulk() to locate an overlapping record. We have
132 * to use a ranged scan because the keys for data records with the
133 * same file base offset can be different due to differing data_len's.
134 *
135 * NOTE: The base file offset of a data record is (key - data_len), not (key).
136 */
137 static int
139 {
148 /*
149 * Overlap compare
150 */
152 /* rec_beg >= leaf_end */
155 /* rec_end <= leaf_beg */
163 }
165 /*
166 * We have to return 0 at this point, even if DELETED_FE is set,
167 * because returning anything else will cause the scan to ignore
168 * one of the branches when we really want it to check both.
169 */
171 }
173 /*
174 * RB_SCAN comparison code for hammer_mem_first(). The argument order
175 * is reversed so the comparison result has to be negated. key_beg and
176 * key_end are both range-inclusive.
177 *
178 * Localized deletions are not cached in-memory.
179 */
180 static
181 int
183 {
194 }
196 /*
197 * This compare function is used when simply looking up key_beg.
198 */
199 static
200 int
202 {
212 }
214 /*
215 * Locate blocks within the truncation range. Partial blocks do not count.
216 */
217 static
218 int
220 {
230 /*
231 * DB record key is not beyond the truncation point, retain.
232 */
237 /*
238 * DATA record offset start is not beyond the truncation point,
239 * retain.
240 */
246 }
248 /*
249 * The record start is >= the truncation point, return match,
250 * the record should be destroyed.
251 */
253 }
257 /*
258 * Allocate a record for the caller to finish filling in. The record is
259 * returned referenced. In order to manually set data call this function
260 * with data_len=0 and then manually set record->leaf.data_len and
261 * record->data later.
262 */
263 hammer_record_t
265 {
266 hammer_record_t record;
267 hammer_mount_t hmp;
283 }
286 }
288 void
290 {
294 }
295 }
297 /*
298 * Called from the backend, hammer_inode.c, after a record has been
299 * flushed to disk. The record has been exclusively locked by the
300 * caller and interlocked with BE.
301 *
302 * We clean up the state, unlock, and release the record (the record
303 * was referenced by the fact that it was in the HAMMER_FST_FLUSH state).
304 */
305 void
307 {
308 hammer_inode_t target_ip;
313 /*
314 * If an error occured, the backend was unable to sync the
315 * record to its media. Leave the record intact.
316 */
320 }
325 /*
326 * Adjust the flush state and dependancy based on success or
327 * failure.
328 */
332 target_entry);
335 }
344 }
345 }
348 /*
349 * Cleanup
350 */
354 }
356 }
358 /*
359 * Release a memory record. Records marked for deletion are immediately
360 * removed from the RB-Tree but otherwise left intact until the last ref
361 * goes away.
362 */
363 void
365 {
366 hammer_mount_t hmp;
367 hammer_reserve_t resv;
368 hammer_inode_t ip;
369 hammer_inode_t target_ip;
375 /*
376 * Upon release of the last reference wakeup any waiters.
377 * The record structure may get destroyed so callers will
378 * loop up and do a relookup.
379 *
380 * WARNING! Record must be removed from RB-TREE before we
381 * might possibly block. hammer_test_inode() can block!
382 */
386 /*
387 * Upon release of the last reference a record marked deleted
388 * by the front or backend, or committed by the backend,
389 * is destroyed.
390 */
392 HAMMER_RECF_DELETED_BE |
393 HAMMER_RECF_COMMITTED)) {
397 /*
398 * target_ip may have zero refs, we have to ref it
399 * to prevent it from being ripped out from under
400 * us.
401 */
407 }
409 /*
410 * Remove the record from the RB-Tree
411 */
415 record);
421 }
425 }
427 /*
428 * We must wait for any direct-IO to complete before
429 * we can destroy the record because the bio may
430 * have a reference to it.
431 */
435 }
437 /*
438 * Account for the completion after the direct IO
439 * has completed.
440 */
452 }
453 }
455 /*
456 * Do this test after removing record from the RB-Tree.
457 */
461 }
467 }
469 /*
470 * Release the reservation.
471 *
472 * If the record was not committed we can theoretically
473 * undo the reservation. However, doing so might
474 * create weird edge cases with the ordering of
475 * direct writes because the related buffer cache
476 * elements are per-vnode. So we don't try.
477 */
479 /* XXX undo leaf.data_offset,leaf.data_len */
482 }
486 }
487 }
488 }
490 /*
491 * Record visibility depends on whether the record is being accessed by
492 * the backend or the frontend. Backend tests ignore the frontend delete
493 * flag. Frontend tests do NOT ignore the backend delete/commit flags and
494 * must also check for commit races.
495 *
496 * Return non-zero if the record is visible, zero if it isn't or if it is
497 * deleted. Returns 0 if the record has been comitted (unless the special
498 * delete-visibility flag is set). A committed record must be located
499 * via the media B-Tree. Returns non-zero if the record is good.
500 *
501 * If HAMMER_CURSOR_DELETE_VISIBILITY is set we allow deleted memory
502 * records to be returned. This is so pending deletions are detected
503 * when using an iterator to locate an unused hash key, or when we need
504 * to locate historical records on-disk to destroy.
505 */
506 static __inline
507 int
509 {
514 HAMMER_RECF_COMMITTED)) {
516 }
519 HAMMER_RECF_DELETED_BE |
520 HAMMER_RECF_COMMITTED)) {
522 }
523 }
525 }
527 /*
528 * This callback is used as part of the RB_SCAN function for in-memory
529 * records. We terminate it (return -1) as soon as we get a match.
530 *
531 * This routine is used by frontend code.
532 *
533 * The primary compare code does not account for ASOF lookups. This
534 * code handles that case as well as a few others.
535 */
536 static
537 int
539 {
542 /*
543 * We terminate on success, so this should be NULL on entry.
544 */
547 /*
548 * Skip if the record was marked deleted or committed.
549 */
553 /*
554 * Skip if not visible due to our as-of TID
555 */
562 }
563 }
565 /*
566 * ref the record. The record is protected from backend B-Tree
567 * interactions by virtue of the cursor's IP lock.
568 */
571 /*
572 * The record may have been deleted or committed while we
573 * were blocked. XXX remove?
574 */
578 }
580 /*
581 * Set the matching record and stop the scan.
582 */
585 }
588 /*
589 * Lookup an in-memory record given the key specified in the cursor. Works
590 * just like hammer_btree_lookup() but operates on an inode's in-memory
591 * record list.
592 *
593 * The lookup must fail if the record is marked for deferred deletion.
594 *
595 * The API for mem/btree_lookup() does not mess with the ATE/EOF bits.
596 */
597 static
598 int
600 {
605 }
610 }
612 /*
613 * hammer_mem_first() - locate the first in-memory record matching the
614 * cursor within the bounds of the key range.
615 *
616 * WARNING! API is slightly different from btree_first(). hammer_mem_first()
617 * will set ATEMEM the same as MEMEOF, and does not return any error.
618 */
619 static
620 int
622 {
627 }
633 else
637 }
639 /************************************************************************
640 * HAMMER IN-MEMORY RECORD FUNCTIONS *
641 ************************************************************************
642 *
643 * These functions manipulate in-memory records. Such records typically
644 * exist prior to being committed to disk or indexed via the on-disk B-Tree.
645 */
647 /*
648 * Add a directory entry (dip,ncp) which references inode (ip).
649 *
650 * Note that the low 32 bits of the namekey are set temporarily to create
651 * a unique in-memory record, and may be modified a second time when the
652 * record is synchronized to disk. In particular, the low 32 bits cannot be
653 * all 0's when synching to disk, which is not handled here.
654 *
655 * NOTE: bytes does not include any terminating \0 on name, and name might
656 * not be terminated.
657 */
658 int
661 hammer_inode_t ip)
662 {
664 hammer_record_t record;
688 /*
689 * Find an unused namekey. Both the in-memory record tree and
690 * the B-Tree are checked. We do not want historically deleted
691 * names to create a collision as our iteration space may be limited,
692 * and since create_tid wouldn't match anyway an ASOF search
693 * must be used to locate collisions.
694 *
695 * delete-visibility is set so pending deletions do not give us
696 * a false-negative on our ability to use an iterator.
697 *
698 * The iterator must not rollover the key. Directory keys only
699 * use the positive key space.
700 */
716 }
717 }
719 /*
720 * The target inode and the directory entry are bound together.
721 */
726 /*
727 * The inode now has a dependancy and must be taken out of the idle
728 * state. An inode not in an idle state is given an extra reference.
729 *
730 * When transitioning to a SETUP state flag for an automatic reflush
731 * when the dependancies are disposed of if someone is waiting on
732 * the inode.
733 */
739 }
745 }
746 failed:
749 }
751 /*
752 * Delete the directory entry and update the inode link count. The
753 * cursor must be seeked to the directory entry record being deleted.
754 *
755 * The related inode should be share-locked by the caller. The caller is
756 * on the frontend. It could also be NULL indicating that the directory
757 * entry being removed has no related inode.
758 *
759 * This function can return EDEADLK requiring the caller to terminate
760 * the cursor, any locks, wait on the returned record, and retry.
761 */
762 int
765 hammer_inode_t ip)
766 {
767 hammer_record_t record;
771 /*
772 * In-memory (unsynchronized) records can simply be freed.
773 *
774 * Even though the HAMMER_RECF_DELETED_FE flag is ignored
775 * by the backend, we must still avoid races against the
776 * backend potentially syncing the record to the media.
777 *
778 * We cannot call hammer_ip_delete_record(), that routine may
779 * only be called from the backend.
780 */
783 HAMMER_RECF_DELETED_BE |
784 HAMMER_RECF_COMMITTED)) {
793 }
795 /*
796 * If the record is on-disk we have to queue the deletion by
797 * the record's key. This also causes lookups to skip the
798 * record (lookups for the purposes of finding an unused
799 * directory key do not skip the record).
800 */
808 /*
809 * ip may be NULL, indicating the deletion of a directory
810 * entry which has no related inode.
811 */
816 target_entry);
819 }
821 /*
822 * The inode now has a dependancy and must be taken out of
823 * the idle state. An inode not in an idle state is given
824 * an extra reference.
825 *
826 * When transitioning to a SETUP state flag for an automatic
827 * reflush when the dependancies are disposed of if someone
828 * is waiting on the inode.
829 */
835 }
838 }
840 /*
841 * One less link. The file may still be open in the OS even after
842 * all links have gone away.
843 *
844 * We have to terminate the cursor before syncing the inode to
845 * avoid deadlocking against ourselves. XXX this may no longer
846 * be true.
847 *
848 * If nlinks drops to zero and the vnode is inactive (or there is
849 * no vnode), call hammer_inode_unloadable_check() to zonk the
850 * inode. If we don't do this here the inode will not be destroyed
851 * on-media until we unmount.
852 */
857 }
867 }
868 }
870 }
872 }
874 /*
875 * Add a record to an inode.
876 *
877 * The caller must allocate the record with hammer_alloc_mem_record(ip,len) and
878 * initialize the following additional fields that are not initialized by these
879 * functions.
880 *
881 * The related inode should be share-locked by the caller. The caller is
882 * on the frontend.
883 *
884 * record->leaf.base.key
885 * record->leaf.base.rec_type
886 * record->leaf.base.localization
887 */
888 int
890 {
899 }
901 /*
902 * Locate a pre-existing bulk record in memory. The caller wishes to
903 * replace the record with a new one. The existing record may have a
904 * different length (and thus a different key) so we have to use an
905 * overlap check function.
906 */
907 static hammer_record_t
909 {
919 }
921 /*
922 * Take records vetted by overlap_cmp. The first non-deleted record
923 * (if any) stops the scan.
924 */
925 static int
927 {
931 HAMMER_RECF_COMMITTED)) {
933 }
937 }
939 /*
940 * Reserve blockmap space placemarked with an in-memory record.
941 *
942 * This routine is called by the frontend in order to be able to directly
943 * flush a buffer cache buffer. The frontend has locked the related buffer
944 * cache buffers and we should be able to manipulate any overlapping
945 * in-memory records.
946 *
947 * The caller is responsible for adding the returned record and deleting
948 * the returned conflicting record (if any), typically by calling
949 * hammer_ip_replace_bulk() (via hammer_io_direct_write()).
950 */
951 hammer_record_t
954 {
955 hammer_record_t record;
958 /*
959 * Create a record to cover the direct write. The record cannot
960 * be added to the in-memory RB tree here as it might conflict
961 * with an existing memory record. See hammer_io_direct_write().
962 *
963 * The backend is responsible for finalizing the space reserved in
964 * this record.
965 *
966 * XXX bytes not aligned, depend on the reservation code to
967 * align the reservation.
968 */
973 errorp);
978 }
985 HAMMER_LOCALIZE_MISC;
991 }
993 /*
994 * Called by hammer_io_direct_write() prior to any possible completion
995 * of the BIO to emplace the memory record associated with the I/O and
996 * to replace any prior memory record which might still be active.
997 *
998 * Setting the FE deleted flag on the old record (if any) avoids any RB
999 * tree insertion conflict, amoung other things.
1000 *
1001 * This has to be done prior to the caller completing any related buffer
1002 * cache I/O or a reinstantiation of the buffer may load data from the
1003 * old media location instead of the new media location. The holding
1004 * of the locked buffer cache buffer serves to interlock the record
1005 * replacement operation.
1006 */
1007 void
1009 {
1010 hammer_record_t conflict;
1017 }
1021 }
1026 }
1028 /*
1029 * Frontend truncation code. Scan in-memory records only. On-disk records
1030 * and records in a flushing state are handled by the backend. The vnops
1031 * setattr code will handle the block containing the truncation point.
1032 *
1033 * Partial blocks are not deleted.
1034 *
1035 * This code is only called on regular files.
1036 */
1037 int
1039 {
1051 }
1056 }
1058 /*
1059 * Scan callback for frontend records to destroy during a truncation.
1060 * We must ensure that DELETED_FE is set on the record or the frontend
1061 * will get confused in future read() calls.
1062 *
1063 * NOTE: DELETED_FE cannot be set while the record interlock (BE) is held.
1064 * In this rare case we must wait for the interlock to be cleared.
1065 *
1066 * NOTE: This function is only called on regular files. There are further
1067 * restrictions to the setting of DELETED_FE on directory records
1068 * undergoing a flush due to sensitive inode link count calculations.
1069 */
1070 static int
1072 {
1075 #if 0
1078 #endif
1085 }
1087 /*
1088 * Return 1 if the caller must check for and delete existing records
1089 * before writing out a new data record.
1090 *
1091 * Return 0 if the caller can just insert the record into the B-Tree without
1092 * checking.
1093 */
1094 static int
1096 {
1103 else
1112 }
1114 }
1116 /*
1117 * Backend code. Sync a record to the media.
1118 */
1119 int
1121 {
1134 /*
1135 * Any direct-write related to the record must complete before we
1136 * can sync the record to the on-disk media.
1137 */
1141 /*
1142 * If this is a bulk-data record placemarker there may be an existing
1143 * record on-disk, indicating a data overwrite. If there is the
1144 * on-disk record must be deleted before we can insert our new record.
1145 *
1146 * We've synthesized this record and do not know what the create_tid
1147 * on-disk is, nor how much data it represents.
1148 *
1149 * Keep in mind that (key) for data records is (base_offset + len),
1150 * not (base_offset). Also, we only want to get rid of on-disk
1151 * records since we are trying to sync our in-memory record, call
1152 * hammer_ip_delete_range() with truncating set to 1 to make sure
1153 * it skips in-memory records.
1154 *
1155 * It is ok for the lookup to return ENOENT.
1156 *
1157 * NOTE OPTIMIZATION: sync_trunc_off is used to determine if we have
1158 * to call hammer_ip_delete_range() or not. This also means we must
1159 * update sync_trunc_off() as we write.
1160 */
1172 }
1174 /*
1175 * If this is a general record there may be an on-disk version
1176 * that must be deleted before we can insert the new record.
1177 */
1182 }
1184 /*
1185 * Setup the cursor.
1186 */
1193 /*
1194 * Records can wind up on-media before the inode itself is on-media.
1195 * Flag the case.
1196 */
1199 /*
1200 * If we are deleting a directory entry an exact match must be
1201 * found on-disk.
1202 */
1211 HAMMER_RECF_COMMITTED;
1213 }
1214 }
1216 }
1218 /*
1219 * We are inserting.
1220 *
1221 * Issue a lookup to position the cursor and locate the insertion
1222 * point. The target key should not exist. If we are creating a
1223 * directory entry we may have to iterate the low 32 bits of the
1224 * key to find an unused key.
1225 */
1237 }
1242 /*
1243 * Allocate the record and data. The result buffers will be
1244 * marked as being modified and further calls to
1245 * hammer_modify_buffer() will result in unneeded UNDO records.
1246 *
1247 * Support zero-fill records (data == NULL and data_len != 0)
1248 */
1250 /*
1251 * The data portion of a bulk-data record has already been
1252 * committed to disk, we need only adjust the layer2
1253 * statistics in the same transaction as our B-Tree insert.
1254 */
1261 /*
1262 * Wholely cached record, with data. Allocate the data.
1263 */
1276 /*
1277 * Wholely cached record, without data.
1278 */
1281 }
1286 error,
1290 }
1292 /*
1293 * Our record is on-disk and we normally mark the in-memory version
1294 * as having been committed (and not BE-deleted).
1295 *
1296 * If the record represented a directory deletion but we had to
1297 * sync a valid directory entry to disk due to dependancies,
1298 * we must convert the record to a covering delete so the
1299 * frontend does not have visibility on the synced entry.
1300 *
1301 * WARNING: cursor's leaf pointer may have changed after do_propagation
1302 * returns!
1303 */
1307 }
1309 /*
1310 * Must convert deleted directory entry add
1311 * to a directory entry delete.
1312 */
1321 /* converted record is not yet committed */
1322 /* hammer_flush_record_done takes care of the rest */
1324 /*
1325 * Everything went fine and we are now done with
1326 * this record.
1327 */
1330 }
1335 }
1336 }
1337 done_unlock:
1339 done:
1341 }
1343 /*
1344 * Add the record to the inode's rec_tree. The low 32 bits of a directory
1345 * entry's key is used to deal with hash collisions in the upper 32 bits.
1346 * A unique 64 bit key is generated in-memory and may be regenerated a
1347 * second time when the directory record is flushed to the on-disk B-Tree.
1348 *
1349 * A referenced record is passed to this function. This function
1350 * eats the reference. If an error occurs the record will be deleted.
1351 *
1352 * A copy of the temporary record->data pointer provided by the caller
1353 * will be made.
1354 */
1355 int
1357 {
1360 /*
1361 * Make a private copy of record->data
1362 */
1366 /*
1367 * Insert into the RB tree. A unique key should have already
1368 * been selected if this is a directory entry.
1369 */
1374 }
1382 }
1384 /************************************************************************
1385 * HAMMER INODE MERGED-RECORD FUNCTIONS *
1386 ************************************************************************
1387 *
1388 * These functions augment the B-Tree scanning functions in hammer_btree.c
1389 * by merging in-memory records with on-disk records.
1390 */
1392 /*
1393 * Locate a particular record either in-memory or on-disk.
1394 *
1395 * NOTE: This is basically a standalone routine, hammer_ip_next() may
1396 * NOT be called to iterate results.
1397 */
1398 int
1400 {
1403 /*
1404 * If the element is in-memory return it without searching the
1405 * on-disk B-Tree
1406 */
1412 }
1416 /*
1417 * If the inode has on-disk components search the on-disk B-Tree.
1418 */
1425 }
1427 /*
1428 * Helper for hammer_ip_first()/hammer_ip_next()
1429 *
1430 * NOTE: Both ATEDISK and DISKEOF will be set the same. This sets up
1431 * hammer_ip_first() for calling hammer_ip_next(), and sets up the re-seek
1432 * state if hammer_ip_next() needs to re-seek.
1433 */
1434 static __inline
1435 int
1437 {
1449 }
1452 }
1455 HAMMER_CURSOR_ATEDISK);
1458 HAMMER_CURSOR_ATEDISK;
1461 }
1465 }
1467 }
1469 /*
1470 * Helper for hammer_ip_next()
1471 *
1472 * The caller has determined that the media cursor is further along than the
1473 * memory cursor and must be reseeked after a generation number change.
1474 */
1475 static
1476 int
1478 {
1480 hammer_btree_elm_t elm;
1485 /*
1486 * Do the re-seek.
1487 */
1496 /*
1497 * If the memory record was previous returned to
1498 * the caller and the media record matches
1499 * (-1/+1: only create_tid differs), then iterate
1500 * the media record to avoid a double result.
1501 */
1512 }
1519 }
1520 }
1521 }
1523 }
1525 /*
1526 * Locate the first record within the cursor's key_beg/key_end range,
1527 * restricted to a particular inode. 0 is returned on success, ENOENT
1528 * if no records matched the requested range, or some other error.
1529 *
1530 * When 0 is returned hammer_ip_next() may be used to iterate additional
1531 * records within the requested range.
1532 *
1533 * This function can return EDEADLK, requiring the caller to terminate
1534 * the cursor and try again.
1535 */
1537 int
1539 {
1545 /*
1546 * Clean up fields and setup for merged scan
1547 */
1550 /*
1551 * Search the in-memory record list (Red-Black tree). Unlike the
1552 * B-Tree search, mem_first checks for records in the range.
1553 *
1554 * This function will setup both ATEMEM and MEMEOF properly for
1555 * the ip iteration. ATEMEM will be set if MEMEOF is set.
1556 */
1559 /*
1560 * Detect generation changes during blockages, including
1561 * blockages which occur on the initial btree search.
1562 */
1565 /*
1566 * Initial search and result
1567 */
1573 }
1575 /*
1576 * Retrieve the next record in a merged iteration within the bounds of the
1577 * cursor. This call may be made multiple times after the cursor has been
1578 * initially searched with hammer_ip_first().
1579 *
1580 * There are numerous special cases in this code to deal with races between
1581 * in-memory records and on-media records.
1582 *
1583 * 0 is returned on success, ENOENT if no further records match the
1584 * requested range, or some other error code is returned.
1585 */
1586 int
1588 {
1589 hammer_btree_elm_t elm;
1590 hammer_record_t rec;
1591 hammer_record_t tmprec;
1595 again:
1596 /*
1597 * Get the next on-disk record
1598 *
1599 * NOTE: If we deleted the last on-disk record we had scanned
1600 * ATEDISK will be clear and RETEST will be set, forcing
1601 * a call to iterate. The fact that ATEDISK is clear causes
1602 * iterate to re-test the 'current' element. If ATEDISK is
1603 * set, iterate will skip the 'current' element.
1604 */
1608 HAMMER_CURSOR_RETEST)) {
1617 HAMMER_CURSOR_ATEDISK;
1619 }
1620 }
1621 }
1623 /*
1624 * If the generation changed the backend has deleted or committed
1625 * one or more memory records since our last check.
1626 *
1627 * When this case occurs if the disk cursor is > current memory record
1628 * or the disk cursor is at EOF, we must re-seek the disk-cursor.
1629 * Since the cursor is ahead it must have not yet been eaten (if
1630 * not at eof anyway). (XXX data offset case?)
1631 *
1632 * NOTE: we are not doing a full check here. That will be handled
1633 * later on.
1634 *
1635 * If we have exhausted all memory records we do not have to do any
1636 * further seeks.
1637 */
1652 }
1654 /*
1655 * Do we re-seek the media cursor?
1656 */
1660 }
1661 }
1663 /*
1664 * We can now safely get the next in-memory record. We cannot
1665 * block here.
1666 *
1667 * hammer_rec_scan_cmp: Is the record still in our general range,
1668 * (non-inclusive of snapshot exclusions)?
1669 * hammer_rec_scan_callback: Is the record in our snapshot?
1670 */
1673 /*
1674 * If the current memory record was eaten then get the next
1675 * one. Stale records are skipped.
1676 */
1687 }
1693 }
1695 }
1696 }
1698 /*
1699 * MEMORY RECORD VALIDITY TEST
1700 *
1701 * (We still can't block, which is why tmprec is being held so
1702 * long).
1703 *
1704 * If the memory record is no longer valid we skip it. It may
1705 * have been deleted by the frontend. If it was deleted or
1706 * committed by the backend the generation change re-seeked the
1707 * disk cursor and the record will be present there.
1708 */
1717 }
1718 }
1722 /*
1723 * Extract either the disk or memory record depending on their
1724 * relative position.
1725 */
1729 /*
1730 * Both entries valid. Compare the entries and nominally
1731 * return the first one in the sort order. Numerous cases
1732 * require special attention, however.
1733 */
1737 /*
1738 * If the two entries differ only by their key (-2/2) or
1739 * create_tid (-1/1), and are DATA records, we may have a
1740 * nominal match. We have to calculate the base file
1741 * offset of the data.
1742 */
1751 }
1758 }
1760 /*
1761 * If the entries match exactly the memory entry is either
1762 * an on-disk directory entry deletion or a bulk data
1763 * overwrite. If it is a directory entry deletion we eat
1764 * both entries.
1765 *
1766 * For the bulk-data overwrite case it is possible to have
1767 * visibility into both, which simply means the syncer
1768 * hasn't gotten around to doing the delete+insert sequence
1769 * on the B-Tree. Use the memory entry and throw away the
1770 * on-disk entry.
1771 *
1772 * If the in-memory record is not either of these we
1773 * probably caught the syncer while it was syncing it to
1774 * the media. Since we hold a shared lock on the cursor,
1775 * the in-memory record had better be marked deleted at
1776 * this point.
1777 */
1784 }
1788 }
1789 /* fall through to memory entry */
1797 }
1798 }
1799 /* fall through to the memory entry */
1801 /*
1802 * Only the memory entry is valid.
1803 */
1808 /*
1809 * If the memory entry is an on-disk deletion we should have
1810 * also had found a B-Tree record. If the backend beat us
1811 * to it it would have interlocked the cursor and we should
1812 * have seen the in-memory record marked DELETED_FE.
1813 */
1819 }
1822 /*
1823 * Only the disk entry is valid
1824 */
1830 /*
1831 * Neither entry is valid
1832 *
1833 * XXX error not set properly
1834 */
1839 }
1841 }
1843 /*
1844 * Resolve the cursor->data pointer for the current cursor position in
1845 * a merged iteration.
1846 */
1847 int
1849 {
1850 hammer_record_t record;
1854 /*
1855 * The data associated with an in-memory record is usually
1856 * kmalloced, but reserve-ahead data records will have an
1857 * on-disk reference.
1858 *
1859 * NOTE: Reserve-ahead data records must be handled in the
1860 * context of the related high level buffer cache buffer
1861 * to interlock against async writes.
1862 *
1863 * NOTE: We might catch a direct write in-progress, in which
1864 * case we must wait for it to complete. The wait
1865 * function will also clean out any buffer aliases.
1866 *
1867 * (In fact, it is possible that the write had not
1868 * even started yet).
1869 */
1876 HAMMER_RECTYPE_DATA);
1882 }
1884 /*
1885 * Loading leaf here isn't necessary if it's guaranteed that
1886 * the cursor is at a leaf node (which basically should be)
1887 * because hammer_btree_extract_data() does that.
1888 */
1891 }
1893 }
1895 /*
1896 * Backend truncation / record replacement - delete records in range.
1897 *
1898 * Delete all records within the specified range for inode ip. In-memory
1899 * records still associated with the frontend are ignored.
1900 *
1901 * If truncating is non-zero in-memory records associated with the back-end
1902 * are ignored. If truncating is > 1 we can return EWOULDBLOCK.
1903 *
1904 * NOTES:
1905 *
1906 * * An unaligned range will cause new records to be added to cover
1907 * the edge cases. (XXX not implemented yet).
1908 *
1909 * * Replacement via reservations (see hammer_ip_sync_record_cursor())
1910 * also do not deal with unaligned ranges.
1911 *
1912 * * ran_end is inclusive (e.g. 0,1023 instead of 0,1024).
1913 *
1914 * * Record keys for regular file data have to be special-cased since
1915 * they indicate the end of the range (key = base + bytes).
1916 *
1917 * * This function may be asked to delete ridiculously huge ranges, for
1918 * example if someone truncates or removes a 1TB regular file. We
1919 * must be very careful on restarts and we may have to stop w/
1920 * EWOULDBLOCK to avoid blowing out the buffer cache.
1921 */
1922 int
1925 {
1927 hammer_btree_leaf_elm_t leaf;
1933 retry:
1936 HAMMER_LOCALIZE_MISC;
1946 /*
1947 * The key in the B-Tree is (base+bytes), so the first possible
1948 * matching key is ran_beg + 1.
1949 */
1952 }
1961 else
1963 }
1974 /*
1975 * Iterate through matching records and mark them as deleted.
1976 */
1983 /*
1984 * There may be overlap cases for regular file data. Also
1985 * remember the key for a regular file record is (base + len),
1986 * NOT (base).
1987 *
1988 * Note that due to duplicates (mem & media) allowed by
1989 * DELETE_VISIBILITY, off can wind up less then ran_beg.
1990 */
1993 /*
1994 * Check the left edge case. We currently do not
1995 * split existing records.
1996 */
2001 }
2003 /*
2004 * Check the right edge case. Note that the
2005 * record can be completely out of bounds, which
2006 * terminates the search.
2007 *
2008 * base->key is exclusive of the right edge while
2009 * ran_end is inclusive of the right edge. The
2010 * (key - data_len) left boundary is inclusive.
2011 *
2012 * XXX theory-check this test at some point, are
2013 * we missing a + 1 somewhere? Note that ran_end
2014 * could overflow.
2015 */
2020 }
2023 }
2025 /*
2026 * Delete the record. When truncating we do not delete
2027 * in-memory (data) records because they represent data
2028 * written after the truncation.
2029 *
2030 * This will also physically destroy the B-Tree entry and
2031 * data if the retention policy dictates. The function
2032 * will set HAMMER_CURSOR_RETEST to cause hammer_ip_next()
2033 * to retest the new 'current' element.
2034 */
2037 /*
2038 * If we have built up too many meta-buffers we risk
2039 * deadlocking the kernel and must stop. This can
2040 * occur when deleting ridiculously huge files.
2041 * sync_trunc_off is updated so the next cycle does
2042 * not re-iterate records we have already deleted.
2043 *
2044 * This is only done with formal truncations.
2045 */
2050 }
2051 }
2056 }
2065 }
2069 }
2071 /*
2072 * This backend function deletes the specified record on-disk, similar to
2073 * delete_range but for a specific record. Unlike the exact deletions
2074 * used when deleting a directory entry this function uses an ASOF search
2075 * like delete_range.
2076 *
2077 * This function may be called with ip->obj_asof set for a slave snapshot,
2078 * so don't use it. We always delete non-historical records only.
2079 */
2080 static int
2082 hammer_btree_leaf_elm_t leaf)
2083 {
2088 retry:
2100 }
2106 }
2108 }
2110 /*
2111 * This function deletes remaining auxillary records when an inode is
2112 * being deleted. This function explicitly does not delete the
2113 * inode record, directory entry, data, or db records. Those must be
2114 * properly disposed of prior to this call.
2115 */
2116 int
2118 {
2120 hammer_btree_leaf_elm_t leaf __debugvar;
2124 retry:
2127 HAMMER_LOCALIZE_MISC;
2147 /*
2148 * Iterate through matching records and mark them as deleted.
2149 */
2155 /*
2156 * Mark the record and B-Tree entry as deleted. This will
2157 * also physically delete the B-Tree entry, record, and
2158 * data if the retention policy dictates. The function
2159 * will set HAMMER_CURSOR_RETEST to cause hammer_ip_next()
2160 * to retest the new 'current' element.
2161 *
2162 * Directory entries (and delete-on-disk directory entries)
2163 * must be synced and cannot be deleted.
2164 */
2170 }
2178 }
2182 }
2184 /*
2185 * Delete the record at the current cursor. On success the cursor will
2186 * be positioned appropriately for an iteration but may no longer be at
2187 * a leaf node.
2188 *
2189 * This routine is only called from the backend.
2190 *
2191 * NOTE: This can return EDEADLK, requiring the caller to terminate the
2192 * cursor and retry.
2193 */
2194 int
2196 hammer_tid_t tid)
2197 {
2198 hammer_record_t iprec;
2204 /*
2205 * In-memory (unsynchronized) records can simply be freed. This
2206 * only occurs in range iterations since all other records are
2207 * individually synchronized. Thus there should be no confusion with
2208 * the interlock.
2209 *
2210 * An in-memory record may be deleted before being committed to disk,
2211 * but could have been accessed in the mean time. The reservation
2212 * code will deal with the case.
2213 */
2222 }
2224 /*
2225 * On-disk records are marked as deleted by updating their delete_tid.
2226 * This does not effect their position in the B-Tree (which is based
2227 * on their create_tid).
2228 *
2229 * Frontend B-Tree operations track inodes so we tell
2230 * hammer_delete_at_cursor() not to.
2231 */
2235 cursor,
2240 }
2242 }
2244 /*
2245 * Used to write a generic record w/optional data to the media b-tree
2246 * when no inode context is available. Used by the mirroring and
2247 * snapshot code.
2248 *
2249 * Caller must set cursor->key_beg to leaf->base. The cursor must be
2250 * flagged for backend operation and not flagged ASOF (since we are
2251 * doing an insertion).
2252 *
2253 * This function will acquire the appropriate sync lock and will set
2254 * the cursor insertion flag for the operation, do the btree lookup,
2255 * and the insertion, and clear the insertion flag and sync lock before
2256 * returning. The cursor state will be such that the caller can continue
2257 * scanning (used by the mirroring code).
2258 *
2259 * mode: HAMMER_CREATE_MODE_UMIRROR copyin data, check crc
2260 * HAMMER_CREATE_MODE_SYS bcopy data, generate crc
2261 *
2262 * NOTE: EDEADLK can be returned. The caller must do deadlock handling and
2263 * retry.
2264 *
2265 * EALREADY can be returned if the record already exists (WARNING,
2266 * because ASOF cannot be used no check is made for illegal
2267 * duplicates).
2268 *
2269 * NOTE: Do not use the function for normal inode-related records as this
2270 * functions goes directly to the media and is not integrated with
2271 * in-memory records.
2272 */
2273 int
2276 {
2277 hammer_transaction_t trans;
2278 hammer_mount_t hmp;
2279 hammer_buffer_t data_buffer;
2280 hammer_off_t ndata_offset;
2281 hammer_tid_t high_tid;
2306 }
2322 }
2323 }
2333 }
2339 }
2343 /*
2344 * Do the insertion. This can fail with a EDEADLK or EALREADY
2345 */
2352 }
2355 /*
2356 * Cursor is left on current element, we want to skip it now.
2357 * (in case the caller is scanning)
2358 */
2362 /*
2363 * If the insertion happens to be creating (and not just replacing)
2364 * an inode we have to track it.
2365 */
2370 vol0_stat_inodes);
2373 }
2375 /*
2376 * vol0_next_tid must track the highest TID stored in the filesystem.
2377 * We do not need to generate undo for this update.
2378 */
2386 }
2388 /*
2389 * WARNING! cursor's leaf pointer may have changed after
2390 * do_propagation returns.
2391 */
2395 failed:
2396 /*
2397 * Cleanup
2398 */
2402 }
2407 }
2409 /*
2410 * Delete the B-Tree element at the current cursor and do any necessary
2411 * mirror propagation.
2412 *
2413 * The cursor must be properly positioned for an iteration on return but
2414 * may be pointing at an internal element.
2415 *
2416 * An element can be un-deleted by passing a delete_tid of 0 with
2417 * HAMMER_DELETE_ADJUST.
2418 *
2419 * This function will store the number of bytes deleted in *stat_bytes
2420 * if stat_bytes is not NULL.
2421 */
2422 int
2426 {
2428 hammer_transaction_t trans;
2429 hammer_btree_leaf_elm_t leaf;
2430 hammer_node_t node;
2431 hammer_btree_elm_t elm;
2432 hammer_off_t data_offset;
2455 /*
2456 * Adjust the delete_tid. Update the mirror_tid propagation field
2457 * as well. delete_tid can be 0 (undelete -- used by mirroring).
2458 */
2465 }
2481 }
2482 }
2484 /*
2485 * Adjust for the iteration. We have deleted the current
2486 * element and want to clear ATEDISK so the iteration does
2487 * not skip the element after, which now becomes the current
2488 * element. This element must be re-tested if doing an
2489 * iteration, which is handled by the RETEST flag.
2490 */
2494 }
2496 /*
2497 * An on-disk record cannot have the same delete_tid
2498 * as its create_tid. In a chain of record updates
2499 * this could result in a duplicate record.
2500 */
2503 }
2505 /*
2506 * Destroy the B-Tree element if asked (typically if a nohistory
2507 * file or mount, or when called by the pruning code).
2508 *
2509 * Adjust the ATEDISK flag to properly support iterations.
2510 */
2517 }
2521 }
2525 /*
2526 * The deletion moves the next element (if any) to
2527 * the current element position. We must clear
2528 * ATEDISK so this element is not skipped and we
2529 * must set RETEST to force any iteration to re-test
2530 * the element.
2531 */
2535 }
2548 }
2549 }
2550 }
2552 /*
2553 * Track inode count and next_tid. This is used by the mirroring
2554 * and PFS code. icount can be negative, zero, or positive.
2555 */
2559 vol0_stat_inodes);
2562 }
2567 }
2568 }
2570 /*
2571 * mirror_tid propagation occurs if the node's mirror_tid had to be
2572 * updated while adjusting the delete_tid.
2573 *
2574 * This occurs when deleting even in nohistory mode, but does not
2575 * occur when pruning an already-deleted node.
2576 *
2577 * cursor->ip is NULL when called from the pruning, mirroring,
2578 * and pfs code. If non-NULL propagation will be conditionalized
2579 * on whether the PFS is in no-history mode or not.
2580 *
2581 * WARNING: cursor's leaf pointer may have changed after do_propagation
2582 * returns!
2583 */
2587 else
2589 }
2594 }
2596 /*
2597 * Determine whether we can remove a directory. This routine checks whether
2598 * a directory is empty or not and enforces flush connectivity.
2599 *
2600 * Flush connectivity requires that we block if the target directory is
2601 * currently flushing, otherwise it may not end up in the same flush group.
2602 *
2603 * Returns 0 on success, ENOTEMPTY or EDEADLK (or other errors) on failure.
2604 */
2605 int
2607 {
2611 /*
2612 * Check directory empty
2613 */
2639 }
2641 /*
2642 * Localize the data payload. Directory entries may need their
2643 * localization adjusted.
2644 */
2645 static
2646 int
2648 hammer_btree_leaf_elm_t leaf)
2649 {
2654 HAMMER_LOCALIZE_PSEUDOFS_MASK;
2658 }
2659 }
2661 }