OpenZFS 9166 - zfs storage pool checkpoint

[dweeezil]

Description

See references below.

Motivation and Context

Details about the motivation of this feature and its usage can
be found in this blogpost:

https://sdimitro.github.io/post/zpool-checkpoint/

A lightning talk of this feature can be found here:
https://www.youtube.com/watch?v=fPQA8K40jAM

Implementation details can be found in big block comment of
spa_checkpoint.c

Side-changes that are relevant to this commit but not explained
elsewhere:

• renames metaslab trees to be shorter without losing meaning
• space_map_{alloc,truncate}() accept a block size as a
  parameter. The reason is that in the current state all space
  maps that we allocate through the DMU use a global tunable
  (space_map_blksz) which defauls to 4KB. This is ok for
  metaslab space maps in terms of bandwirdth since they are
  scattered all over the disk. But for other space maps this
  default is probably not what we want. Examples are device
  removal's vdev_obsolete_sm or vdev_chedkpoint_sm from this
  review. Both of these have a 1:1 relationship with each vdev
  and could benefit from a bigger block size.

Authored by: Serapheim Dimitropoulos serapheim.dimitro@delphix.com
Reviewed by: Matthew Ahrens mahrens@delphix.com
Reviewed by: John Kennedy john.kennedy@delphix.com
Reviewed by: Dan Kimmel dan.kimmel@delphix.com
Approved by: Richard Lowe richlowe@richlowe.net
OpenZFS-issue: https://illumos.org/issues/9166
OpenZFS-commit: openzfs/openzfs@7159fdb
Ported-by: Tim Chase tim@chase2k.com
Signed-off-by: Tim Chase tim@chase2k.com

Porting notes:

The part of dsl_scan_sync() which handles async destroys has
been moved into the new dsl_process_async_destroys() function.

Renamed module parameter metaslabs_per_vdev to vdev_max_ms_count.

New module parameter:

    zfs_spa_discard_memory_limit,

Desirable administrative feature, particularly to allow reverting pool configuration changes.

How Has This Been Tested?

Light manual testing so far.

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Performance enhancement (non-breaking change which improves efficiency)
• Code cleanup (non-breaking change which makes code smaller or more readable)
• Breaking change (fix or feature that would cause existing functionality to change)
• Documentation (a change to man pages or other documentation)

Checklist:

• My code follows the ZFS on Linux code style requirements.
• I have updated the documentation accordingly.
• I have read the contributing document.
• I have added tests to cover my changes.
• All new and existing tests passed.
• All commit messages are properly formatted and contain Signed-off-by.
• Change has been approved by a ZFS on Linux member.

[dweeezil]

I've only done light manual testing of this feature and it seems to work properly. Linux-specific changes to the ZTS have not yet been made. It's being submitted now to get an initial run through the buildbots to find any gross problems.

[sdimitro]

Hello there!

Thank you for working on this.
Overall the changes look good.
I also went through the split in the dsl_scan() code that you brought up and they seem fine too.

I found a couple of small omissions that I pointed out below and I also raised some questions (most of them are probably due to my lack of knowledge of Linux dev).

[sdimitro]

no need to duplicate ZTI_INIT(ztest_remap_blocks....),

[dweeezil]

Fixed.

[sdimitro]

Please correct me if I'm missing something here but shouldn't we init the lock in this functions before we destroy it? (similarly to ztest_vdev_lock which is destroyed here but it is also initialized in this functions?)

[dweeezil]

Fixed.

[sdimitro]

Should we also destroy destroy this lock in this function the same way we destroy ztest_vdev_lock?

[dweeezil]

Fixed. These init/destroy mis-merges were due to ztest_import() which was added by the MMP work.

[sdimitro]

Out of curiosity, what is this for? Is this related somehow to the rest of the checkpoint changes?

[behlendorf]

This was an additional sanity check which was added a while back when we only expected zdb to access the block devices read-only from user space. When zhack was added that changed and this check wasn't dropped at the time. One of the new test cases uncovered this since it uses zhack on a pool with disks instead of files.

[sdimitro]

Makes sense. Thanks!

[sdimitro]

Is that #ifdef really necessary? This function is only called through an ASSERT.

[dweeezil]

It prevents an unused function warning in non-debug builds.

[sdimitro]

I may be missing something but why is libzfs_core.h included here?

[dweeezil]

IIRC, it was to give access to the typedefs such as uint64_t, etc.

[sdimitro]

Wouldn't something like stdint.h work?
http://pubs.opengroup.org/onlinepubs/009695399/basedefs/stdint.h.html

It just seems unnecessary to me to include a whole new dependency (libzfs_core) for a small utility like randwritecomp.

[dweeezil]

Yes indeed. Using libzfs_core.h was expedient at the time. Using stdint.h works perfectly well and also allows to remove -I$(top_srcdir)/lib/libspl/include from Makefile.am. I'll be updating it accordingly (and also adding an include of string.h so grab the declaration of strcmp() (which we apparently need under Linux).

[sdimitro]

That's great! Thank you Tim

[sdimitro]

That's probably some illumos/Linux difference that I'm missing but why is sync disabled for these pools?

[dweeezil]

This was an attempt to speed up the "setup" process, which all by itself was taking almost 10 minutes per test in a VM guest. I've not yet determined whether the sync=disabled makes any difference. I added it on both the outer and the nested pools. Speaking of which, are the nested pools really necessary? It was my understanding (and @behlendorf's too, I think) that nested pools weren't guaranteed to be deadlock-free (but maybe they are in illumos).

[behlendorf]

s/mktree_SOURCES/randwritecomp_SOURCES

[dweeezil]

Oops, copy/paste bug. Fixed.

[behlendorf]

Results in a 'spa_checkpoint_accounting_verify' defined but not used [-Wunused-function] warning.

I'd suggest wrapping the function itself with ZFS_DEBUG. You could also

#define spa_checkpoint_accounting_verify ((void) 0)

for the non-debug case to get rid on the unsightly DEBUG wrapper where it's called.

[ahrens]

Personally I find this way least ugly:

/* ARGSUSED */
void
foo_verify(...)
{
#ifdef ZFS_DEBUG
...
#endif
}

[dweeezil]

Changed to ZFS_DEBUG. Also wrapped the definition of spa_checkpoint_accounting_verify() in an #ifdef ZFS_DEBUG.

[behlendorf]

This was an additional sanity check which was added a while back when we only expected zdb to access the block devices read-only from user space. When zhack was added that changed and this check wasn't dropped at the time. One of the new test cases uncovered this since it uses zhack on a pool with disks instead of files.

[behlendorf]

This should be #!/bin/ksh for all the new test scripts. It was causing the CentOS 6 failures.

[dweeezil]

Yes! I saw that in one of the tests introduced by vdev removal and totally forgot to look for it.

[codecov]

Codecov Report

Merging #7570 into master will increase coverage by 0.07%.
The diff coverage is 89.11%.

@@            Coverage Diff             @@
##           master    #7570      +/-   ##
==========================================
+ Coverage   78.04%   78.12%   +0.07%     
==========================================
  Files         366      368       +2     
  Lines      110618   111627    +1009     
==========================================
+ Hits        86329    87205     +876     
- Misses      24289    24422     +133

Flag	Coverage Δ
#kernel	78.68% <92.94%> (+0.21%)	⬆️
#user	67.05% <74.78%> (+0.09%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 7637ef8...5dd9c73. Read the comment docs.