| blob | 6eee3847d9c139582122b149070f2a8596a93c32 |
1 /*
2 * Copyright (c) 2007-2008 The DragonFly Project. All rights reserved.
3 *
4 * This code is derived from software contributed to The DragonFly Project
5 * by Matthew Dillon <dillon@backplane.com>
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 *
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in
15 * the documentation and/or other materials provided with the
16 * distribution.
17 * 3. Neither the name of The DragonFly Project nor the names of its
18 * contributors may be used to endorse or promote products derived
19 * from this software without specific, prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
22 * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
23 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
24 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
25 * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
26 * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING,
27 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
28 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
29 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
30 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
31 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 * SUCH DAMAGE.
33 */
44 hammer_btree_leaf_elm_t leaf);
46 hammer_btree_leaf_elm_t leaf);
51 };
54 hammer_record_t record;
55 hammer_record_t conflict;
56 };
58 /*
59 * Red-black tree support. Comparison code for insertion.
60 */
61 static int
63 {
74 /*
75 * For search & insertion purposes records deleted by the
76 * frontend or deleted/committed by the backend are silently
77 * ignored. Otherwise pipelined insertions will get messed
78 * up.
79 *
80 * rec1 is greater then rec2 if rec1 is marked deleted.
81 * rec1 is less then rec2 if rec2 is marked deleted.
82 *
83 * Multiple deleted records may be present, do not return 0
84 * if both are marked deleted.
85 */
87 HAMMER_RECF_COMMITTED)) {
89 }
91 HAMMER_RECF_COMMITTED)) {
93 }
96 }
98 /*
99 * Basic record comparison code similar to hammer_btree_cmp().
100 *
101 * obj_id is not compared and may not yet be assigned in the record.
102 */
103 static int
105 {
116 /*
117 * Never match against an item deleted by the frontend
118 * or backend, or committed by the backend.
119 *
120 * elm is less then rec if rec is marked deleted.
121 */
123 HAMMER_RECF_COMMITTED)) {
125 }
127 }
129 /*
130 * Ranged scan to locate overlapping record(s). This is used by
131 * hammer_ip_get_bulk() to locate an overlapping record. We have
132 * to use a ranged scan because the keys for data records with the
133 * same file base offset can be different due to differing data_len's.
134 *
135 * NOTE: The base file offset of a data record is (key - data_len), not (key).
136 */
137 static int
139 {
148 /*
149 * Overlap compare
150 */
152 /* rec_beg >= leaf_end */
155 /* rec_end <= leaf_beg */
163 }
165 /*
166 * We have to return 0 at this point, even if DELETED_FE is set,
167 * because returning anything else will cause the scan to ignore
168 * one of the branches when we really want it to check both.
169 */
171 }
173 /*
174 * RB_SCAN comparison code for hammer_mem_first(). The argument order
175 * is reversed so the comparison result has to be negated. key_beg and
176 * key_end are both range-inclusive.
177 *
178 * Localized deletions are not cached in-memory.
179 */
180 static
181 int
183 {
194 }
196 /*
197 * This compare function is used when simply looking up key_beg.
198 */
199 static
200 int
202 {
212 }
214 /*
215 * Locate blocks within the truncation range. Partial blocks do not count.
216 */
217 static
218 int
220 {
230 /*
231 * DB record key is not beyond the truncation point, retain.
232 */
237 /*
238 * DATA record offset start is not beyond the truncation point,
239 * retain.
240 */
246 }
248 /*
249 * The record start is >= the truncation point, return match,
250 * the record should be destroyed.
251 */
253 }
257 /*
258 * Allocate a record for the caller to finish filling in. The record is
259 * returned referenced. In order to manually set data call this function
260 * with data_len=0 and then manually set record->leaf.data_len and
261 * record->data later.
262 */
263 hammer_record_t
265 {
266 hammer_record_t record;
267 hammer_mount_t hmp;
283 }
286 }
288 void
290 {
294 }
295 }
297 /*
298 * Called from the backend, hammer_inode.c, after a record has been
299 * flushed to disk. The record has been exclusively locked by the
300 * caller and interlocked with BE.
301 *
302 * We clean up the state, unlock, and release the record (the record
303 * was referenced by the fact that it was in the HAMMER_FST_FLUSH state).
304 */
305 void
307 {
308 hammer_inode_t target_ip;
313 /*
314 * If an error occured, the backend was unable to sync the
315 * record to its media. Leave the record intact.
316 */
320 }
325 /*
326 * Adjust the flush state and dependancy based on success or
327 * failure.
328 */
332 target_entry);
335 }
344 }
345 }
348 /*
349 * Cleanup
350 */
354 }
356 }
358 /*
359 * Release a memory record. Records marked for deletion are immediately
360 * removed from the RB-Tree but otherwise left intact until the last ref
361 * goes away.
362 */
363 void
365 {
366 hammer_mount_t hmp;
367 hammer_reserve_t resv;
368 hammer_inode_t ip;
369 hammer_inode_t target_ip;
375 /*
376 * Upon release of the last reference wakeup any waiters.
377 * The record structure may get destroyed so callers will
378 * loop up and do a relookup.
379 *
380 * WARNING! Record must be removed from RB-TREE before we
381 * might possibly block. hammer_test_inode() can block!
382 */
386 /*
387 * Upon release of the last reference a record marked deleted
388 * by the front or backend, or committed by the backend,
389 * is destroyed.
390 */
392 HAMMER_RECF_DELETED_BE |
393 HAMMER_RECF_COMMITTED)) {
397 /*
398 * target_ip may have zero refs, we have to ref it
399 * to prevent it from being ripped out from under
400 * us.
401 */
407 }
409 /*
410 * Remove the record from the RB-Tree
411 */
415 record);
421 }
425 }
427 /*
428 * We must wait for any direct-IO to complete before
429 * we can destroy the record because the bio may
430 * have a reference to it.
431 */
435 }
437 /*
438 * Account for the completion after the direct IO
439 * has completed.
440 */
452 }
453 }
455 /*
456 * Do this test after removing record from the RB-Tree.
457 */
461 }
467 }
469 /*
470 * Release the reservation.
471 *
472 * If the record was not committed we can theoretically
473 * undo the reservation. However, doing so might
474 * create weird edge cases with the ordering of
475 * direct writes because the related buffer cache
476 * elements are per-vnode. So we don't try.
477 */
479 /* XXX undo leaf.data_offset,leaf.data_len */
482 }
486 }
487 }
488 }
490 /*
491 * Record visibility depends on whether the record is being accessed by
492 * the backend or the frontend. Backend tests ignore the frontend delete
493 * flag. Frontend tests do NOT ignore the backend delete/commit flags and
494 * must also check for commit races.
495 *
496 * Return non-zero if the record is visible, zero if it isn't or if it is
497 * deleted. Returns 0 if the record has been comitted (unless the special
498 * delete-visibility flag is set). A committed record must be located
499 * via the media B-Tree. Returns non-zero if the record is good.
500 *
501 * If HAMMER_CURSOR_DELETE_VISIBILITY is set we allow deleted memory
502 * records to be returned. This is so pending deletions are detected
503 * when using an iterator to locate an unused hash key, or when we need
504 * to locate historical records on-disk to destroy.
505 */
506 static __inline
507 int
509 {
514 HAMMER_RECF_COMMITTED)) {
516 }
519 HAMMER_RECF_DELETED_BE |
520 HAMMER_RECF_COMMITTED)) {
522 }
523 }
525 }
527 /*
528 * This callback is used as part of the RB_SCAN function for in-memory
529 * records. We terminate it (return -1) as soon as we get a match.
530 *
531 * This routine is used by frontend code.
532 *
533 * The primary compare code does not account for ASOF lookups. This
534 * code handles that case as well as a few others.
535 */
536 static
537 int
539 {
542 /*
543 * We terminate on success, so this should be NULL on entry.
544 */
547 /*
548 * Skip if the record was marked deleted or committed.
549 */
553 /*
554 * Skip if not visible due to our as-of TID
555 */
562 }
563 }
565 /*
566 * ref the record. The record is protected from backend B-Tree
567 * interactions by virtue of the cursor's IP lock.
568 */
571 /*
572 * The record may have been deleted or committed while we
573 * were blocked. XXX remove?
574 */
578 }
580 /*
581 * Set the matching record and stop the scan.
582 */
585 }
588 /*
589 * Lookup an in-memory record given the key specified in the cursor. Works
590 * just like hammer_btree_lookup() but operates on an inode's in-memory
591 * record list.
592 *
593 * The lookup must fail if the record is marked for deferred deletion.
594 *
595 * The API for mem/btree_lookup() does not mess with the ATE/EOF bits.
596 */
597 static
598 int
600 {
605 }
610 }
612 /*
613 * hammer_mem_first() - locate the first in-memory record matching the
614 * cursor within the bounds of the key range.
615 *
616 * WARNING! API is slightly different from btree_first(). hammer_mem_first()
617 * will set ATEMEM the same as MEMEOF, and does not return any error.
618 */
619 static
620 int
622 {
627 }
633 else
637 }
639 /************************************************************************
640 * HAMMER IN-MEMORY RECORD FUNCTIONS *
641 ************************************************************************
642 *
643 * These functions manipulate in-memory records. Such records typically
644 * exist prior to being committed to disk or indexed via the on-disk B-Tree.
645 */
647 /*
648 * Add a directory entry (dip,ncp) which references inode (ip).
649 *
650 * Note that the low 32 bits of the namekey are set temporarily to create
651 * a unique in-memory record, and may be modified a second time when the
652 * record is synchronized to disk. In particular, the low 32 bits cannot be
653 * all 0's when synching to disk, which is not handled here.
654 *
655 * NOTE: bytes does not include any terminating \0 on name, and name might
656 * not be terminated.
657 */
658 int
662 {
664 hammer_record_t record;
688 /*
689 * Find an unused namekey. Both the in-memory record tree and
690 * the B-Tree are checked. We do not want historically deleted
691 * names to create a collision as our iteration space may be limited,
692 * and since create_tid wouldn't match anyway an ASOF search
693 * must be used to locate collisions.
694 *
695 * delete-visibility is set so pending deletions do not give us
696 * a false-negative on our ability to use an iterator.
697 *
698 * The iterator must not rollover the key. Directory keys only
699 * use the positive key space.
700 */
715 }
716 }
718 /*
719 * The target inode and the directory entry are bound together.
720 */
725 /*
726 * The inode now has a dependancy and must be taken out of the idle
727 * state. An inode not in an idle state is given an extra reference.
728 *
729 * When transitioning to a SETUP state flag for an automatic reflush
730 * when the dependancies are disposed of if someone is waiting on
731 * the inode.
732 */
738 }
743 }
744 failed:
747 }
749 /*
750 * Delete the directory entry and update the inode link count. The
751 * cursor must be seeked to the directory entry record being deleted.
752 *
753 * The related inode should be share-locked by the caller. The caller is
754 * on the frontend. It could also be NULL indicating that the directory
755 * entry being removed has no related inode.
756 *
757 * This function can return EDEADLK requiring the caller to terminate
758 * the cursor, any locks, wait on the returned record, and retry.
759 */
760 int
764 {
765 hammer_record_t record;
769 /*
770 * In-memory (unsynchronized) records can simply be freed.
771 *
772 * Even though the HAMMER_RECF_DELETED_FE flag is ignored
773 * by the backend, we must still avoid races against the
774 * backend potentially syncing the record to the media.
775 *
776 * We cannot call hammer_ip_delete_record(), that routine may
777 * only be called from the backend.
778 */
781 HAMMER_RECF_DELETED_BE |
782 HAMMER_RECF_COMMITTED)) {
791 }
793 /*
794 * If the record is on-disk we have to queue the deletion by
795 * the record's key. This also causes lookups to skip the
796 * record (lookups for the purposes of finding an unused
797 * directory key do not skip the record).
798 */
806 /*
807 * ip may be NULL, indicating the deletion of a directory
808 * entry which has no related inode.
809 */
814 target_entry);
817 }
819 /*
820 * The inode now has a dependancy and must be taken out of
821 * the idle state. An inode not in an idle state is given
822 * an extra reference.
823 *
824 * When transitioning to a SETUP state flag for an automatic
825 * reflush when the dependancies are disposed of if someone
826 * is waiting on the inode.
827 */
833 }
836 }
838 /*
839 * One less link. The file may still be open in the OS even after
840 * all links have gone away.
841 *
842 * We have to terminate the cursor before syncing the inode to
843 * avoid deadlocking against ourselves. XXX this may no longer
844 * be true.
845 *
846 * If nlinks drops to zero and the vnode is inactive (or there is
847 * no vnode), call hammer_inode_unloadable_check() to zonk the
848 * inode. If we don't do this here the inode will not be destroyed
849 * on-media until we unmount.
850 */
855 }
865 }
866 }
868 }
870 }
872 /*
873 * Add a record to an inode.
874 *
875 * The caller must allocate the record with hammer_alloc_mem_record(ip,len) and
876 * initialize the following additional fields that are not initialized by these
877 * functions.
878 *
879 * The related inode should be share-locked by the caller. The caller is
880 * on the frontend.
881 *
882 * record->leaf.base.key
883 * record->leaf.base.rec_type
884 * record->leaf.base.localization
885 */
886 int
888 {
897 }
899 /*
900 * Locate a pre-existing bulk record in memory. The caller wishes to
901 * replace the record with a new one. The existing record may have a
902 * different length (and thus a different key) so we have to use an
903 * overlap check function.
904 */
905 static hammer_record_t
907 {
917 }
919 /*
920 * Take records vetted by overlap_cmp. The first non-deleted record
921 * (if any) stops the scan.
922 */
923 static int
925 {
929 HAMMER_RECF_COMMITTED)) {
931 }
935 }
937 /*
938 * Reserve blockmap space placemarked with an in-memory record.
939 *
940 * This routine is called by the frontend in order to be able to directly
941 * flush a buffer cache buffer. The frontend has locked the related buffer
942 * cache buffers and we should be able to manipulate any overlapping
943 * in-memory records.
944 *
945 * The caller is responsible for adding the returned record and deleting
946 * the returned conflicting record (if any), typically by calling
947 * hammer_ip_replace_bulk() (via hammer_io_direct_write()).
948 */
949 hammer_record_t
952 {
953 hammer_record_t record;
954 hammer_dedup_cache_t dcp;
955 hammer_crc_t crc;
958 /*
959 * Create a record to cover the direct write. The record cannot
960 * be added to the in-memory RB tree here as it might conflict
961 * with an existing memory record. See hammer_io_direct_write().
962 *
963 * The backend is responsible for finalizing the space reserved in
964 * this record.
965 *
966 * XXX bytes not aligned, depend on the reservation code to
967 * align the reservation.
968 */
973 else
989 }
994 nodedup:
1001 }
1002 }
1010 HAMMER_LOCALIZE_MISC;
1016 }
1018 /*
1019 * Called by hammer_io_direct_write() prior to any possible completion
1020 * of the BIO to emplace the memory record associated with the I/O and
1021 * to replace any prior memory record which might still be active.
1022 *
1023 * Setting the FE deleted flag on the old record (if any) avoids any RB
1024 * tree insertion conflict, amoung other things.
1025 *
1026 * This has to be done prior to the caller completing any related buffer
1027 * cache I/O or a reinstantiation of the buffer may load data from the
1028 * old media location instead of the new media location. The holding
1029 * of the locked buffer cache buffer serves to interlock the record
1030 * replacement operation.
1031 */
1032 void
1034 {
1035 hammer_record_t conflict;
1042 }
1046 }
1051 }
1053 /*
1054 * Frontend truncation code. Scan in-memory records only. On-disk records
1055 * and records in a flushing state are handled by the backend. The vnops
1056 * setattr code will handle the block containing the truncation point.
1057 *
1058 * Partial blocks are not deleted.
1059 *
1060 * This code is only called on regular files.
1061 */
1062 int
1064 {
1076 }
1081 }
1083 /*
1084 * Scan callback for frontend records to destroy during a truncation.
1085 * We must ensure that DELETED_FE is set on the record or the frontend
1086 * will get confused in future read() calls.
1087 *
1088 * NOTE: DELETED_FE cannot be set while the record interlock (BE) is held.
1089 * In this rare case we must wait for the interlock to be cleared.
1090 *
1091 * NOTE: This function is only called on regular files. There are further
1092 * restrictions to the setting of DELETED_FE on directory records
1093 * undergoing a flush due to sensitive inode link count calculations.
1094 */
1095 static int
1097 {
1100 #if 0
1103 #endif
1110 }
1112 /*
1113 * Return 1 if the caller must check for and delete existing records
1114 * before writing out a new data record.
1115 *
1116 * Return 0 if the caller can just insert the record into the B-Tree without
1117 * checking.
1118 */
1119 static int
1121 {
1128 else
1137 }
1139 }
1141 /*
1142 * Backend code. Sync a record to the media.
1143 */
1144 int
1146 {
1158 /*
1159 * Any direct-write related to the record must complete before we
1160 * can sync the record to the on-disk media.
1161 */
1165 /*
1166 * If this is a bulk-data record placemarker there may be an existing
1167 * record on-disk, indicating a data overwrite. If there is the
1168 * on-disk record must be deleted before we can insert our new record.
1169 *
1170 * We've synthesized this record and do not know what the create_tid
1171 * on-disk is, nor how much data it represents.
1172 *
1173 * Keep in mind that (key) for data records is (base_offset + len),
1174 * not (base_offset). Also, we only want to get rid of on-disk
1175 * records since we are trying to sync our in-memory record, call
1176 * hammer_ip_delete_range() with truncating set to 1 to make sure
1177 * it skips in-memory records.
1178 *
1179 * It is ok for the lookup to return ENOENT.
1180 *
1181 * NOTE OPTIMIZATION: sync_trunc_off is used to determine if we have
1182 * to call hammer_ip_delete_range() or not. This also means we must
1183 * update sync_trunc_off() as we write.
1184 */
1197 }
1199 /*
1200 * If this is a general record there may be an on-disk version
1201 * that must be deleted before we can insert the new record.
1202 */
1207 }
1209 /*
1210 * Setup the cursor.
1211 */
1218 /*
1219 * Records can wind up on-media before the inode itself is on-media.
1220 * Flag the case.
1221 */
1224 /*
1225 * If we are deleting a directory entry an exact match must be
1226 * found on-disk.
1227 */
1236 HAMMER_RECF_COMMITTED;
1238 }
1239 }
1241 }
1243 /*
1244 * We are inserting.
1245 *
1246 * Issue a lookup to position the cursor and locate the insertion
1247 * point. The target key should not exist. If we are creating a
1248 * directory entry we may have to iterate the low 32 bits of the
1249 * key to find an unused key.
1250 */
1262 }
1267 /*
1268 * Allocate the record and data. The result buffers will be
1269 * marked as being modified and further calls to
1270 * hammer_modify_buffer() will result in unneeded UNDO records.
1271 *
1272 * Support zero-fill records (data == NULL and data_len != 0)
1273 */
1275 /*
1276 * The data portion of a bulk-data record has already been
1277 * committed to disk, we need only adjust the layer2
1278 * statistics in the same transaction as our B-Tree insert.
1279 */
1289 }
1291 /*
1292 * Wholely cached record, with data. Allocate the data.
1293 */
1306 /*
1307 * Wholely cached record, without data.
1308 */
1311 }
1316 error,
1320 }
1322 /*
1323 * Our record is on-disk and we normally mark the in-memory version
1324 * as having been committed (and not BE-deleted).
1325 *
1326 * If the record represented a directory deletion but we had to
1327 * sync a valid directory entry to disk due to dependancies,
1328 * we must convert the record to a covering delete so the
1329 * frontend does not have visibility on the synced entry.
1330 *
1331 * WARNING: cursor's leaf pointer may have changed after do_propagation
1332 * returns!
1333 */
1339 }
1341 /*
1342 * Must convert deleted directory entry add
1343 * to a directory entry delete.
1344 */
1353 /* converted record is not yet committed */
1354 /* hammer_flush_record_done takes care of the rest */
1356 /*
1357 * Everything went fine and we are now done with
1358 * this record.
1359 */
1362 }
1367 }
1368 }
1369 done_unlock:
1371 done:
1373 }
1375 /*
1376 * Add the record to the inode's rec_tree. The low 32 bits of a directory
1377 * entry's key is used to deal with hash collisions in the upper 32 bits.
1378 * A unique 64 bit key is generated in-memory and may be regenerated a
1379 * second time when the directory record is flushed to the on-disk B-Tree.
1380 *
1381 * A referenced record is passed to this function. This function
1382 * eats the reference. If an error occurs the record will be deleted.
1383 *
1384 * A copy of the temporary record->data pointer provided by the caller
1385 * will be made.
1386 */
1387 int
1389 {
1392 /*
1393 * Make a private copy of record->data
1394 */
1398 /*
1399 * Insert into the RB tree. A unique key should have already
1400 * been selected if this is a directory entry.
1401 */
1406 }
1414 }
1416 /************************************************************************
1417 * HAMMER INODE MERGED-RECORD FUNCTIONS *
1418 ************************************************************************
1419 *
1420 * These functions augment the B-Tree scanning functions in hammer_btree.c
1421 * by merging in-memory records with on-disk records.
1422 */
1424 /*
1425 * Locate a particular record either in-memory or on-disk.
1426 *
1427 * NOTE: This is basically a standalone routine, hammer_ip_next() may
1428 * NOT be called to iterate results.
1429 */
1430 int
1432 {
1435 /*
1436 * If the element is in-memory return it without searching the
1437 * on-disk B-Tree
1438 */
1444 }
1448 /*
1449 * If the inode has on-disk components search the on-disk B-Tree.
1450 */
1457 }
1459 /*
1460 * Helper for hammer_ip_first()/hammer_ip_next()
1461 *
1462 * NOTE: Both ATEDISK and DISKEOF will be set the same. This sets up
1463 * hammer_ip_first() for calling hammer_ip_next(), and sets up the re-seek
1464 * state if hammer_ip_next() needs to re-seek.
1465 */
1466 static __inline
1467 int
1469 {
1481 }
1484 }
1487 HAMMER_CURSOR_ATEDISK);
1490 HAMMER_CURSOR_ATEDISK;
1493 }
1497 }
1499 }
1501 /*
1502 * Helper for hammer_ip_next()
1503 *
1504 * The caller has determined that the media cursor is further along than the
1505 * memory cursor and must be reseeked after a generation number change.
1506 */
1507 static
1508 int
1510 {
1512 hammer_btree_elm_t elm;
1517 /*
1518 * Do the re-seek.
1519 */
1528 /*
1529 * If the memory record was previous returned to
1530 * the caller and the media record matches
1531 * (-1/+1: only create_tid differs), then iterate
1532 * the media record to avoid a double result.
1533 */
1544 }
1551 }
1552 }
1553 }
1555 }
1557 /*
1558 * Locate the first record within the cursor's key_beg/key_end range,
1559 * restricted to a particular inode. 0 is returned on success, ENOENT
1560 * if no records matched the requested range, or some other error.
1561 *
1562 * When 0 is returned hammer_ip_next() may be used to iterate additional
1563 * records within the requested range.
1564 *
1565 * This function can return EDEADLK, requiring the caller to terminate
1566 * the cursor and try again.
1567 */
1569 int
1571 {
1577 /*
1578 * Clean up fields and setup for merged scan
1579 */
1582 /*
1583 * Search the in-memory record list (Red-Black tree). Unlike the
1584 * B-Tree search, mem_first checks for records in the range.
1585 *
1586 * This function will setup both ATEMEM and MEMEOF properly for
1587 * the ip iteration. ATEMEM will be set if MEMEOF is set.
1588 */
1591 /*
1592 * Detect generation changes during blockages, including
1593 * blockages which occur on the initial btree search.
1594 */
1597 /*
1598 * Initial search and result
1599 */
1605 }
1607 /*
1608 * Retrieve the next record in a merged iteration within the bounds of the
1609 * cursor. This call may be made multiple times after the cursor has been
1610 * initially searched with hammer_ip_first().
1611 *
1612 * There are numerous special cases in this code to deal with races between
1613 * in-memory records and on-media records.
1614 *
1615 * 0 is returned on success, ENOENT if no further records match the
1616 * requested range, or some other error code is returned.
1617 */
1618 int
1620 {
1621 hammer_btree_elm_t elm;
1622 hammer_record_t rec;
1623 hammer_record_t tmprec;
1627 again:
1628 /*
1629 * Get the next on-disk record
1630 *
1631 * NOTE: If we deleted the last on-disk record we had scanned
1632 * ATEDISK will be clear and RETEST will be set, forcing
1633 * a call to iterate. The fact that ATEDISK is clear causes
1634 * iterate to re-test the 'current' element. If ATEDISK is
1635 * set, iterate will skip the 'current' element.
1636 */
1640 HAMMER_CURSOR_RETEST)) {
1649 HAMMER_CURSOR_ATEDISK;
1651 }
1652 }
1653 }
1655 /*
1656 * If the generation changed the backend has deleted or committed
1657 * one or more memory records since our last check.
1658 *
1659 * When this case occurs if the disk cursor is > current memory record
1660 * or the disk cursor is at EOF, we must re-seek the disk-cursor.
1661 * Since the cursor is ahead it must have not yet been eaten (if
1662 * not at eof anyway). (XXX data offset case?)
1663 *
1664 * NOTE: we are not doing a full check here. That will be handled
1665 * later on.
1666 *
1667 * If we have exhausted all memory records we do not have to do any
1668 * further seeks.
1669 */
1684 }
1686 /*
1687 * Do we re-seek the media cursor?
1688 */
1692 }
1693 }
1695 /*
1696 * We can now safely get the next in-memory record. We cannot
1697 * block here.
1698 *
1699 * hammer_rec_scan_cmp: Is the record still in our general range,
1700 * (non-inclusive of snapshot exclusions)?
1701 * hammer_rec_scan_callback: Is the record in our snapshot?
1702 */
1705 /*
1706 * If the current memory record was eaten then get the next
1707 * one. Stale records are skipped.
1708 */
1719 }
1725 }
1727 }
1728 }
1730 /*
1731 * MEMORY RECORD VALIDITY TEST
1732 *
1733 * (We still can't block, which is why tmprec is being held so
1734 * long).
1735 *
1736 * If the memory record is no longer valid we skip it. It may
1737 * have been deleted by the frontend. If it was deleted or
1738 * committed by the backend the generation change re-seeked the
1739 * disk cursor and the record will be present there.
1740 */
1749 }
1750 }
1754 /*
1755 * Extract either the disk or memory record depending on their
1756 * relative position.
1757 */
1761 /*
1762 * Both entries valid. Compare the entries and nominally
1763 * return the first one in the sort order. Numerous cases
1764 * require special attention, however.
1765 */
1769 /*
1770 * If the two entries differ only by their key (-2/2) or
1771 * create_tid (-1/1), and are DATA records, we may have a
1772 * nominal match. We have to calculate the base file
1773 * offset of the data.
1774 */
1783 }
1787 HAMMER_CURSOR_GET_LEAF);
1791 }
1793 /*
1794 * If the entries match exactly the memory entry is either
1795 * an on-disk directory entry deletion or a bulk data
1796 * overwrite. If it is a directory entry deletion we eat
1797 * both entries.
1798 *
1799 * For the bulk-data overwrite case it is possible to have
1800 * visibility into both, which simply means the syncer
1801 * hasn't gotten around to doing the delete+insert sequence
1802 * on the B-Tree. Use the memory entry and throw away the
1803 * on-disk entry.
1804 *
1805 * If the in-memory record is not either of these we
1806 * probably caught the syncer while it was syncing it to
1807 * the media. Since we hold a shared lock on the cursor,
1808 * the in-memory record had better be marked deleted at
1809 * this point.
1810 */
1817 }
1821 }
1822 /* fall through to memory entry */
1830 }
1831 }
1832 /* fall through to the memory entry */
1834 /*
1835 * Only the memory entry is valid.
1836 */
1841 /*
1842 * If the memory entry is an on-disk deletion we should have
1843 * also had found a B-Tree record. If the backend beat us
1844 * to it it would have interlocked the cursor and we should
1845 * have seen the in-memory record marked DELETED_FE.
1846 */
1852 }
1855 /*
1856 * Only the disk entry is valid
1857 */
1863 /*
1864 * Neither entry is valid
1865 *
1866 * XXX error not set properly
1867 */
1872 }
1874 }
1876 /*
1877 * Resolve the cursor->data pointer for the current cursor position in
1878 * a merged iteration.
1879 */
1880 int
1882 {
1883 hammer_record_t record;
1887 /*
1888 * The data associated with an in-memory record is usually
1889 * kmalloced, but reserve-ahead data records will have an
1890 * on-disk reference.
1891 *
1892 * NOTE: Reserve-ahead data records must be handled in the
1893 * context of the related high level buffer cache buffer
1894 * to interlock against async writes.
1895 */
1901 HAMMER_RECTYPE_DATA);
1907 }
1911 }
1913 }
1915 /*
1916 * Backend truncation / record replacement - delete records in range.
1917 *
1918 * Delete all records within the specified range for inode ip. In-memory
1919 * records still associated with the frontend are ignored.
1920 *
1921 * If truncating is non-zero in-memory records associated with the back-end
1922 * are ignored. If truncating is > 1 we can return EWOULDBLOCK.
1923 *
1924 * NOTES:
1925 *
1926 * * An unaligned range will cause new records to be added to cover
1927 * the edge cases. (XXX not implemented yet).
1928 *
1929 * * Replacement via reservations (see hammer_ip_sync_record_cursor())
1930 * also do not deal with unaligned ranges.
1931 *
1932 * * ran_end is inclusive (e.g. 0,1023 instead of 0,1024).
1933 *
1934 * * Record keys for regular file data have to be special-cased since
1935 * they indicate the end of the range (key = base + bytes).
1936 *
1937 * * This function may be asked to delete ridiculously huge ranges, for
1938 * example if someone truncates or removes a 1TB regular file. We
1939 * must be very careful on restarts and we may have to stop w/
1940 * EWOULDBLOCK to avoid blowing out the buffer cache.
1941 */
1942 int
1945 {
1947 hammer_btree_leaf_elm_t leaf;
1953 retry:
1956 HAMMER_LOCALIZE_MISC;
1966 /*
1967 * The key in the B-Tree is (base+bytes), so the first possible
1968 * matching key is ran_beg + 1.
1969 */
1972 }
1981 else
1983 }
1994 /*
1995 * Iterate through matching records and mark them as deleted.
1996 */
2003 /*
2004 * There may be overlap cases for regular file data. Also
2005 * remember the key for a regular file record is (base + len),
2006 * NOT (base).
2007 *
2008 * Note that due to duplicates (mem & media) allowed by
2009 * DELETE_VISIBILITY, off can wind up less then ran_beg.
2010 */
2013 /*
2014 * Check the left edge case. We currently do not
2015 * split existing records.
2016 */
2021 }
2023 /*
2024 * Check the right edge case. Note that the
2025 * record can be completely out of bounds, which
2026 * terminates the search.
2027 *
2028 * base->key is exclusive of the right edge while
2029 * ran_end is inclusive of the right edge. The
2030 * (key - data_len) left boundary is inclusive.
2031 *
2032 * XXX theory-check this test at some point, are
2033 * we missing a + 1 somewhere? Note that ran_end
2034 * could overflow.
2035 */
2040 }
2043 }
2045 /*
2046 * Delete the record. When truncating we do not delete
2047 * in-memory (data) records because they represent data
2048 * written after the truncation.
2049 *
2050 * This will also physically destroy the B-Tree entry and
2051 * data if the retention policy dictates. The function
2052 * will set HAMMER_CURSOR_RETEST to cause hammer_ip_next()
2053 * to retest the new 'current' element.
2054 */
2057 /*
2058 * If we have built up too many meta-buffers we risk
2059 * deadlocking the kernel and must stop. This can
2060 * occur when deleting ridiculously huge files.
2061 * sync_trunc_off is updated so the next cycle does
2062 * not re-iterate records we have already deleted.
2063 *
2064 * This is only done with formal truncations.
2065 */
2070 }
2071 }
2076 }
2085 }
2089 }
2091 /*
2092 * This backend function deletes the specified record on-disk, similar to
2093 * delete_range but for a specific record. Unlike the exact deletions
2094 * used when deleting a directory entry this function uses an ASOF search
2095 * like delete_range.
2096 *
2097 * This function may be called with ip->obj_asof set for a slave snapshot,
2098 * so don't use it. We always delete non-historical records only.
2099 */
2100 static int
2102 hammer_btree_leaf_elm_t leaf)
2103 {
2108 retry:
2120 }
2126 }
2128 }
2130 /*
2131 * This function deletes remaining auxillary records when an inode is
2132 * being deleted. This function explicitly does not delete the
2133 * inode record, directory entry, data, or db records. Those must be
2134 * properly disposed of prior to this call.
2135 */
2136 int
2138 {
2140 hammer_btree_leaf_elm_t leaf __debugvar;
2144 retry:
2147 HAMMER_LOCALIZE_MISC;
2167 /*
2168 * Iterate through matching records and mark them as deleted.
2169 */
2175 /*
2176 * Mark the record and B-Tree entry as deleted. This will
2177 * also physically delete the B-Tree entry, record, and
2178 * data if the retention policy dictates. The function
2179 * will set HAMMER_CURSOR_RETEST to cause hammer_ip_next()
2180 * to retest the new 'current' element.
2181 *
2182 * Directory entries (and delete-on-disk directory entries)
2183 * must be synced and cannot be deleted.
2184 */
2190 }
2198 }
2202 }
2204 /*
2205 * Delete the record at the current cursor. On success the cursor will
2206 * be positioned appropriately for an iteration but may no longer be at
2207 * a leaf node.
2208 *
2209 * This routine is only called from the backend.
2210 *
2211 * NOTE: This can return EDEADLK, requiring the caller to terminate the
2212 * cursor and retry.
2213 */
2214 int
2216 hammer_tid_t tid)
2217 {
2218 hammer_record_t iprec;
2224 /*
2225 * In-memory (unsynchronized) records can simply be freed. This
2226 * only occurs in range iterations since all other records are
2227 * individually synchronized. Thus there should be no confusion with
2228 * the interlock.
2229 *
2230 * An in-memory record may be deleted before being committed to disk,
2231 * but could have been accessed in the mean time. The reservation
2232 * code will deal with the case.
2233 */
2242 }
2244 /*
2245 * On-disk records are marked as deleted by updating their delete_tid.
2246 * This does not effect their position in the B-Tree (which is based
2247 * on their create_tid).
2248 *
2249 * Frontend B-Tree operations track inodes so we tell
2250 * hammer_delete_at_cursor() not to.
2251 */
2256 cursor,
2261 }
2263 }
2265 /*
2266 * Used to write a generic record w/optional data to the media b-tree
2267 * when no inode context is available. Used by the mirroring and
2268 * snapshot code.
2269 *
2270 * Caller must set cursor->key_beg to leaf->base. The cursor must be
2271 * flagged for backend operation and not flagged ASOF (since we are
2272 * doing an insertion).
2273 *
2274 * This function will acquire the appropriate sync lock and will set
2275 * the cursor insertion flag for the operation, do the btree lookup,
2276 * and the insertion, and clear the insertion flag and sync lock before
2277 * returning. The cursor state will be such that the caller can continue
2278 * scanning (used by the mirroring code).
2279 *
2280 * mode: HAMMER_CREATE_MODE_UMIRROR copyin data, check crc
2281 * HAMMER_CREATE_MODE_SYS bcopy data, generate crc
2282 *
2283 * NOTE: EDEADLK can be returned. The caller must do deadlock handling and
2284 * retry.
2285 *
2286 * EALREADY can be returned if the record already exists (WARNING,
2287 * because ASOF cannot be used no check is made for illegal
2288 * duplicates).
2289 *
2290 * NOTE: Do not use the function for normal inode-related records as this
2291 * functions goes directly to the media and is not integrated with
2292 * in-memory records.
2293 */
2294 int
2297 {
2298 hammer_transaction_t trans;
2299 hammer_buffer_t data_buffer;
2300 hammer_off_t ndata_offset;
2301 hammer_tid_t high_tid;
2325 }
2341 }
2342 }
2352 }
2358 }
2362 /*
2363 * Do the insertion. This can fail with a EDEADLK or EALREADY
2364 */
2371 }
2374 /*
2375 * Cursor is left on current element, we want to skip it now.
2376 * (in case the caller is scanning)
2377 */
2381 /*
2382 * If the insertion happens to be creating (and not just replacing)
2383 * an inode we have to track it.
2384 */
2389 vol0_stat_inodes);
2392 }
2394 /*
2395 * vol0_next_tid must track the highest TID stored in the filesystem.
2396 * We do not need to generate undo for this update.
2397 */
2405 }
2407 /*
2408 * WARNING! cursor's leaf pointer may have changed after
2409 * do_propagation returns.
2410 */
2414 failed:
2415 /*
2416 * Cleanup
2417 */
2421 }
2426 }
2428 /*
2429 * Delete the B-Tree element at the current cursor and do any necessary
2430 * mirror propagation.
2431 *
2432 * The cursor must be properly positioned for an iteration on return but
2433 * may be pointing at an internal element.
2434 *
2435 * An element can be un-deleted by passing a delete_tid of 0 with
2436 * HAMMER_DELETE_ADJUST.
2437 *
2438 * This function will store the number of bytes deleted in *stat_bytes
2439 * if stat_bytes is not NULL.
2440 */
2441 int
2445 {
2447 hammer_transaction_t trans;
2448 hammer_btree_leaf_elm_t leaf;
2449 hammer_node_t node;
2450 hammer_btree_elm_t elm;
2451 hammer_off_t data_offset;
2474 /*
2475 * Adjust the delete_tid. Update the mirror_tid propagation field
2476 * as well. delete_tid can be 0 (undelete -- used by mirroring).
2477 */
2484 }
2500 }
2501 }
2503 /*
2504 * Adjust for the iteration. We have deleted the current
2505 * element and want to clear ATEDISK so the iteration does
2506 * not skip the element after, which now becomes the current
2507 * element. This element must be re-tested if doing an
2508 * iteration, which is handled by the RETEST flag.
2509 */
2513 }
2515 /*
2516 * An on-disk record cannot have the same delete_tid
2517 * as its create_tid. In a chain of record updates
2518 * this could result in a duplicate record.
2519 */
2522 }
2524 /*
2525 * Destroy the B-Tree element if asked (typically if a nohistory
2526 * file or mount, or when called by the pruning code).
2527 *
2528 * Adjust the ATEDISK flag to properly support iterations.
2529 */
2536 }
2540 }
2544 /*
2545 * The deletion moves the next element (if any) to
2546 * the current element position. We must clear
2547 * ATEDISK so this element is not skipped and we
2548 * must set RETEST to force any iteration to re-test
2549 * the element.
2550 */
2554 }
2567 }
2568 }
2569 }
2571 /*
2572 * Track inode count and next_tid. This is used by the mirroring
2573 * and PFS code. icount can be negative, zero, or positive.
2574 */
2578 vol0_stat_inodes);
2581 }
2586 }
2587 }
2589 /*
2590 * mirror_tid propagation occurs if the node's mirror_tid had to be
2591 * updated while adjusting the delete_tid.
2592 *
2593 * This occurs when deleting even in nohistory mode, but does not
2594 * occur when pruning an already-deleted node.
2595 *
2596 * cursor->ip is NULL when called from the pruning, mirroring,
2597 * and pfs code. If non-NULL propagation will be conditionalized
2598 * on whether the PFS is in no-history mode or not.
2599 *
2600 * WARNING: cursor's leaf pointer may have changed after do_propagation
2601 * returns!
2602 */
2606 else
2608 }
2613 }
2615 /*
2616 * Determine whether we can remove a directory. This routine checks whether
2617 * a directory is empty or not and enforces flush connectivity.
2618 *
2619 * Flush connectivity requires that we block if the target directory is
2620 * currently flushing, otherwise it may not end up in the same flush group.
2621 *
2622 * Returns 0 on success, ENOTEMPTY or EDEADLK (or other errors) on failure.
2623 */
2624 int
2626 {
2630 /*
2631 * Check directory empty
2632 */
2658 }
2660 /*
2661 * Localize the data payload. Directory entries may need their
2662 * localization adjusted.
2663 */
2664 static
2665 int
2667 hammer_btree_leaf_elm_t leaf)
2668 {
2673 HAMMER_LOCALIZE_PSEUDOFS_MASK;
2677 }
2678 }
2680 }