| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 24 Oct 2012 16:17:59 -0500 From: Nico Williams <nico@...ptonector.com> To: General Discussion of SQLite Database <sqlite-users@...ite.org> Cc: 杨苏立 Yang Su Li <suli@...wisc.edu>, linux-fsdevel@...r.kernel.org, linux-kernel@...r.kernel.org, drh@...ci.com Subject: Re: [sqlite] light weight write barriers On Tue, Oct 23, 2012 at 2:53 PM, Vladislav Bolkhovitin <vvvvvst@...il.com> wrote: >> As most of the time the order we need do not involve too many blocks >> (certainly a lot less than all the cached blocks in the system or in >> the disk's cache), that topological order isn't likely to be very >> complicated, and I image it could be implemented efficiently in a >> modern device, which already has complicated caching/garbage >> collection/whatever going on internally. Particularly, it seems not >> too hard to be implemented on top of SCSI's ordered/simple task mode? If you have multiple layers involved (e.g., SQLite then the filesystem, and if the filesystem is spread over multiple storage devices), and if transactions are not bounded, and on top of that if there are other concurrent writers to the same filesystem (even if not the same files) then the set of blocks to write and internal ordering can get complex. In practice filesystems try to break these up into large self-consistent chunks and write those -- ZFS does this, for example -- and this is aided by the lack of transactional semantics in the filesystem. For SQLite with a VFS that talks [i]SCSI directly then things could be much more manageable as there's only one write transaction in progress at any given time. But that's not realistic, except, perhaps, in some embedded systems. > Yes, SCSI has full support for ordered/simple commands designed exactly for > that task: [...] > > [...] > > But historically for some reason Linux storage developers were stuck with > "barriers" concept, which is obviously not the same as ORDERED commands, > hence had a lot troubles with their ambiguous semantic. As far as I can tell > the reason of that was some lack of sufficiently deep SCSI understanding > (how to handle errors, believe that ACA is something legacy from parallel > SCSI times, etc.). Barriers are a very simple abstraction, so there's that. > Hopefully, eventually the storage developers will realize the value behind > ordered commands and learn corresponding SCSI facilities to deal with them. > It's quite easy to demonstrate this value, if you know where to look at and > not blindly refusing such possibility. I have already tried to explain it a > couple of times, but was not successful. Exposing ordering of lower-layer operations to filesystem applications is a non-starter. About the only reasonable thing to do with a filesystem is add barrier operations. I know, you're talking about lower layer capabilities, and SQLite could talk to that layer directly, but let's face it: it's not likely to. > Before that happens, people will keep returning again and again with those > simple questions: why the queue must be flushed for any ordered operation? > Isn't is an obvious overkill? That [cache flushing] is not what's being asked for here. Just a light-weight barrier. My proposal works without having to add new system calls: a) use a COW format, b) have background threads doing fsync()s, c) in each transaction's root block note the last known-committed (from a completed fsync()) transaction's root block, d) have an array of well-known ubberblocks large enough to accommodate as many transactions as possible without having to wait for any one fsync() to complete, d) do not reclaim space from any one past transaction until at least one subsequent transaction is fully committed. This obtains ACI- transaction semantics (survives power failures but without durability for the last N transactions at power-failure time) without requiring changes to the OS at all, and with support for delayed D (durability) notification. Nico -- -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists