2018-06-07 22:36:09 +00:00
|
|
|
/*
|
|
|
|
* Copyright (C) 2018 The Android Open Source Project
|
|
|
|
*
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
*
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
* limitations under the License.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include "liblp/builder.h"
|
|
|
|
|
|
|
|
#include <string.h>
|
|
|
|
|
|
|
|
#include <algorithm>
|
|
|
|
|
fastbootd: Support two super partitions for retrofit devices.
Retrofit devices will have two super partitions, spanning the A and B
slots separately. By design an OTA will never cause "A" or "B"
partitions to be assigned to the wrong super. However, the same is not
true of fastbootd, where it is possible to flash the inactive slot. We
do not want, for example, logical "system_a" flashing to super_b.
When interacting with partitions, fastbootd now extracts the slot suffix
from a GetSuperSlotSuffix() helper. On retrofit devices, if the partition
name has a slot, that slot will override FastbootDevice::GetCurrentSlot.
This forces partitions in the inactive slot to be assigned to the correct
super.
There are two consequences of this. First, partitions with no slot
suffix will default to the current slot. That means it is possible to
wind up with two "scratch" partitions, if "adb remount" is used on both
the "A" and "B" slots. However, only the active slot's "scratch" will be
visible to the user (either through adb or fastboot).
Second, if one slot does not have dynamic partitions, flashing will
default to fixed partitions. For example, if the A slot is logical and B
is not, flashing "system_a" will be logical and "system_b" will be
fixed. This works no matter which slot is active. We do not try to
upgrade the inactive slot to dynamic partitions.
Bug: 116802789
Test: fastboot set_active a
fastboot flashall # dynamic partitions
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # false
fastboot set_active b
fastboot flashall --skip-secondary
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # true
Booting both slots works.
Change-Id: Ib3c91944aaee1a96b2f5ad69c90e215bd6c5a2e8
2018-11-10 04:41:33 +00:00
|
|
|
#include <android-base/properties.h>
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
#include <android-base/unique_fd.h>
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-07-12 20:05:46 +00:00
|
|
|
#include "liblp/liblp.h"
|
|
|
|
#include "reader.h"
|
2018-06-07 22:36:09 +00:00
|
|
|
#include "utility.h"
|
|
|
|
|
|
|
|
namespace android {
|
|
|
|
namespace fs_mgr {
|
|
|
|
|
fastbootd: Support two super partitions for retrofit devices.
Retrofit devices will have two super partitions, spanning the A and B
slots separately. By design an OTA will never cause "A" or "B"
partitions to be assigned to the wrong super. However, the same is not
true of fastbootd, where it is possible to flash the inactive slot. We
do not want, for example, logical "system_a" flashing to super_b.
When interacting with partitions, fastbootd now extracts the slot suffix
from a GetSuperSlotSuffix() helper. On retrofit devices, if the partition
name has a slot, that slot will override FastbootDevice::GetCurrentSlot.
This forces partitions in the inactive slot to be assigned to the correct
super.
There are two consequences of this. First, partitions with no slot
suffix will default to the current slot. That means it is possible to
wind up with two "scratch" partitions, if "adb remount" is used on both
the "A" and "B" slots. However, only the active slot's "scratch" will be
visible to the user (either through adb or fastboot).
Second, if one slot does not have dynamic partitions, flashing will
default to fixed partitions. For example, if the A slot is logical and B
is not, flashing "system_a" will be logical and "system_b" will be
fixed. This works no matter which slot is active. We do not try to
upgrade the inactive slot to dynamic partitions.
Bug: 116802789
Test: fastboot set_active a
fastboot flashall # dynamic partitions
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # false
fastboot set_active b
fastboot flashall --skip-secondary
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # true
Booting both slots works.
Change-Id: Ib3c91944aaee1a96b2f5ad69c90e215bd6c5a2e8
2018-11-10 04:41:33 +00:00
|
|
|
bool MetadataBuilder::sABOverrideSet;
|
|
|
|
bool MetadataBuilder::sABOverrideValue;
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
bool LinearExtent::AddTo(LpMetadata* out) const {
|
|
|
|
if (device_index_ >= out->block_devices.size()) {
|
|
|
|
LERROR << "Extent references unknown block device.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
out->extents.emplace_back(
|
|
|
|
LpMetadataExtent{num_sectors_, LP_TARGET_TYPE_LINEAR, physical_sector_, device_index_});
|
|
|
|
return true;
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
bool ZeroExtent::AddTo(LpMetadata* out) const {
|
|
|
|
out->extents.emplace_back(LpMetadataExtent{num_sectors_, LP_TARGET_TYPE_ZERO, 0, 0});
|
|
|
|
return true;
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
|
2018-10-03 20:49:23 +00:00
|
|
|
Partition::Partition(const std::string& name, const std::string& group_name, uint32_t attributes)
|
|
|
|
: name_(name), group_name_(group_name), attributes_(attributes), size_(0) {}
|
2018-06-07 22:36:09 +00:00
|
|
|
|
|
|
|
void Partition::AddExtent(std::unique_ptr<Extent>&& extent) {
|
|
|
|
size_ += extent->num_sectors() * LP_SECTOR_SIZE;
|
2018-08-03 17:56:53 +00:00
|
|
|
|
|
|
|
if (LinearExtent* new_extent = extent->AsLinearExtent()) {
|
2018-10-23 21:43:10 +00:00
|
|
|
if (!extents_.empty() && extents_.back()->AsLinearExtent()) {
|
2018-08-03 17:56:53 +00:00
|
|
|
LinearExtent* prev_extent = extents_.back()->AsLinearExtent();
|
2018-10-23 21:43:10 +00:00
|
|
|
if (prev_extent->end_sector() == new_extent->physical_sector() &&
|
|
|
|
prev_extent->device_index() == new_extent->device_index()) {
|
|
|
|
// If the previous extent can be merged into this new one, do so
|
|
|
|
// to avoid creating unnecessary extents.
|
|
|
|
extent = std::make_unique<LinearExtent>(
|
|
|
|
prev_extent->num_sectors() + new_extent->num_sectors(),
|
|
|
|
prev_extent->device_index(), prev_extent->physical_sector());
|
|
|
|
extents_.pop_back();
|
|
|
|
}
|
2018-08-03 17:56:53 +00:00
|
|
|
}
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
extents_.push_back(std::move(extent));
|
|
|
|
}
|
|
|
|
|
|
|
|
void Partition::RemoveExtents() {
|
|
|
|
size_ = 0;
|
|
|
|
extents_.clear();
|
|
|
|
}
|
|
|
|
|
2018-07-31 20:34:14 +00:00
|
|
|
void Partition::ShrinkTo(uint64_t aligned_size) {
|
2018-06-07 22:36:09 +00:00
|
|
|
if (aligned_size == 0) {
|
|
|
|
RemoveExtents();
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Remove or shrink extents of any kind until the total partition size is
|
|
|
|
// equal to the requested size.
|
|
|
|
uint64_t sectors_to_remove = (size_ - aligned_size) / LP_SECTOR_SIZE;
|
|
|
|
while (sectors_to_remove) {
|
|
|
|
Extent* extent = extents_.back().get();
|
|
|
|
if (extent->num_sectors() > sectors_to_remove) {
|
|
|
|
size_ -= sectors_to_remove * LP_SECTOR_SIZE;
|
|
|
|
extent->set_num_sectors(extent->num_sectors() - sectors_to_remove);
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
size_ -= (extent->num_sectors() * LP_SECTOR_SIZE);
|
|
|
|
sectors_to_remove -= extent->num_sectors();
|
|
|
|
extents_.pop_back();
|
|
|
|
}
|
2018-07-31 20:34:14 +00:00
|
|
|
DCHECK(size_ == aligned_size);
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
|
2018-10-03 01:22:31 +00:00
|
|
|
uint64_t Partition::BytesOnDisk() const {
|
|
|
|
uint64_t sectors = 0;
|
|
|
|
for (const auto& extent : extents_) {
|
|
|
|
if (!extent->AsLinearExtent()) {
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
sectors += extent->num_sectors();
|
|
|
|
}
|
|
|
|
return sectors * LP_SECTOR_SIZE;
|
|
|
|
}
|
|
|
|
|
2018-10-23 01:05:54 +00:00
|
|
|
std::unique_ptr<MetadataBuilder> MetadataBuilder::New(const IPartitionOpener& opener,
|
|
|
|
const std::string& super_partition,
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
uint32_t slot_number) {
|
2018-10-23 01:05:54 +00:00
|
|
|
std::unique_ptr<LpMetadata> metadata = ReadMetadata(opener, super_partition, slot_number);
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
if (!metadata) {
|
|
|
|
return nullptr;
|
|
|
|
}
|
2018-11-09 23:58:09 +00:00
|
|
|
return New(*metadata.get(), &opener);
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
}
|
|
|
|
|
2018-10-23 01:05:54 +00:00
|
|
|
std::unique_ptr<MetadataBuilder> MetadataBuilder::New(const std::string& super_partition,
|
|
|
|
uint32_t slot_number) {
|
|
|
|
return New(PartitionOpener(), super_partition, slot_number);
|
|
|
|
}
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
std::unique_ptr<MetadataBuilder> MetadataBuilder::New(
|
|
|
|
const std::vector<BlockDeviceInfo>& block_devices, const std::string& super_partition,
|
|
|
|
uint32_t metadata_max_size, uint32_t metadata_slot_count) {
|
2018-06-07 22:36:09 +00:00
|
|
|
std::unique_ptr<MetadataBuilder> builder(new MetadataBuilder());
|
2018-10-23 21:43:10 +00:00
|
|
|
if (!builder->Init(block_devices, super_partition, metadata_max_size, metadata_slot_count)) {
|
2018-06-07 22:36:09 +00:00
|
|
|
return nullptr;
|
|
|
|
}
|
|
|
|
return builder;
|
|
|
|
}
|
|
|
|
|
2018-11-09 23:58:09 +00:00
|
|
|
std::unique_ptr<MetadataBuilder> MetadataBuilder::New(const LpMetadata& metadata,
|
|
|
|
const IPartitionOpener* opener) {
|
2018-06-07 22:36:09 +00:00
|
|
|
std::unique_ptr<MetadataBuilder> builder(new MetadataBuilder());
|
|
|
|
if (!builder->Init(metadata)) {
|
|
|
|
return nullptr;
|
|
|
|
}
|
2018-11-09 23:58:09 +00:00
|
|
|
if (opener) {
|
|
|
|
for (size_t i = 0; i < builder->block_devices_.size(); i++) {
|
|
|
|
std::string partition_name = GetBlockDevicePartitionName(builder->block_devices_[i]);
|
|
|
|
BlockDeviceInfo device_info;
|
|
|
|
if (opener->GetInfo(partition_name, &device_info)) {
|
|
|
|
builder->UpdateBlockDeviceInfo(i, device_info);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
return builder;
|
|
|
|
}
|
|
|
|
|
2018-11-09 23:58:09 +00:00
|
|
|
std::unique_ptr<MetadataBuilder> MetadataBuilder::NewForUpdate(const IPartitionOpener& opener,
|
|
|
|
const std::string& source_partition,
|
|
|
|
uint32_t source_slot_number,
|
|
|
|
uint32_t target_slot_number) {
|
|
|
|
auto metadata = ReadMetadata(opener, source_partition, source_slot_number);
|
|
|
|
if (!metadata) {
|
|
|
|
return nullptr;
|
|
|
|
}
|
|
|
|
|
liblp: Modify NewForUpdate to accomodate two super partitions.
This method was designed for a single-super model, and now needs to
change to accomodate two super partitions (system_a and system_b, for
retrofitting).
NewForUpdate is supposed to transition metadata from one block device
to the next for updates. For normal devices this is a no-op, since
metadata only exists on one partition (super). For retrofit devices,
metadata exists on system_a and system_b. This has two implications.
First, any references to the source slot must be rewritten. For example
"vendor_b" must become "vendor_a". However this is not true of partition
names. Partitions/extents are cleared in the updated metadata since they
no longer have any meaning (the block device list has been
rewritten). We also clear groups since they are re-added during OTA.
The reason we have to do this rewriting is that slot suffixes are
automatically applied in ReadMetadata. We do not have access to the
original unsuffixed metadata that was written by the initial OTA.
This was a conscious design decision, since it localizes retrofitting
idiosyncracies to just a few places (ReadMetadata, NewForUpdate, and
fastbootd), minimizing the number of external callers that have to
understand auto-slot-suffixing.
It would be arguably cleaner if retrofit metadata was always serialized
*without* slot suffixes, thereby making NewForUpdate a no-op. However
this would necessitate changes to the API elsewhere. The functions that
read partition names would have to take a slot suffix, and this would
further complicate MetadataBuilder and fastbootd. Another solution would
be to augment LpMetadata to retain unsuffixed information, but this is
probably not worthwhile given that retrofitting is intended to be
surgical, and will have a shorter lifespan than the non-retrofit case.
Bug: 116802789
Test: liblp_test gtest
Change-Id: I33596d92b38c47bc70bc0aa37ed04f6f0b9d4b6f
2018-11-19 23:27:23 +00:00
|
|
|
// On non-retrofit devices there is only one location for metadata: the
|
|
|
|
// super partition. update_engine will remove and resize partitions as
|
|
|
|
// needed. On the other hand, for retrofit devices, we'll need to
|
|
|
|
// translate block device and group names to update their slot suffixes.
|
|
|
|
auto super_device = GetMetadataSuperBlockDevice(*metadata.get());
|
|
|
|
if (GetBlockDevicePartitionName(*super_device) == "super") {
|
|
|
|
return New(*metadata.get(), &opener);
|
2018-11-09 23:58:09 +00:00
|
|
|
}
|
|
|
|
|
liblp: Modify NewForUpdate to accomodate two super partitions.
This method was designed for a single-super model, and now needs to
change to accomodate two super partitions (system_a and system_b, for
retrofitting).
NewForUpdate is supposed to transition metadata from one block device
to the next for updates. For normal devices this is a no-op, since
metadata only exists on one partition (super). For retrofit devices,
metadata exists on system_a and system_b. This has two implications.
First, any references to the source slot must be rewritten. For example
"vendor_b" must become "vendor_a". However this is not true of partition
names. Partitions/extents are cleared in the updated metadata since they
no longer have any meaning (the block device list has been
rewritten). We also clear groups since they are re-added during OTA.
The reason we have to do this rewriting is that slot suffixes are
automatically applied in ReadMetadata. We do not have access to the
original unsuffixed metadata that was written by the initial OTA.
This was a conscious design decision, since it localizes retrofitting
idiosyncracies to just a few places (ReadMetadata, NewForUpdate, and
fastbootd), minimizing the number of external callers that have to
understand auto-slot-suffixing.
It would be arguably cleaner if retrofit metadata was always serialized
*without* slot suffixes, thereby making NewForUpdate a no-op. However
this would necessitate changes to the API elsewhere. The functions that
read partition names would have to take a slot suffix, and this would
further complicate MetadataBuilder and fastbootd. Another solution would
be to augment LpMetadata to retain unsuffixed information, but this is
probably not worthwhile given that retrofitting is intended to be
surgical, and will have a shorter lifespan than the non-retrofit case.
Bug: 116802789
Test: liblp_test gtest
Change-Id: I33596d92b38c47bc70bc0aa37ed04f6f0b9d4b6f
2018-11-19 23:27:23 +00:00
|
|
|
// Clear partitions and extents, since they have no meaning on the target
|
|
|
|
// slot. We also clear groups since they are re-added during OTA.
|
|
|
|
metadata->partitions.clear();
|
|
|
|
metadata->extents.clear();
|
|
|
|
metadata->groups.clear();
|
2018-11-09 23:58:09 +00:00
|
|
|
|
|
|
|
std::string source_slot_suffix = SlotSuffixForSlotNumber(source_slot_number);
|
|
|
|
std::string target_slot_suffix = SlotSuffixForSlotNumber(target_slot_number);
|
liblp: Modify NewForUpdate to accomodate two super partitions.
This method was designed for a single-super model, and now needs to
change to accomodate two super partitions (system_a and system_b, for
retrofitting).
NewForUpdate is supposed to transition metadata from one block device
to the next for updates. For normal devices this is a no-op, since
metadata only exists on one partition (super). For retrofit devices,
metadata exists on system_a and system_b. This has two implications.
First, any references to the source slot must be rewritten. For example
"vendor_b" must become "vendor_a". However this is not true of partition
names. Partitions/extents are cleared in the updated metadata since they
no longer have any meaning (the block device list has been
rewritten). We also clear groups since they are re-added during OTA.
The reason we have to do this rewriting is that slot suffixes are
automatically applied in ReadMetadata. We do not have access to the
original unsuffixed metadata that was written by the initial OTA.
This was a conscious design decision, since it localizes retrofitting
idiosyncracies to just a few places (ReadMetadata, NewForUpdate, and
fastbootd), minimizing the number of external callers that have to
understand auto-slot-suffixing.
It would be arguably cleaner if retrofit metadata was always serialized
*without* slot suffixes, thereby making NewForUpdate a no-op. However
this would necessitate changes to the API elsewhere. The functions that
read partition names would have to take a slot suffix, and this would
further complicate MetadataBuilder and fastbootd. Another solution would
be to augment LpMetadata to retain unsuffixed information, but this is
probably not worthwhile given that retrofitting is intended to be
surgical, and will have a shorter lifespan than the non-retrofit case.
Bug: 116802789
Test: liblp_test gtest
Change-Id: I33596d92b38c47bc70bc0aa37ed04f6f0b9d4b6f
2018-11-19 23:27:23 +00:00
|
|
|
|
|
|
|
// Translate block devices.
|
|
|
|
auto source_block_devices = std::move(metadata->block_devices);
|
|
|
|
for (const auto& source_block_device : source_block_devices) {
|
|
|
|
std::string partition_name = GetBlockDevicePartitionName(source_block_device);
|
2018-11-09 23:58:09 +00:00
|
|
|
std::string slot_suffix = GetPartitionSlotSuffix(partition_name);
|
|
|
|
if (slot_suffix.empty() || slot_suffix != source_slot_suffix) {
|
liblp: Modify NewForUpdate to accomodate two super partitions.
This method was designed for a single-super model, and now needs to
change to accomodate two super partitions (system_a and system_b, for
retrofitting).
NewForUpdate is supposed to transition metadata from one block device
to the next for updates. For normal devices this is a no-op, since
metadata only exists on one partition (super). For retrofit devices,
metadata exists on system_a and system_b. This has two implications.
First, any references to the source slot must be rewritten. For example
"vendor_b" must become "vendor_a". However this is not true of partition
names. Partitions/extents are cleared in the updated metadata since they
no longer have any meaning (the block device list has been
rewritten). We also clear groups since they are re-added during OTA.
The reason we have to do this rewriting is that slot suffixes are
automatically applied in ReadMetadata. We do not have access to the
original unsuffixed metadata that was written by the initial OTA.
This was a conscious design decision, since it localizes retrofitting
idiosyncracies to just a few places (ReadMetadata, NewForUpdate, and
fastbootd), minimizing the number of external callers that have to
understand auto-slot-suffixing.
It would be arguably cleaner if retrofit metadata was always serialized
*without* slot suffixes, thereby making NewForUpdate a no-op. However
this would necessitate changes to the API elsewhere. The functions that
read partition names would have to take a slot suffix, and this would
further complicate MetadataBuilder and fastbootd. Another solution would
be to augment LpMetadata to retain unsuffixed information, but this is
probably not worthwhile given that retrofitting is intended to be
surgical, and will have a shorter lifespan than the non-retrofit case.
Bug: 116802789
Test: liblp_test gtest
Change-Id: I33596d92b38c47bc70bc0aa37ed04f6f0b9d4b6f
2018-11-19 23:27:23 +00:00
|
|
|
// This should never happen. It means that the source metadata
|
|
|
|
// refers to a target or unknown block device.
|
|
|
|
LERROR << "Invalid block device for slot " << source_slot_suffix << ": "
|
|
|
|
<< partition_name;
|
|
|
|
return nullptr;
|
2018-11-09 23:58:09 +00:00
|
|
|
}
|
|
|
|
std::string new_name =
|
|
|
|
partition_name.substr(0, partition_name.size() - slot_suffix.size()) +
|
|
|
|
target_slot_suffix;
|
|
|
|
|
liblp: Modify NewForUpdate to accomodate two super partitions.
This method was designed for a single-super model, and now needs to
change to accomodate two super partitions (system_a and system_b, for
retrofitting).
NewForUpdate is supposed to transition metadata from one block device
to the next for updates. For normal devices this is a no-op, since
metadata only exists on one partition (super). For retrofit devices,
metadata exists on system_a and system_b. This has two implications.
First, any references to the source slot must be rewritten. For example
"vendor_b" must become "vendor_a". However this is not true of partition
names. Partitions/extents are cleared in the updated metadata since they
no longer have any meaning (the block device list has been
rewritten). We also clear groups since they are re-added during OTA.
The reason we have to do this rewriting is that slot suffixes are
automatically applied in ReadMetadata. We do not have access to the
original unsuffixed metadata that was written by the initial OTA.
This was a conscious design decision, since it localizes retrofitting
idiosyncracies to just a few places (ReadMetadata, NewForUpdate, and
fastbootd), minimizing the number of external callers that have to
understand auto-slot-suffixing.
It would be arguably cleaner if retrofit metadata was always serialized
*without* slot suffixes, thereby making NewForUpdate a no-op. However
this would necessitate changes to the API elsewhere. The functions that
read partition names would have to take a slot suffix, and this would
further complicate MetadataBuilder and fastbootd. Another solution would
be to augment LpMetadata to retain unsuffixed information, but this is
probably not worthwhile given that retrofitting is intended to be
surgical, and will have a shorter lifespan than the non-retrofit case.
Bug: 116802789
Test: liblp_test gtest
Change-Id: I33596d92b38c47bc70bc0aa37ed04f6f0b9d4b6f
2018-11-19 23:27:23 +00:00
|
|
|
auto new_device = source_block_device;
|
2018-11-09 23:58:09 +00:00
|
|
|
if (!UpdateBlockDevicePartitionName(&new_device, new_name)) {
|
|
|
|
LERROR << "Partition name too long: " << new_name;
|
|
|
|
return nullptr;
|
|
|
|
}
|
liblp: Modify NewForUpdate to accomodate two super partitions.
This method was designed for a single-super model, and now needs to
change to accomodate two super partitions (system_a and system_b, for
retrofitting).
NewForUpdate is supposed to transition metadata from one block device
to the next for updates. For normal devices this is a no-op, since
metadata only exists on one partition (super). For retrofit devices,
metadata exists on system_a and system_b. This has two implications.
First, any references to the source slot must be rewritten. For example
"vendor_b" must become "vendor_a". However this is not true of partition
names. Partitions/extents are cleared in the updated metadata since they
no longer have any meaning (the block device list has been
rewritten). We also clear groups since they are re-added during OTA.
The reason we have to do this rewriting is that slot suffixes are
automatically applied in ReadMetadata. We do not have access to the
original unsuffixed metadata that was written by the initial OTA.
This was a conscious design decision, since it localizes retrofitting
idiosyncracies to just a few places (ReadMetadata, NewForUpdate, and
fastbootd), minimizing the number of external callers that have to
understand auto-slot-suffixing.
It would be arguably cleaner if retrofit metadata was always serialized
*without* slot suffixes, thereby making NewForUpdate a no-op. However
this would necessitate changes to the API elsewhere. The functions that
read partition names would have to take a slot suffix, and this would
further complicate MetadataBuilder and fastbootd. Another solution would
be to augment LpMetadata to retain unsuffixed information, but this is
probably not worthwhile given that retrofitting is intended to be
surgical, and will have a shorter lifespan than the non-retrofit case.
Bug: 116802789
Test: liblp_test gtest
Change-Id: I33596d92b38c47bc70bc0aa37ed04f6f0b9d4b6f
2018-11-19 23:27:23 +00:00
|
|
|
metadata->block_devices.emplace_back(new_device);
|
2018-11-09 23:58:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
return New(*metadata.get(), &opener);
|
|
|
|
}
|
|
|
|
|
fastbootd: Support two super partitions for retrofit devices.
Retrofit devices will have two super partitions, spanning the A and B
slots separately. By design an OTA will never cause "A" or "B"
partitions to be assigned to the wrong super. However, the same is not
true of fastbootd, where it is possible to flash the inactive slot. We
do not want, for example, logical "system_a" flashing to super_b.
When interacting with partitions, fastbootd now extracts the slot suffix
from a GetSuperSlotSuffix() helper. On retrofit devices, if the partition
name has a slot, that slot will override FastbootDevice::GetCurrentSlot.
This forces partitions in the inactive slot to be assigned to the correct
super.
There are two consequences of this. First, partitions with no slot
suffix will default to the current slot. That means it is possible to
wind up with two "scratch" partitions, if "adb remount" is used on both
the "A" and "B" slots. However, only the active slot's "scratch" will be
visible to the user (either through adb or fastboot).
Second, if one slot does not have dynamic partitions, flashing will
default to fixed partitions. For example, if the A slot is logical and B
is not, flashing "system_a" will be logical and "system_b" will be
fixed. This works no matter which slot is active. We do not try to
upgrade the inactive slot to dynamic partitions.
Bug: 116802789
Test: fastboot set_active a
fastboot flashall # dynamic partitions
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # false
fastboot set_active b
fastboot flashall --skip-secondary
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # true
Booting both slots works.
Change-Id: Ib3c91944aaee1a96b2f5ad69c90e215bd6c5a2e8
2018-11-10 04:41:33 +00:00
|
|
|
void MetadataBuilder::OverrideABForTesting(bool ab_device) {
|
|
|
|
sABOverrideSet = true;
|
|
|
|
sABOverrideValue = ab_device;
|
|
|
|
}
|
|
|
|
|
2018-11-07 03:06:41 +00:00
|
|
|
MetadataBuilder::MetadataBuilder() : auto_slot_suffixing_(false) {
|
2018-06-07 22:36:09 +00:00
|
|
|
memset(&geometry_, 0, sizeof(geometry_));
|
|
|
|
geometry_.magic = LP_METADATA_GEOMETRY_MAGIC;
|
|
|
|
geometry_.struct_size = sizeof(geometry_);
|
|
|
|
|
|
|
|
memset(&header_, 0, sizeof(header_));
|
|
|
|
header_.magic = LP_METADATA_HEADER_MAGIC;
|
|
|
|
header_.major_version = LP_METADATA_MAJOR_VERSION;
|
|
|
|
header_.minor_version = LP_METADATA_MINOR_VERSION;
|
|
|
|
header_.header_size = sizeof(header_);
|
|
|
|
header_.partitions.entry_size = sizeof(LpMetadataPartition);
|
|
|
|
header_.extents.entry_size = sizeof(LpMetadataExtent);
|
2018-10-03 01:22:31 +00:00
|
|
|
header_.groups.entry_size = sizeof(LpMetadataPartitionGroup);
|
2018-10-12 20:51:52 +00:00
|
|
|
header_.block_devices.entry_size = sizeof(LpMetadataBlockDevice);
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
bool MetadataBuilder::Init(const LpMetadata& metadata) {
|
|
|
|
geometry_ = metadata.geometry;
|
2018-10-23 21:43:10 +00:00
|
|
|
block_devices_ = metadata.block_devices;
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-10-03 01:22:31 +00:00
|
|
|
for (const auto& group : metadata.groups) {
|
|
|
|
std::string group_name = GetPartitionGroupName(group);
|
|
|
|
if (!AddGroup(group_name, group.maximum_size)) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-06-07 22:36:09 +00:00
|
|
|
for (const auto& partition : metadata.partitions) {
|
2018-10-03 01:22:31 +00:00
|
|
|
std::string group_name = GetPartitionGroupName(metadata.groups[partition.group_index]);
|
2018-10-03 20:49:23 +00:00
|
|
|
Partition* builder =
|
|
|
|
AddPartition(GetPartitionName(partition), group_name, partition.attributes);
|
2018-06-07 22:36:09 +00:00
|
|
|
if (!builder) {
|
|
|
|
return false;
|
|
|
|
}
|
2018-11-05 23:21:44 +00:00
|
|
|
ImportExtents(builder, metadata, partition);
|
|
|
|
}
|
|
|
|
return true;
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-11-05 23:21:44 +00:00
|
|
|
void MetadataBuilder::ImportExtents(Partition* dest, const LpMetadata& metadata,
|
|
|
|
const LpMetadataPartition& source) {
|
|
|
|
for (size_t i = 0; i < source.num_extents; i++) {
|
|
|
|
const LpMetadataExtent& extent = metadata.extents[source.first_extent_index + i];
|
|
|
|
if (extent.target_type == LP_TARGET_TYPE_LINEAR) {
|
|
|
|
auto copy = std::make_unique<LinearExtent>(extent.num_sectors, extent.target_source,
|
|
|
|
extent.target_data);
|
|
|
|
dest->AddExtent(std::move(copy));
|
|
|
|
} else if (extent.target_type == LP_TARGET_TYPE_ZERO) {
|
|
|
|
auto copy = std::make_unique<ZeroExtent>(extent.num_sectors);
|
|
|
|
dest->AddExtent(std::move(copy));
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
static bool VerifyDeviceProperties(const BlockDeviceInfo& device_info) {
|
|
|
|
if (device_info.logical_block_size % LP_SECTOR_SIZE != 0) {
|
|
|
|
LERROR << "Block device " << device_info.partition_name
|
|
|
|
<< " logical block size must be a multiple of 512.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
if (device_info.size % device_info.logical_block_size != 0) {
|
|
|
|
LERROR << "Block device " << device_info.partition_name
|
|
|
|
<< " size must be a multiple of its block size.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
if (device_info.alignment_offset % LP_SECTOR_SIZE != 0) {
|
|
|
|
LERROR << "Block device " << device_info.partition_name
|
|
|
|
<< " alignment offset is not sector-aligned.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
if (device_info.alignment % LP_SECTOR_SIZE != 0) {
|
|
|
|
LERROR << "Block device " << device_info.partition_name
|
|
|
|
<< " partition alignment is not sector-aligned.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
if (device_info.alignment_offset > device_info.alignment) {
|
|
|
|
LERROR << "Block device " << device_info.partition_name
|
|
|
|
<< " partition alignment offset is greater than its alignment.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
bool MetadataBuilder::Init(const std::vector<BlockDeviceInfo>& block_devices,
|
|
|
|
const std::string& super_partition, uint32_t metadata_max_size,
|
2018-06-07 22:36:09 +00:00
|
|
|
uint32_t metadata_slot_count) {
|
|
|
|
if (metadata_max_size < sizeof(LpMetadataHeader)) {
|
|
|
|
LERROR << "Invalid metadata maximum size.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
if (metadata_slot_count == 0) {
|
|
|
|
LERROR << "Invalid metadata slot count.";
|
|
|
|
return false;
|
|
|
|
}
|
2018-10-23 21:43:10 +00:00
|
|
|
if (block_devices.empty()) {
|
|
|
|
LERROR << "No block devices were specified.";
|
|
|
|
return false;
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
|
|
|
|
// Align the metadata size up to the nearest sector.
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
metadata_max_size = AlignTo(metadata_max_size, LP_SECTOR_SIZE);
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
// Validate and build the block device list.
|
|
|
|
uint32_t logical_block_size = 0;
|
|
|
|
for (const auto& device_info : block_devices) {
|
|
|
|
if (!VerifyDeviceProperties(device_info)) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!logical_block_size) {
|
|
|
|
logical_block_size = device_info.logical_block_size;
|
|
|
|
}
|
|
|
|
if (logical_block_size != device_info.logical_block_size) {
|
|
|
|
LERROR << "All partitions must have the same logical block size.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
LpMetadataBlockDevice out = {};
|
|
|
|
out.alignment = device_info.alignment;
|
|
|
|
out.alignment_offset = device_info.alignment_offset;
|
|
|
|
out.size = device_info.size;
|
|
|
|
if (device_info.partition_name.size() >= sizeof(out.partition_name)) {
|
|
|
|
LERROR << "Partition name " << device_info.partition_name << " exceeds maximum length.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
strncpy(out.partition_name, device_info.partition_name.c_str(), sizeof(out.partition_name));
|
|
|
|
|
|
|
|
// In the case of the super partition, this field will be adjusted
|
|
|
|
// later. For all partitions, the first 512 bytes are considered
|
|
|
|
// untouched to be compatible code that looks for an MBR. Thus we
|
|
|
|
// start counting free sectors at sector 1, not 0.
|
|
|
|
uint64_t free_area_start = LP_SECTOR_SIZE;
|
|
|
|
if (out.alignment || out.alignment_offset) {
|
|
|
|
free_area_start = AlignTo(free_area_start, out.alignment, out.alignment_offset);
|
|
|
|
} else {
|
|
|
|
free_area_start = AlignTo(free_area_start, logical_block_size);
|
|
|
|
}
|
|
|
|
out.first_logical_sector = free_area_start / LP_SECTOR_SIZE;
|
|
|
|
|
|
|
|
// There must be one logical block of space available.
|
|
|
|
uint64_t minimum_size = out.first_logical_sector * LP_SECTOR_SIZE + logical_block_size;
|
|
|
|
if (device_info.size < minimum_size) {
|
|
|
|
LERROR << "Block device " << device_info.partition_name
|
|
|
|
<< " is too small to hold any logical partitions.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
// The "root" of the super partition is always listed first.
|
|
|
|
if (device_info.partition_name == super_partition) {
|
|
|
|
block_devices_.emplace(block_devices_.begin(), out);
|
|
|
|
} else {
|
|
|
|
block_devices_.emplace_back(out);
|
|
|
|
}
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
}
|
2018-10-23 21:43:10 +00:00
|
|
|
if (GetBlockDevicePartitionName(block_devices_[0]) != super_partition) {
|
|
|
|
LERROR << "No super partition was specified.";
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
return false;
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
LpMetadataBlockDevice& super = block_devices_[0];
|
|
|
|
|
2018-06-07 22:36:09 +00:00
|
|
|
// We reserve a geometry block (4KB) plus space for each copy of the
|
|
|
|
// maximum size of a metadata blob. Then, we double that space since
|
|
|
|
// we store a backup copy of everything.
|
2018-10-12 20:51:52 +00:00
|
|
|
uint64_t total_reserved = GetTotalMetadataSize(metadata_max_size, metadata_slot_count);
|
2018-10-23 21:43:10 +00:00
|
|
|
if (super.size < total_reserved) {
|
2018-06-07 22:36:09 +00:00
|
|
|
LERROR << "Attempting to create metadata on a block device that is too small.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
// Compute the first free sector, factoring in alignment.
|
2018-10-12 16:36:06 +00:00
|
|
|
uint64_t free_area_start = total_reserved;
|
2018-10-23 21:43:10 +00:00
|
|
|
if (super.alignment || super.alignment_offset) {
|
|
|
|
free_area_start = AlignTo(free_area_start, super.alignment, super.alignment_offset);
|
2018-10-12 16:36:06 +00:00
|
|
|
} else {
|
2018-10-23 21:43:10 +00:00
|
|
|
free_area_start = AlignTo(free_area_start, logical_block_size);
|
2018-10-12 16:36:06 +00:00
|
|
|
}
|
2018-10-23 21:43:10 +00:00
|
|
|
super.first_logical_sector = free_area_start / LP_SECTOR_SIZE;
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
|
2018-10-11 01:49:36 +00:00
|
|
|
// There must be one logical block of free space remaining (enough for one partition).
|
2018-10-23 21:43:10 +00:00
|
|
|
uint64_t minimum_disk_size = (super.first_logical_sector * LP_SECTOR_SIZE) + logical_block_size;
|
|
|
|
if (super.size < minimum_disk_size) {
|
2018-10-11 01:49:36 +00:00
|
|
|
LERROR << "Device must be at least " << minimum_disk_size << " bytes, only has "
|
2018-10-23 21:43:10 +00:00
|
|
|
<< super.size;
|
2018-08-01 21:14:37 +00:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
2018-06-07 22:36:09 +00:00
|
|
|
geometry_.metadata_max_size = metadata_max_size;
|
|
|
|
geometry_.metadata_slot_count = metadata_slot_count;
|
2018-10-23 21:43:10 +00:00
|
|
|
geometry_.logical_block_size = logical_block_size;
|
2018-10-03 01:22:31 +00:00
|
|
|
|
|
|
|
if (!AddGroup("default", 0)) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
bool MetadataBuilder::AddGroup(const std::string& group_name, uint64_t maximum_size) {
|
|
|
|
if (FindGroup(group_name)) {
|
|
|
|
LERROR << "Group already exists: " << group_name;
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
groups_.push_back(std::make_unique<PartitionGroup>(group_name, maximum_size));
|
2018-06-07 22:36:09 +00:00
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2018-10-03 20:49:23 +00:00
|
|
|
Partition* MetadataBuilder::AddPartition(const std::string& name, uint32_t attributes) {
|
|
|
|
return AddPartition(name, "default", attributes);
|
2018-10-03 01:22:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
Partition* MetadataBuilder::AddPartition(const std::string& name, const std::string& group_name,
|
2018-10-03 20:49:23 +00:00
|
|
|
uint32_t attributes) {
|
2018-06-07 22:36:09 +00:00
|
|
|
if (name.empty()) {
|
|
|
|
LERROR << "Partition must have a non-empty name.";
|
|
|
|
return nullptr;
|
|
|
|
}
|
|
|
|
if (FindPartition(name)) {
|
|
|
|
LERROR << "Attempting to create duplication partition with name: " << name;
|
|
|
|
return nullptr;
|
|
|
|
}
|
2018-10-03 01:22:31 +00:00
|
|
|
if (!FindGroup(group_name)) {
|
|
|
|
LERROR << "Could not find partition group: " << group_name;
|
|
|
|
return nullptr;
|
|
|
|
}
|
fastbootd: Support two super partitions for retrofit devices.
Retrofit devices will have two super partitions, spanning the A and B
slots separately. By design an OTA will never cause "A" or "B"
partitions to be assigned to the wrong super. However, the same is not
true of fastbootd, where it is possible to flash the inactive slot. We
do not want, for example, logical "system_a" flashing to super_b.
When interacting with partitions, fastbootd now extracts the slot suffix
from a GetSuperSlotSuffix() helper. On retrofit devices, if the partition
name has a slot, that slot will override FastbootDevice::GetCurrentSlot.
This forces partitions in the inactive slot to be assigned to the correct
super.
There are two consequences of this. First, partitions with no slot
suffix will default to the current slot. That means it is possible to
wind up with two "scratch" partitions, if "adb remount" is used on both
the "A" and "B" slots. However, only the active slot's "scratch" will be
visible to the user (either through adb or fastboot).
Second, if one slot does not have dynamic partitions, flashing will
default to fixed partitions. For example, if the A slot is logical and B
is not, flashing "system_a" will be logical and "system_b" will be
fixed. This works no matter which slot is active. We do not try to
upgrade the inactive slot to dynamic partitions.
Bug: 116802789
Test: fastboot set_active a
fastboot flashall # dynamic partitions
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # false
fastboot set_active b
fastboot flashall --skip-secondary
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # true
Booting both slots works.
Change-Id: Ib3c91944aaee1a96b2f5ad69c90e215bd6c5a2e8
2018-11-10 04:41:33 +00:00
|
|
|
if (IsABDevice() && !auto_slot_suffixing_ && name != "scratch" &&
|
|
|
|
GetPartitionSlotSuffix(name).empty()) {
|
|
|
|
LERROR << "Unsuffixed partition not allowed on A/B device: " << name;
|
|
|
|
return nullptr;
|
|
|
|
}
|
2018-10-03 20:49:23 +00:00
|
|
|
partitions_.push_back(std::make_unique<Partition>(name, group_name, attributes));
|
2018-06-07 22:36:09 +00:00
|
|
|
return partitions_.back().get();
|
|
|
|
}
|
|
|
|
|
|
|
|
Partition* MetadataBuilder::FindPartition(const std::string& name) {
|
|
|
|
for (const auto& partition : partitions_) {
|
|
|
|
if (partition->name() == name) {
|
|
|
|
return partition.get();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nullptr;
|
|
|
|
}
|
|
|
|
|
2018-10-18 22:29:01 +00:00
|
|
|
PartitionGroup* MetadataBuilder::FindGroup(const std::string& group_name) {
|
2018-10-03 01:22:31 +00:00
|
|
|
for (const auto& group : groups_) {
|
|
|
|
if (group->name() == group_name) {
|
|
|
|
return group.get();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nullptr;
|
|
|
|
}
|
|
|
|
|
|
|
|
uint64_t MetadataBuilder::TotalSizeOfGroup(PartitionGroup* group) const {
|
|
|
|
uint64_t total = 0;
|
|
|
|
for (const auto& partition : partitions_) {
|
|
|
|
if (partition->group_name() != group->name()) {
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
total += partition->BytesOnDisk();
|
|
|
|
}
|
|
|
|
return total;
|
|
|
|
}
|
|
|
|
|
2018-06-07 22:36:09 +00:00
|
|
|
void MetadataBuilder::RemovePartition(const std::string& name) {
|
|
|
|
for (auto iter = partitions_.begin(); iter != partitions_.end(); iter++) {
|
|
|
|
if ((*iter)->name() == name) {
|
|
|
|
partitions_.erase(iter);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-10-20 00:15:31 +00:00
|
|
|
void MetadataBuilder::ExtentsToFreeList(const std::vector<Interval>& extents,
|
|
|
|
std::vector<Interval>* free_regions) const {
|
|
|
|
// Convert the extent list into a list of gaps between the extents; i.e.,
|
|
|
|
// the list of ranges that are free on the disk.
|
|
|
|
for (size_t i = 1; i < extents.size(); i++) {
|
|
|
|
const Interval& previous = extents[i - 1];
|
|
|
|
const Interval& current = extents[i];
|
2018-10-23 21:43:10 +00:00
|
|
|
DCHECK(previous.device_index == current.device_index);
|
2018-10-03 01:22:31 +00:00
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
uint64_t aligned = AlignSector(block_devices_[current.device_index], previous.end);
|
2018-10-20 00:15:31 +00:00
|
|
|
if (aligned >= current.start) {
|
|
|
|
// There is no gap between these two extents, try the next one.
|
|
|
|
// Note that we check with >= instead of >, since alignment may
|
|
|
|
// bump the ending sector past the beginning of the next extent.
|
|
|
|
continue;
|
2018-10-03 01:22:31 +00:00
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-10-20 00:15:31 +00:00
|
|
|
// The new interval represents the free space starting at the end of
|
|
|
|
// the previous interval, and ending at the start of the next interval.
|
2018-10-23 21:43:10 +00:00
|
|
|
free_regions->emplace_back(current.device_index, aligned, current.start);
|
2018-10-20 00:15:31 +00:00
|
|
|
}
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-10-20 00:15:31 +00:00
|
|
|
auto MetadataBuilder::GetFreeRegions() const -> std::vector<Interval> {
|
|
|
|
std::vector<Interval> free_regions;
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
// Collect all extents in the partition table, per-device, then sort them
|
|
|
|
// by starting sector.
|
|
|
|
std::vector<std::vector<Interval>> device_extents(block_devices_.size());
|
2018-06-07 22:36:09 +00:00
|
|
|
for (const auto& partition : partitions_) {
|
|
|
|
for (const auto& extent : partition->extents()) {
|
|
|
|
LinearExtent* linear = extent->AsLinearExtent();
|
|
|
|
if (!linear) {
|
|
|
|
continue;
|
|
|
|
}
|
2018-10-23 21:43:10 +00:00
|
|
|
CHECK(linear->device_index() < device_extents.size());
|
|
|
|
auto& extents = device_extents[linear->device_index()];
|
|
|
|
extents.emplace_back(linear->device_index(), linear->physical_sector(),
|
2018-07-31 23:43:26 +00:00
|
|
|
linear->physical_sector() + extent->num_sectors());
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
}
|
2018-10-20 00:15:31 +00:00
|
|
|
|
|
|
|
// Add 0-length intervals for the first and last sectors. This will cause
|
2018-10-12 20:51:52 +00:00
|
|
|
// ExtentToFreeList() to treat the space in between as available.
|
2018-10-23 21:43:10 +00:00
|
|
|
for (size_t i = 0; i < device_extents.size(); i++) {
|
|
|
|
auto& extents = device_extents[i];
|
|
|
|
const auto& block_device = block_devices_[i];
|
2018-10-20 00:15:31 +00:00
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
uint64_t first_sector = block_device.first_logical_sector;
|
|
|
|
uint64_t last_sector = block_device.size / LP_SECTOR_SIZE;
|
|
|
|
extents.emplace_back(i, first_sector, first_sector);
|
|
|
|
extents.emplace_back(i, last_sector, last_sector);
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
std::sort(extents.begin(), extents.end());
|
|
|
|
ExtentsToFreeList(extents, &free_regions);
|
|
|
|
}
|
2018-10-20 00:15:31 +00:00
|
|
|
return free_regions;
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-11-05 23:21:44 +00:00
|
|
|
bool MetadataBuilder::ValidatePartitionSizeChange(Partition* partition, uint64_t old_size,
|
|
|
|
uint64_t new_size) {
|
2018-10-20 00:15:31 +00:00
|
|
|
PartitionGroup* group = FindGroup(partition->group_name());
|
|
|
|
CHECK(group);
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
|
2018-11-05 23:21:44 +00:00
|
|
|
if (new_size <= old_size) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2018-10-20 00:15:31 +00:00
|
|
|
// Figure out how much we need to allocate, and whether our group has
|
|
|
|
// enough space remaining.
|
2018-11-05 23:21:44 +00:00
|
|
|
uint64_t space_needed = new_size - old_size;
|
2018-10-20 00:15:31 +00:00
|
|
|
if (group->maximum_size() > 0) {
|
|
|
|
uint64_t group_size = TotalSizeOfGroup(group);
|
|
|
|
if (group_size >= group->maximum_size() ||
|
|
|
|
group->maximum_size() - group_size < space_needed) {
|
|
|
|
LERROR << "Partition " << partition->name() << " is part of group " << group->name()
|
2018-11-13 21:58:13 +00:00
|
|
|
<< " which does not have enough space free (" << space_needed << " requested, "
|
|
|
|
<< group_size << " used out of " << group->maximum_size() << ")";
|
2018-10-20 00:15:31 +00:00
|
|
|
return false;
|
|
|
|
}
|
2018-07-31 23:43:26 +00:00
|
|
|
}
|
2018-11-05 23:21:44 +00:00
|
|
|
return true;
|
|
|
|
}
|
2018-07-31 23:43:26 +00:00
|
|
|
|
2018-11-05 23:21:44 +00:00
|
|
|
bool MetadataBuilder::GrowPartition(Partition* partition, uint64_t aligned_size) {
|
|
|
|
uint64_t space_needed = aligned_size - partition->size();
|
2018-10-20 00:15:31 +00:00
|
|
|
uint64_t sectors_needed = space_needed / LP_SECTOR_SIZE;
|
|
|
|
DCHECK(sectors_needed * LP_SECTOR_SIZE == space_needed);
|
2018-10-11 01:49:36 +00:00
|
|
|
|
2018-10-20 00:15:31 +00:00
|
|
|
std::vector<Interval> free_regions = GetFreeRegions();
|
2018-07-31 23:43:26 +00:00
|
|
|
|
2018-10-11 01:25:07 +00:00
|
|
|
const uint64_t sectors_per_block = geometry_.logical_block_size / LP_SECTOR_SIZE;
|
2018-09-04 19:41:21 +00:00
|
|
|
CHECK_NE(sectors_per_block, 0);
|
2018-08-01 21:14:37 +00:00
|
|
|
CHECK(sectors_needed % sectors_per_block == 0);
|
|
|
|
|
2018-12-03 21:39:33 +00:00
|
|
|
if (IsABDevice() && !IsRetrofitDevice() && GetPartitionSlotSuffix(partition->name()) == "_b") {
|
|
|
|
// Allocate "a" partitions top-down and "b" partitions bottom-up, to
|
|
|
|
// minimize fragmentation during OTA.
|
|
|
|
free_regions = PrioritizeSecondHalfOfSuper(free_regions);
|
|
|
|
}
|
|
|
|
|
2018-07-31 23:43:26 +00:00
|
|
|
// Find gaps that we can use for new extents. Note we store new extents in a
|
|
|
|
// temporary vector, and only commit them if we are guaranteed enough free
|
|
|
|
// space.
|
|
|
|
std::vector<std::unique_ptr<LinearExtent>> new_extents;
|
2018-08-01 21:14:37 +00:00
|
|
|
for (auto& region : free_regions) {
|
|
|
|
if (region.length() % sectors_per_block != 0) {
|
|
|
|
// This should never happen, because it would imply that we
|
|
|
|
// once allocated an extent that was not a multiple of the
|
|
|
|
// block size. That extent would be rejected by DM_TABLE_LOAD.
|
|
|
|
LERROR << "Region " << region.start << ".." << region.end
|
|
|
|
<< " is not a multiple of the block size, " << sectors_per_block;
|
|
|
|
|
|
|
|
// If for some reason the final region is mis-sized we still want
|
|
|
|
// to be able to grow partitions. So just to be safe, round the
|
|
|
|
// region down to the nearest block.
|
|
|
|
region.end = region.start + (region.length() / sectors_per_block) * sectors_per_block;
|
|
|
|
if (!region.length()) {
|
|
|
|
continue;
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
|
2018-08-01 21:14:37 +00:00
|
|
|
uint64_t sectors = std::min(sectors_needed, region.length());
|
|
|
|
CHECK(sectors % sectors_per_block == 0);
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
auto extent = std::make_unique<LinearExtent>(sectors, region.device_index, region.start);
|
2018-06-07 22:36:09 +00:00
|
|
|
new_extents.push_back(std::move(extent));
|
2018-08-01 21:14:37 +00:00
|
|
|
sectors_needed -= sectors;
|
|
|
|
if (!sectors_needed) {
|
|
|
|
break;
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
if (sectors_needed) {
|
2018-07-31 23:43:26 +00:00
|
|
|
LERROR << "Not enough free space to expand partition: " << partition->name();
|
|
|
|
return false;
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
|
2018-08-01 21:14:37 +00:00
|
|
|
// Everything succeeded, so commit the new extents.
|
2018-06-07 22:36:09 +00:00
|
|
|
for (auto& extent : new_extents) {
|
|
|
|
partition->AddExtent(std::move(extent));
|
|
|
|
}
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2018-12-03 21:39:33 +00:00
|
|
|
std::vector<MetadataBuilder::Interval> MetadataBuilder::PrioritizeSecondHalfOfSuper(
|
|
|
|
const std::vector<Interval>& free_list) {
|
|
|
|
const auto& super = block_devices_[0];
|
|
|
|
uint64_t first_sector = super.first_logical_sector;
|
|
|
|
uint64_t last_sector = super.size / LP_SECTOR_SIZE;
|
|
|
|
uint64_t midpoint = first_sector + (last_sector - first_sector) / 2;
|
|
|
|
|
|
|
|
// Choose an aligned sector for the midpoint. This could lead to one half
|
|
|
|
// being slightly larger than the other, but this will not restrict the
|
|
|
|
// size of partitions (it might lead to one extra extent if "B" overflows).
|
|
|
|
midpoint = AlignSector(super, midpoint);
|
|
|
|
|
|
|
|
std::vector<Interval> first_half;
|
|
|
|
std::vector<Interval> second_half;
|
|
|
|
for (const auto& region : free_list) {
|
|
|
|
// Note: deprioritze if not the main super partition. Even though we
|
|
|
|
// don't call this for retrofit devices, we will allow adding additional
|
|
|
|
// block devices on non-retrofit devices.
|
|
|
|
if (region.device_index != 0 || region.end <= midpoint) {
|
|
|
|
first_half.emplace_back(region);
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
if (region.start < midpoint && region.end > midpoint) {
|
|
|
|
// Split this into two regions.
|
|
|
|
first_half.emplace_back(region.device_index, region.start, midpoint);
|
|
|
|
second_half.emplace_back(region.device_index, midpoint, region.end);
|
|
|
|
} else {
|
|
|
|
second_half.emplace_back(region);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
second_half.insert(second_half.end(), first_half.begin(), first_half.end());
|
|
|
|
return second_half;
|
|
|
|
}
|
|
|
|
|
2018-07-31 20:34:14 +00:00
|
|
|
void MetadataBuilder::ShrinkPartition(Partition* partition, uint64_t aligned_size) {
|
|
|
|
partition->ShrinkTo(aligned_size);
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
std::unique_ptr<LpMetadata> MetadataBuilder::Export() {
|
|
|
|
std::unique_ptr<LpMetadata> metadata = std::make_unique<LpMetadata>();
|
|
|
|
metadata->header = header_;
|
|
|
|
metadata->geometry = geometry_;
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
// Assign this early so the extent table can read it.
|
2018-11-07 03:06:41 +00:00
|
|
|
for (const auto& block_device : block_devices_) {
|
|
|
|
metadata->block_devices.emplace_back(block_device);
|
|
|
|
if (auto_slot_suffixing_) {
|
|
|
|
metadata->block_devices.back().flags |= LP_BLOCK_DEVICE_SLOT_SUFFIXED;
|
|
|
|
}
|
|
|
|
}
|
2018-10-23 21:43:10 +00:00
|
|
|
|
2018-10-03 01:22:31 +00:00
|
|
|
std::map<std::string, size_t> group_indices;
|
|
|
|
for (const auto& group : groups_) {
|
|
|
|
LpMetadataPartitionGroup out = {};
|
|
|
|
|
|
|
|
if (group->name().size() > sizeof(out.name)) {
|
|
|
|
LERROR << "Partition group name is too long: " << group->name();
|
|
|
|
return nullptr;
|
|
|
|
}
|
2018-11-17 05:37:34 +00:00
|
|
|
if (auto_slot_suffixing_ && group->name() != "default") {
|
|
|
|
out.flags |= LP_GROUP_SLOT_SUFFIXED;
|
|
|
|
}
|
2018-10-03 01:22:31 +00:00
|
|
|
strncpy(out.name, group->name().c_str(), sizeof(out.name));
|
|
|
|
out.maximum_size = group->maximum_size();
|
|
|
|
|
2018-10-16 22:27:56 +00:00
|
|
|
group_indices[group->name()] = metadata->groups.size();
|
2018-10-03 01:22:31 +00:00
|
|
|
metadata->groups.push_back(out);
|
|
|
|
}
|
|
|
|
|
2018-06-07 22:36:09 +00:00
|
|
|
// Flatten the partition and extent structures into an LpMetadata, which
|
|
|
|
// makes it very easy to validate, serialize, or pass on to device-mapper.
|
|
|
|
for (const auto& partition : partitions_) {
|
|
|
|
LpMetadataPartition part;
|
|
|
|
memset(&part, 0, sizeof(part));
|
|
|
|
|
|
|
|
if (partition->name().size() > sizeof(part.name)) {
|
|
|
|
LERROR << "Partition name is too long: " << partition->name();
|
|
|
|
return nullptr;
|
|
|
|
}
|
|
|
|
if (partition->attributes() & ~(LP_PARTITION_ATTRIBUTE_MASK)) {
|
|
|
|
LERROR << "Partition " << partition->name() << " has unsupported attribute.";
|
|
|
|
return nullptr;
|
|
|
|
}
|
|
|
|
|
|
|
|
strncpy(part.name, partition->name().c_str(), sizeof(part.name));
|
|
|
|
part.first_extent_index = static_cast<uint32_t>(metadata->extents.size());
|
|
|
|
part.num_extents = static_cast<uint32_t>(partition->extents().size());
|
|
|
|
part.attributes = partition->attributes();
|
2018-11-07 03:06:41 +00:00
|
|
|
if (auto_slot_suffixing_) {
|
|
|
|
part.attributes |= LP_PARTITION_ATTR_SLOT_SUFFIXED;
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
|
2018-10-16 22:27:56 +00:00
|
|
|
auto iter = group_indices.find(partition->group_name());
|
|
|
|
if (iter == group_indices.end()) {
|
|
|
|
LERROR << "Partition " << partition->name() << " is a member of unknown group "
|
|
|
|
<< partition->group_name();
|
|
|
|
return nullptr;
|
|
|
|
}
|
|
|
|
part.group_index = iter->second;
|
|
|
|
|
2018-06-07 22:36:09 +00:00
|
|
|
for (const auto& extent : partition->extents()) {
|
2018-10-23 21:43:10 +00:00
|
|
|
if (!extent->AddTo(metadata.get())) {
|
|
|
|
return nullptr;
|
|
|
|
}
|
2018-06-07 22:36:09 +00:00
|
|
|
}
|
|
|
|
metadata->partitions.push_back(part);
|
|
|
|
}
|
|
|
|
|
|
|
|
metadata->header.partitions.num_entries = static_cast<uint32_t>(metadata->partitions.size());
|
|
|
|
metadata->header.extents.num_entries = static_cast<uint32_t>(metadata->extents.size());
|
2018-10-03 01:22:31 +00:00
|
|
|
metadata->header.groups.num_entries = static_cast<uint32_t>(metadata->groups.size());
|
2018-10-12 20:51:52 +00:00
|
|
|
metadata->header.block_devices.num_entries =
|
|
|
|
static_cast<uint32_t>(metadata->block_devices.size());
|
2018-06-07 22:36:09 +00:00
|
|
|
return metadata;
|
|
|
|
}
|
|
|
|
|
2018-06-15 18:13:29 +00:00
|
|
|
uint64_t MetadataBuilder::AllocatableSpace() const {
|
2018-10-23 21:43:10 +00:00
|
|
|
uint64_t total_size = 0;
|
|
|
|
for (const auto& block_device : block_devices_) {
|
|
|
|
total_size += block_device.size - (block_device.first_logical_sector * LP_SECTOR_SIZE);
|
|
|
|
}
|
|
|
|
return total_size;
|
2018-06-15 18:13:29 +00:00
|
|
|
}
|
|
|
|
|
2018-09-24 15:07:35 +00:00
|
|
|
uint64_t MetadataBuilder::UsedSpace() const {
|
|
|
|
uint64_t size = 0;
|
|
|
|
for (const auto& partition : partitions_) {
|
|
|
|
size += partition->size();
|
|
|
|
}
|
|
|
|
return size;
|
|
|
|
}
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
uint64_t MetadataBuilder::AlignSector(const LpMetadataBlockDevice& block_device,
|
|
|
|
uint64_t sector) const {
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
// Note: when reading alignment info from the Kernel, we don't assume it
|
|
|
|
// is aligned to the sector size, so we round up to the nearest sector.
|
|
|
|
uint64_t lba = sector * LP_SECTOR_SIZE;
|
2018-10-23 21:43:10 +00:00
|
|
|
uint64_t aligned = AlignTo(lba, block_device.alignment, block_device.alignment_offset);
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
return AlignTo(aligned, LP_SECTOR_SIZE) / LP_SECTOR_SIZE;
|
|
|
|
}
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
bool MetadataBuilder::FindBlockDeviceByName(const std::string& partition_name,
|
|
|
|
uint32_t* index) const {
|
|
|
|
for (size_t i = 0; i < block_devices_.size(); i++) {
|
|
|
|
if (GetBlockDevicePartitionName(block_devices_[i]) == partition_name) {
|
|
|
|
*index = i;
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
2018-11-14 20:53:57 +00:00
|
|
|
bool MetadataBuilder::HasBlockDevice(const std::string& partition_name) const {
|
|
|
|
uint32_t index;
|
|
|
|
return FindBlockDeviceByName(partition_name, &index);
|
|
|
|
}
|
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
bool MetadataBuilder::GetBlockDeviceInfo(const std::string& partition_name,
|
|
|
|
BlockDeviceInfo* info) const {
|
|
|
|
uint32_t index;
|
|
|
|
if (!FindBlockDeviceByName(partition_name, &index)) {
|
|
|
|
LERROR << "No device named " << partition_name;
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
info->size = block_devices_[index].size;
|
|
|
|
info->alignment = block_devices_[index].alignment;
|
|
|
|
info->alignment_offset = block_devices_[index].alignment_offset;
|
2018-10-11 01:25:07 +00:00
|
|
|
info->logical_block_size = geometry_.logical_block_size;
|
2018-10-23 21:43:10 +00:00
|
|
|
info->partition_name = partition_name;
|
2018-10-11 01:25:07 +00:00
|
|
|
return true;
|
|
|
|
}
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
|
2018-10-23 21:43:10 +00:00
|
|
|
bool MetadataBuilder::UpdateBlockDeviceInfo(const std::string& partition_name,
|
|
|
|
const BlockDeviceInfo& device_info) {
|
|
|
|
uint32_t index;
|
|
|
|
if (!FindBlockDeviceByName(partition_name, &index)) {
|
|
|
|
LERROR << "No device named " << partition_name;
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
return UpdateBlockDeviceInfo(index, device_info);
|
|
|
|
}
|
|
|
|
|
|
|
|
bool MetadataBuilder::UpdateBlockDeviceInfo(size_t index, const BlockDeviceInfo& device_info) {
|
|
|
|
CHECK(index < block_devices_.size());
|
|
|
|
|
|
|
|
LpMetadataBlockDevice& block_device = block_devices_[index];
|
|
|
|
if (device_info.size != block_device.size) {
|
2018-10-11 01:25:07 +00:00
|
|
|
LERROR << "Device size does not match (got " << device_info.size << ", expected "
|
2018-10-23 21:43:10 +00:00
|
|
|
<< block_device.size << ")";
|
2018-10-11 01:25:07 +00:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
if (device_info.logical_block_size != geometry_.logical_block_size) {
|
|
|
|
LERROR << "Device logical block size does not match (got " << device_info.logical_block_size
|
|
|
|
<< ", expected " << geometry_.logical_block_size << ")";
|
|
|
|
return false;
|
|
|
|
}
|
2018-08-01 21:14:37 +00:00
|
|
|
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
// The kernel does not guarantee these values are present, so we only
|
|
|
|
// replace existing values if the new values are non-zero.
|
|
|
|
if (device_info.alignment) {
|
2018-10-23 21:43:10 +00:00
|
|
|
block_device.alignment = device_info.alignment;
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
}
|
|
|
|
if (device_info.alignment_offset) {
|
2018-10-23 21:43:10 +00:00
|
|
|
block_device.alignment_offset = device_info.alignment_offset;
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
}
|
2018-10-11 01:25:07 +00:00
|
|
|
return true;
|
liblp: Implement support for request queue alignment.
Block devices in the Linux kernel have a "minimum I/O request" size. The
minimum size is usually acquired by the block driver and can change
from device to device. When stacking devices (such as with
device-mapper), the kernel goes through great lengths to make sure this
alignment is respected for optimal I/O. In device-mapper's case,
misalignment can lead to kernel warnings and performance issues.
While this is unlikely to matter with a few targets, it could become
problematic on a large number of targets, and so we would prefer to
align all partition extents to the minimum I/O size.
We now support two new properties in the partition table geometry: an
"alignment", which is the minimum I/O size, and an "alignment offset",
which is an offset that when applied to sector 0, causes the sector to
be properly aligned within its parent device (for example, if a
physical partition is misaligned). All partition extents now begin on a
sector that respects this alignment.
One major caveat is that it is difficult for the initial partition table
to have the correct alignment without build system and/or flash tool
support. To accomodate this, all alignment is optional, and the lpmake
tool will support a default alignment of 1MiB as a failsafe.
Bug: 79173901
Test: liblp_test gtest
Change-Id: I5bc41b90aa085f4f30393951af0d2b37c4ac2a72
2018-07-09 19:12:52 +00:00
|
|
|
}
|
|
|
|
|
2018-07-31 20:34:14 +00:00
|
|
|
bool MetadataBuilder::ResizePartition(Partition* partition, uint64_t requested_size) {
|
|
|
|
// Align the space needed up to the nearest sector.
|
2018-10-11 01:25:07 +00:00
|
|
|
uint64_t aligned_size = AlignTo(requested_size, geometry_.logical_block_size);
|
2018-08-03 17:12:16 +00:00
|
|
|
uint64_t old_size = partition->size();
|
2018-07-31 20:34:14 +00:00
|
|
|
|
2018-11-05 23:21:44 +00:00
|
|
|
if (!ValidatePartitionSizeChange(partition, old_size, aligned_size)) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
2018-08-03 17:12:16 +00:00
|
|
|
if (aligned_size > old_size) {
|
|
|
|
if (!GrowPartition(partition, aligned_size)) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
} else if (aligned_size < partition->size()) {
|
2018-07-31 20:34:14 +00:00
|
|
|
ShrinkPartition(partition, aligned_size);
|
|
|
|
}
|
2018-08-03 17:12:16 +00:00
|
|
|
|
2018-10-03 01:22:31 +00:00
|
|
|
if (partition->size() != old_size) {
|
|
|
|
LINFO << "Partition " << partition->name() << " will resize from " << old_size
|
|
|
|
<< " bytes to " << aligned_size << " bytes";
|
|
|
|
}
|
2018-07-31 20:34:14 +00:00
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2018-10-18 22:29:01 +00:00
|
|
|
std::vector<std::string> MetadataBuilder::ListGroups() const {
|
|
|
|
std::vector<std::string> names;
|
|
|
|
for (const auto& group : groups_) {
|
|
|
|
names.emplace_back(group->name());
|
|
|
|
}
|
|
|
|
return names;
|
|
|
|
}
|
|
|
|
|
|
|
|
void MetadataBuilder::RemoveGroupAndPartitions(const std::string& group_name) {
|
|
|
|
if (group_name == "default") {
|
|
|
|
// Cannot remove the default group.
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
std::vector<std::string> partition_names;
|
|
|
|
for (const auto& partition : partitions_) {
|
|
|
|
if (partition->group_name() == group_name) {
|
|
|
|
partition_names.emplace_back(partition->name());
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
for (const auto& partition_name : partition_names) {
|
|
|
|
RemovePartition(partition_name);
|
|
|
|
}
|
|
|
|
for (auto iter = groups_.begin(); iter != groups_.end(); iter++) {
|
|
|
|
if ((*iter)->name() == group_name) {
|
|
|
|
groups_.erase(iter);
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-11-05 23:21:44 +00:00
|
|
|
static bool CompareBlockDevices(const LpMetadataBlockDevice& first,
|
|
|
|
const LpMetadataBlockDevice& second) {
|
|
|
|
// Note: we don't compare alignment, since it's a performance thing and
|
|
|
|
// won't affect whether old extents continue to work.
|
|
|
|
return first.first_logical_sector == second.first_logical_sector && first.size == second.size &&
|
|
|
|
GetBlockDevicePartitionName(first) == GetBlockDevicePartitionName(second);
|
|
|
|
}
|
|
|
|
|
|
|
|
bool MetadataBuilder::ImportPartitions(const LpMetadata& metadata,
|
|
|
|
const std::set<std::string>& partition_names) {
|
|
|
|
// The block device list must be identical. We do not try to be clever and
|
|
|
|
// allow ordering changes or changes that don't affect partitions. This
|
|
|
|
// process is designed to allow the most common flashing scenarios and more
|
|
|
|
// complex ones should require a wipe.
|
|
|
|
if (metadata.block_devices.size() != block_devices_.size()) {
|
|
|
|
LINFO << "Block device tables does not match.";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
for (size_t i = 0; i < metadata.block_devices.size(); i++) {
|
|
|
|
const LpMetadataBlockDevice& old_device = metadata.block_devices[i];
|
|
|
|
const LpMetadataBlockDevice& new_device = block_devices_[i];
|
|
|
|
if (!CompareBlockDevices(old_device, new_device)) {
|
|
|
|
LINFO << "Block device tables do not match";
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Import named partitions. Note that we do not attempt to merge group
|
|
|
|
// information here. If the device changed its group names, the old
|
|
|
|
// partitions will fail to merge. The same could happen if the group
|
|
|
|
// allocation sizes change.
|
|
|
|
for (const auto& partition : metadata.partitions) {
|
|
|
|
std::string partition_name = GetPartitionName(partition);
|
|
|
|
if (partition_names.find(partition_name) == partition_names.end()) {
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
if (!ImportPartition(metadata, partition)) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
bool MetadataBuilder::ImportPartition(const LpMetadata& metadata,
|
|
|
|
const LpMetadataPartition& source) {
|
|
|
|
std::string partition_name = GetPartitionName(source);
|
|
|
|
Partition* partition = FindPartition(partition_name);
|
|
|
|
if (!partition) {
|
|
|
|
std::string group_name = GetPartitionGroupName(metadata.groups[source.group_index]);
|
|
|
|
partition = AddPartition(partition_name, group_name, source.attributes);
|
|
|
|
if (!partition) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if (partition->size() > 0) {
|
|
|
|
LINFO << "Importing partition table would overwrite non-empty partition: "
|
|
|
|
<< partition_name;
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
ImportExtents(partition, metadata, source);
|
|
|
|
|
|
|
|
if (!ValidatePartitionSizeChange(partition, 0, partition->size())) {
|
|
|
|
partition->RemoveExtents();
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2018-11-07 03:06:41 +00:00
|
|
|
void MetadataBuilder::SetAutoSlotSuffixing() {
|
|
|
|
auto_slot_suffixing_ = true;
|
|
|
|
}
|
|
|
|
|
fastbootd: Support two super partitions for retrofit devices.
Retrofit devices will have two super partitions, spanning the A and B
slots separately. By design an OTA will never cause "A" or "B"
partitions to be assigned to the wrong super. However, the same is not
true of fastbootd, where it is possible to flash the inactive slot. We
do not want, for example, logical "system_a" flashing to super_b.
When interacting with partitions, fastbootd now extracts the slot suffix
from a GetSuperSlotSuffix() helper. On retrofit devices, if the partition
name has a slot, that slot will override FastbootDevice::GetCurrentSlot.
This forces partitions in the inactive slot to be assigned to the correct
super.
There are two consequences of this. First, partitions with no slot
suffix will default to the current slot. That means it is possible to
wind up with two "scratch" partitions, if "adb remount" is used on both
the "A" and "B" slots. However, only the active slot's "scratch" will be
visible to the user (either through adb or fastboot).
Second, if one slot does not have dynamic partitions, flashing will
default to fixed partitions. For example, if the A slot is logical and B
is not, flashing "system_a" will be logical and "system_b" will be
fixed. This works no matter which slot is active. We do not try to
upgrade the inactive slot to dynamic partitions.
Bug: 116802789
Test: fastboot set_active a
fastboot flashall # dynamic partitions
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # false
fastboot set_active b
fastboot flashall --skip-secondary
fastboot getvar is-logical:system_a # true
fastboot getvar is-logical:system_b # true
Booting both slots works.
Change-Id: Ib3c91944aaee1a96b2f5ad69c90e215bd6c5a2e8
2018-11-10 04:41:33 +00:00
|
|
|
bool MetadataBuilder::IsABDevice() const {
|
|
|
|
if (sABOverrideSet) {
|
|
|
|
return sABOverrideValue;
|
|
|
|
}
|
|
|
|
return android::base::GetBoolProperty("ro.build.ab_update", false);
|
|
|
|
}
|
|
|
|
|
2018-12-03 21:39:33 +00:00
|
|
|
bool MetadataBuilder::IsRetrofitDevice() const {
|
|
|
|
return GetBlockDevicePartitionName(block_devices_[0]) != LP_METADATA_DEFAULT_PARTITION_NAME;
|
|
|
|
}
|
|
|
|
|
2018-06-07 22:36:09 +00:00
|
|
|
} // namespace fs_mgr
|
|
|
|
} // namespace android
|