Changeset 25565 in project

Timestamp:

11/24/11 00:25:57 (9 years ago)

Author:

Alaric Snell-Pym

Message:

ugarit: tag locking, and strict enforcement of maximum file size in splitlog archives

Location:

release/4/ugarit/trunk

Files:

• README.txt (modified) (7 diffs)
• backend-cache.scm (modified) (1 diff)
• backend-devtools.scm (modified) (1 diff)
• backend-fs.scm (modified) (8 diffs)
• test/run.scm (modified) (3 diffs)
• ugarit-backend.scm (modified) (3 diffs)
• ugarit-core.scm (modified) (5 diffs)

release/4/ugarit/trunk/README.txt

@@ -827 +827 @@
 ## Backends
 
+* Create ugarit-backend-protocol-2, and extend import-backend to
+  support it. The differences are:
+
+  * Extend the backend API to have all API calls return a possibly
+    empty list of log messages before the actual result. When
+    importing a backend, provide a logging callback which is passed
+    these lists and feeds them into a logging mechanism which prints
+    them and stores them in the archive object for later logging into
+    the snapshot. The same logging interface can then be used for
+    warnings from within ugarit-core itself as well.
+
+  * Extend the backend API to have an initial list of log messages and
+    a possible error or success for initialisation, inside the
+    header. Make the command-line wrappers for backends use this to
+    indicate startup failure.
+
 * Carefully document backend API for other backend authors: in
   particular note behaviour in crash situations - we assume that after
@@ -835 +851 @@
   (see v1.0.2).
 
-* Make splitlog see if writing the block will go over the log file
-  size limit, and if so, start a new file - rather than testing AFTER
-  writing, leading to a potential extra partial block beyond the
-  limit. It'd be nice to make it a hard limit.
-
-* Implement lock-tag! etc. in backend-fs, as a precaution against two
-  concurrent snapshots racing over updating the tag, where concurrent
-  access to the archive is even possible.
-
 * Lock the archive for writing in backend-splitlog, so that two
   snapshots to the same archive don't collide. Do we lock per `put!`
@@ -857 +864 @@
   to find (complete) blocks that did not get flushed to the metadata.
 
-* Make `lock-tag!` in backend-splitlog actually block until the tag is
-  not already locked! With a timeout and an apologetic error message
-  if it takes too long.
+* Make `lock-tag!` fail if the tag is already locked. Make the archive
+  block and retry a few times in that case.
 
 * Extend the backend protocol with a special "admin" command that
@@ -970 +976 @@
   quick summary of the bytes/blocks stored/skipped stats.
 
-* Log all WARNINGs produced during a snapshot job, and attach them to
-  the snapshot object as a text file.
-
 * Clarify what characters are legal in tag names sent to backends, and
   what are legal in human-supplied tag names, and check that
@@ -1080 +1083 @@
   between archives, perhaps to change to a better backend.
 
+* Optional progress reporting callback from within store-file! and
+  store-directory!, called on each block within a file or on each
+  filesystem object, respectively.
+
+* Add a procedure to resolve a path within the archive node tree from
+  any root node. Pass in the path as a list of strings, with the
+  symbols `.` and `..` being usable as meta-characters to do nothing
+  or to go up a level. Write a utility procedure to parse a string
+  into such a form.
+
 ## Front-end
 
+* Install progress reporting callbacks to report progress to user;
+  option for quiet (no reporting), normal (reporting if >60s have
+  passed since last time), or verbose (report every file), or very
+  verbose (report every file and block).
+
 * Add a command to force removing a tag lock.
 
 * Add a command to list all the tags (with a * next to locked tags)
+
+* Add a command to list the contents of any directory in the archive
+  node tree
 
 * Better error messages
@@ -1132 +1153 @@
   and restore the corpus several times over with each hash,
   compression, and encryption option.
+
+* Testing crashes. See about writing a test backend binary that either
+  raises an error or just kills the process directly after N
+  operations, and sit in a loop running it with increasing N. Take N
+  from an environment variable to make it easier to automate this.
+
+* Extract the debugging backend from backend-devtools into a proper
+  backend binary that takes a path to a log file and a backend command
+  line to wrap.
 
 # Acknowledgements
@@ -1219 +1249 @@
   when tagging a snapshot) so that we ensure the blocks we point at
   are flushed before committing references to them in the
-  `backend-cache` or file caches, or into tags, to ensure crash safety.
+  `backend-cache` or file caches, or into tags, to ensure crash
+  safety. BUGFIX: Made the splitlog backend never exceed the file size
+  limit (except when passed blocks that, plus a header, are larger
+  than it), rather than letting a partial block hang over the
+  'end'. BUGFIX: Fixed tag locking, which was broken all over the
+  place. Concurrent snapshots to the same tag should now block for one
+  another, although why you'd want to *do* that is questionable.
 
 * 1.0.1: Consistency check on read blocks by default. Removed warning

release/4/ugarit/trunk/backend-cache.scm

@@ -94 +94 @@
          (flush!))
       (lambda (tag) ; lock-tag!
-         ((storage-lock-tag! be) tag)
-         ((storage-flush! be))
-         (flush!))
+         (let ((result ((storage-lock-tag! be) tag)))
+           ((storage-flush! be))
+           (flush!)
+           result))
       (lambda (tag) ; tag-locked?
          ((storage-tag-locked? be) tag))

release/4/ugarit/trunk/backend-devtools.scm

@@ -120 +120 @@
             ((storage-remove-tag! be) tag)))
       (lambda (tag) ; lock-tag!
-         (begin
-            (printf "~A: (lock-tag! ~A)\n" name tag)
-            ((storage-lock-tag! be) tag)))
+        (let ((result ((storage-lock-tag! be) tag)))
+          (begin
+            (printf "~A: (lock-tag! ~A) = ~A\n" name tag result)
+            result)))
       (lambda (tag) ; tag-locked?
          (let ((result ((storage-tag-locked? be) tag)))

release/4/ugarit/trunk/backend-fs.scm

@@ -48 +48 @@
    (define (make-tag-name tag)
       (string-append base "/" tag ".tag"))
+
+   (define (make-tag-lock-name tag)
+      (string-append base "/" tag ".tag-lock"))
 
    (if (not (directory? base))
@@ -126 +129 @@
          (if (file-read-access? (make-tag-name tag))
             (with-input-from-file (make-tag-name tag)
-               (lambda () (read)))
+               (lambda () (let ((key (read)))
+                            (if (eof-object? key)
+                                #f ; Treat empty file as no tag
+                                key))))
             #f))
       (lambda () ; all-tags
@@ -137 +143 @@
       (lambda (tag) ; remove-tag!
          (if (file-write-access? (make-tag-name tag))
-            (delete-file (make-tag-name tag))
+            (begin
+              (delete-file (make-tag-name tag))
+              (when (file-exists? (make-tag-lock-name tag))
+                    (delete-file (make-tag-lock-name tag))))
             #f))
       (lambda (tag) ; lock-tag!
-         ; (printf "FIXME: Implement lock-tag! in backend-fs.scm\n")
-         #f)
+        ; Ensure tag file exists first, as an empty file if necessary
+        (file-close (file-open (make-tag-name tag) (+ open/wronly open/append open/creat)))
+        (condition-case
+         (begin
+           (file-link (make-tag-name tag) (make-tag-lock-name tag))
+           #t)
+         ((exn i/o file)
+          #f)))  ; If we can't create it for any reason, we haven't got the lock; it'd be nicer to check errno = EEXIST, though, and raise an exception for other errors.
       (lambda (tag) ; tag-locked?
-         ; (printf "FIXME: Implement tag-locked? in backend-fs.scm\n")
-         #f)
+        (not (not (file-exists? (make-tag-lock-name tag)))))
       (lambda (tag) ; unlock-tag!
-         ; (printf "FIXME: Implement unlock-tag! in backend-fs.scm\n")
-         #f)
+        (delete-file (make-tag-lock-name tag))
+        (void))
       (lambda () ; close!
          (void))))
@@ -248 +262 @@
                          (let ((td (query fetch get-tag-query tag)))
                            (if (pair? td)
-                               (car td)
+                               (if (null? (car td)) ; treat NULL as no tag
+                                   #f
+                                   (car td))
                                #f))))
 
@@ -259 +275 @@
                            (if (pair? td)
                                (car td)
-                               #f))))
+                               (begin ; Tag does not exist, create it on demand
+                                 (set-tag! tag '()) ; insert NULL tag record
+                                 0)))))
 
          (get-tags (lambda ()
@@ -277 +295 @@
            (let ((header (sprintf "(block ~S ~S ~S)" key type (u8vector-length data)))
                  (posn (file-position *log*)))
-             (if (> posn max-logpart-size)
+             (if (and (not (zero? posn)) (> (+ (u8vector-length data) (string-length header) posn) max-logpart-size))
                  (begin
                    (file-close *log*)
@@ -331 +349 @@
            (void))
          (lambda (tag) ; lock-tag!
-           (set-tag-lock! tag 1)
-           (void))
+           (flush!)
+           (let ((existing-lock? (not (zero? (get-tag-lock tag)))))
+             (if existing-lock?
+                 (begin
+                   #f)
+                 (begin
+                   (set-tag-lock! tag 1)
+                   (flush!)
+                   #t))))
          (lambda (tag) ; tag-locked?
            (if (zero? (get-tag-lock tag))
@@ -338 +363 @@
                #t))
          (lambda (tag) ; unlock-tag!
-           (set-tag-lock! tag 0))
+           (set-tag-lock! tag 0)
+           (flush!))
          (lambda () ; close!
            (flush!)

release/4/ugarit/trunk/test/run.scm

@@ -49 +49 @@
          (test-assert "Unlinked block is gone" (not ((storage-exists? w) "TEST")))))
    (test "Set a tag" (void) ((storage-set-tag! w) "TEST" "TEST123"))
+   (test "Tag is not locked" #f ((storage-tag-locked? w) "TEST"))
+   (test "Lock a tag" #t ((storage-lock-tag! w) "TEST"))
+   (test "Tag is now locked" #t ((storage-tag-locked? w) "TEST"))
+   (test "Lock a tag again" #f ((storage-lock-tag! w) "TEST"))
+   (test "Tag is still locked" #t ((storage-tag-locked? w) "TEST"))
+   (test "Unlock a tag" (void) ((storage-unlock-tag! w) "TEST"))
+   (test "Tag is no longer locked" #f ((storage-tag-locked? w) "TEST"))
    (test "Tag reads back" "TEST123" ((storage-tag w) "TEST"))
    (test "Tag list works" (list "TEST") ((storage-all-tags w)))
@@ -135 +142 @@
                      (test-assert "Unlinked data is gone" (not (archive-exists? a test-key)))))
                (test "Tag setting" (void) (archive-set-tag! a "TEST" test-key))
+
+               (test "Tag is not locked" #f (archive-tag-locked? a "TEST"))
+               (test "Lock a tag" #t (archive-lock-tag! a "TEST"))
+               (test "Tag is now locked" #t (archive-tag-locked? a "TEST"))
+               (test-error "Lock a tag again" (archive-lock-tag! a "TEST"))
+               (test "Tag is still locked" #t (archive-tag-locked? a "TEST"))
+               (test "Unlock a tag" (void) (archive-unlock-tag! a "TEST"))
+               (test "Tag is no longer locked" #f (archive-tag-locked? a "TEST"))
+
                (test "Tag reading" test-key (archive-tag a "TEST"))
                (test "Tag listing" (list "TEST") (archive-all-tags a))
@@ -473 +489 @@
                                      (tag-snapshot! a "Test" dir2-key dir2-reused? (list)))
 
+                 (test-define-values "Read the tag back" (tag2) (archive-tag a "Test"))
                  (test-define-values "Walk the history with fold-history" (result)
-                                     (fold-history a (archive-tag a "Test")
+                                     (fold-history a tag2
                                                    (lambda (snapshot-key snapshot acc)
                                                      (cons snapshot acc))

release/4/ugarit/trunk/ugarit-backend.scm

@@ -47 +47 @@
   all-tags ; Procedure: (all-tags) - returns a list of all existing tag names
   remove-tag! ; Procedure: (remove-tag! name) - removes the named tag
-  lock-tag! ; Procedure: (lock-tag! name) - locks the named tag, or blocks if already locked
-  tag-locked? ; Procedure: (tag-locked? name) - returns the locker identity string if the tag is locked, #f otherwise
+  lock-tag! ; Procedure: (lock-tag! name) - locks the named tag, returning #t if all went well, or #f if it can't be locked.
+  tag-locked? ; Procedure: (tag-locked? name) - returns #t if the tag is locked, #f otherwise
   unlock-tag! ; Procedure: (unlock-tag! name) - unlocks the named tag
   close!)  ; Procedure: (close!) - closes the storage engine
@@ -163 +163 @@
            (('lock-tag! name)
             (with-error-reporting
-             ((storage-lock-tag! storage) name)
-             (write #t))
+             (let  ((result ((storage-lock-tag! storage) name)))
+               (write result)))
             (loop))
 
@@ -289 +289 @@
               (if debug (printf "~a: lock-tag!" command-line))
               (write `(lock-tag! ,name) commands)
-              (read-response responses)
-              (void))
+              (read-response responses))
 
             (lambda (name)              ; tag-locked?

release/4/ugarit/trunk/ugarit-core.scm

@@ -411 +411 @@
   (if (not (archive-writable? archive))
       (signal (make-property-condition 'exn 'location 'archive-lock-tag! 'message "This isn't a writable archive")))
-  ((storage-lock-tag! (archive-storage archive)) tag))
+  (let loop ((tries-left 10))
+    (if (zero? tries-left)
+        (signal (make-property-condition 'exn 'location 'archive-lock-tag! 'message (sprintf "We timed out attempting to lock the tag '~A'" tag)))
+        (let ((result ((storage-lock-tag! (archive-storage archive)) tag)))
+          (if result
+              result                       ; Lock got!
+              (begin
+                (thread-sleep! 1)
+                (loop (- tries-left 1))))))))
 
 (define (archive-tag-locked? archive tag)
@@ -844 +852 @@
        (for-each (lambda (filename)
                    (handle-exceptions exn
-                                      (printf "ERROR: Could not store ~a into the archive, skipping it...\n" (make-pathname path filename))
+                                      (printf "ERROR: Could not store ~a into the archive (~a), skipping it...\n" (make-pathname path filename) ((condition-property-accessor 'exn 'message "Unknown error") exn))
                                       (let* ((file-path (make-pathname path filename))
                                              (stats (file-stat file-path #t))
@@ -1072 +1080 @@
 (define (tag-snapshot! archive tag contents-key contents-reused? snapshot-properties)
   (check-archive-writable archive)
-  (archive-lock-tag! archive tag)
+  (archive-lock-tag! archive tag) ;; Lock BEFORE reading previous state of the tag, to avoid races.
   (let* ((previous (archive-tag archive tag))
          (stats (list
@@ -1091 +1099 @@
           (list ; We do not list the previous snapshot - since we are about to overwrite the tag that points to it, which would be a decrement.
            (cons contents-key contents-reused?))))
-    (if previous
-        (begin
-          (set! snapshot (cons
-                          (cons 'previous previous)
-                          snapshot))))
+    (when previous
+          (set! snapshot (cons
+                          (cons 'previous previous)
+                          snapshot)))
     (let-values (((snapshot-key snapshot-reused?)
                   (store-sexpr! archive snapshot 'snapshot keys)))
@@ -1101 +1108 @@
       (archive-set-tag! archive tag snapshot-key) ; Therefore, we can be confident in saving it in a tag.
       (archive-unlock-tag! archive tag)
+      (when snapshot-reused? ; Rare, but possible; fork a tag then snapshot the same FS state to both at the same second.
+            (archive-link! archive snapshot-key))
       snapshot-key)))