|
|
|
// Copyright (c) 2011-present, Facebook, Inc. All rights reserved.
|
|
|
|
// This source code is licensed under both the GPLv2 (found in the
|
|
|
|
// COPYING file in the root directory) and Apache 2.0 License
|
|
|
|
// (found in the LICENSE.Apache file in the root directory).
|
|
|
|
//
|
|
|
|
#include "file/file_util.h"
|
|
|
|
|
|
|
|
#include <string>
|
|
|
|
#include <algorithm>
|
|
|
|
|
|
|
|
#include "file/random_access_file_reader.h"
|
|
|
|
#include "file/sequence_file_reader.h"
|
|
|
|
#include "file/sst_file_manager_impl.h"
|
|
|
|
#include "file/writable_file_writer.h"
|
|
|
|
#include "rocksdb/env.h"
|
|
|
|
|
|
|
|
namespace ROCKSDB_NAMESPACE {
|
|
|
|
|
|
|
|
// Utility function to copy a file up to a specified length
|
|
|
|
IOStatus CopyFile(FileSystem* fs, const std::string& source,
|
|
|
|
std::unique_ptr<WritableFileWriter>& dest_writer,
|
|
|
|
uint64_t size, bool use_fsync,
|
|
|
|
const std::shared_ptr<IOTracer>& io_tracer,
|
|
|
|
const Temperature temperature) {
|
|
|
|
FileOptions soptions;
|
|
|
|
IOStatus io_s;
|
|
|
|
std::unique_ptr<SequentialFileReader> src_reader;
|
Move rate_limiter, write buffering, most perf context instrumentation and most random kill out of Env
Summary: We want to keep Env a think layer for better portability. Less platform dependent codes should be moved out of Env. In this patch, I create a wrapper of file readers and writers, and put rate limiting, write buffering, as well as most perf context instrumentation and random kill out of Env. It will make it easier to maintain multiple Env in the future.
Test Plan: Run all existing unit tests.
Reviewers: anthony, kradhakrishnan, IslamAbdelRahman, yhchiang, igor
Reviewed By: igor
Subscribers: leveldb, dhruba
Differential Revision: https://reviews.facebook.net/D42321
9 years ago
|
|
|
|
|
|
|
{
|
|
|
|
soptions.temperature = temperature;
|
Introduce a new storage specific Env API (#5761)
Summary:
The current Env API encompasses both storage/file operations, as well as OS related operations. Most of the APIs return a Status, which does not have enough metadata about an error, such as whether its retry-able or not, scope (i.e fault domain) of the error etc., that may be required in order to properly handle a storage error. The file APIs also do not provide enough control over the IO SLA, such as timeout, prioritization, hinting about placement and redundancy etc.
This PR separates out the file/storage APIs from Env into a new FileSystem class. The APIs are updated to return an IOStatus with metadata about the error, as well as to take an IOOptions structure as input in order to allow more control over the IO.
The user can set both ```options.env``` and ```options.file_system``` to specify that RocksDB should use the former for OS related operations and the latter for storage operations. Internally, a ```CompositeEnvWrapper``` has been introduced that inherits from ```Env``` and redirects individual methods to either an ```Env``` implementation or the ```FileSystem``` as appropriate. When options are sanitized during ```DB::Open```, ```options.env``` is replaced with a newly allocated ```CompositeEnvWrapper``` instance if both env and file_system have been specified. This way, the rest of the RocksDB code can continue to function as before.
This PR also ports PosixEnv to the new API by splitting it into two - PosixEnv and PosixFileSystem. PosixEnv is defined as a sub-class of CompositeEnvWrapper, and threading/time functions are overridden with Posix specific implementations in order to avoid an extra level of indirection.
The ```CompositeEnvWrapper``` translates ```IOStatus``` return code to ```Status```, and sets the severity to ```kSoftError``` if the io_status is retryable. The error handling code in RocksDB can then recover the DB automatically.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/5761
Differential Revision: D18868376
Pulled By: anand1976
fbshipit-source-id: 39efe18a162ea746fabac6360ff529baba48486f
5 years ago
|
|
|
std::unique_ptr<FSSequentialFile> srcfile;
|
|
|
|
io_s = fs->NewSequentialFile(source, soptions, &srcfile, nullptr);
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (size == 0) {
|
|
|
|
// default argument means copy everything
|
|
|
|
io_s = fs->GetFileSize(source, IOOptions(), &size, nullptr);
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
src_reader.reset(
|
|
|
|
new SequentialFileReader(std::move(srcfile), source, io_tracer));
|
Move rate_limiter, write buffering, most perf context instrumentation and most random kill out of Env
Summary: We want to keep Env a think layer for better portability. Less platform dependent codes should be moved out of Env. In this patch, I create a wrapper of file readers and writers, and put rate limiting, write buffering, as well as most perf context instrumentation and random kill out of Env. It will make it easier to maintain multiple Env in the future.
Test Plan: Run all existing unit tests.
Reviewers: anthony, kradhakrishnan, IslamAbdelRahman, yhchiang, igor
Reviewed By: igor
Subscribers: leveldb, dhruba
Differential Revision: https://reviews.facebook.net/D42321
9 years ago
|
|
|
}
|
|
|
|
|
|
|
|
char buffer[4096];
|
|
|
|
Slice slice;
|
|
|
|
while (size > 0) {
|
|
|
|
size_t bytes_to_read = std::min(sizeof(buffer), static_cast<size_t>(size));
|
|
|
|
io_s = status_to_io_status(src_reader->Read(bytes_to_read, &slice, buffer));
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
if (slice.size() == 0) {
|
|
|
|
return IOStatus::Corruption("file too small");
|
|
|
|
}
|
|
|
|
io_s = dest_writer->Append(slice);
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
size -= slice.size();
|
|
|
|
}
|
|
|
|
return dest_writer->Sync(use_fsync);
|
|
|
|
}
|
|
|
|
|
|
|
|
IOStatus CopyFile(FileSystem* fs, const std::string& source,
|
|
|
|
const std::string& destination, uint64_t size, bool use_fsync,
|
|
|
|
const std::shared_ptr<IOTracer>& io_tracer,
|
|
|
|
const Temperature temperature) {
|
|
|
|
FileOptions options;
|
|
|
|
IOStatus io_s;
|
|
|
|
std::unique_ptr<WritableFileWriter> dest_writer;
|
|
|
|
|
|
|
|
{
|
|
|
|
options.temperature = temperature;
|
|
|
|
std::unique_ptr<FSWritableFile> destfile;
|
|
|
|
io_s = fs->NewWritableFile(destination, options, &destfile, nullptr);
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
|
|
|
|
dest_writer.reset(
|
|
|
|
new WritableFileWriter(std::move(destfile), destination, options));
|
|
|
|
}
|
|
|
|
|
|
|
|
return CopyFile(fs, source, dest_writer, size, use_fsync, io_tracer,
|
|
|
|
temperature);
|
|
|
|
}
|
|
|
|
|
|
|
|
// Utility function to create a file with the provided contents
|
|
|
|
IOStatus CreateFile(FileSystem* fs, const std::string& destination,
|
|
|
|
const std::string& contents, bool use_fsync) {
|
|
|
|
const EnvOptions soptions;
|
|
|
|
IOStatus io_s;
|
|
|
|
std::unique_ptr<WritableFileWriter> dest_writer;
|
|
|
|
|
Introduce a new storage specific Env API (#5761)
Summary:
The current Env API encompasses both storage/file operations, as well as OS related operations. Most of the APIs return a Status, which does not have enough metadata about an error, such as whether its retry-able or not, scope (i.e fault domain) of the error etc., that may be required in order to properly handle a storage error. The file APIs also do not provide enough control over the IO SLA, such as timeout, prioritization, hinting about placement and redundancy etc.
This PR separates out the file/storage APIs from Env into a new FileSystem class. The APIs are updated to return an IOStatus with metadata about the error, as well as to take an IOOptions structure as input in order to allow more control over the IO.
The user can set both ```options.env``` and ```options.file_system``` to specify that RocksDB should use the former for OS related operations and the latter for storage operations. Internally, a ```CompositeEnvWrapper``` has been introduced that inherits from ```Env``` and redirects individual methods to either an ```Env``` implementation or the ```FileSystem``` as appropriate. When options are sanitized during ```DB::Open```, ```options.env``` is replaced with a newly allocated ```CompositeEnvWrapper``` instance if both env and file_system have been specified. This way, the rest of the RocksDB code can continue to function as before.
This PR also ports PosixEnv to the new API by splitting it into two - PosixEnv and PosixFileSystem. PosixEnv is defined as a sub-class of CompositeEnvWrapper, and threading/time functions are overridden with Posix specific implementations in order to avoid an extra level of indirection.
The ```CompositeEnvWrapper``` translates ```IOStatus``` return code to ```Status```, and sets the severity to ```kSoftError``` if the io_status is retryable. The error handling code in RocksDB can then recover the DB automatically.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/5761
Differential Revision: D18868376
Pulled By: anand1976
fbshipit-source-id: 39efe18a162ea746fabac6360ff529baba48486f
5 years ago
|
|
|
std::unique_ptr<FSWritableFile> destfile;
|
|
|
|
io_s = fs->NewWritableFile(destination, soptions, &destfile, nullptr);
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
dest_writer.reset(
|
|
|
|
new WritableFileWriter(std::move(destfile), destination, soptions));
|
|
|
|
io_s = dest_writer->Append(Slice(contents));
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
return dest_writer->Sync(use_fsync);
|
|
|
|
}
|
|
|
|
|
|
|
|
Status DeleteDBFile(const ImmutableDBOptions* db_options,
|
|
|
|
const std::string& fname, const std::string& dir_to_sync,
|
|
|
|
const bool force_bg, const bool force_fg) {
|
|
|
|
#ifndef ROCKSDB_LITE
|
|
|
|
SstFileManagerImpl* sfm =
|
|
|
|
static_cast<SstFileManagerImpl*>(db_options->sst_file_manager.get());
|
|
|
|
if (sfm && !force_fg) {
|
|
|
|
return sfm->ScheduleFileDeletion(fname, dir_to_sync, force_bg);
|
|
|
|
} else {
|
|
|
|
return db_options->env->DeleteFile(fname);
|
|
|
|
}
|
|
|
|
#else
|
|
|
|
(void)dir_to_sync;
|
|
|
|
(void)force_bg;
|
|
|
|
(void)force_fg;
|
|
|
|
// SstFileManager is not supported in ROCKSDB_LITE
|
|
|
|
// Delete file immediately
|
|
|
|
return db_options->env->DeleteFile(fname);
|
|
|
|
#endif
|
|
|
|
}
|
|
|
|
|
|
|
|
// requested_checksum_func_name brings the function name of the checksum
|
|
|
|
// generator in checksum_factory. Empty string is permitted, in which case the
|
|
|
|
// name of the generator created by the factory is unchecked. When
|
|
|
|
// `requested_checksum_func_name` is non-empty, however, the created generator's
|
|
|
|
// name must match it, otherwise an `InvalidArgument` error is returned.
|
|
|
|
IOStatus GenerateOneFileChecksum(
|
|
|
|
FileSystem* fs, const std::string& file_path,
|
|
|
|
FileChecksumGenFactory* checksum_factory,
|
|
|
|
const std::string& requested_checksum_func_name, std::string* file_checksum,
|
|
|
|
std::string* file_checksum_func_name,
|
|
|
|
size_t verify_checksums_readahead_size, bool allow_mmap_reads,
|
|
|
|
std::shared_ptr<IOTracer>& io_tracer, RateLimiter* rate_limiter,
|
|
|
|
Env::IOPriority rate_limiter_priority) {
|
Ingest SST files with checksum information (#6891)
Summary:
Application can ingest SST files with file checksum information, such that during ingestion, DB is able to check data integrity and identify of the SST file. The PR introduces generate_and_verify_file_checksum to IngestExternalFileOption to control if the ingested checksum information should be verified with the generated checksum.
1. If generate_and_verify_file_checksum options is *FALSE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enables the SST file checksum and the checksum function name matches the checksum function name in DB, we trust the ingested checksum, store it in Manifest. If the checksum function name does not match, we treat that as an error and fail the IngestExternalFile() call.
2. If generate_and_verify_file_checksum options is *TRUE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enable the SST file checksum, we will use the checksum generator from DB to calculate the checksum for each ingested SST files after they are copied or moved. Then, compare the checksum results with the ingested checksum information: _A)_ if the checksum function name does not match, _verification always report true_ and we store the DB generated checksum information in Manifest. _B)_ if the checksum function name mach, and checksum match, ingestion continues and stores the checksum information in the Manifest. Otherwise, terminate file ingestion and report file corruption.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/6891
Test Plan: added unit test, pass make asan_check
Reviewed By: pdillinger
Differential Revision: D21935988
Pulled By: zhichao-cao
fbshipit-source-id: 7b55f486632db467e76d72602218d0658aa7f6ed
4 years ago
|
|
|
if (checksum_factory == nullptr) {
|
|
|
|
return IOStatus::InvalidArgument("Checksum factory is invalid");
|
|
|
|
}
|
|
|
|
assert(file_checksum != nullptr);
|
|
|
|
assert(file_checksum_func_name != nullptr);
|
|
|
|
|
|
|
|
FileChecksumGenContext gen_context;
|
|
|
|
gen_context.requested_checksum_func_name = requested_checksum_func_name;
|
|
|
|
gen_context.file_name = file_path;
|
Ingest SST files with checksum information (#6891)
Summary:
Application can ingest SST files with file checksum information, such that during ingestion, DB is able to check data integrity and identify of the SST file. The PR introduces generate_and_verify_file_checksum to IngestExternalFileOption to control if the ingested checksum information should be verified with the generated checksum.
1. If generate_and_verify_file_checksum options is *FALSE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enables the SST file checksum and the checksum function name matches the checksum function name in DB, we trust the ingested checksum, store it in Manifest. If the checksum function name does not match, we treat that as an error and fail the IngestExternalFile() call.
2. If generate_and_verify_file_checksum options is *TRUE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enable the SST file checksum, we will use the checksum generator from DB to calculate the checksum for each ingested SST files after they are copied or moved. Then, compare the checksum results with the ingested checksum information: _A)_ if the checksum function name does not match, _verification always report true_ and we store the DB generated checksum information in Manifest. _B)_ if the checksum function name mach, and checksum match, ingestion continues and stores the checksum information in the Manifest. Otherwise, terminate file ingestion and report file corruption.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/6891
Test Plan: added unit test, pass make asan_check
Reviewed By: pdillinger
Differential Revision: D21935988
Pulled By: zhichao-cao
fbshipit-source-id: 7b55f486632db467e76d72602218d0658aa7f6ed
4 years ago
|
|
|
std::unique_ptr<FileChecksumGenerator> checksum_generator =
|
|
|
|
checksum_factory->CreateFileChecksumGenerator(gen_context);
|
|
|
|
if (checksum_generator == nullptr) {
|
|
|
|
std::string msg =
|
|
|
|
"Cannot get the file checksum generator based on the requested "
|
|
|
|
"checksum function name: " +
|
|
|
|
requested_checksum_func_name +
|
|
|
|
" from checksum factory: " + checksum_factory->Name();
|
|
|
|
return IOStatus::InvalidArgument(msg);
|
|
|
|
} else {
|
|
|
|
// For backward compatibility and use in file ingestion clients where there
|
|
|
|
// is no stored checksum function name, `requested_checksum_func_name` can
|
|
|
|
// be empty. If we give the requested checksum function name, we expect it
|
|
|
|
// is the same name of the checksum generator.
|
|
|
|
if (!requested_checksum_func_name.empty() &&
|
|
|
|
checksum_generator->Name() != requested_checksum_func_name) {
|
|
|
|
std::string msg = "Expected file checksum generator named '" +
|
|
|
|
requested_checksum_func_name +
|
|
|
|
"', while the factory created one "
|
|
|
|
"named '" +
|
|
|
|
checksum_generator->Name() + "'";
|
|
|
|
return IOStatus::InvalidArgument(msg);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
Ingest SST files with checksum information (#6891)
Summary:
Application can ingest SST files with file checksum information, such that during ingestion, DB is able to check data integrity and identify of the SST file. The PR introduces generate_and_verify_file_checksum to IngestExternalFileOption to control if the ingested checksum information should be verified with the generated checksum.
1. If generate_and_verify_file_checksum options is *FALSE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enables the SST file checksum and the checksum function name matches the checksum function name in DB, we trust the ingested checksum, store it in Manifest. If the checksum function name does not match, we treat that as an error and fail the IngestExternalFile() call.
2. If generate_and_verify_file_checksum options is *TRUE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enable the SST file checksum, we will use the checksum generator from DB to calculate the checksum for each ingested SST files after they are copied or moved. Then, compare the checksum results with the ingested checksum information: _A)_ if the checksum function name does not match, _verification always report true_ and we store the DB generated checksum information in Manifest. _B)_ if the checksum function name mach, and checksum match, ingestion continues and stores the checksum information in the Manifest. Otherwise, terminate file ingestion and report file corruption.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/6891
Test Plan: added unit test, pass make asan_check
Reviewed By: pdillinger
Differential Revision: D21935988
Pulled By: zhichao-cao
fbshipit-source-id: 7b55f486632db467e76d72602218d0658aa7f6ed
4 years ago
|
|
|
uint64_t size;
|
|
|
|
IOStatus io_s;
|
|
|
|
std::unique_ptr<RandomAccessFileReader> reader;
|
|
|
|
{
|
|
|
|
std::unique_ptr<FSRandomAccessFile> r_file;
|
|
|
|
io_s = fs->NewRandomAccessFile(file_path, FileOptions(), &r_file, nullptr);
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
io_s = fs->GetFileSize(file_path, IOOptions(), &size, nullptr);
|
|
|
|
if (!io_s.ok()) {
|
|
|
|
return io_s;
|
|
|
|
}
|
|
|
|
reader.reset(new RandomAccessFileReader(std::move(r_file), file_path,
|
|
|
|
nullptr /*Env*/, io_tracer, nullptr,
|
|
|
|
0, nullptr, rate_limiter));
|
Ingest SST files with checksum information (#6891)
Summary:
Application can ingest SST files with file checksum information, such that during ingestion, DB is able to check data integrity and identify of the SST file. The PR introduces generate_and_verify_file_checksum to IngestExternalFileOption to control if the ingested checksum information should be verified with the generated checksum.
1. If generate_and_verify_file_checksum options is *FALSE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enables the SST file checksum and the checksum function name matches the checksum function name in DB, we trust the ingested checksum, store it in Manifest. If the checksum function name does not match, we treat that as an error and fail the IngestExternalFile() call.
2. If generate_and_verify_file_checksum options is *TRUE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enable the SST file checksum, we will use the checksum generator from DB to calculate the checksum for each ingested SST files after they are copied or moved. Then, compare the checksum results with the ingested checksum information: _A)_ if the checksum function name does not match, _verification always report true_ and we store the DB generated checksum information in Manifest. _B)_ if the checksum function name mach, and checksum match, ingestion continues and stores the checksum information in the Manifest. Otherwise, terminate file ingestion and report file corruption.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/6891
Test Plan: added unit test, pass make asan_check
Reviewed By: pdillinger
Differential Revision: D21935988
Pulled By: zhichao-cao
fbshipit-source-id: 7b55f486632db467e76d72602218d0658aa7f6ed
4 years ago
|
|
|
}
|
|
|
|
|
|
|
|
// Found that 256 KB readahead size provides the best performance, based on
|
|
|
|
// experiments, for auto readahead. Experiment data is in PR #3282.
|
|
|
|
size_t default_max_read_ahead_size = 256 * 1024;
|
|
|
|
size_t readahead_size = (verify_checksums_readahead_size != 0)
|
|
|
|
? verify_checksums_readahead_size
|
|
|
|
: default_max_read_ahead_size;
|
|
|
|
|
|
|
|
FilePrefetchBuffer prefetch_buffer(readahead_size /* readahead_size */,
|
|
|
|
readahead_size /* max_readahead_size */,
|
|
|
|
!allow_mmap_reads /* enable */);
|
Ingest SST files with checksum information (#6891)
Summary:
Application can ingest SST files with file checksum information, such that during ingestion, DB is able to check data integrity and identify of the SST file. The PR introduces generate_and_verify_file_checksum to IngestExternalFileOption to control if the ingested checksum information should be verified with the generated checksum.
1. If generate_and_verify_file_checksum options is *FALSE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enables the SST file checksum and the checksum function name matches the checksum function name in DB, we trust the ingested checksum, store it in Manifest. If the checksum function name does not match, we treat that as an error and fail the IngestExternalFile() call.
2. If generate_and_verify_file_checksum options is *TRUE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enable the SST file checksum, we will use the checksum generator from DB to calculate the checksum for each ingested SST files after they are copied or moved. Then, compare the checksum results with the ingested checksum information: _A)_ if the checksum function name does not match, _verification always report true_ and we store the DB generated checksum information in Manifest. _B)_ if the checksum function name mach, and checksum match, ingestion continues and stores the checksum information in the Manifest. Otherwise, terminate file ingestion and report file corruption.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/6891
Test Plan: added unit test, pass make asan_check
Reviewed By: pdillinger
Differential Revision: D21935988
Pulled By: zhichao-cao
fbshipit-source-id: 7b55f486632db467e76d72602218d0658aa7f6ed
4 years ago
|
|
|
|
|
|
|
Slice slice;
|
|
|
|
uint64_t offset = 0;
|
|
|
|
IOOptions opts;
|
Ingest SST files with checksum information (#6891)
Summary:
Application can ingest SST files with file checksum information, such that during ingestion, DB is able to check data integrity and identify of the SST file. The PR introduces generate_and_verify_file_checksum to IngestExternalFileOption to control if the ingested checksum information should be verified with the generated checksum.
1. If generate_and_verify_file_checksum options is *FALSE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enables the SST file checksum and the checksum function name matches the checksum function name in DB, we trust the ingested checksum, store it in Manifest. If the checksum function name does not match, we treat that as an error and fail the IngestExternalFile() call.
2. If generate_and_verify_file_checksum options is *TRUE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enable the SST file checksum, we will use the checksum generator from DB to calculate the checksum for each ingested SST files after they are copied or moved. Then, compare the checksum results with the ingested checksum information: _A)_ if the checksum function name does not match, _verification always report true_ and we store the DB generated checksum information in Manifest. _B)_ if the checksum function name mach, and checksum match, ingestion continues and stores the checksum information in the Manifest. Otherwise, terminate file ingestion and report file corruption.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/6891
Test Plan: added unit test, pass make asan_check
Reviewed By: pdillinger
Differential Revision: D21935988
Pulled By: zhichao-cao
fbshipit-source-id: 7b55f486632db467e76d72602218d0658aa7f6ed
4 years ago
|
|
|
while (size > 0) {
|
|
|
|
size_t bytes_to_read =
|
|
|
|
static_cast<size_t>(std::min(uint64_t{readahead_size}, size));
|
|
|
|
if (!prefetch_buffer.TryReadFromCache(
|
|
|
|
opts, reader.get(), offset, bytes_to_read, &slice,
|
|
|
|
nullptr /* status */, rate_limiter_priority,
|
|
|
|
false /* for_compaction */)) {
|
Ingest SST files with checksum information (#6891)
Summary:
Application can ingest SST files with file checksum information, such that during ingestion, DB is able to check data integrity and identify of the SST file. The PR introduces generate_and_verify_file_checksum to IngestExternalFileOption to control if the ingested checksum information should be verified with the generated checksum.
1. If generate_and_verify_file_checksum options is *FALSE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enables the SST file checksum and the checksum function name matches the checksum function name in DB, we trust the ingested checksum, store it in Manifest. If the checksum function name does not match, we treat that as an error and fail the IngestExternalFile() call.
2. If generate_and_verify_file_checksum options is *TRUE*: *1)* if DB does not enable SST file checksum, the checksum information ingested will be ignored; *2)* if DB enable the SST file checksum, we will use the checksum generator from DB to calculate the checksum for each ingested SST files after they are copied or moved. Then, compare the checksum results with the ingested checksum information: _A)_ if the checksum function name does not match, _verification always report true_ and we store the DB generated checksum information in Manifest. _B)_ if the checksum function name mach, and checksum match, ingestion continues and stores the checksum information in the Manifest. Otherwise, terminate file ingestion and report file corruption.
Pull Request resolved: https://github.com/facebook/rocksdb/pull/6891
Test Plan: added unit test, pass make asan_check
Reviewed By: pdillinger
Differential Revision: D21935988
Pulled By: zhichao-cao
fbshipit-source-id: 7b55f486632db467e76d72602218d0658aa7f6ed
4 years ago
|
|
|
return IOStatus::Corruption("file read failed");
|
|
|
|
}
|
|
|
|
if (slice.size() == 0) {
|
|
|
|
return IOStatus::Corruption("file too small");
|
|
|
|
}
|
|
|
|
checksum_generator->Update(slice.data(), slice.size());
|
|
|
|
size -= slice.size();
|
|
|
|
offset += slice.size();
|
|
|
|
}
|
|
|
|
checksum_generator->Finalize();
|
|
|
|
*file_checksum = checksum_generator->GetChecksum();
|
|
|
|
*file_checksum_func_name = checksum_generator->Name();
|
|
|
|
return IOStatus::OK();
|
|
|
|
}
|
|
|
|
|
|
|
|
Status DestroyDir(Env* env, const std::string& dir) {
|
|
|
|
Status s;
|
|
|
|
if (env->FileExists(dir).IsNotFound()) {
|
|
|
|
return s;
|
|
|
|
}
|
|
|
|
std::vector<std::string> files_in_dir;
|
|
|
|
s = env->GetChildren(dir, &files_in_dir);
|
|
|
|
if (s.ok()) {
|
|
|
|
for (auto& file_in_dir : files_in_dir) {
|
|
|
|
std::string path = dir + "/" + file_in_dir;
|
|
|
|
bool is_dir = false;
|
|
|
|
s = env->IsDirectory(path, &is_dir);
|
|
|
|
if (s.ok()) {
|
|
|
|
if (is_dir) {
|
|
|
|
s = DestroyDir(env, path);
|
|
|
|
} else {
|
|
|
|
s = env->DeleteFile(path);
|
|
|
|
}
|
Fix many tests to run with MEM_ENV and ENCRYPTED_ENV; Introduce a MemoryFileSystem class (#7566)
Summary:
This PR does a few things:
1. The MockFileSystem class was split out from the MockEnv. This change would theoretically allow a MockFileSystem to be used by other Environments as well (if we created a means of constructing one). The MockFileSystem implements a FileSystem in its entirety and does not rely on any Wrapper implementation.
2. Make the RocksDB test suite work when MOCK_ENV=1 and ENCRYPTED_ENV=1 are set. To accomplish this, a few things were needed:
- The tests that tried to use the "wrong" environment (Env::Default() instead of env_) were updated
- The MockFileSystem was changed to support the features it was missing or mishandled (such as recursively deleting files in a directory or supporting renaming of a directory).
3. Updated the test framework to have a ROCKSDB_GTEST_SKIP macro. This can be used to flag tests that are skipped. Currently, this defaults to doing nothing (marks the test as SUCCESS) but will mark the tests as SKIPPED when RocksDB is upgraded to a version of gtest that supports this (gtest-1.10).
I have run a full "make check" with MEM_ENV, ENCRYPTED_ENV, both, and neither under both MacOS and RedHat. A few tests were disabled/skipped for the MEM/ENCRYPTED cases. The error_handler_fs_test fails/hangs for MEM_ENV (presumably a timing problem) and I will introduce another PR/issue to track that problem. (I will also push a change to disable those tests soon). There is one more test in DBTest2 that also fails which I need to investigate or skip before this PR is merged.
Theoretically, this PR should also allow the test suite to run against an Env loaded from the registry, though I do not have one to try it with currently.
Finally, once this is accepted, it would be nice if there was a CircleCI job to run these tests on a checkin so this effort does not become stale. I do not know how to do that, so if someone could write that job, it would be appreciated :)
Pull Request resolved: https://github.com/facebook/rocksdb/pull/7566
Reviewed By: zhichao-cao
Differential Revision: D24408980
Pulled By: jay-zhuang
fbshipit-source-id: 911b1554a4d0da06fd51feca0c090a4abdcb4a5f
4 years ago
|
|
|
} else if (s.IsNotSupported()) {
|
|
|
|
s = Status::OK();
|
|
|
|
}
|
|
|
|
if (!s.ok()) {
|
|
|
|
// IsDirectory, etc. might not report NotFound
|
|
|
|
if (s.IsNotFound() || env->FileExists(path).IsNotFound()) {
|
|
|
|
// Allow files to be deleted externally
|
|
|
|
s = Status::OK();
|
|
|
|
} else {
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (s.ok()) {
|
|
|
|
s = env->DeleteDir(dir);
|
|
|
|
// DeleteDir might or might not report NotFound
|
|
|
|
if (!s.ok() && (s.IsNotFound() || env->FileExists(dir).IsNotFound())) {
|
|
|
|
// Allow to be deleted externally
|
|
|
|
s = Status::OK();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return s;
|
|
|
|
}
|
|
|
|
|
|
|
|
} // namespace ROCKSDB_NAMESPACE
|