| blob | 530713bd73412a21115e1c1e1eabf256ff165a3b |
1 /*
2 * Copyright (c) 2007-2008 The DragonFly Project. All rights reserved.
3 *
4 * This code is derived from software contributed to The DragonFly Project
5 * by Matthew Dillon <dillon@backplane.com>
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 *
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in
15 * the documentation and/or other materials provided with the
16 * distribution.
17 * 3. Neither the name of The DragonFly Project nor the names of its
18 * contributors may be used to endorse or promote products derived
19 * from this software without specific, prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
22 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
23 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
24 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
25 * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
26 * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING,
27 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
28 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
29 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
30 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
31 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 * SUCH DAMAGE.
33 *
34 * $DragonFly: src/sys/vfs/hammer/hammer_object.c,v 1.97 2008/09/23 22:28:56 dillon Exp $
35 */
46 hammer_btree_leaf_elm_t leaf);
49 u_int16_t rec_type;
51 };
54 hammer_record_t record;
56 };
58 /*
59 * Red-black tree support. Comparison code for insertion.
60 */
61 static int
63 {
74 /*
75 * For search & insertion purposes records deleted by the
76 * frontend or deleted/committed by the backend are silently
77 * ignored. Otherwise pipelined insertions will get messed
78 * up.
79 *
80 * rec1 is greater then rec2 if rec1 is marked deleted.
81 * rec1 is less then rec2 if rec2 is marked deleted.
82 *
83 * Multiple deleted records may be present, do not return 0
84 * if both are marked deleted.
85 */
87 HAMMER_RECF_COMMITTED)) {
89 }
91 HAMMER_RECF_COMMITTED)) {
93 }
96 }
98 /*
99 * Basic record comparison code similar to hammer_btree_cmp().
100 *
101 * obj_id is not compared and may not yet be assigned in the record.
102 */
103 static int
105 {
116 /*
117 * Never match against an item deleted by the frontend
118 * or backend, or committed by the backend.
119 *
120 * elm is less then rec if rec is marked deleted.
121 */
123 HAMMER_RECF_COMMITTED)) {
125 }
127 }
129 /*
130 * Ranged scan to locate overlapping record(s). This is used by
131 * hammer_ip_get_bulk() to locate an overlapping record. We have
132 * to use a ranged scan because the keys for data records with the
133 * same file base offset can be different due to differing data_len's.
134 *
135 * NOTE: The base file offset of a data record is (key - data_len), not (key).
136 */
137 static int
139 {
148 /*
149 * Overlap compare
150 */
152 /* rec_beg >= leaf_end */
155 /* rec_end <= leaf_beg */
163 }
165 /*
166 * We have to return 0 at this point, even if DELETED_FE is set,
167 * because returning anything else will cause the scan to ignore
168 * one of the branches when we really want it to check both.
169 */
171 }
173 /*
174 * RB_SCAN comparison code for hammer_mem_first(). The argument order
175 * is reversed so the comparison result has to be negated. key_beg and
176 * key_end are both range-inclusive.
177 *
178 * Localized deletions are not cached in-memory.
179 */
180 static
181 int
183 {
194 }
196 /*
197 * This compare function is used when simply looking up key_beg.
198 */
199 static
200 int
202 {
212 }
214 /*
215 * Locate blocks within the truncation range. Partial blocks do not count.
216 */
217 static
218 int
220 {
230 /*
231 * DB record key is not beyond the truncation point, retain.
232 */
237 /*
238 * DATA record offset start is not beyond the truncation point,
239 * retain.
240 */
246 }
248 /*
249 * The record start is >= the truncation point, return match,
250 * the record should be destroyed.
251 */
253 }
257 /*
258 * Allocate a record for the caller to finish filling in. The record is
259 * returned referenced.
260 */
261 hammer_record_t
263 {
264 hammer_record_t record;
265 hammer_mount_t hmp;
281 }
284 }
286 void
288 {
292 }
293 }
295 /*
296 * Called from the backend, hammer_inode.c, after a record has been
297 * flushed to disk. The record has been exclusively locked by the
298 * caller and interlocked with BE.
299 *
300 * We clean up the state, unlock, and release the record (the record
301 * was referenced by the fact that it was in the HAMMER_FST_FLUSH state).
302 */
303 void
305 {
306 hammer_inode_t target_ip;
311 /*
312 * If an error occured, the backend was unable to sync the
313 * record to its media. Leave the record intact.
314 */
318 }
323 /*
324 * Adjust the flush state and dependancy based on success or
325 * failure.
326 */
330 target_entry);
333 }
342 }
343 }
346 /*
347 * Cleanup
348 */
352 }
354 }
356 /*
357 * Release a memory record. Records marked for deletion are immediately
358 * removed from the RB-Tree but otherwise left intact until the last ref
359 * goes away.
360 */
361 void
363 {
364 hammer_mount_t hmp;
365 hammer_reserve_t resv;
366 hammer_inode_t ip;
367 hammer_inode_t target_ip;
373 /*
374 * Upon release of the last reference wakeup any waiters.
375 * The record structure may get destroyed so callers will
376 * loop up and do a relookup.
377 *
378 * WARNING! Record must be removed from RB-TREE before we
379 * might possibly block. hammer_test_inode() can block!
380 */
384 /*
385 * Upon release of the last reference a record marked deleted
386 * by the front or backend, or committed by the backend,
387 * is destroyed.
388 */
390 HAMMER_RECF_DELETED_BE |
391 HAMMER_RECF_COMMITTED)) {
395 /*
396 * target_ip may have zero refs, we have to ref it
397 * to prevent it from being ripped out from under
398 * us.
399 */
405 }
407 /*
408 * Remove the record from the B-Tree
409 */
413 record);
419 }
421 /*
422 * We must wait for any direct-IO to complete before
423 * we can destroy the record because the bio may
424 * have a reference to it.
425 */
429 }
431 /*
432 * Account for the completion after the direct IO
433 * has completed.
434 */
444 }
447 }
449 /*
450 * Do this test after removing record from the B-Tree.
451 */
455 }
461 }
463 /*
464 * Release the reservation.
465 *
466 * If the record was not committed we can theoretically
467 * undo the reservation. However, doing so might
468 * create weird edge cases with the ordering of
469 * direct writes because the related buffer cache
470 * elements are per-vnode. So we don't try.
471 */
473 /* XXX undo leaf.data_offset,leaf.data_len */
476 }
480 }
481 }
482 }
484 /*
485 * Record visibility depends on whether the record is being accessed by
486 * the backend or the frontend. Backend tests ignore the frontend delete
487 * flag. Frontend tests do NOT ignore the backend delete/commit flags and
488 * must also check for commit races.
489 *
490 * Return non-zero if the record is visible, zero if it isn't or if it is
491 * deleted. Returns 0 if the record has been comitted (unless the special
492 * delete-visibility flag is set). A committed record must be located
493 * via the media B-Tree. Returns non-zero if the record is good.
494 *
495 * If HAMMER_CURSOR_DELETE_VISIBILITY is set we allow deleted memory
496 * records to be returned. This is so pending deletions are detected
497 * when using an iterator to locate an unused hash key, or when we need
498 * to locate historical records on-disk to destroy.
499 */
500 static __inline
501 int
503 {
508 HAMMER_RECF_COMMITTED)) {
510 }
513 HAMMER_RECF_DELETED_BE |
514 HAMMER_RECF_COMMITTED)) {
516 }
517 }
519 }
521 /*
522 * This callback is used as part of the RB_SCAN function for in-memory
523 * records. We terminate it (return -1) as soon as we get a match.
524 *
525 * This routine is used by frontend code.
526 *
527 * The primary compare code does not account for ASOF lookups. This
528 * code handles that case as well as a few others.
529 */
530 static
531 int
533 {
536 /*
537 * We terminate on success, so this should be NULL on entry.
538 */
541 /*
542 * Skip if the record was marked deleted or committed.
543 */
547 /*
548 * Skip if not visible due to our as-of TID
549 */
556 }
557 }
559 /*
560 * ref the record. The record is protected from backend B-Tree
561 * interactions by virtue of the cursor's IP lock.
562 */
565 /*
566 * The record may have been deleted or committed while we
567 * were blocked. XXX remove?
568 */
572 }
574 /*
575 * Set the matching record and stop the scan.
576 */
579 }
582 /*
583 * Lookup an in-memory record given the key specified in the cursor. Works
584 * just like hammer_btree_lookup() but operates on an inode's in-memory
585 * record list.
586 *
587 * The lookup must fail if the record is marked for deferred deletion.
588 *
589 * The API for mem/btree_lookup() does not mess with the ATE/EOF bits.
590 */
591 static
592 int
594 {
599 }
604 }
606 /*
607 * hammer_mem_first() - locate the first in-memory record matching the
608 * cursor within the bounds of the key range.
609 *
610 * WARNING! API is slightly different from btree_first(). hammer_mem_first()
611 * will set ATEMEM the same as MEMEOF, and does not return any error.
612 */
613 static
614 void
616 {
617 hammer_inode_t ip;
625 }
631 else
633 }
635 /************************************************************************
636 * HAMMER IN-MEMORY RECORD FUNCTIONS *
637 ************************************************************************
638 *
639 * These functions manipulate in-memory records. Such records typically
640 * exist prior to being committed to disk or indexed via the on-disk B-Tree.
641 */
643 /*
644 * Add a directory entry (dip,ncp) which references inode (ip).
645 *
646 * Note that the low 32 bits of the namekey are set temporarily to create
647 * a unique in-memory record, and may be modified a second time when the
648 * record is synchronized to disk. In particular, the low 32 bits cannot be
649 * all 0's when synching to disk, which is not handled here.
650 *
651 * NOTE: bytes does not include any terminating \0 on name, and name might
652 * not be terminated.
653 */
654 int
658 {
660 hammer_record_t record;
662 u_int32_t max_iterations;
682 /*
683 * Find an unused namekey. Both the in-memory record tree and
684 * the B-Tree are checked. We do not want historically deleted
685 * names to create a collision as our iteration space may be limited,
686 * and since create_tid wouldn't match anyway an ASOF search
687 * must be used to locate collisions.
688 *
689 * delete-visibility is set so pending deletions do not give us
690 * a false-negative on our ability to use an iterator.
691 *
692 * The iterator must not rollover the key. Directory keys only
693 * use the positive key space.
694 */
709 }
710 }
712 /*
713 * The target inode and the directory entry are bound together.
714 */
719 /*
720 * The inode now has a dependancy and must be taken out of the idle
721 * state. An inode not in an idle state is given an extra reference.
722 *
723 * When transitioning to a SETUP state flag for an automatic reflush
724 * when the dependancies are disposed of if someone is waiting on
725 * the inode.
726 */
732 }
737 }
738 failed:
741 }
743 /*
744 * Delete the directory entry and update the inode link count. The
745 * cursor must be seeked to the directory entry record being deleted.
746 *
747 * The related inode should be share-locked by the caller. The caller is
748 * on the frontend. It could also be NULL indicating that the directory
749 * entry being removed has no related inode.
750 *
751 * This function can return EDEADLK requiring the caller to terminate
752 * the cursor, any locks, wait on the returned record, and retry.
753 */
754 int
758 {
759 hammer_record_t record;
763 /*
764 * In-memory (unsynchronized) records can simply be freed.
765 *
766 * Even though the HAMMER_RECF_DELETED_FE flag is ignored
767 * by the backend, we must still avoid races against the
768 * backend potentially syncing the record to the media.
769 *
770 * We cannot call hammer_ip_delete_record(), that routine may
771 * only be called from the backend.
772 */
775 HAMMER_RECF_DELETED_BE |
776 HAMMER_RECF_COMMITTED)) {
785 }
787 /*
788 * If the record is on-disk we have to queue the deletion by
789 * the record's key. This also causes lookups to skip the
790 * record (lookups for the purposes of finding an unused
791 * directory key do not skip the record).
792 */
800 /*
801 * ip may be NULL, indicating the deletion of a directory
802 * entry which has no related inode.
803 */
808 target_entry);
811 }
813 /*
814 * The inode now has a dependancy and must be taken out of
815 * the idle state. An inode not in an idle state is given
816 * an extra reference.
817 *
818 * When transitioning to a SETUP state flag for an automatic
819 * reflush when the dependancies are disposed of if someone
820 * is waiting on the inode.
821 */
827 }
830 }
832 /*
833 * One less link. The file may still be open in the OS even after
834 * all links have gone away.
835 *
836 * We have to terminate the cursor before syncing the inode to
837 * avoid deadlocking against ourselves. XXX this may no longer
838 * be true.
839 *
840 * If nlinks drops to zero and the vnode is inactive (or there is
841 * no vnode), call hammer_inode_unloadable_check() to zonk the
842 * inode. If we don't do this here the inode will not be destroyed
843 * on-media until we unmount.
844 */
849 }
859 }
860 }
862 }
864 }
866 /*
867 * Add a record to an inode.
868 *
869 * The caller must allocate the record with hammer_alloc_mem_record(ip) and
870 * initialize the following additional fields:
871 *
872 * The related inode should be share-locked by the caller. The caller is
873 * on the frontend.
874 *
875 * record->rec.entry.base.base.key
876 * record->rec.entry.base.base.rec_type
877 * record->rec.entry.base.base.data_len
878 * record->data (a copy will be kmalloc'd if it cannot be embedded)
879 */
880 int
882 {
891 }
893 /*
894 * Locate a bulk record in-memory. Bulk records allow disk space to be
895 * reserved so the front-end can flush large data writes without having
896 * to queue the BIO to the flusher. Only the related record gets queued
897 * to the flusher.
898 */
900 static hammer_record_t
902 {
914 HAMMER_LOCALIZE_MISC;
921 }
923 /*
924 * Take records vetted by overlap_cmp. The first non-deleted record
925 * (if any) stops the scan.
926 */
927 static int
929 {
933 HAMMER_RECF_COMMITTED)) {
935 }
939 }
941 /*
942 * Reserve blockmap space placemarked with an in-memory record.
943 *
944 * This routine is called by the frontend in order to be able to directly
945 * flush a buffer cache buffer. The frontend has locked the related buffer
946 * cache buffers and we should be able to manipulate any overlapping
947 * in-memory records.
948 *
949 * The caller is responsible for adding the returned record.
950 */
951 hammer_record_t
954 {
955 hammer_record_t record;
956 hammer_record_t conflict;
959 /*
960 * Deal with conflicting in-memory records. We cannot have multiple
961 * in-memory records for the same base offset without seriously
962 * confusing the backend, including but not limited to the backend
963 * issuing delete-create-delete or create-delete-create sequences
964 * and asserting on the delete_tid being the same as the create_tid.
965 *
966 * If we encounter a record with the backend interlock set we cannot
967 * immediately delete it without confusing the backend.
968 */
975 }
977 }
979 /*
980 * Create a record to cover the direct write. This is called with
981 * the related BIO locked so there should be no possible conflict.
982 *
983 * The backend is responsible for finalizing the space reserved in
984 * this record.
985 *
986 * XXX bytes not aligned, depend on the reservation code to
987 * align the reservation.
988 */
991 HAMMER_ZONE_SMALL_DATA_INDEX;
994 errorp);
999 }
1006 HAMMER_LOCALIZE_MISC;
1011 }
1013 /*
1014 * Frontend truncation code. Scan in-memory records only. On-disk records
1015 * and records in a flushing state are handled by the backend. The vnops
1016 * setattr code will handle the block containing the truncation point.
1017 *
1018 * Partial blocks are not deleted.
1019 */
1020 int
1022 {
1034 }
1039 }
1041 static int
1043 {
1053 }
1055 /*
1056 * Return 1 if the caller must check for and delete existing records
1057 * before writing out a new data record.
1058 *
1059 * Return 0 if the caller can just insert the record into the B-Tree without
1060 * checking.
1061 */
1062 static int
1064 {
1071 else
1080 }
1082 }
1084 /*
1085 * Backend code. Sync a record to the media.
1086 */
1087 int
1089 {
1101 /*
1102 * Any direct-write related to the record must complete before we
1103 * can sync the record to the on-disk media.
1104 */
1108 /*
1109 * If this is a bulk-data record placemarker there may be an existing
1110 * record on-disk, indicating a data overwrite. If there is the
1111 * on-disk record must be deleted before we can insert our new record.
1112 *
1113 * We've synthesized this record and do not know what the create_tid
1114 * on-disk is, nor how much data it represents.
1115 *
1116 * Keep in mind that (key) for data records is (base_offset + len),
1117 * not (base_offset). Also, we only want to get rid of on-disk
1118 * records since we are trying to sync our in-memory record, call
1119 * hammer_ip_delete_range() with truncating set to 1 to make sure
1120 * it skips in-memory records.
1121 *
1122 * It is ok for the lookup to return ENOENT.
1123 *
1124 * NOTE OPTIMIZATION: sync_trunc_off is used to determine if we have
1125 * to call hammer_ip_delete_range() or not. This also means we must
1126 * update sync_trunc_off() as we write.
1127 */
1140 }
1142 /*
1143 * If this is a general record there may be an on-disk version
1144 * that must be deleted before we can insert the new record.
1145 */
1151 }
1153 /*
1154 * Setup the cursor.
1155 */
1162 /*
1163 * Records can wind up on-media before the inode itself is on-media.
1164 * Flag the case.
1165 */
1168 /*
1169 * If we are deleting a directory entry an exact match must be
1170 * found on-disk.
1171 */
1180 HAMMER_RECF_COMMITTED;
1182 }
1183 }
1185 }
1187 /*
1188 * We are inserting.
1189 *
1190 * Issue a lookup to position the cursor and locate the insertion
1191 * point. The target key should not exist. If we are creating a
1192 * directory entry we may have to iterate the low 32 bits of the
1193 * key to find an unused key.
1194 */
1205 }
1206 #if 0
1211 #endif
1216 /*
1217 * Allocate the record and data. The result buffers will be
1218 * marked as being modified and further calls to
1219 * hammer_modify_buffer() will result in unneeded UNDO records.
1220 *
1221 * Support zero-fill records (data == NULL and data_len != 0)
1222 */
1224 /*
1225 * The data portion of a bulk-data record has already been
1226 * committed to disk, we need only adjust the layer2
1227 * statistics in the same transaction as our B-Tree insert.
1228 */
1235 /*
1236 * Wholely cached record, with data. Allocate the data.
1237 */
1250 /*
1251 * Wholely cached record, without data.
1252 */
1255 }
1260 error,
1264 }
1266 /*
1267 * Our record is on-disk and we normally mark the in-memory version
1268 * as having been committed (and not BE-deleted).
1269 *
1270 * If the record represented a directory deletion but we had to
1271 * sync a valid directory entry to disk due to dependancies,
1272 * we must convert the record to a covering delete so the
1273 * frontend does not have visibility on the synced entry.
1274 *
1275 * WARNING: cursor's leaf pointer may have changed after do_propagation
1276 * returns!
1277 */
1283 }
1285 /*
1286 * Must convert deleted directory entry add
1287 * to a directory entry delete.
1288 */
1297 /* converted record is not yet committed */
1298 /* hammer_flush_record_done takes care of the rest */
1300 /*
1301 * Everything went fine and we are now done with
1302 * this record.
1303 */
1306 }
1311 }
1312 }
1313 done_unlock:
1315 done:
1317 }
1319 /*
1320 * Add the record to the inode's rec_tree. The low 32 bits of a directory
1321 * entry's key is used to deal with hash collisions in the upper 32 bits.
1322 * A unique 64 bit key is generated in-memory and may be regenerated a
1323 * second time when the directory record is flushed to the on-disk B-Tree.
1324 *
1325 * A referenced record is passed to this function. This function
1326 * eats the reference. If an error occurs the record will be deleted.
1327 *
1328 * A copy of the temporary record->data pointer provided by the caller
1329 * will be made.
1330 */
1331 int
1333 {
1336 /*
1337 * Make a private copy of record->data
1338 */
1342 /*
1343 * Insert into the RB tree. A unique key should have already
1344 * been selected if this is a directory entry.
1345 */
1350 }
1359 }
1361 /************************************************************************
1362 * HAMMER INODE MERGED-RECORD FUNCTIONS *
1363 ************************************************************************
1364 *
1365 * These functions augment the B-Tree scanning functions in hammer_btree.c
1366 * by merging in-memory records with on-disk records.
1367 */
1369 /*
1370 * Locate a particular record either in-memory or on-disk.
1371 *
1372 * NOTE: This is basically a standalone routine, hammer_ip_next() may
1373 * NOT be called to iterate results.
1374 */
1375 int
1377 {
1380 /*
1381 * If the element is in-memory return it without searching the
1382 * on-disk B-Tree
1383 */
1389 }
1393 /*
1394 * If the inode has on-disk components search the on-disk B-Tree.
1395 */
1402 }
1404 /*
1405 * Helper for hammer_ip_first()/hammer_ip_next()
1406 *
1407 * NOTE: Both ATEDISK and DISKEOF will be set the same. This sets up
1408 * hammer_ip_first() for calling hammer_ip_next(), and sets up the re-seek
1409 * state if hammer_ip_next() needs to re-seek.
1410 */
1411 static __inline
1412 int
1414 {
1426 }
1429 }
1432 HAMMER_CURSOR_ATEDISK);
1435 HAMMER_CURSOR_ATEDISK;
1438 }
1442 }
1444 }
1446 /*
1447 * Helper for hammer_ip_next()
1448 *
1449 * The caller has determined that the media cursor is further along than the
1450 * memory cursor and must be reseeked after a generation number change.
1451 */
1452 static
1453 int
1455 {
1457 hammer_btree_elm_t elm;
1462 /*
1463 * Do the re-seek.
1464 */
1473 /*
1474 * If the memory record was previous returned to
1475 * the caller and the media record matches
1476 * (-1/+1: only create_tid differs), then iterate
1477 * the media record to avoid a double result.
1478 */
1490 }
1497 }
1498 }
1499 }
1501 }
1503 /*
1504 * Locate the first record within the cursor's key_beg/key_end range,
1505 * restricted to a particular inode. 0 is returned on success, ENOENT
1506 * if no records matched the requested range, or some other error.
1507 *
1508 * When 0 is returned hammer_ip_next() may be used to iterate additional
1509 * records within the requested range.
1510 *
1511 * This function can return EDEADLK, requiring the caller to terminate
1512 * the cursor and try again.
1513 */
1515 int
1517 {
1523 /*
1524 * Clean up fields and setup for merged scan
1525 */
1528 /*
1529 * Search the in-memory record list (Red-Black tree). Unlike the
1530 * B-Tree search, mem_first checks for records in the range.
1531 *
1532 * This function will setup both ATEMEM and MEMEOF properly for
1533 * the ip iteration. ATEMEM will be set if MEMEOF is set.
1534 */
1537 /*
1538 * Detect generation changes during blockages, including
1539 * blockages which occur on the initial btree search.
1540 */
1543 /*
1544 * Initial search and result
1545 */
1551 }
1553 /*
1554 * Retrieve the next record in a merged iteration within the bounds of the
1555 * cursor. This call may be made multiple times after the cursor has been
1556 * initially searched with hammer_ip_first().
1557 *
1558 * There are numerous special cases in this code to deal with races between
1559 * in-memory records and on-media records.
1560 *
1561 * 0 is returned on success, ENOENT if no further records match the
1562 * requested range, or some other error code is returned.
1563 */
1564 int
1566 {
1567 hammer_btree_elm_t elm;
1568 hammer_record_t rec;
1569 hammer_record_t tmprec;
1573 again:
1574 /*
1575 * Get the next on-disk record
1576 *
1577 * NOTE: If we deleted the last on-disk record we had scanned
1578 * ATEDISK will be clear and RETEST will be set, forcing
1579 * a call to iterate. The fact that ATEDISK is clear causes
1580 * iterate to re-test the 'current' element. If ATEDISK is
1581 * set, iterate will skip the 'current' element.
1582 */
1586 HAMMER_CURSOR_RETEST)) {
1595 HAMMER_CURSOR_ATEDISK;
1597 }
1598 }
1599 }
1601 /*
1602 * If the generation changed the backend has deleted or committed
1603 * one or more memory records since our last check.
1604 *
1605 * When this case occurs if the disk cursor is > current memory record
1606 * or the disk cursor is at EOF, we must re-seek the disk-cursor.
1607 * Since the cursor is ahead it must have not yet been eaten (if
1608 * not at eof anyway). (XXX data offset case?)
1609 *
1610 * NOTE: we are not doing a full check here. That will be handled
1611 * later on.
1612 *
1613 * If we have exhausted all memory records we do not have to do any
1614 * further seeks.
1615 */
1618 ) {
1619 kprintf("HAMMER: Debug: generation changed during scan @ino=%016llx\n", (long long)cursor->ip->obj_id);
1630 }
1632 /*
1633 * Do we re-seek the media cursor?
1634 */
1638 }
1639 }
1641 /*
1642 * We can now safely get the next in-memory record. We cannot
1643 * block here.
1644 *
1645 * hammer_rec_scan_cmp: Is the record still in our general range,
1646 * (non-inclusive of snapshot exclusions)?
1647 * hammer_rec_scan_callback: Is the record in our snapshot?
1648 */
1651 /*
1652 * If the current memory record was eaten then get the next
1653 * one. Stale records are skipped.
1654 */
1665 }
1671 }
1673 }
1674 }
1676 /*
1677 * MEMORY RECORD VALIDITY TEST
1678 *
1679 * (We still can't block, which is why tmprec is being held so
1680 * long).
1681 *
1682 * If the memory record is no longer valid we skip it. It may
1683 * have been deleted by the frontend. If it was deleted or
1684 * committed by the backend the generation change re-seeked the
1685 * disk cursor and the record will be present there.
1686 */
1695 }
1696 }
1700 /*
1701 * Extract either the disk or memory record depending on their
1702 * relative position.
1703 */
1707 /*
1708 * Both entries valid. Compare the entries and nominally
1709 * return the first one in the sort order. Numerous cases
1710 * require special attention, however.
1711 */
1715 /*
1716 * If the two entries differ only by their key (-2/2) or
1717 * create_tid (-1/1), and are DATA records, we may have a
1718 * nominal match. We have to calculate the base file
1719 * offset of the data.
1720 */
1729 }
1733 HAMMER_CURSOR_GET_LEAF);
1737 }
1739 /*
1740 * If the entries match exactly the memory entry is either
1741 * an on-disk directory entry deletion or a bulk data
1742 * overwrite. If it is a directory entry deletion we eat
1743 * both entries.
1744 *
1745 * For the bulk-data overwrite case it is possible to have
1746 * visibility into both, which simply means the syncer
1747 * hasn't gotten around to doing the delete+insert sequence
1748 * on the B-Tree. Use the memory entry and throw away the
1749 * on-disk entry.
1750 *
1751 * If the in-memory record is not either of these we
1752 * probably caught the syncer while it was syncing it to
1753 * the media. Since we hold a shared lock on the cursor,
1754 * the in-memory record had better be marked deleted at
1755 * this point.
1756 */
1763 }
1767 }
1768 /* fall through to memory entry */
1770 panic("hammer_ip_next: duplicate mem/b-tree entry %p %d %08x", cursor->iprec, cursor->iprec->type, cursor->iprec->flags);
1773 }
1774 }
1775 /* fall through to the memory entry */
1777 /*
1778 * Only the memory entry is valid.
1779 */
1784 /*
1785 * If the memory entry is an on-disk deletion we should have
1786 * also had found a B-Tree record. If the backend beat us
1787 * to it it would have interlocked the cursor and we should
1788 * have seen the in-memory record marked DELETED_FE.
1789 */
1792 panic("hammer_ip_next: del-on-disk with no b-tree entry iprec %p flags %08x", cursor->iprec, cursor->iprec->flags);
1793 }
1796 /*
1797 * Only the disk entry is valid
1798 */
1804 /*
1805 * Neither entry is valid
1806 *
1807 * XXX error not set properly
1808 */
1813 }
1815 }
1817 /*
1818 * Resolve the cursor->data pointer for the current cursor position in
1819 * a merged iteration.
1820 */
1821 int
1823 {
1824 hammer_record_t record;
1828 /*
1829 * The data associated with an in-memory record is usually
1830 * kmalloced, but reserve-ahead data records will have an
1831 * on-disk reference.
1832 *
1833 * NOTE: Reserve-ahead data records must be handled in the
1834 * context of the related high level buffer cache buffer
1835 * to interlock against async writes.
1836 */
1842 HAMMER_RECTYPE_DATA);
1848 }
1852 }
1854 }
1856 /*
1857 * Backend truncation / record replacement - delete records in range.
1858 *
1859 * Delete all records within the specified range for inode ip. In-memory
1860 * records still associated with the frontend are ignored.
1861 *
1862 * If truncating is non-zero in-memory records associated with the back-end
1863 * are ignored. If truncating is > 1 we can return EWOULDBLOCK.
1864 *
1865 * NOTES:
1866 *
1867 * * An unaligned range will cause new records to be added to cover
1868 * the edge cases. (XXX not implemented yet).
1869 *
1870 * * Replacement via reservations (see hammer_ip_sync_record_cursor())
1871 * also do not deal with unaligned ranges.
1872 *
1873 * * ran_end is inclusive (e.g. 0,1023 instead of 0,1024).
1874 *
1875 * * Record keys for regular file data have to be special-cased since
1876 * they indicate the end of the range (key = base + bytes).
1877 *
1878 * * This function may be asked to delete ridiculously huge ranges, for
1879 * example if someone truncates or removes a 1TB regular file. We
1880 * must be very careful on restarts and we may have to stop w/
1881 * EWOULDBLOCK to avoid blowing out the buffer cache.
1882 */
1883 int
1886 {
1888 hammer_btree_leaf_elm_t leaf;
1893 #if 0
1895 #endif
1898 retry:
1901 HAMMER_LOCALIZE_MISC;
1911 /*
1912 * The key in the B-Tree is (base+bytes), so the first possible
1913 * matching key is ran_beg + 1.
1914 */
1917 }
1926 else
1928 }
1939 /*
1940 * Iterate through matching records and mark them as deleted.
1941 */
1948 /*
1949 * There may be overlap cases for regular file data. Also
1950 * remember the key for a regular file record is (base + len),
1951 * NOT (base).
1952 *
1953 * Note that do to duplicates (mem & media) allowed by
1954 * DELETE_VISIBILITY, off can wind up less then ran_beg.
1955 */
1958 /*
1959 * Check the left edge case. We currently do not
1960 * split existing records.
1961 */
1966 }
1968 /*
1969 * Check the right edge case. Note that the
1970 * record can be completely out of bounds, which
1971 * terminates the search.
1972 *
1973 * base->key is exclusive of the right edge while
1974 * ran_end is inclusive of the right edge. The
1975 * (key - data_len) left boundary is inclusive.
1976 *
1977 * XXX theory-check this test at some point, are
1978 * we missing a + 1 somewhere? Note that ran_end
1979 * could overflow.
1980 */
1985 }
1988 }
1990 /*
1991 * Delete the record. When truncating we do not delete
1992 * in-memory (data) records because they represent data
1993 * written after the truncation.
1994 *
1995 * This will also physically destroy the B-Tree entry and
1996 * data if the retention policy dictates. The function
1997 * will set HAMMER_CURSOR_RETEST to cause hammer_ip_next()
1998 * to retest the new 'current' element.
1999 */
2002 /*
2003 * If we have built up too many meta-buffers we risk
2004 * deadlocking the kernel and must stop. This can
2005 * occur when deleting ridiculously huge files.
2006 * sync_trunc_off is updated so the next cycle does
2007 * not re-iterate records we have already deleted.
2008 *
2009 * This is only done with formal truncations.
2010 */
2015 }
2016 }
2021 }
2030 }
2034 }
2036 /*
2037 * This backend function deletes the specified record on-disk, similar to
2038 * delete_range but for a specific record. Unlike the exact deletions
2039 * used when deleting a directory entry this function uses an ASOF search
2040 * like delete_range.
2041 *
2042 * This function may be called with ip->obj_asof set for a slave snapshot,
2043 * so don't use it. We always delete non-historical records only.
2044 */
2045 static int
2047 hammer_btree_leaf_elm_t leaf)
2048 {
2053 retry:
2065 }
2071 }
2073 }
2075 /*
2076 * This function deletes remaining auxillary records when an inode is
2077 * being deleted. This function explicitly does not delete the
2078 * inode record, directory entry, data, or db records. Those must be
2079 * properly disposed of prior to this call.
2080 */
2081 int
2083 {
2085 hammer_btree_leaf_elm_t leaf;
2089 retry:
2092 HAMMER_LOCALIZE_MISC;
2112 /*
2113 * Iterate through matching records and mark them as deleted.
2114 */
2120 /*
2121 * Mark the record and B-Tree entry as deleted. This will
2122 * also physically delete the B-Tree entry, record, and
2123 * data if the retention policy dictates. The function
2124 * will set HAMMER_CURSOR_RETEST to cause hammer_ip_next()
2125 * to retest the new 'current' element.
2126 *
2127 * Directory entries (and delete-on-disk directory entries)
2128 * must be synced and cannot be deleted.
2129 */
2135 }
2143 }
2147 }
2149 /*
2150 * Delete the record at the current cursor. On success the cursor will
2151 * be positioned appropriately for an iteration but may no longer be at
2152 * a leaf node.
2153 *
2154 * This routine is only called from the backend.
2155 *
2156 * NOTE: This can return EDEADLK, requiring the caller to terminate the
2157 * cursor and retry.
2158 */
2159 int
2161 hammer_tid_t tid)
2162 {
2163 hammer_record_t iprec;
2164 hammer_mount_t hmp;
2171 /*
2172 * In-memory (unsynchronized) records can simply be freed. This
2173 * only occurs in range iterations since all other records are
2174 * individually synchronized. Thus there should be no confusion with
2175 * the interlock.
2176 *
2177 * An in-memory record may be deleted before being committed to disk,
2178 * but could have been accessed in the mean time. The reservation
2179 * code will deal with the case.
2180 */
2189 }
2191 /*
2192 * On-disk records are marked as deleted by updating their delete_tid.
2193 * This does not effect their position in the B-Tree (which is based
2194 * on their create_tid).
2195 *
2196 * Frontend B-Tree operations track inodes so we tell
2197 * hammer_delete_at_cursor() not to.
2198 */
2203 cursor,
2208 }
2210 }
2212 /*
2213 * Delete the B-Tree element at the current cursor and do any necessary
2214 * mirror propagation.
2215 *
2216 * The cursor must be properly positioned for an iteration on return but
2217 * may be pointing at an internal element.
2218 *
2219 * An element can be un-deleted by passing a delete_tid of 0 with
2220 * HAMMER_DELETE_ADJUST.
2221 */
2222 int
2226 {
2228 hammer_transaction_t trans;
2229 hammer_btree_leaf_elm_t leaf;
2230 hammer_node_t node;
2231 hammer_btree_elm_t elm;
2232 hammer_off_t data_offset;
2234 u_int16_t rec_type;
2253 /*
2254 * Adjust the delete_tid. Update the mirror_tid propagation field
2255 * as well. delete_tid can be 0 (undelete -- used by mirroring).
2256 */
2263 }
2280 }
2281 }
2283 /*
2284 * Adjust for the iteration. We have deleted the current
2285 * element and want to clear ATEDISK so the iteration does
2286 * not skip the element after, which now becomes the current
2287 * element. This element must be re-tested if doing an
2288 * iteration, which is handled by the RETEST flag.
2289 */
2293 }
2295 /*
2296 * An on-disk record cannot have the same delete_tid
2297 * as its create_tid. In a chain of record updates
2298 * this could result in a duplicate record.
2299 */
2302 }
2304 /*
2305 * Destroy the B-Tree element if asked (typically if a nohistory
2306 * file or mount, or when called by the pruning code).
2307 *
2308 * Adjust the ATEDISK flag to properly support iterations.
2309 */
2317 }
2321 }
2325 /*
2326 * The deletion moves the next element (if any) to
2327 * the current element position. We must clear
2328 * ATEDISK so this element is not skipped and we
2329 * must set RETEST to force any iteration to re-test
2330 * the element.
2331 */
2335 }
2336 }
2347 }
2348 }
2349 }
2351 /*
2352 * Track inode count and next_tid. This is used by the mirroring
2353 * and PFS code. icount can be negative, zero, or positive.
2354 */
2358 vol0_stat_inodes);
2361 }
2366 }
2367 }
2369 /*
2370 * mirror_tid propagation occurs if the node's mirror_tid had to be
2371 * updated while adjusting the delete_tid.
2372 *
2373 * This occurs when deleting even in nohistory mode, but does not
2374 * occur when pruning an already-deleted node.
2375 *
2376 * cursor->ip is NULL when called from the pruning, mirroring,
2377 * and pfs code. If non-NULL propagation will be conditionalized
2378 * on whether the PFS is in no-history mode or not.
2379 *
2380 * WARNING: cursor's leaf pointer may have changed after do_propagation
2381 * returns!
2382 */
2386 else
2388 }
2391 }
2393 /*
2394 * Determine whether we can remove a directory. This routine checks whether
2395 * a directory is empty or not and enforces flush connectivity.
2396 *
2397 * Flush connectivity requires that we block if the target directory is
2398 * currently flushing, otherwise it may not end up in the same flush group.
2399 *
2400 * Returns 0 on success, ENOTEMPTY or EDEADLK (or other errors) on failure.
2401 */
2402 int
2404 {
2408 /*
2409 * Check directory empty
2410 */
2436 }