Is it safe to call the Win32 FlushFileBuffers() function again if it previously returned an error? - McMap

About

Is it safe to call the Win32 FlushFileBuffers() function again if it previously returned an error?

Asked 13/2, 2019 at 0:35 Answered 13/2, 2019 at 0:35

windows winapi filesystems fsync

M

0

8

I watched the talk: "PostgreSQL vs. fsync. How is it possible that PostgreSQL used fsync incorrectly for 20 years, and what we'll do about it." via https://fosdem.org/2019/schedule/event/postgresql_fsync/ and also read https://lwn.net/Articles/752063/ as background.

The really short and simplified summary is with Linux if you call fsync() and it fails, don't think you can call fsync() again to fix it, as the second time the call will succeed and you will have corrupted data on disk (the failed buffer cache pages are marked as clean after the first failed call). There is a lot of detail as to why this happens (supports the case when a USB is taken out - you don't want to retry and hold on to dirty buffer cache pages that can never succeed).

How does FlushFileBuffers() behave in this situation? I am particularly interested in files being accessed over CIFS where failures are more likely.

Also, given the OS can attempt to write dirty buffer cache pages to stable storage at any time in the background, how can user-land programs pick up these failures via the Win32 API?

Metallophone answered 13/2, 2019 at 0:35 Comment(3)

Windows apps do not call FlushFileBuffers(). If the flush is critical, you can use unbuffered I/O. See learn.microsoft.com/el-gr/windows/desktop/api/fileapi/… and learn.microsoft.com/el-gr/windows/desktop/FileIO/file-buffering. The problem arises in linux because anyone can call fsync(), where in Windows you need admin to flush the entire disk. – Krasnoyarsk 13/2, 2019 at 4:44

Excellent question! The answer will probably depend on the file system driver, as FlushFileBuffers is just a user-mode wrapper around NtFlushBuffersFile, and it looks to me like that function just assembles a flush IRP (IRP_MJ_FLUSH_BUFFERS) and sends it via IoCallDriver. Of course, one should eye calls to FlushFileBuffers with a great deal of suspicion. There are better ways of implementing transactional I/O in Windows, like creating the file with the FILE_FLAG_NO_BUFFERING flag. – Patency 13/2, 2019 at 4:47

I agree with the comment about using direct I/O for more control. PostgreSQL seems to be moving in that direction longer term. In my situation I am dealing with a Java-based database Apache Derby which in effect calls FlushFileBuffers on key files controlled by the database when transactions commit. It does not use direct I/O. I have seen unexplained corruption at times particularly with CIFS filesystems, and was curious if it was somehow be related. – Metallophone 14/2, 2019 at 0:22

Recommended topics

#Godot #Unity #Godot 4.X #Mongodb

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

© 2022 - 2024 — McMap. All rights reserved.