werunplugged/unplugged-system
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
main
unplugged-system/external/crosvm/swap/src/file.rs

690 lines
24 KiB
Rust
Raw Permalink Blame History

// Copyright 2022 The ChromiumOS Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#![deny(missing_docs)]
use std::fs::File;
use std::ops::Range;
use std::os::unix::fs::FileExt;
use base::error;
use base::MemoryMapping;
use base::MemoryMappingBuilder;
use base::MemoryMappingUnix;
use base::MmapError;
use base::Protection;
use base::PunchHole;
use data_model::VolatileMemory;
use data_model::VolatileMemoryError;
use data_model::VolatileSlice;
use thiserror::Error as ThisError;
use crate::pagesize::bytes_to_pages;
use crate::pagesize::is_page_aligned;
use crate::pagesize::pages_to_bytes;
use crate::present_list::PresentList;
pub type Result<T> = std::result::Result<T, Error>;
#[derive(ThisError, Debug)]
pub enum Error {
#[error("failed to io: {0}")]
Io(#[from] std::io::Error),
#[error("failed to mmap operation ({0}): {1}")]
Mmap(&'static str, MmapError),
#[error("failed to volatile memory operation: {0}")]
VolatileMemory(#[from] VolatileMemoryError),
#[error("index is out of range")]
OutOfRange,
#[error("data size is invalid")]
InvalidSize,
}
/// [SwapFile] stores active pages in a memory region.
///
/// This shares the swap file with other regions and creates mmap corresponding range in the file.
///
/// TODO(kawasin): The file structure is straightforward and is not optimized yet.
/// Each page in the file corresponds to the page in the memory region.
#[derive(Debug)]
pub struct SwapFile<'a> {
file: &'a File,
offset: u64,
file_mmap: MemoryMapping,
// Tracks which pages are present, indexed by page index within the memory region.
present_list: PresentList,
// All the data pages before this index are mlock(2)ed.
cursor_mlock: usize,
}
impl<'a> SwapFile<'a> {
/// Creates an initialized [SwapFile] for a memory region.
///
/// The all pages are marked as empty at first time.
///
/// # Arguments
///
/// * `file` - The swap file.
/// * `offset_pages` - The starting offset in pages of the region in the swap file.
/// * `num_of_pages` - The number of pages in the region.
pub fn new(file: &'a File, offset_pages: usize, num_of_pages: usize) -> Result<Self> {
let offset = pages_to_bytes(offset_pages) as u64;
let file_mmap = MemoryMappingBuilder::new(pages_to_bytes(num_of_pages))
.from_file(file)
.offset(offset)
.protection(Protection::read())
.build()
.map_err(|e| Error::Mmap("create", e))?;
Ok(Self {
file,
offset,
file_mmap,
present_list: PresentList::new(num_of_pages),
cursor_mlock: 0,
})
}
pub(crate) fn base_offset(&self) -> u64 {
self.offset
}
/// Returns the total count of managed pages.
pub fn num_pages(&self) -> usize {
self.present_list.len()
}
/// Returns a content of the page corresponding to the index.
///
/// Returns [Option::None] if no content in the file.
///
/// Returns [Error::OutOfRange] if the `idx` is out of range.
///
/// # Arguments
///
/// * `idx` - the index of the page from the head of the pages.
pub fn page_content(&self, idx: usize) -> Result<Option<VolatileSlice>> {
match self.present_list.get(idx) {
Some(is_present) => {
if *is_present {
Ok(Some(self.get_slice(idx..idx + 1)?))
} else {
Ok(None)
}
}
None => Err(Error::OutOfRange),
}
}
/// Start readahead the swap file into the page cache from the head.
///
/// This also `mlock2(2)` the pages not to be dropped again after populated. This does not block
/// the caller thread by I/O wait because:
///
/// * `mlock2(2)` is executed with `MLOCK_ONFAULT`.
/// * `MADV_WILLNEED` is the same as `readahead(2)` which triggers the readahead background.
/// * However Linux has a bug that `readahead(2)` (and also `MADV_WILLNEED`) may block due to
/// reading the filesystem metadata.
///
/// This returns the number of consecutive pages which are newly mlock(2)ed. Returning `0` means
/// that there is no more data to be mlock(2)ed in this file.
///
/// The caller must track the number of pages mlock(2)ed not to mlock(2) more pages than
/// `RLIMIT_MEMLOCK` if it does not have `CAP_IPC_LOCK`.
///
/// # Arguments
///
/// * `max_pages` - The maximum number of pages to be mlock(2)ed at once.
pub fn lock_and_async_prefetch(&mut self, max_pages: usize) -> Result<usize> {
match self
.present_list
.find_data_range(self.cursor_mlock, max_pages)
{
Some(idx_range) => {
let pages = idx_range.end - idx_range.start;
let mem_offset = pages_to_bytes(idx_range.start);
let size_in_bytes = pages_to_bytes(pages);
self.file_mmap
.lock_on_fault(mem_offset, size_in_bytes)
.map_err(|e| Error::Mmap("mlock", e))?;
self.file_mmap
.async_prefetch(mem_offset, size_in_bytes)
.map_err(|e| Error::Mmap("madvise willneed", e))?;
self.cursor_mlock = idx_range.end;
Ok(pages)
}
None => {
self.cursor_mlock = self.present_list.len();
Ok(0)
}
}
}
/// Mark the pages in the file corresponding to the index as cleared.
///
/// The contents on the swap file are preserved and will be reused by
/// `SwapFile::mark_as_present()` and reduce disk I/O.
///
/// If the pages are mlock(2)ed, unlock them before MADV_DONTNEED. This returns the number of
/// pages munlock(2)ed.
///
/// # Arguments
///
/// * `idx_range` - The indices of consecutive pages to be cleared. All the pages must be
/// present.
pub fn clear_range(&mut self, idx_range: Range<usize>) -> Result<usize> {
if self.present_list.clear_range(idx_range.clone()) {
let offset = pages_to_bytes(idx_range.start);
let munlocked_size = if idx_range.start < self.cursor_mlock {
// idx_range is validated at clear_range() and self.cursor_mlock is within the mmap.
let pages = idx_range.end.min(self.cursor_mlock) - idx_range.start;
// munlock(2) first because MADV_DONTNEED fails for mlock(2)ed pages.
self.file_mmap
.unlock(offset, pages_to_bytes(pages))
.map_err(|e| Error::Mmap("munlock", e))?;
pages
} else {
0
};
// offset and size are validated at clear_range().
let size = pages_to_bytes(idx_range.end - idx_range.start);
// The page cache is cleared without writing pages back to file even if they are dirty.
// The disk contents which may not be the latest are kept for later trim optimization.
self.file_mmap
.drop_page_cache(offset, size)
.map_err(|e| Error::Mmap("madvise dontneed", e))?;
Ok(munlocked_size)
} else {
Err(Error::OutOfRange)
}
}
/// Erase the pages corresponding to the given range from the file and underlying disk.
///
/// If the pages are mlock(2)ed, unlock them before punching a hole. This returns the number of
/// pages munlock(2)ed.
///
/// # Arguments
///
/// * `idx_range` - The indices of consecutive pages to be erased. This may contains non-present
/// pages.
pub fn erase_from_disk(&mut self, idx_range: Range<usize>) -> Result<usize> {
let (mlock_range, mlocked_pages) = if idx_range.start < self.cursor_mlock {
let mlock_range = idx_range.start..idx_range.end.min(self.cursor_mlock);
let mlocked_pages = self
.present_list
.present_pages(mlock_range.clone())
.ok_or(Error::OutOfRange)?;
(Some(mlock_range), mlocked_pages)
} else {
(None, 0)
};
if self.present_list.clear_range(idx_range.clone()) {
if let Some(mlock_range) = mlock_range {
// mlock_range is validated at present_pages().
// mlock_range may contains non-locked pages. munlock(2) succeeds even on that case.
self.file_mmap
.unlock(
pages_to_bytes(mlock_range.start),
pages_to_bytes(mlock_range.end - mlock_range.start),
)
.map_err(|e| Error::Mmap("munlock", e))?;
}
let file_offset = self.offset + pages_to_bytes(idx_range.start) as u64;
self.file.punch_hole(
file_offset,
pages_to_bytes(idx_range.end - idx_range.start) as u64,
)?;
Ok(mlocked_pages)
} else {
Err(Error::OutOfRange)
}
}
/// munlock(2) pages if there are mlock(2)ed pages in the mmap and reset the internal cursor for
/// mlock(2) tracking.
pub fn clear_mlock(&mut self) -> Result<()> {
if self.cursor_mlock > 0 {
// cursor_mlock is not `0` only when disabling vmm-swap is aborted by overriding
// vmm-swap enable. munlock(2)ing the whole possible pages is not a problem because this
// is not a hot path.
self.file_mmap
.unlock(0, pages_to_bytes(self.cursor_mlock))
.map_err(|e| Error::Mmap("munlock", e))?;
}
self.cursor_mlock = 0;
Ok(())
}
/// Mark the page as present on the file.
///
/// The content on the swap file on previous `SwapFile::write_to_file()` is reused.
///
/// # Arguments
///
/// * `idx` - the index of the page from the head of the pages.
pub fn mark_as_present(&mut self, idx: usize) {
self.present_list.mark_as_present(idx..idx + 1);
}
/// Writes the contents to the swap file.
///
/// # Arguments
///
/// * `idx` - the index of the head page of the content from the head of the pages.
/// * `mem_slice` - the page content(s). this can be more than 1 page. the size must align with
/// the pagesize.
pub fn write_to_file(&mut self, idx: usize, mem_slice: &[u8]) -> Result<()> {
// validate
if !is_page_aligned(mem_slice.len()) {
// mem_slice size must align with page size.
return Err(Error::InvalidSize);
}
let num_pages = bytes_to_pages(mem_slice.len());
if idx + num_pages > self.present_list.len() {
return Err(Error::OutOfRange);
}
// Write with pwrite(2) syscall instead of copying contents to mmap because write syscall is
// more explicit for kernel how many pages are going to be written while mmap only knows
// each page to be written on a page fault basis.
self.file
.write_all_at(mem_slice, self.offset + pages_to_bytes(idx) as u64)?;
if !self.present_list.mark_as_present(idx..idx + num_pages) {
// the range is already validated before writing.
unreachable!("idx range is out of range");
}
Ok(())
}
/// Returns the first range of indices of consecutive pages present in the swap file.
///
/// # Arguments
///
/// * `max_pages` - the max size of the returned chunk even if the chunk of consecutive present
/// pages is longer than this.
pub fn first_data_range(&mut self, max_pages: usize) -> Option<Range<usize>> {
self.present_list.first_data_range(max_pages)
}
/// Returns the [VolatileSlice] corresponding to the indices regardless of whether the pages are
/// present or not.
///
/// If the range is out of the region, this returns [Error::OutOfRange].
///
/// # Arguments
///
/// * `idx_range` - the indices of the pages.
pub fn get_slice(&self, idx_range: Range<usize>) -> Result<VolatileSlice> {
match self.file_mmap.get_slice(
pages_to_bytes(idx_range.start),
pages_to_bytes(idx_range.end - idx_range.start),
) {
Ok(slice) => Ok(slice),
Err(VolatileMemoryError::OutOfBounds { .. }) => Err(Error::OutOfRange),
Err(e) => Err(e.into()),
}
}
/// Returns the count of present pages in the swap file.
pub fn present_pages(&self) -> usize {
self.present_list.all_present_pages()
}
}
#[cfg(test)]
mod tests {
use std::slice;
use base::pagesize;
use super::*;
#[test]
fn new_success() {
let file = tempfile::tempfile().unwrap();
assert_eq!(SwapFile::new(&file, 0, 200).is_ok(), true);
}
#[test]
fn len() {
let file = tempfile::tempfile().unwrap();
let swap_file = SwapFile::new(&file, 0, 200).unwrap();
assert_eq!(swap_file.num_pages(), 200);
}
#[test]
fn page_content_default_is_none() {
let file = tempfile::tempfile().unwrap();
let swap_file = SwapFile::new(&file, 0, 200).unwrap();
assert_eq!(swap_file.page_content(0).unwrap().is_none(), true);
}
#[test]
fn page_content_returns_content() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
let data = &vec![1; pagesize()];
swap_file.write_to_file(0, data).unwrap();
let page = swap_file.page_content(0).unwrap().unwrap();
let result = unsafe { slice::from_raw_parts(page.as_ptr() as *const u8, pagesize()) };
assert_eq!(result, data);
}
#[test]
fn page_content_out_of_range() {
let file = tempfile::tempfile().unwrap();
let swap_file = SwapFile::new(&file, 0, 200).unwrap();
assert_eq!(swap_file.page_content(199).is_ok(), true);
match swap_file.page_content(200) {
Err(Error::OutOfRange) => {}
_ => unreachable!("not out of range"),
}
}
fn assert_page_content(swap_file: &SwapFile, idx: usize, data: &[u8]) {
let page = swap_file.page_content(idx).unwrap().unwrap();
let result = unsafe { slice::from_raw_parts(page.as_ptr() as *const u8, pagesize()) };
assert_eq!(result, data);
}
#[test]
fn write_to_file_swap_file() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
let buf1 = &vec![1; pagesize()];
let buf2 = &vec![2; 2 * pagesize()];
swap_file.write_to_file(0, buf1).unwrap();
swap_file.write_to_file(2, buf2).unwrap();
// page_content()
assert_page_content(&swap_file, 0, buf1);
assert_page_content(&swap_file, 2, &buf2[0..pagesize()]);
assert_page_content(&swap_file, 3, &buf2[pagesize()..2 * pagesize()]);
}
#[test]
fn write_to_file_no_conflict() {
let file = tempfile::tempfile().unwrap();
let mut swap_file1 = SwapFile::new(&file, 0, 2).unwrap();
let mut swap_file2 = SwapFile::new(&file, 2, 2).unwrap();
let buf1 = &vec![1; pagesize()];
let buf2 = &vec![2; pagesize()];
let buf3 = &vec![3; pagesize()];
let buf4 = &vec![4; pagesize()];
swap_file1.write_to_file(0, buf1).unwrap();
swap_file1.write_to_file(1, buf2).unwrap();
swap_file2.write_to_file(0, buf3).unwrap();
swap_file2.write_to_file(1, buf4).unwrap();
assert_page_content(&swap_file1, 0, buf1);
assert_page_content(&swap_file1, 1, buf2);
assert_page_content(&swap_file2, 0, buf3);
assert_page_content(&swap_file2, 1, buf4);
}
#[test]
fn write_to_file_invalid_size() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
let buf = &vec![1; pagesize() + 1];
match swap_file.write_to_file(0, buf) {
Err(Error::InvalidSize) => {}
_ => unreachable!("not invalid size"),
};
}
#[test]
fn write_to_file_out_of_range() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
let buf1 = &vec![1; pagesize()];
let buf2 = &vec![2; 2 * pagesize()];
match swap_file.write_to_file(200, buf1) {
Err(Error::OutOfRange) => {}
_ => unreachable!("not out of range"),
};
match swap_file.write_to_file(199, buf2) {
Err(Error::OutOfRange) => {}
_ => unreachable!("not out of range"),
};
}
#[test]
#[cfg(target_arch = "x86_64")] // TODO(b/272612118): unit test infra (qemu-user) support
fn lock_and_start_populate() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
swap_file.write_to_file(1, &vec![1; pagesize()]).unwrap();
swap_file
.write_to_file(3, &vec![1; 5 * pagesize()])
.unwrap();
swap_file.write_to_file(10, &vec![1; pagesize()]).unwrap();
let mut locked_pages = 0;
loop {
let pages = swap_file.lock_and_async_prefetch(2).unwrap();
if pages == 0 {
break;
}
assert!(pages <= 2);
locked_pages += pages;
}
assert_eq!(locked_pages, 7);
}
#[test]
fn clear_range() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
let data = &vec![1; pagesize()];
swap_file.write_to_file(0, data).unwrap();
swap_file.clear_range(0..1).unwrap();
assert_eq!(swap_file.page_content(0).unwrap().is_none(), true);
}
#[test]
#[cfg(target_arch = "x86_64")] // TODO(b/272612118): unit test infra (qemu-user) support
fn clear_range_unlocked_pages() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
swap_file
.write_to_file(1, &vec![1; 10 * pagesize()])
.unwrap();
// 1..6 is locked, 6..11 is not locked.
assert_eq!(swap_file.lock_and_async_prefetch(5).unwrap(), 5);
// locked pages only
assert_eq!(swap_file.clear_range(1..4).unwrap(), 3);
// locked pages + non-locked pages
assert_eq!(swap_file.clear_range(4..7).unwrap(), 2);
// non-locked pages
assert_eq!(swap_file.clear_range(10..11).unwrap(), 0);
}
#[test]
fn clear_range_keep_on_disk() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
let data = &vec![1; pagesize()];
swap_file.write_to_file(0, data).unwrap();
swap_file.clear_range(0..1).unwrap();
let slice = swap_file.get_slice(0..1).unwrap();
let slice = unsafe { slice::from_raw_parts(slice.as_ptr(), slice.size()) };
assert_eq!(slice, data);
}
#[test]
fn clear_range_out_of_range() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
assert_eq!(swap_file.clear_range(199..200).is_ok(), true);
match swap_file.clear_range(200..201) {
Err(Error::OutOfRange) => {}
_ => unreachable!("not out of range"),
};
match swap_file.clear_range(199..201) {
Err(Error::OutOfRange) => {}
_ => unreachable!("not out of range"),
};
}
#[test]
fn erase_from_disk() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
let data = &vec![1; pagesize()];
swap_file.write_to_file(0, data).unwrap();
swap_file.erase_from_disk(0..1).unwrap();
assert_eq!(swap_file.page_content(0).unwrap().is_none(), true);
let slice = swap_file.get_slice(0..1).unwrap();
let slice = unsafe { slice::from_raw_parts(slice.as_ptr(), slice.size()) };
assert_eq!(slice, &vec![0; pagesize()]);
}
#[test]
#[cfg(target_arch = "x86_64")] // TODO(b/272612118): unit test infra (qemu-user) support
fn erase_from_disk_unlocked_pages() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
swap_file
.write_to_file(1, &vec![1; 10 * pagesize()])
.unwrap();
// 1..6 is locked, 6..11 is not locked.
assert_eq!(swap_file.lock_and_async_prefetch(5).unwrap(), 5);
// empty pages
assert_eq!(swap_file.erase_from_disk(0..1).unwrap(), 0);
// empty pages + locked pages
assert_eq!(swap_file.erase_from_disk(0..2).unwrap(), 1);
// locked pages only
assert_eq!(swap_file.erase_from_disk(2..4).unwrap(), 2);
// empty pages + locked pages + non-locked pages
assert_eq!(swap_file.erase_from_disk(3..7).unwrap(), 2);
// non-locked pages
assert_eq!(swap_file.erase_from_disk(10..11).unwrap(), 0);
}
#[test]
fn erase_from_disk_out_of_range() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
assert_eq!(swap_file.erase_from_disk(199..200).is_ok(), true);
match swap_file.erase_from_disk(200..201) {
Err(Error::OutOfRange) => {}
_ => unreachable!("not out of range"),
};
match swap_file.erase_from_disk(199..201) {
Err(Error::OutOfRange) => {}
_ => unreachable!("not out of range"),
};
}
#[test]
#[cfg(target_arch = "x86_64")] // TODO(b/272612118): unit test infra (qemu-user) support
fn clear_mlock() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
swap_file
.write_to_file(1, &vec![1; 10 * pagesize()])
.unwrap();
// success if there is no mlock.
assert!(swap_file.clear_mlock().is_ok());
assert_eq!(swap_file.lock_and_async_prefetch(11).unwrap(), 10);
// success if there is mlocked area.
assert!(swap_file.clear_mlock().is_ok());
// mlock area is cleared.
assert_eq!(swap_file.lock_and_async_prefetch(11).unwrap(), 10);
}
#[test]
fn first_data_range() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
swap_file
.write_to_file(1, &vec![1; 2 * pagesize()])
.unwrap();
swap_file.write_to_file(3, &vec![2; pagesize()]).unwrap();
assert_eq!(swap_file.first_data_range(200).unwrap(), 1..4);
assert_eq!(swap_file.first_data_range(2).unwrap(), 1..3);
swap_file.clear_range(1..3).unwrap();
assert_eq!(swap_file.first_data_range(2).unwrap(), 3..4);
swap_file.clear_range(3..4).unwrap();
assert!(swap_file.first_data_range(2).is_none());
}
#[test]
fn get_slice() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
swap_file.write_to_file(1, &vec![1; pagesize()]).unwrap();
swap_file.write_to_file(2, &vec![2; pagesize()]).unwrap();
let slice = swap_file.get_slice(1..3).unwrap();
assert_eq!(slice.size(), 2 * pagesize());
for i in 0..pagesize() {
let mut byte = [0u8; 1];
slice.get_slice(i, 1).unwrap().copy_to(&mut byte);
assert_eq!(byte[0], 1);
}
for i in pagesize()..2 * pagesize() {
let mut byte = [0u8; 1];
slice.get_slice(i, 1).unwrap().copy_to(&mut byte);
assert_eq!(byte[0], 2);
}
}
#[test]
fn get_slice_out_of_range() {
let file = tempfile::tempfile().unwrap();
let swap_file = SwapFile::new(&file, 0, 200).unwrap();
match swap_file.get_slice(200..201) {
Err(Error::OutOfRange) => {}
other => {
unreachable!("unexpected result {:?}", other);
}
}
}
#[test]
fn present_pages() {
let file = tempfile::tempfile().unwrap();
let mut swap_file = SwapFile::new(&file, 0, 200).unwrap();
swap_file.write_to_file(1, &vec![1; pagesize()]).unwrap();
swap_file.write_to_file(2, &vec![2; pagesize()]).unwrap();
assert_eq!(swap_file.present_pages(), 2);
}
}
Reference in New Issue View Git Blame Copy Permalink