os/bluestore: fix deep-scrub operation againest disk silent errors

[wangxiaoguang]

Say a object who has data caches, but in a while later, caches' underlying
physical device has silent disk erros accidentally, then caches and physical
data are not same. In such case, deep-scrub operation still tries to read
caches firstly and won't do crc checksum, then deep-scrub won't find such
data corruptions timely.

Here introduce a new flag 'CEPH_OSD_OP_FLAG_BYPASS_CACHE' which tells
deep-scrub to bypass object caches. Note that we only bypass cache who is in
STATE_CLEAN state. For STATE_WRITING caches, currently they are not written
to physical device, so deep-scrub operation can not read physical device and
can read these dirty caches safely. Once they are in STATE_CLEAN state(or not
added to bluestore cache), next round deep-scurb can check them correctly.

As to above discussions, I refactor BlueStore::BufferSpace::read sightly,
adding a new 'flags' argument, whose value will be:

     enum {
       READ_CLEAN_CACHE = 0x1,     // read clean cache
       READ_DIRTY_CACHE = 0x2,     // read dirty cache
       READ_ALL_CACHE   = 0x3,     // read clean & dirty cache
    };

flags READ_ALL_CACHE: normal read
flags READ_DIRTY_CACHE: bypass clean cache, currently only for deep-scrube
operation

Test:
I deliberately corrupt a object with cache, with this patch, deep-scrub
can find data error very timely.

Signed-off-by: Xiaoguang Wang xiaoguang.wang@easystack.cn

[wangxiaoguang]

@liewegas please take a look at this patch, thanks.

[liewegas]

This is great! I would modify it slightly, though, so that there is a single BYPASS_CLEAN_CACHE flag, because it doesn't make sense to use clean and not dirty buffers (READ_CLEAN_CACHE).

One question: did check what the behavior was when you have a clean buffer, bypass it and read the device but get an error? is the clean buffer still there so that the next (normal) read will succeed? In principle there is an opportunity to recover some fo the data (write it somewhere else etc) although in practice I wouldn't worry about this narrow corner case too much, at least not for a first pass.

[wangxiaoguang]

This is great! I would modify it slightly, though, so that there is a single BYPASS_CLEAN_CACHE flag, because it doesn't make sense to use clean and not dirty buffers (READ_CLEAN_CACHE).

ok, thanks for review:)

did check what the behavior was when you have a clean buffer, bypass it and read the device but get an error?

This object will be repaired.
==>> do_osd_ops
====>> do_read
======>> objects_read_sync // get EIO error.
======>> rep_repair_primary_object
then read operation will be issued again. I use “rados get” to test this case, 'rados' tool does not perceive this object's corruption even.

is the clean buffer still there so that the next (normal) read will succeed?

Yes, clean buffer is there and next read will succeed(indeed current read will also succeed, corrupted object will be fix immediately), but I'm not sure whether caches were discarded and re-generated in the procedure of fixing object.

[dzafman]

It would be hard to test this because ceph-objectstore-tool takes the osd down to corrupt an object, so it won't be in the cache on osd restart. All current scrub tests use run_osd() instead of run_osd_bluestore() too.

[xiexingguo]

need to update ceph_osd_op_flag_name too:

const char * ceph_osd_op_flag_name(unsigned flag)
{
  const char *name;

  switch(flag) {
    case CEPH_OSD_OP_FLAG_EXCL:
      name = "excl";
      break;
    case CEPH_OSD_OP_FLAG_FAILOK:
      name = "failok";
      break;
    case CEPH_OSD_OP_FLAG_FADVISE_RANDOM:
      name = "fadvise_random";
      break;
    case CEPH_OSD_OP_FLAG_FADVISE_SEQUENTIAL:
      name = "fadvise_sequential";
      break;
    case CEPH_OSD_OP_FLAG_FADVISE_WILLNEED:
      name = "favise_willneed";
      break;
    case CEPH_OSD_OP_FLAG_FADVISE_DONTNEED:
      name = "fadvise_dontneed";
      break;
    case CEPH_OSD_OP_FLAG_FADVISE_NOCACHE:
      name = "fadvise_nocache";
      break;
    default:
      name = "???";
  };

  return name;
}

[wangxiaoguang]

Thanks, I'll update this patch soon.

[wangxiaoguang]

@xiexingguo I've updated a new version, could you please check it again? thanks.

[xiexingguo]

Do you mind adding the new CEPH_OSD_OP_FLAG_WITH_REFERENCE flag too?

[wangxiaoguang]

ok, will add it.

[xiexingguo]

Don't want to be nit-picking, but I'd prefer with_reference to keep pace with others...

[wangxiaoguang]

Really never mind, your suggestions are good and reasonable, indeed I should appreciate your patience! It's me not doing well, thanks 💯

[dzafman]

1 nit

[wangxiaoguang]

@dzafman @xiexingguo @tchaikov I submitted new version which just divided previous patch into twos, thanks.

[dzafman]

retest this please

[tchaikov]

s/wo/we/

[tchaikov]

underlying.

[wangxiaoguang]

Sorry, will send new version.

[xiexingguo]

s/wo/we/ ?

[xiexingguo]

Since you are there... :-)

[tchaikov]

http://pulpito.ceph.com/kchai-2018-08-30_02:23:40-rados-wip-kefu-testing-2018-08-29-2346-distro-basic-smithi/
the failures are tracked by

• http://tracker.ceph.com/issues/24485
• http://tracker.ceph.com/issues/34529
• http://pulpito.ceph.com/kchai-2018-08-30_02:23:40-rados-wip-kefu-testing-2018-08-29-2346-distro-basic-smithi/2957798 is likely caused by osd: some recovery improvements and cleanups #23663

hence i don't think they are relevant to this PR.

[tchaikov]

@liewegas @dzafman @xiexingguo shall we backport this change?

[liewegas]

I think so!

[tchaikov]

http://tracker.ceph.com/issues/34541