Mirror
/
mergerfs
mirror of https://github.com/trapexit/mergerfs.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
147 Commits
28 Branches
95 Tags
35 MiB
Tree: 1f1e481075
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1f1e481075'
${ noResults }
mergerfs/README.md

258 lines
17 KiB
Raw Normal View History

add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
add info on lfs and fwfs policies and minfreespace option
9 years ago
Initial commit
11 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
initial code commit
11 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
initial code commit
11 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
rework policy code
10 years ago
per FUSE function policies. closes #52, #53
10 years ago
remove statfs policy
10 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
remove statfs policy
10 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
initial code commit
11 years ago
reverse source and destination mount points to match fstab requirements. closes #13
10 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
reverse source and destination mount points to match fstab requirements. closes #13
10 years ago
format README better for man pages
9 years ago
reverse source and destination mount points to match fstab requirements. closes #13
10 years ago
add Tips and FAQ section to readme
9 years ago
reverse source and destination mount points to match fstab requirements. closes #13
10 years ago
rework category -> fuse function table
9 years ago
reverse source and destination mount points to match fstab requirements. closes #13
10 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
format README better for man pages
9 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
revert removal of 'all' policy and relevant behavior. closes #54
10 years ago
add info on lfs and fwfs policies and minfreespace option
9 years ago
rework category -> fuse function table
9 years ago
format README better for man pages
9 years ago
revert removal of 'all' policy and relevant behavior. closes #54
10 years ago
format README better for man pages
9 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
add info on lfs and fwfs policies and minfreespace option
9 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
Remove 'all' policy and simplify logic
10 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
add info on lfs and fwfs policies and minfreespace option
9 years ago
format README better for man pages
9 years ago
Remove 'all' policy and simplify logic
10 years ago
format README better for man pages
9 years ago
create errno policies for simulating errors. closes #107
9 years ago
add default policies for categories and description of `all`
10 years ago
add info on lfs and fwfs policies and minfreespace option
9 years ago
add default policies for categories and description of `all`
10 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
rework rename Return EXDEV if directories of tragets differ. If the old and new path exist in the same directory first rename each old found by the policy and then unlink/rmdir any new on a drive which didn't rename. The unlink/rmdir will occur only if there were no rename errors. Any failures of unlink/rmdir are ignored. The last rename error is returned.
9 years ago
merge action and search category
10 years ago
format README better for man pages
9 years ago
merge action and search category
10 years ago
format README better for man pages
9 years ago
merge action and search category
10 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
merge action and search category
10 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
format README better for man pages
9 years ago
add man file via markdown -> man conversion with pandoc. closes #14
10 years ago
initial code commit
11 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
format README better for man pages
9 years ago
initial code commit
11 years ago
update docs for xattr features
10 years ago
per FUSE function policies. closes #52, #53
10 years ago
add info on lfs and fwfs policies and minfreespace option
9 years ago
format README better for man pages
9 years ago
per FUSE function policies. closes #52, #53
10 years ago
initial code commit
11 years ago
update docs for xattr features
10 years ago
support runtime setting of srcmounts. closes #12
10 years ago
add minfreespace to xattr interface
9 years ago
revert removal of 'all' policy and relevant behavior. closes #54
10 years ago
per FUSE function policies. closes #52, #53
10 years ago
revert removal of 'all' policy and relevant behavior. closes #54
10 years ago
per FUSE function policies. closes #52, #53
10 years ago
revert removal of 'all' policy and relevant behavior. closes #54
10 years ago
per FUSE function policies. closes #52, #53
10 years ago
revert removal of 'all' policy and relevant behavior. closes #54
10 years ago
per FUSE function policies. closes #52, #53
10 years ago
update docs for xattr features
10 years ago
initial code commit
11 years ago
per FUSE function policies. closes #52, #53
10 years ago
update docs for xattr features
10 years ago
support runtime setting of srcmounts. closes #12
10 years ago
initial code commit
11 years ago
fix readme typos and misc formatting
9 years ago
per FUSE function policies. closes #52, #53
10 years ago
support runtime setting of srcmounts. closes #12
10 years ago
format README better for man pages
9 years ago
support runtime setting of srcmounts. closes #12
10 years ago
fix readme typos and misc formatting
9 years ago
format README better for man pages
9 years ago
per FUSE function policies. closes #52, #53
10 years ago
support runtime setting of srcmounts. closes #12
10 years ago
remove statfs policy
10 years ago
format README better for man pages
9 years ago
remove statfs policy
10 years ago
fix readme typos and misc formatting
9 years ago
remove statfs policy
10 years ago
update docs for xattr features
10 years ago
support runtime setting of srcmounts. closes #12
10 years ago
add user.mergerfs.allpaths and user.mergerfs.relpath to getxattr
10 years ago
remove statfs policy
10 years ago
add Tips and FAQ section to readme
9 years ago
format README better for man pages
9 years ago
add Tips and FAQ section to readme
9 years ago
format README better for man pages
9 years ago
add Tips and FAQ section to readme
9 years ago
format README better for man pages
9 years ago
add Tips and FAQ section to readme
9 years ago
format README better for man pages
9 years ago
add Tips and FAQ section to readme
9 years ago
format README better for man pages
9 years ago
add Tips and FAQ section to readme
9 years ago
format README better for man pages
9 years ago
add Tips and FAQ section to readme
9 years ago
format README better for man pages
9 years ago
fix readme typos and misc formatting
9 years ago
format README better for man pages
9 years ago
fix readme typos and misc formatting
9 years ago
format README better for man pages
9 years ago
  1. % mergerfs(1) mergerfs user manual
  2. % Antonio SJ Musumeci <trapexit@spawn.link>
  3. % 2015-07-03
  5. # NAME
  7. mergerfs - another FUSE union filesystem
  9. # SYNOPSIS
  11. mergerfs -o&lt;options&gt; &lt;srcpoints&gt; &lt;mountpoint&gt;
  13. # DESCRIPTION
  15. **mergerfs** is similar to **mhddfs**, **unionfs**, and **aufs**. Like **mhddfs** in that it too uses **FUSE**. Like **aufs** in that it provides multiple policies for how to handle behavior.
  17. Why create **mergerfs** when those exist? **mhddfs** has not been updated in some time nor very flexible. There are also security issues when with running as root. **aufs** is more flexible than **mhddfs** but contains some hard to debug inconsistencies in behavior on account of it being a kernel driver. Neither support file attributes ([chattr](http://linux.die.net/man/1/chattr)).
  19. # OPTIONS
  21. ###options###
  23. * **defaults** is a shortcut for **auto_cache**. **big_writes**, **atomic_o_trunc**, **splice_read**, **splice_write**, and **splice_move** are in effect also enabled (by asking **FUSE** internally for such features) but if unavailable will be ignored. These options seem to provide the best performance.
  24. * **minfreespace** (defaults to **4G**) is the minimum space value used for the **lfs** and **fwfs** policies. Understands 'K', 'M', and 'G' to represent kilobyte, megabyte, and gigabyte respectively.
  25. * All FUSE functions which have a category (see below) are option keys. The syntax being **func.&lt;func&gt;=&lt;policy&gt;**. Example: **func.getattr=newest**.
  26. * To set all function policies in a category use **categor.&lt;category&gt;=&lt;policy&gt;**. Example: **category.create=mfs**.
  27. * Options are evaluated in the order listed so if the options are **func.rmdir=rand,category.action=ff** the **action** category setting will override the **rmdir** setting.
  29. ###srcpoints###
  31. The source points argument is a colon (':') delimited list of paths. To make it simpler to include multiple source points without having to modify your [fstab](http://linux.die.net/man/5/fstab) we also support [globbing](http://linux.die.net/man/7/glob).
  33. ```
  34. $ mergerfs /mnt/disk*:/mnt/cdrom /media/drives
  35. ```
  37. The above line will use all points in /mnt prefixed with *disk* and the directory *cdrom*.
  39. In /etc/fstab it'd look like the following:
  41. ```
  42. # <file system> <mount point> <type> <options> <dump> <pass>
  43. /mnt/disk*:/mnt/cdrom /media/drives fuse.mergerfs defaults,allow_other 0 0
  44. ```
  46. **NOTE:** the globbing is done at mount or xattr update time. If a new directory is added matching the glob after the fact it will not be included.
  48. # POLICIES
  50. Filesystem calls are broken up into 3 categories: **action**, **create**, **search**. There are also some calls which have no policy attached due to state being kept between calls. These categories can be assigned a policy which dictates how **mergerfs** behaves. Any policy can be assigned to a category though some aren't terribly practical. For instance: **rand** (Random) may be useful for **create** but could lead to very odd behavior if used for **search**.
  52. #### Functional classifications ####
  54. | Category | FUSE Functions |
  55. |----------|----------------|
  56. | action | chmod, chown, link, removexattr, rename, rmdir, setxattr, truncate, unlink, utimens |
  57. | create | create, mkdir, mknod, symlink |
  58. | search | access, getattr, getxattr, ioctl, listxattr, open, readlink |
  59. | N/A | fallocate, fgetattr, fsync, ftruncate, ioctl, read, readdir, release, statfs, write |
  61. **ioctl** behaves differently if its acting on a directory. It'll use the **getattr** policy to find and open the directory before issuing the **ioctl**. In other cases where something may be searched (to confirm a directory exists across all source mounts) then **getattr** will be used.
  63. #### Policy descriptions ####
  65. | Policy | Description |
  66. |--------------|-------------|
  67. | ff (first found) | Given the order of the paths act on the first one found (regardless if stat would return EACCES). |
  68. | ffwp (first found w/ permissions) | Given the order of the paths act on the first one found which you have access (stat does not error with EACCES). |
  69. | newest (newest file) | If multiple files exist return the one with the most recent mtime. |
  70. | mfs (most free space) | Use the drive with the most free space available. |
  71. | epmfs (existing path, most free space) | If the path exists in multiple locations use the one with the most free space. Otherwise fall back to **mfs**. |
  72. | fwfs (first with free space) | Pick the first path which has at least **minfreespace**. |
  73. | lfs (least free space) | Pick the path with least available space but more than **minfreespace**. |
  74. | rand (random) | Pick an existing destination at random. |
  75. | all | Applies action to all found. For searches it will behave like first found **ff**. |
  76. | enosys, einval, enotsup, exdev, erofs | Exclusively return `-1` with `errno` set to the respective value. Useful for debugging other applications' behavior to errors. |
  78. #### Defaults ####
  80. | Category | Policy |
  81. |----------|--------|
  82. | action | all |
  83. | create | epmfs |
  84. | search | ff |
  86. #### rename ####
  88. [rename](http://man7.org/linux/man-pages/man2/rename.2.html) is a tricky function in a merged system. Normally if a rename can't be done atomically due to the from and to paths existing on different mount points it will return `-1` with `errno = EXDEV`. The atomic rename is most critical for replacing files in place atomically (such as securing writing to a temp file and then replacing a target). The problem is that by merging multiple paths you can have N instances of the source and destinations on different drives. Meaning that if you just renamed each source locally you could end up with the destination files not overwriten / replaced. To address this mergerfs works in the following way. If the source and destination exist in different directories it will immediately return `EXDEV`. Generally it's not expected for cross directory renames to work so it should be fine for most instances (mv,rsync,etc.). If they do belong to the same directory it then runs the `rename` policy to get the files to rename. It iterates through and renames each file while keeping track of those paths which have not been renamed. If all the renames succeed it will then `unlink` or `rmdir` the other paths to clean up any preexisting target files. This allows the new file to be found without the file itself ever disappearing. There may still be some issues with this behavior. Particularly on error. At the moment however this seems the best policy.
  90. #### readdir ####
  92. [readdir](http://linux.die.net/man/3/readdir) is very different from most functions in this realm. It certainly could have it's own set of policies to tweak its behavior. At this time it provides a simple **first found** merging of directories and file found. That is: only the first file or directory found for a directory is returned. Given how FUSE works though the data representing the returned entry comes from **getattr**.
  94. It could be extended to offer the ability to see all files found. Perhaps concatenating **#** and a number to the name. But to really be useful you'd need to be able to access them which would complicate file lookup.
  96. #### statvfs ####
  98. [statvfs](http://linux.die.net/man/2/statvfs) normalizes the source drives based on the fragment size and sums the number of adjusted blocks and inodes. This means you will see the combined space of all sources. Total, used, and free. The sources however are dedupped based on the drive so multiple points on the same drive will not result in double counting it's space.
  100. **NOTE:** Since we can not (easily) replicate the atomicity of an **mkdir** or **mknod** without side effects those calls will first do a scan to see if the file exists and then attempts a create. This means there is a slight race condition. Worse case you'd end up with the directory or file on more than one mount.
  102. # BUILDING
  104. First get the code from [github](http://github.com/trapexit/mergerfs).
  106. ```
  107. $ git clone https://github.com/trapexit/mergerfs.git
  108. $ # or
  109. $ wget https://github.com/trapexit/mergerfs/archive/master.zip
  110. ```
  112. #### Debian / Ubuntu
  113. ```
  114. $ sudo apt-get install g++ pkg-config git git-buildpackage pandoc debhelper libfuse-dev libattr1-dev
  115. $ cd mergerfs
  116. $ make deb
  117. $ sudo dpkg -i ../mergerfs_version_arch.deb
  118. ```
  120. #### Generically
  122. Have pkg-config, pandoc, libfuse, libattr1 installed.
  124. ```
  125. $ cd mergerfs
  126. $ make
  127. $ make man
  128. $ sudo make install
  129. ```
  131. # RUNTIME
  133. #### .mergerfs pseudo file ####
  134. ```
  135. <mountpoint>/.mergerfs
  136. ```
  138. There is a pseudo file available at the mount point which allows for the runtime modification of certain **mergerfs** options. The file will not show up in **readdir** but can be **stat**'ed and manipulated via [{list,get,set}xattrs](http://linux.die.net/man/2/listxattr) calls.
  140. Even if xattrs are disabled the [{list,get,set}xattrs](http://linux.die.net/man/2/listxattr) calls will still work.
  142. ##### Keys #####
  144. Use `xattr -l /mount/point/.mergerfs` to see all supported keys.
  146. ##### Example #####
  148. ```
  149. [trapexit:/tmp/mount] $ xattr -l .mergerfs
  150. user.mergerfs.srcmounts: /tmp/a:/tmp/b
  151. user.mergerfs.minfreespace: 4294967295
  152. user.mergerfs.category.action: all
  153. user.mergerfs.category.create: epmfs
  154. user.mergerfs.category.search: ff
  155. user.mergerfs.func.access: ff
  156. user.mergerfs.func.chmod: all
  157. user.mergerfs.func.chown: all
  158. user.mergerfs.func.create: epmfs
  159. user.mergerfs.func.getattr: ff
  160. user.mergerfs.func.getxattr: ff
  161. user.mergerfs.func.link: all
  162. user.mergerfs.func.listxattr: ff
  163. user.mergerfs.func.mkdir: epmfs
  164. user.mergerfs.func.mknod: epmfs
  165. user.mergerfs.func.open: ff
  166. user.mergerfs.func.readlink: ff
  167. user.mergerfs.func.removexattr: all
  168. user.mergerfs.func.rename: all
  169. user.mergerfs.func.rmdir: all
  170. user.mergerfs.func.setxattr: all
  171. user.mergerfs.func.symlink: epmfs
  172. user.mergerfs.func.truncate: all
  173. user.mergerfs.func.unlink: all
  174. user.mergerfs.func.utimens: all
  176. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.category.search .mergerfs
  177. ff
  179. [trapexit:/tmp/mount] $ xattr -w user.mergerfs.category.search ffwp .mergerfs
  180. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.category.search .mergerfs
  181. ffwp
  183. [trapexit:/tmp/mount] $ xattr -w user.mergerfs.srcmounts +/tmp/c .mergerfs
  184. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.srcmounts .mergerfs
  185. /tmp/a:/tmp/b:/tmp/c
  187. [trapexit:/tmp/mount] $ xattr -w user.mergerfs.srcmounts =/tmp/c .mergerfs
  188. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.srcmounts .mergerfs
  189. /tmp/c
  191. [trapexit:/tmp/mount] $ xattr -w user.mergerfs.srcmounts '+</tmp/a:/tmp/b' .mergerfs
  192. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.srcmounts .mergerfs
  193. /tmp/a:/tmp/b:/tmp/c
  194. ```
  196. ##### user.mergerfs.srcmounts #####
  198. For **user.mergerfs.srcmounts** there are several instructions available for manipulating the list. The value provided is just as the value used at mount time. A colon (':') delimited list of full path globs.
  200. | Instruction | Description |
  201. |--------------|-------------|
  202. | [list] | set |
  203. | +<[list] | prepend |
  204. | +>[list] | append |
  205. | -[list] | remove all values provided |
  206. | -< | remove first in list |
  207. | -> | remove last in list |
  210. ##### misc #####
  212. Categories and funcs take a policy as described in the previous section. When reading funcs you'll get the policy string. However, with categories you'll get a comma separated list of policies for each type found. For example: if all search functions are **ff** except for **access** which is **ffwp** the value for **user.mergerfs.category.search** will be **ff,ffwp**.
  214. #### mergerfs file xattrs ####
  216. While they won't show up when using [listxattr](http://linux.die.net/man/2/listxattr) **mergerfs** offers a number of special xattrs to query information about the files served. To access the values you will need to issue a [getxattr](http://linux.die.net/man/2/getxattr) for one of the following:
  218. * **user.mergerfs.basepath:** the base mount point for the file given the current search policy
  219. * **user.mergerfs.relpath:** the relative path of the file from the perspective of the mount point
  220. * **user.mergerfs.fullpath:** the full path of the original file given the search policy
  221. * **user.mergerfs.allpaths:** a NUL ('\0') separated list of full paths to all files found
  223. ```
  224. [trapexit:/tmp/mount] $ ls
  225. A B C
  226. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.fullpath A
  227. /mnt/a/full/path/to/A
  228. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.basepath A
  229. /mnt/a
  230. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.relpath A
  231. /full/path/to/A
  232. [trapexit:/tmp/mount] $ xattr -p user.mergerfs.allpaths A | tr '\0' '\n'
  233. /mnt/a/full/path/to/A
  234. /mnt/b/full/path/to/A
  235. ```
  237. # TIPS / NOTES
  239. * The recommended options are **defaults,allow_other**. The **allow_other** is to allow users who are not the one which executed mergerfs access to the mountpoint. **defaults** is described above and should offer the best performance. It's possible that if you're running on an older platform the **splice** features aren't available and could error. In that case simply use the other options manually.
  240. * Remember that some policies mixed with some functions may result in strange behaviors. Not that some of these behaviors and race conditions couldn't happen outside **mergerfs** but that they are far more likely to occur on account of attempt to merge together multiple sources of data which could be out of sync due to the different policies.
  241. * An example: [Kodi](http://kodi.tv) can apparently use directory [mtime](http://linux.die.net/man/2/stat) to more efficiently determine whether or not to scan for new content rather than simply performing a full scan. If using the current default **getattr** policy of **ff** its possible **Kodi** will miss an update on account of it returning the first directory found's **stat** info and its a later directory on another mount which had the **mtime** recently updated. To fix this you will want to set **func.getattr=newest**. Remember though that this is just **stat**. If the file is later **open**'ed or **unlink**'ed and the policy is different for those then a completely different file or directory could be acted on.
  242. * Due to previously mentioned issues its generally best to set **category** wide policies rather than individual **func**'s. This will help limit the confusion of tools such as [rsync](http://linux.die.net/man/1/rsync).
  244. # FAQ
  246. *It's mentioned that there are some security issues with mhddfs. What are they? How does mergerfs address them?*
  248. [mhddfs](https://github.com/trapexit/mhddfs) tries to handle being run as **root** by calling [getuid()](https://github.com/trapexit/mhddfs/blob/cae96e6251dd91e2bdc24800b4a18a74044f6672/src/main.c#L319) and if it returns **0** then it will [chown](http://linux.die.net/man/1/chown) the file. Not only is that a race condition but it doesn't handle many other situations. Rather than attempting to simulate POSIX ACL behaviors the proper behavior is to use [seteuid](http://linux.die.net/man/2/seteuid) and [setegid](http://linux.die.net/man/2/setegid), become the user making the original call and perform the action as them. This is how [mergerfs](https://github.com/trapexit/mergerfs) handles things.
  250. If you are familiar with POSIX standards you'll know that this behavior poses a problem. **seteuid** and **setegid** affect the whole process and **libfuse** is multithreaded by default. We'd need to lock access to **seteuid** and **setegid** with a mutex so that the several threads aren't stepping on one another and files end up with weird permissions and ownership. This however wouldn't scale well. With lots of calls the contention on that mutex would be extremely high. Thankfully on Linux and OSX we have a better solution.
  252. OSX has a [non-portable pthread extension](https://developer.apple.com/library/mac/documentation/Darwin/Reference/ManPages/man2/pthread_setugid_np.2.html) for per-thread user and group impersonation. When building on OSX mergerfs will use this without any mutexes.
  254. Linux does not support [pthread_setugid_np](https://developer.apple.com/library/mac/documentation/Darwin/Reference/ManPages/man2/pthread_setugid_np.2.html) but user and group IDs are a per-thread attribute though documentation on that fact or how to manipulate them is not well distributed. From the **4.00** release of the Linux man-pages project for [setuid](http://man7.org/linux/man-pages/man2/setuid.2.html)
  256. > At the kernel level, user IDs and group IDs are a per-thread attribute. However, POSIX requires that all threads in a process share the same credentials. The NPTL threading implementation handles the POSIX requirements by providing wrapper functions for the various system calls that change process UIDs and GIDs. These wrapper functions (including the one for setuid()) employ a signal-based technique to ensure that when one thread changes credentials, all of the other threads in the process also change their credentials. For details, see nptl(7).
  258. Turns out the setreuid syscalls apply only to the thread. GLIBC hides this away using RT signals and other tricks. Taking after **Samba** mergerfs uses **syscall(SYS_setreuid,...)** to set the callers credentials for that thread only. Jumping back to **root** as necessary should escalated privileges be needed (for instance: to clone paths).