v3-alpha: Rbyds and B-trees and gcksums, oh my!

[geky]

                  ####                                 
               ######## #####    #####                 
             ################# ########  ####          
       #### ### ############################## ####    
     #############-#### ##_#########################   
    ########'#########_\'|######_####################  
     ##### ##########_.. \ .'#_._#### #/#_##########   
   ################_    \ v .'_____#_.'.'_ ########### 
  ################_ "'. |  .""  _________ '"-##########
  ########"#####..--.  /    .-"'|  | |   '"-####'######
    #############    \     /  .---.|_|_    ########### 
     ###########     |    /  -|        |-   ########   
                     )    |  -|littlefs|-              
                     |    |  -|   v3   |-              
                     |    |   '--------'               
                     |   ||     ' ' '                  
       -------------/-/---\\----------------------     

Note: v3-alpha discussion (#1114)

Unfortunately GitHub made a complete mess of the PR discussion. To try to salvage things, please use #1114 for new comments. Feedback/criticism are welcome and immensely important at this stage.

Table of contents ^

1. Hello!
2. Wait, a disk breaking change?
3. What's new?
   1. Implemented
      1. Efficient metadata compaction
      2. Efficient random writes
      3. Better logging: No more sync-padding issues
      4. Efficient inline files, no more RAM constraints
      5. Independent file caches
      6. Easier logging APIs: lfs3_file_fruncate
      7. Sparse files
      8. Efficient file name lookup
      9. A simpler/more robust metadata tree
      10. A well-defined sync model
      11. Stickynotes, no more 0-sized files
      12. A new and improved compat flag system
      13. Error detection! - Global-checksums
      14. Better traversal APIs
      15. Incremental GC
      16. Better recovery from runtime errors
      17. Standard custom attributes
      18. More tests!
      19. Simple key-value APIs
      20. Efficient block allocation, via optional on-disk block-map (gbmap)
      21. Pre-erased block tracking
   2. Planned
      1. Bad block tracking
      2. Error correction! - Metadata redundancy
      3. Error correction! - Data redundancy
      4. Transparent block deduplication
   3. Stretch goals (unlikely)
      1. lfs3_migrate for v2->v3 migration
      2. 16-bit and 64-bit variants
      3. Config API rework
      4. Block device API rework
      5. Custom attr API rework
      6. Alternative (cheaper) write-strategies
      7. Advanced file tree operations
      8. Advanced file copy-on-write operations
      9. Reserved blocks to prevent CoW lockups
      10. Metadata checks to prevent metadata lockups
      11. Integrated block-level ECC
      12. Disk-level RAID
   4. Out-of-scope
      1. Alternative checksums
      2. Feature-limited configurations for smaller code/stack sizes
      3. lfs3_file_openat for dir-relative APIs
      4. lfs3_file_openn for non-null-terminated-string APIs
      5. Transparent compression
      6. Filesystem shrinking
      7. High-level caches
      8. Symbolic links
      9. 100% line/branch coverage
4. Code/stack size
   1. Runtime error recovery
   2. B-tree flexibility
   3. Traversal inversion
5. Benchmarks
   1. Simulated benchmarks
      1. Linear writes
      2. Random writes
      3. Logging
6. Funding

Hello! ^

Hello everyone! As some of you may have already picked up on, there's been a large body of work fermenting in the background for the past couple of years. Originally started as an experiment to try to solve littlefs's $O(n^2)$ metadata compaction, this branch eventually snowballed into more-or-less a full rewrite of the filesystem from the ground up.

There's still several chunks of planned work left, but now that this branch has reached on-disk feature parity with v2, there's nothing really stopping it from being merged eventually.

So I figured it's a good time to start calling this v3, and put together a public roadmap.

NOTE: THIS WORK IS INCOMPLETE AND UNSTABLE

Here's a quick TODO list of planned work before stabilization. More details below:

• Test framework rework (merged, mostly)
• Rbyds
• B-trees
• M-tree
• B-shrubs
• Fruncate
• Sync model rework
• Stickynotes
• Traversal API rework
• Incremental GC
• Global-checksums
• Key-value APIs
• On-disk global block-map (in progress, mostly complete)
• Metadata redundancy
• Data redundancy
• Document, document, document
• Stretch goals

This work may continue to break the on-disk format.

That being said, I highly encourage others to experiment with v3 where possible. Feedback is welcome, and immensely important at this stage. Once it's stabilized, it's stabilized.

To help with this, the current branch uses a v0.0 as its on-disk version to indicate that it is experimental. When it is eventually released, v3 will reject this version and fail to mount.

Unfortunately, the API will be under heavy flux during this period.

Wait, a disk breaking change? ^

Yes. v3 breaks disk compatibility from v2.

I think this is a necessary evil. Attempting to maintain backwards compatibility has a heavy cost:

1. Development time - The littlefs team is ~1 guy, and v3 has already taken ~2.5 years. The extra work to make everything compatible would stretch this out much longer and likely be unsustainable.

2. Code cost - The goal of littlefs is to be, well, little. This is unfortunately in conflict with backwards compatibility.

   Take the new B-tree data-structure, for example. It would be easy to support both B-tree and CTZ skip-list files, but now you need ~2x the code. This cost gets worse for the more enmeshed features, and potentially exceeds the cost of just including both v3 and v2 in the codebase.

So I think it's best for both littlefs as a project and long-term users to break things here.

Note v2 isn't going anywhere! I'm happy to continue maintaining the v2 branch, merge bug fixes when necessary, etc. But the economic reality is my focus will be shifting to v3.

What's new ^

Ok, with that out of the way, what does breaking everything actually get us?

Implemented: ^

• Efficient metadata compaction: $O(n^2) \rightarrow O(n \log n)$ ^

  v3 adopts a new metadata data-structure: Red-black-yellow Dhara trees (rbyds). Based on the data-structure invented by Daniel Beer for the Dhara FTL, rbyds extend log-encoded Dhara trees with self-balancing and self-counting (also called order-statistic) properties.

  This speeds up most metadata operations, including metadata lookup ( $O(n) \rightarrow O(\log n)$ ), and, critically, metadata compaction ( $O(n^2) \rightarrow O(n \log n)$ ).

  This improvement may sound minor on paper, but it's a difference measured in seconds, sometimes even minutes, on devices with extremely large blocks.

• Efficient random writes: $O(n) \rightarrow O(\log_b^2 n)$ ^

  A much requested feature, v3 adopts B-trees, replacing the CTZ skip-list that previously backed files.

  This avoids needing to rewrite the entire file on random reads, bringing the performance back down into tractability.

  For extra cool points, littlefs's B-trees use rbyds for the inner nodes, which makes CoW updates much cheaper than traditional array-packed B-tree nodes when large blocks are involved ( $O(n) \rightarrow O(\log n)$ ).

• Better logging: No more sync-padding issues ^

  v3's B-trees support inlining data directly in the B-tree nodes. This gives us a place to store data during sync, without needing to pad things for prog alignment.

  In v2 this padding would force the rewriting of blocks after sync, which had a tendency to wreck logging performance.

• Efficient inline files, no more RAM constraints: $O(n^2) \rightarrow O(n \log n)$ ^

  In v3, B-trees can have their root inlined in the file's mdir, giving us what I've been calling a "B-shrub". This, combined with the above inlined leaves, gives us a much more efficient inlined file representation, with better code reuse to boot.

  Oh, and B-shrubs also make small B-trees more efficient by avoiding the extra block needed for the root.

• Independent file caches ^

  littlefs's pcache, rcache, and file caches can be configured independently now. This should allow for better RAM utilization when tuning the filesystem.

• Easier logging APIs: lfs3_file_fruncate ^

  Thanks to the new self-counting/order-statistic properties, littlefs can now truncate from both the end and front of files via the new lfs3_file_fruncate API.

  Before, the best option for logging was renaming log files when they filled up. Now, maintaining a log/FIFO is as easy as:

  lfs3_file_write(&lfs, &file, entry, entry_size) => entry_size;
  lfs3_file_fruncate(&lfs, &file, log_size) => 0;

• Sparse files ^

  Another advantage of adopting B-trees, littlefs can now cheaply represent file holes, where contiguous runs of zeros can be implied without actually taking up any disk space.

  Currently this is limited to a couple operations:

  • lfs3_file_truncate
  • lfs3_file_fruncate
  • lfs3_file_seek + lfs3_file_write past the end of the file

  But more advanced hole operations may be added in the future.

• Efficient file name lookup: $O(n) \rightarrow O(\log_b n)$ ^

  littlefs now uses a B-tree (yay code reuse) to organize files by file name. This allows for much faster file name lookup than the previous linked-list of metadata blocks.

• A simpler/more robust metadata tree ^

  As a part of adopting B-trees for metadata, the previous threaded file tree has been completely ripped out and replaced with one big metadata tree: the M-tree.

  I'm not sure how much users are aware of it, but the previous threaded file tree was a real pain-in-the-ass with the amount of bugs it caused. Turns out having a fully-connected graph in a CoBW filesystem is a really bad idea.

  In addition to removing an entire category of possible bugs, adopting the M-tree allows for multiple directories in a single metadata block, removing the 1-dir = 1-block minimum requirement.

• A well-defined sync model ^

  One interesting thing about littlefs, it doesn't have a strictly POSIX API. This puts us in a relatively unique position, where we can explore tweaks to the POSIX API that may make it easer to write powerloss-safe applications.

  To leverage this (and because the previous sync model had some real problems), v3 includes a new, well-defined sync model.

  I think this discussion captures most of the idea, but for a high-level overview:

  1. Open file handles are strictly snapshots of the on-disk state. Writes to a file are copy-on-write (CoW), with no immediate affect to the on-disk state or any other file handles.

  2. Syncing or closing an in-sync file atomically updates the on-disk state and any other in-sync file handles.

  3. Files can be desynced, either explicitly via lfs3_file_desync, or because of an error. Desynced files do not recieve sync broadcasts, and closing a desynced file has no affect on the on-disk state.

  4. Calling lfs3_file_sync on a desynced file will atomically update the on-disk state, any other in-sync file handles, and mark the file as in-sync again.

  5. Calling lfs3_file_resync on a file will discard its current contents and mark the file as in-sync. This is equivalent to
     closing and reopening the file.

• Stickynotes, no more 0-sized files ^

  As an extension of the littlefs's new sync model, v3 introduces a new file type: LFS3_TYPE_STICKYNOTE.

  A stickynote represents a file that's in the awkward state of having been created, but not yet synced. If you lose power, stickynotes are hidden from the user and automatically cleaned up on the next mount.

  This avoids the 0-sized file issue, while still allowing most of the POSIX interactions users expect.

• A new and improved compat flag system ^

  v2.1 was a bit of a mess, but it was a learning experience. v3 still includes a global version field, but also includes a set of compat flags that allow non-linear addition/removal of future features.

  These are probably familiar to users of Linux filesystems, though I've given them slightly different names:

  • rcompat flags - Must understand to read the filesystem (incompat_flags)
  • wcompat flags - Must understand to write to the filesystem (ro_compat_flags)
  • ocompat flags - No understanding necessary (compat_flags)

  This also provides an easy route for marking a filesystem as read-only, non-standard, etc, on-disk.

• Error detection! - Global-checksums ^

  v3 now supports filesystem-wide error-detection. This is actually quite tricky in a CoBW filesystem, and required the invention of global-checksums (gcksums) to prevent rollback issues caused by naive checksumming.

  With gcksums, and a traditional Merkle-tree-esque B-tree construction, v3 now provides a filesystem-wide self-validating checksum via lfs3_fs_cksum. This checksum can be stored external to the filesystem to provide protection against last-commit rollback issues, metastability, or just for that extra peace of mind.

  Funny thing about checksums. It's incredibly cheap to calculate checksums when writing, as we're already processing that data anyways. The hard part is, when do you check the checksums?

  This is a problem that mostly ends up on the user, but to help, v3 adds a large number checksum checking APIs (probably too many if I'm honest):

  • LFS3_M_CKMETA/CKDATA - Check checksums during mount
  • LFS3_O_CKMETA/CKDATA - Check checksums during file open
  • lfs3_fs_ckmeta/ckdata - Explicitly check all checksums in the filesystem
  • lfs3_file_ckmeta/ckdata - Explicitly check a file's checksums
  • LFS3_T_CKMETA/CKDATA - Check checksums incrementally during a traversal
  • LFS3_GC_CKMETA/CKDATA - Check checksums during GC operations
  • LFS3_M_CKPROGS - Closed checking of data during progs
  • LFS3_M_CKFETCHES - Optimistic (not closed) checking of data during fetches
  • LFS3_M_CKREADS (planned) - Closed checking of data during reads

• Better traversal APIs ^

  The traversal API has been completely reworked to be easier to use (both externally and internally).

  No more callback needed, blocks can now be iterated over via the dir-like lfs3_trv_read function.

  Traversals can also perform janitorial work and check checksums now, based on the flags provided to lfs3_trv_open.

• Incremental GC ^

  GC work can now be accomplished incrementally, instead of requiring one big go. This is managed by lfs3_fs_gc, cfg.gc_flags, and cfg.gc_steps.

  Internally, this just shoves one of the new traversal objects into lfs3_t. It's equivalent to managing a traversal object yourself, but hopefully makes it easier to write library code.

  However, this does add a significant chunk of RAM to lfs3_t, so GC is now an opt-in feature behind the LFS3_GC ifdef.

• Better recovery from runtime errors ^

  Since we're already doing a full rewrite, I figured let's actually take the time to make sure things don't break on exceptional errors.

  Most in-RAM filesystem state should now revert to the last known-good state on error.

  The one exception involves file data (not metadata!). Reverting file data correctly turned out to roughly double the cost of files. And now that you can manual revert with lfs3_file_resync, I figured this cost just isn't worth it. So file data remains undefined after an error.

  In total, these changes add a significant amount of code and stack, but I'm of the opinion this is necessary for the maturing of littlefs as a filesystem.

• Standard custom attributes ^

  Breaking disk gives us a chance to reserve attributes 0x80-0xbf for future standard custom attributes:

  • 0x00-0x7f - Free for user-attributes (uattr)
  • 0x80-0xbf - Reserved for standard-attributes (sattr)
  • 0xc0-0xff - Encouraged for system-attributes (yattr)

  In theory, it was technically possible to reserve these attributes without a disk-breaking change, but it's much safer to do so while we're already breaking the disk.

  v3 also includes the possibility of extending the custom attribute space from 8-bits to ~25-bits in the future, but I'd hesitate to to use this, as it risks a significant increase in stack usage.

• More tests! ^

  v3 comes with a couple more tests than v2 (+~6812.2%):

       suites  cases  permutations ;     pls   runtime
  v2:      22    198         11641 ;   28741    54.16s
  v3:      23    784        804655 ; 2228513  1323.18s
  

  You may or may not have seen the test framework rework that went curiously under-utilized. That was actually in preparation for the v3 work.

  The goal is not 100% line/branch coverage, but just to have more confidence in littlefs's reliability.

• Simple key-value APIs ^

  v3 includes a couple easy-to-use key-value APIs:

  • lfs3_get - Get the contents of a file
  • lfs3_size - Get the size of a file
  • lfs3_set - Set the contents of a file
  • lfs3_remove - Remove a file (this one already exists)

  These can be useful for creating small key-value stores on systems that already use littlefs for other storage.

• Efficient block allocation, via optional on-disk block-map (gbmap) ^

  v3 includes support for the global block-map (gbmap), an optional auxiliary tree stored in gstate that can track additional metadata about free blocks. This enables several features: (1) faster block allocation on large disks, (2) pre-erased block tracking, and (3) bad-block tracking.

  The main purpose of the gbmap is to speed up block allocation by removing the RAM requirement of the lookahead buffer. In its current form, it does not eliminate lookahead scans, but it does maximize the work accomplished, amortizing block allocation to ${\sim}O(\log_b n)$. It also persists free block information on-disk, avoiding the need to repopulate the lookahead buffer after every mount.

  For extra cool points, the gbmap leverages the self-counting/order-statistic properties to compress the block ranges in the B-tree, minimizing the related metadata/lookup cost.

  Implementing the gbmap was a particularly difficult challenge due to catch-22 issues. How do you allocate blocks for the gbmap... from the gbmap... without recursion?

• Pre-erased block tracking ^

  Up until now littlefs has not supported any form of pre-erasing blocks. The reason is littlefs has had no way to track pre-erased state across mounts, risking some nasty wear patterns if a device loses power+pre-erases frequently.

  But now with the gbmap, tracking pre-erased blocks is easy... Well, not completely. littlefs has a very conservative model of flash, and avoids progging unless it is sure a prog has not been attempted. We also make no assumptions about erase value, so can't just check for 0xffs. But with a delicate dance of perturb bits in mdir revision counts, and a cheaply updatable known window, the system works now.

  The gbmap with pre-erased block tracking should significantly reduce the latency file writes in the critical path.

Planned: ^

• Bad block tracking ^

  The last remaining gbmap feature, and a much requested one, bad-block tracking leverages the gbmap to mark blocks as bad, avoiding reuse of blocks that are unreliable.

  This should be easy to add at this stage, though there are a few unanswered questions around the API and how to handle bad blocks detected in rdonly contexts.

• Error correction! - Metadata redundancy ^

  Note it's already possible to do error-correction at the block-device level outside of littlefs, see ramcrc32cbd and ramrsbd for examples. Because of this, integrating in-block error correction is low priority.

  But I think there's potential for cross-block error-correction in addition to the in-block error-correction.

  The plan for cross-block error-correction/block redundancy is a bit different for metadata vs data. In littlefs, all metadata is logs, which is a bit of a problem for parity schemes. I think the best we can do is store metadata redundancy as naive copies.

  But we already need two blocks for every mdir, one usually just sits unused when not compacting. This, combined with metadata usually being much smaller than data, makes the naive scheme less costly than one might expect.

• Error correction! - Data redundancy ^

  For raw data blocks, we can be a bit more clever. If we add an optional dedup tree for block -> parity group mapping, and an optional parity tree for parity blocks, we can implement a RAID-esque parity scheme for up to 3 blocks of data redundancy relatively cheaply.

• Transparent block deduplication ^

  This one is a bit funny. Originally block deduplication was intentionally out-of-scope, but it turns out you need something that looks a lot like a dedup tree for error-correction to work in a system that allows multiple block references.

  If we already need a virtual -> physical block mapping for error correction, why not make the key the block checksum and get block deduplication for free?

  Though if this turns out to not be as free as I think it is, block deduplication will fall out-of-scope.

Stretch goals (unlikely): ^

These may or may not be included in v3, depending on time and funding:

• lfs3_migrate for v2->v3 migration ^

• 16-bit and 64-bit variants ^

• Config API rework ^

• Block device API rework ^

• Custom attr API rework ^

• Alternative (cheaper) write-strategies (write-once, global-aligned, eager-crystallization) ^

• Advanced file tree operations (lfs3_file_punchhole, lfs3_file_insertrange, lfs3_file_collapserange, LFS3_SEEK_DATA, LFS3_SEEK_HOLE) ^

• Advanced file copy-on-write operations (shallow lfs3_cowcopy + opportunistic lfs3_copy) ^

• Reserved blocks to prevent CoW lockups ^

• Metadata checks to prevent metadata lockups ^

• Integrated block-level ECC (ramcrc32cbd, ramrsbd) ^

• Disk-level RAID (this is just data redund + a disk aware block allocator) ^

Out-of-scope: ^

If we don't stop somewhere, v3 will never be released. But these may be added in the future:

• Alternative checksums (crc16, crc64, sha256, etc) ^

• Feature-limited configurations for smaller code/stack sizes (LFS3_NO_DIRS, LFS3_KV, LFS3_2BLOCK, etc) ^

• lfs3_file_openat for dir-relative APIs ^

• lfs3_file_openn for non-null-terminated-string APIs ^

• Transparent compression ^

• Filesystem shrinking ^

• High-level caches (block cache, mdir cache, btree leaf cache, etc) ^

• Symbolic links ^

• 100% line/branch coverage ^

Code/stack size ^

littlefs v1, v2, and v3, 1 pixel ~= 1 byte of code, click for a larger interactive codemap (commit)

littlefs v2 and v3 rdonly, 1 pixel ~= 1 byte of code, click for a larger interactive codemap (commit)

Unfortunately, v3 is a little less little than v2:

            code            stack           ctx
v2:        17144             1440           580
v3:        37352 (+117.9%)   2280 (+58.3%)  636 (+9.7%)

            code            stack           ctx
v2-rdonly:  6270              448           580
v3-rdonly: 10616 (+69.3%)     808 (+80.4%)  508 (-12.4%)

On one hand, yes, more features generally means more code.

And it's true there's an opportunity here to carve out more feature-limited builds to save code/stack in the future.

But I think it's worth discussing some of the other reasons for the code/stack increase:

1. Runtime error recovery ^

   Recovering from runtime errors isn't cheap. We need to track both the before and after state of things during fallible operations, and this adds both stack and code.

   But I think this is necessary for the maturing of littlefs as a filesystem.

   Maybe it will make sense to add a sort of LFS3_GLASS mode in the future, but this is out-of-scope for now.

2. B-tree flexibility ^

   The bad news: The new B-tree files are extremely flexible. Unfortunately, this is a double-edged sword.

   B-trees, on their own, don't add that much code. They are a relatively poetic data-structure. But deciding how to write to a B-tree, efficiently, with an unknown write pattern, is surprisingly tricky.

   The current implementation, what I've taken to calling the "lazy-crystallization algorithm", leans on the more complicated side to see what is possible performance-wise.

   The good news: The new B-tree files are extremely flexible.

   There's no reason you need the full crystallization algorithm if you have a simple write pattern, or don't care as much about performance. This will either be a future or stretch goal, but it would be interesting to explore alternative write-strategies that could save code in these cases.

3. Traversal inversion ^

   Inverting the traversal, i.e. moving from a callback to incremental state machine, adds both code and stack as 1. all of the previous on-stack state needs to be tracked explicitly, and 2. we now need to worry about what happens if the filesystem is modified mid-traversal.

   In theory, this could be reverted if you don't need incremental traversals, but extricating incremental traversals from the current codebase would be an absolute nightmare, so this is out-of-scope for now.

Benchmarks ^

First off, I would highly encourage others to do their own benchmarking with v3/v2. Filesystem performance is tricky to measure because it depends heavily on your application's write pattern and hardware nuances. If you do, please share in this thread! Others may find the results useful, and now is the critical time for finding potential disk-related performance issues.

Simulated benchmarks ^

To test the math behind v3, I've put together some preliminary simulated benchmarks.

Note these are simulated and optimistic. They do not take caching or hardware buffers into account, which can have a big impact on performance. Still, I think they provide at least a good first impression of v3 vs v2.

To find an estimate of runtime, I first measured the amount of bytes read, progged, and erased, and then scaled based on values found in relevant datasheets. The options here were a bit limited, but WinBond fortunately provides runtime estimates in the datasheets on their website:

• NOR flash - w25q64jv

• NAND flash - w25n01gv

• SD/eMMC - Also w25n01gv, assuming a perfect FTL

  I said optimistic, didn't I? I could't find useful estimates for SD/eMMC, so I'm just assuming a perfect FTL here.

These also assume an optimal bus configuration, which, as any embedded engineer knows, is often not the case.

Full benchmarks here: https://benchmarks.littlefs.org (repo, commit)

And here are the ones I think are the most interesting:

Note that SD/eMMC is heavily penalized by the lack of on-disk block-map! SD/eMMC breaks flash down into many small blocks, which tends to make block allocator performance dominate.

1. Linear writes, where we write a 1 MiB file and don't call sync until closing the file. ^

   This one is the most frustrating to compare against v2. CTZ skip-lists are really fast at appending! The problem is they are only fast at appending:

   (commit, reads, progs, erases, sim, usage)

2. Random writes, note we start with a 1MiB file. ^

   As expected, v2 is comically bad at random writes. v3 is indistinguishable from zero in the NOR case:

   (commit, reads, progs, erases, sim, usage)

3. Logging, write 4 MiB, but limit the file to 1 MiB. ^

   In v2 this is accomplished by renaming the file, in v3 we can leverage lfs3_file_fruncate.

   v3 performs significantly better with large blocks thanks to avoiding the sync-padding problem:

   (commit, reads, progs, erases, sim, usage)

Funding ^

If you think this work is worthwhile, consider sponsoring littlefs. Current benefits include:

1. Being able to complain about v3 not being released yet
2. Being able to complain about the disk breakage v2 -> v3

I joke, but I truly appreciate those who have contributed to littlefs so far. littlefs, in its current form, is a mostly self-funded project, so every little bit helps.

If you would like to contribute in a different way, or have other requests, feel free to reach me at geky at geky.net.

As stabilization gets closer, I will also be open to contract work to help port/integrate/adopt v3. If this is interesting to anyone, let me know.

Thank you @micropython, @fusedFET for sponsoring littlefs, and thank you @Eclo, @kmetabg, and @nedap for your past sponsorships!

EDIT: Pinned codemap/plot links to specific commits via benchmarks.littlefs.org/tree.html
EDIT: Updated with rdonly code/stack sizes
EDIT: Added link to #1114
EDIT: Implemented simple key-value APIs
EDIT: Added lfs3_migrate stretch goal with link to #1120
EDIT: Adopted lfs3_traversal_t -> lfs3_trv_t rename
EDIT: Added link to #1125 to clarify "feature parity"
EDIT: Updated with gbmap progress

[geky]

There is high risk this thread drowns in noise. So, please limit this thread to high-level v3-wide discussion.

For bugs, low-level questions, concerns, etc, feel free to create issues on littlefs with "v3" in the title. I will label relevant issues with the v3 label when I can.

[dpgeorge]

Fantastic! Great to see this v3 work making it's way into the world.

The code size increase would be the biggest concern for MicroPython. Any optimisations to get that down would be welcome. In particular we put read-only littlefs2 inside a 32k bootloader. Do you have any idea how big the read-only version of v3 is?

[geky]

@dpgeorge, I don't know quite yet. The non-default builds aren't fully reimplemented, but will update this thread when they are. Read-only is the most interesting but also the most time consuming.

The good news is that rbyds (and red-black trees) and B-trees are much more complicated on the write side than read side, so the impact should be less than the default build, but I'll wait to stick my foot in my mouth until after I have actual numbers.

[Ryan-CW-Code]

Looking forward to the Simple key-value APIs in v3

[geky]

@Ryan-CW-Code, it's worth noting the simple key-value APIs are stretch goals. They may or may not make it into v3 depending on how long things take and funding.

Or to put it another way, stretch goals won't block the release of v3. But it would be convenient to get them in while breaking the API, to minimize future API breaks.

Though if they don't make it into v3, I would like to introduce them in future releases, if possible. Note most stretch and out-of-scope features are mainly API related unlikely to affect the on-disk format.

[Ryan-CW-Code]

My English is not very good, please forgive me for using machine translation.
Thanks for your contribution!
Using kvdb and tsdb in the file system is a common function.
We are preparing to migrate from flashdb to littlefs, and have implemented kvdb and tsdb based on littlefs, but due to the long wait for metadata compression, we perform gc operations in a low-priority task every time we make a file change to obtain constant write time.
I noticed that v3 was a good opportunity, with improved metadata compression, and a lot of performance improvements, and I was very willing to test the v3 version.

[geky]

@dpgeorge Initial readonly results:

            code            stack           ctx
v2-rdonly:  6270              448           580
v3-rdonly: 10616 (+69.3%)     808 (+80.4%)  508 (-12.4%)

Digging into the code cost, it's interesting to note most of it comes from the added complexity to filesystem traversal. The threaded linked-list is a significant mess for the write path, but it does make filesystem traversal dead simple.

This hits v3 with the double whammy of both:

1. Filesystem traversal is more complicated since we now need to keep track of where in the B-tree, and which B-tree we're in
2. We need to manage traversal state explicitly since we no longer rely on callbacks

Name lookup is also a bit more costly now that we're binary searching over tree lookups.

It may be possible to shave off another ~1KiB or so by disabling dirs, traversals, cksum checking, etc, (or by letting the compiler gc them), but I think the above costs will dominate.

[MouriNaruto]

It's really nice to see this v3 work. It seems improved a lot. I want to say some of my opinions:

• I hope littlefs v3 can test and document some information like maximum volume size and file size. (both in theoretical and recommended) It will help for littlefs users to know how to use littlefs better.
• I respect with v3 will have breaking changes and think it will make us have a better design. But it will have more challenges to support all (in current stage should be three) major on-disk versions of littlefs images in lightweight scenarios like some MCU devices which need to accept users external storages which format with littlefs.
• In the current stage, we know littlefs v2 implementation's little v1 implementation only have the v1 to v2 migration. I hope littlefs will have a separate version migration implementation source files instead of making inline in lfs*.h and lfs*.c. I think it will be useful for you when having more on-disk versions. (I think it's predictable. Maybe you will create v4 even newer on-disk formats before 2030.) Also, it will makes littlefs implementation more simplified. I hope side by side support of littlefs v3 like v1-prefix and v2-prefix branches will be the default mode, and it will be helpful for users to add littlefs more vNext on-disk format support versions in the future.

Kenji Mouri

[geky]

I hope littlefs v3 can test and document some information like maximum volume size and file size. (both in theoretical and recommended) It will help for littlefs users to know how to use littlefs better.

Noted.

This gets interesting in v3. v3 adopts leb128 encoding for most metadata, which makes the disk format effectively unbounded.

The driver is currently limited to $2^{31}-1$ for both file size and block count (though untested), but in theory it's possible to support both 16-bit ( $2^{15}-1$ ) and 64-bit ( $2^{63}-1$ ) versions. This is currently a stretch goal.

I respect with v3 will have breaking changes and think it will make us have a better design. But it will have more challenges to support all (in current stage should be three) major on-disk versions of littlefs images in lightweight scenarios like some MCU devices which need to accept users external storages which format with littlefs.

I understand a new on-disk version will create headache for users of littlefs, especially those maintaining frameworks with their own users. Unfortunately I don't see an economical path forward with v2. I go into a bit more detail on this here.

As for specifically code cost, a version of v3 that supports v2 is likely to cost about the same as including both versions of the code base. Most of the internal data-structures have changed.

In the current stage, we know littlefs v2 implementation's little v1 implementation only have the v1 to v2 migration.

I'm unsure about a v2 -> v3 migrate function, but open to feedback on this. It's a high-effort, high-risk, low-value function.

I'm also not sure many users used the v1 -> v2 migrate function. I don't have much insight into how users use littlefs, but I received very few bug reports, which either means the code was written perfectly, or more likely few people used it. I think in this space application-level migration is more common, a bit safer, and allows cross-filesystem migration.

On the plus side, v3's data blocks have no embedded metadata, which makes v3 a sort of "universal migrator". In theory you could migrate from any filesystem if you have the spare space for the new metadata blocks.

I hope littlefs will have a separate version migration implementation source files instead of making inline in lfs*.h and lfs*.c.

This is a good idea, and would have been a better file organization for lfs*_migrate. Previously the inlining was because lfs*_migrate needs access to both v1 and v2 internals, but this may be possible with ifdefing the relevant static attributes to make some internals linkable but still undocumented.

I hope side by side support of littlefs v3 like v1-prefix and v2-prefix branches will be the default mode, and it will be helpful for users to add littlefs more vNext on-disk format support versions in the future.

You may be happy to hear this is changing! This branch is already using the lfs3_* prefix by default.

I also plan to adopt lfs2_* in v2 by default as well and sunset the v1-prefix/v2-prefix branches, but only when this branch is ready to merge. No reason to create noise for v2 while this work is incomplete.

I think it will be useful for you when having more on-disk versions. (I think it's predictable. Maybe you will create v4 even newer on-disk formats before 2030.) Also, it will makes littlefs implementation more simplified.

I think a 4th version is very unlikely.

It's a bold statement that may prove untrue, but with any luck v3 has solved most of the lessons learned from v1 and v2. And even if I wanted to (I don't), the time investment required to warrant a 4th version would likely be unsustainable for me.

The good news, one of the lessons learned from v1 and v2, v3 is much more extensible:

• The new rcompat/wcompat flags should make it easier to add/remove on-disk features
• leb128 metadata means we're unlikely to hit limits that can't be extended in the future
• tagged data is variable sized so most structures can add fields in the future
• there's a bit reserved in the tag to allow leb128 encoding, so we can even expand the tag space to be effectively unbounded if we need to

[geky]

Ugh. And of course GitHub made a complete mess of this discussion.

It already hid @dpgeorge and @Ryan-CW-Code's useful comments behind 4 clicks because it thinks commit updates are more important... I'll create an issue...

[geky]

I created #1114 to try to salvage things.

Feel free to continue discussion there, though do try to include a link if you are responding to a comment in this thread.

If you add a comment here it will likely get lost in GitHub's noise...