lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <Yoj1AcHoBPqir++H@debian>
Date:   Sat, 21 May 2022 22:19:45 +0800
From:   Gao Xiang <xiang@...nel.org>
To:     Linus Torvalds <torvalds@...ux-foundation.org>
Cc:     LKML <linux-kernel@...r.kernel.org>, linux-fsdevel@...r.kernel.org,
        linux-erofs@...ts.ozlabs.org, David Howells <dhowells@...hat.com>,
        Chao Yu <chao@...nel.org>,
        Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
        Matthew Wilcox <willy@...radead.org>, tianzichen@...ishou.com,
        Joseph Qi <joseph.qi@...ux.alibaba.com>,
        zhangjiachen.jaycee@...edance.com, gerry@...ux.alibaba.com,
        Liu Bo <bo.liu@...ux.alibaba.com>,
        Yan Song <yansong.ys@...group.com>,
        Xin Yin <yinxin.x@...edance.com>,
        Peng Tao <tao.peng@...ux.alibaba.com>,
        Zefan Li <lizefan.x@...edance.com>, Tao Ma <boyu.mt@...bao.com>
Subject: [GIT PULL] erofs updates for 5.19-rc1 (fscache part inclusive)

Hi Linus,

Once the merge window opens, could you consider this pull request for
5.19-rc1?  (Since we're in the weekend so I have some extra time to
actually calm down, sort out and write down the whole story for the
pull request itself. Thus it's a bit earlier than usual this time if
there is no another extra -rc8. )

After keeping working on the mailing list for more than half a year,
we finally form "erofs over fscache" feature into shape.  Hopefully it
could bring more possibility to the communities.

The story mainly started from a new project what we called "RAFS v6"
[1] for Nydus image service almost a year ago, which enhances EROFS
to be a new form of one bootstrap (which includes metadata representing
the whole fs tree) + several data-deduplicated content addressable
blobs (actually treated as multiple devices).  Each blob can represent
one container image layer but not quite exactly since all new data can
be fully existed in the previous blobs so no need to introduce another
new blob.

It is actually not a new idea (at least on my side it's much like a
simpilied casync [2] for now) and has many benefits over per-file blobs
or some other exist ways since typically each RAFS v6 image only has
dozens of device blobs instead of thousands of per-file blobs.  It's
easy to be signed with user keys as a golden image, transfered
untouchedly with minimal overhead over the network, kept in some type
of storage conveniently, and run with (optional) runtime verification
but without involving too many irrelevant features crossing the system
beyond EROFS itself.  At least it's our final goal and we're keeping
working on it.  There was also a good summary of this approach from the
casync author [3].

Regardless further optimizations, this work is almost done in the
previous Linux release cycles.  In this round, we'd like to introduce
on-demand load for EROFS with the fscache/cachefiles infrastructure,
considering the following advantages:

 - Introduce new file-based backend to EROFS.  Although each image only
   contains dozens of blobs but in densely-deployed runC host for
   example, there could still be massive blobs on a machine, which is
   messy if each blob is treated as a device.  In contrast, fscache and
   cachefiles are really great interfaces for us to make them work.

 - Introduce on-demand load to fscache and EROFS.  Previously, fscache
   is mainly used to caching network-likewise filesystems, now it can
   support on-demand downloading for local fses too with the exact
   localfs on-disk format.  It has many advantages which we're been
   described in the latest patchset cover letter [4].  In addition to
   that, most importantly, the cached data is still stored in the
   original local fs on-disk format so that it's still the one signed
   with private keys but only could be partially available.  Users can
   fully trust it during running.  Later, users can also back up
   cachefiles easily to another machine.

 - More reliable on-demand approach in principle.  After data is all
   available locally, user daemon can be no longer online in some use
   cases, which helps daemon crash recovery (filesystems can still in
   service) and hot-upgrade (user daemon can be upgraded more
   frequently due to new features or protocols introduced.)

 - Other format can also be converted to EROFS filesystem format over
   the internet on the fly with the new on-demand load feature and
   mounted.  That is entirely possible with on-demand load feature as
   long as such archive format metadata can be fetched in advance like
   stargz.

In addition, although currently our target user is Nydus image
service [5], but laterly, it can be used for other use cases like
on-demand system booting, etc.  As for the fscache on-demand load
feature itself, strictly it can be used for other local fses too.
Laterly we could promote most code to the iomap infrastructure and also
enhance it in the read-write way if other local fses are interested.


Thanks David Howells for taking so much time and patience on this these
months, many thanks with great respect here again!  Thanks Jeffle for
working on this feature and Xin Yin from Bytedance for asynchronous I/O
implementation as well as Zichen Tian, Jia Zhu, and Yan Song for
testing, much appeciated.  We're also exploring more possibly over
fscache cache management over FSDAX for secure containers and working
on more improvements and useful features for fscache, cachefiles, and
on-demand load.


In addition to "erofs over fscache", NFS export and idmapped mount are
also completed in this cycle for container use cases as well.  Details
are all in the commit messages.


All commits have been in -next for a while (actually recently I only
added Chao's rvbs for most commits) and currently there is only a minor
trivial merge conflict with folio tree [6] which can be easily resolved.


(Btw, I will update EROFS roadmap for the following cycles for folio
 adaption and rolling hash de-duplicated compression (since EROFS
 supports variable length compression) and other pending features. )

Many thanks!
Gao Xiang


[1] https://lore.kernel.org/r/20210730194625.93856-1-hsiangkao@linux.alibaba.com
[2] https://github.com/systemd/casync
[3] http://0pointer.net/blog/casync-a-tool-for-distributing-file-system-images.html
[4] https://lore.kernel.org/r/20220509074028.74954-1-jefflexu@linux.alibaba.com
[5] https://github.com/dragonflyoss/image-service
[6] https://lore.kernel.org/r/20220502180425.7305c335@canb.auug.org.au


The following changes since commit af2d861d4cd2a4da5137f795ee3509e6f944a25b:

  Linux 5.18-rc4 (2022-04-24 14:51:22 -0700)

are available in the Git repository at:

  git://git.kernel.org/pub/scm/linux/kernel/git/xiang/erofs.git tags/erofs-for-5.19-rc1

for you to fetch changes up to ba73eadd23d1c2dc5c8dc0c0ae2eeca2b9b709a7:

  erofs: scan devices from device table (2022-05-18 00:11:21 +0800)

----------------------------------------------------------------
Changes since last update:

 - Add erofs on-demand load support over fscache;

 - Support NFS export for erofs;

 - Support idmapped mounts for erofs;

 - Don't prompt for risk any more when using big pcluster;

 - Fix buffer copy overflow of ztailpacking feature;

 - Several minor cleanups.

----------------------------------------------------------------
Chao Yu (1):
      erofs: support idmapped mounts

Gao Xiang (3):
      erofs: remove obsoleted comments
      erofs: refine on-disk definition comments
      erofs: fix buffer copy overflow of ztailpacking feature

Hongnan Li (1):
      erofs: make filesystem exportable

Jeffle Xu (22):
      cachefiles: extract write routine
      cachefiles: notify the user daemon when looking up cookie
      cachefiles: unbind cachefiles gracefully in on-demand mode
      cachefiles: notify the user daemon when withdrawing cookie
      cachefiles: implement on-demand read
      cachefiles: enable on-demand read mode
      cachefiles: add tracepoints for on-demand read mode
      cachefiles: document on-demand read mode
      erofs: make erofs_map_blocks() generally available
      erofs: add fscache mode check helper
      erofs: register fscache volume
      erofs: add fscache context helper functions
      erofs: add anonymous inode caching metadata for data blobs
      erofs: add erofs_fscache_read_folios() helper
      erofs: register fscache context for primary data blob
      erofs: register fscache context for extra data blobs
      erofs: implement fscache-based metadata read
      erofs: implement fscache-based data read for non-inline layout
      erofs: implement fscache-based data read for inline layout
      erofs: implement fscache-based data readahead
      erofs: add 'fsid' mount option
      erofs: scan devices from device table

Xin Yin (1):
      erofs: change to use asynchronous io for fscache readpage/readahead

Yue Hu (1):
      erofs: do not prompt for risk any more when using big pcluster

 Documentation/filesystems/caching/cachefiles.rst | 178 ++++++++
 fs/cachefiles/Kconfig                            |  12 +
 fs/cachefiles/Makefile                           |   1 +
 fs/cachefiles/daemon.c                           | 117 ++++-
 fs/cachefiles/interface.c                        |   2 +
 fs/cachefiles/internal.h                         |  78 ++++
 fs/cachefiles/io.c                               |  76 ++--
 fs/cachefiles/namei.c                            |  16 +-
 fs/cachefiles/ondemand.c                         | 503 ++++++++++++++++++++++
 fs/erofs/Kconfig                                 |  10 +
 fs/erofs/Makefile                                |   1 +
 fs/erofs/data.c                                  |  26 +-
 fs/erofs/decompressor.c                          |   7 +-
 fs/erofs/erofs_fs.h                              |  50 ++-
 fs/erofs/fscache.c                               | 521 +++++++++++++++++++++++
 fs/erofs/inode.c                                 |  11 +-
 fs/erofs/internal.h                              |  76 ++--
 fs/erofs/namei.c                                 |   5 +-
 fs/erofs/super.c                                 | 221 ++++++++--
 fs/erofs/sysfs.c                                 |   4 +-
 include/linux/fscache.h                          |   1 +
 include/linux/netfs.h                            |   1 +
 include/trace/events/cachefiles.h                | 176 ++++++++
 include/uapi/linux/cachefiles.h                  |  68 +++
 24 files changed, 1997 insertions(+), 164 deletions(-)
 create mode 100644 fs/cachefiles/ondemand.c
 create mode 100644 fs/erofs/fscache.c
 create mode 100644 include/uapi/linux/cachefiles.h

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ