research-article

Using declarative invariants for protecting file-system integrity

Authors:
Jack Sun

University of Toronto

University of Toronto
View Profile

,
Daniel Fryer

University of Toronto

University of Toronto
View Profile

,
Ashvin Goel

University of Toronto

University of Toronto
View Profile

,
Angela Demke Brown

University of Toronto

University of Toronto
View Profile

PLOS '11: Proceedings of the 6th Workshop on Programming Languages and Operating SystemsOctober 2011Article No.: 6Pages 1–5https://doi.org/10.1145/2039239.2039248

Published:23 October 2011Publication History

PLOS '11: Proceedings of the 6th Workshop on Programming Languages and Operating Systems

Pages 1–5

ABSTRACT

We have been developing a framework, called Recon, that uses runtime checking to protect the integrity of file-system metadata on disk. Recon performs consistency checks at commit points in transaction-based file systems. We define declarative statements called consistency invariants for a file system, which must be satisfied by each transaction being committed to disk. By checking each transaction before it commits, we prevent any corruption to file-system metadata from reaching the disk.

Our prototype system required writing the consistency invariants in C. In this paper, we argue that using a declarative language to express and check these invariants improves the clarity of the rules, making them easier to reason about, verify, and port to new file systems. We describe how file system invariants can be written and checked using the Datalog declarative language in the Recon framework.

References

Daniel Fryer, Rahat Mahmood, Ashvin Goel, and Angela Demke Brown. Verifying file system consistency at runtime. Technical report, University of Toronto, 2011. http://hdl.handle.net/1807/27754.Google Scholar
Gregory R. Ganger, Marshall Kirk McKusick, Craig A. N. Soules, and Yale N. Patt. Soft updates: a solution to the metadata update problem in file systems. ACM Transactions on Computer Systems, 18(2):127--153, 2000. Google ScholarDigital Library
Haryadi S. Gunawi, Thanh Do, Pallavi Joshi, Peter Alvaro, Joseph M. Hellerstein, Andrea C. Arpaci-Dusseau, Remzi H. Arpaci-Dusseau, Koushik Sen, and Dhruba Borthakur. Fate and destini: a framework for cloud recovery testing. In Proceedings of the Networked Systems Design and Implementation (NSDI), April 2011. Google ScholarDigital Library
Haryadi S. Gunawi, Vijayan Prabhakaran, Swetha Krishnan, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. Improving file system reliability with i/o shepherding. In Proceedings of the Symposium on Operating Systems Principles (SOSP), pages 293--306, 2007. Google ScholarDigital Library
Haryadi S. Gunawi, Abhishek Rajimwale, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. SQCK: A declarative file system checker. In Proceedings of the Operating Systems Design and Implementation (OSDI), December 2008. Google ScholarDigital Library
R. Hagmann. Reimplementing the Cedar file system using logging and group commit. In Proceedings of the Symposium on Operating Systems Principles (SOSP), November 1987. Google ScholarDigital Library
Dave Hitz, James Lau, and Michael Malcolm. File system design for an nfs file server appliance. In Proceedings of the USENIX Technical Conference, 1994. Google ScholarDigital Library
Boon Thau Loo, Tyson Condie, Joseph M. Hellerstein, Petros Maniatis, Timothy Roscoe, and Ion Stoica. Implementing declarative overlays. In Proceedings of the Symposium on Operating Systems Principles (SOSP), pages 75--90, 2005. Google ScholarDigital Library
Vijayan Prabhakaran, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. Model-based failure analysis of journaling file systems. In Proceedings of the IEEE Dependable Systems and Networks, pages 802--811, 2005. Google ScholarDigital Library
Vijayan Prabhakaran, Lakshmi N. Bairavasundaram, Nitin Agrawal, Haryadi S. Gunawi, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. Iron file systems. In Proceedings of the Symposium on Operating Systems Principles (SOSP), pages 206--220, 2005. Google ScholarDigital Library
Adrian Schüpbach, Andrew Baumann, Timothy Roscoe, and Simon Peter. A declarative language approach to device configuration. In Proceedings of the International Conference on Architectural Support for Programming Languages and Operating Systems, pages 119--132, March 2011. Google ScholarDigital Library
Muthian Sivathanu, Vijayan Prabhakaran, Florentina I. Popovici, Timothy E. Denehy, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. Semantically-smart disk systems. In USENIX Conference on File and Storage Technologies, pages 73--88, 2003. Google ScholarDigital Library
Junfeng Yang, Can Sar, Paul Twohey, Cristian Cadar, and Dawson Engler. Automatically generating malicious disks using symbolic execution. In Proceedings of the IEEE Symposium on Security and Privacy, pages 243--257, 2006. Google ScholarDigital Library
Junfeng Yang, Paul Twohey, Dawson Engler, and Madanlal Musuvathi. Using model checking to find serious file system errors. ACM Transactions on Computer Systems, 24(4):393--423, 2006. Google ScholarDigital Library
Yupu Zhang, Abhishek Rajimwale, Andrea C. Arpaci-Dusseau, and Remzi H. Arpaci-Dusseau. End-to-end data integrity for file systems: a ZFS case study. In Proceedings of the USENIX Conference on File and Storage Technologies, 2010. Google ScholarDigital Library

Index Terms

Using declarative invariants for protecting file-system integrity
1. General and reference
  1. Cross-computing tools and techniques
    1. Reliability
2. Software and its engineering
  1. Software organization and properties
    1. Contextual software domains
      1. Operating systems
        File systems management
    2. Extra-functional properties
      1. Software reliability

Recommendations

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in

PLOS '11: Proceedings of the 6th Workshop on Programming Languages and Operating Systems
October 2011
45 pages
ISBN:9781450309790
DOI:10.1145/2039239

Copyright © 2011 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 23 October 2011
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Qualifiers
- research-article
Conference

Acceptance Rates
Overall Acceptance Rate17of32submissions,53%
Upcoming Conference
SOSP '24

Sponsor:

sigops

ACM SIGOPS 29th Symposium on Operating Systems Principles

November 5 - 8, 2024

Austin , TX , USA
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 6
  Total Citations
  View Citations
- 99
  Total Downloads
- Downloads (Last 12 months)1
- Downloads (Last 6 weeks)1
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Using declarative invariants for protecting file-system integrity

PLOS '11: Proceedings of the 6th Workshop on Programming Languages and Operating Systems

ABSTRACT

References

Cited By

Index Terms

Recommendations

File system performance and transaction support

File System Performance and Transaction Support

The zebra striped network file system

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Permissions

Check for updates

Qualifiers

Conference

Acceptance Rates

Upcoming Conference

Funding Sources

Other Metrics

Article Metrics

Other Metrics

Cited By

PDF Format

eReader

Digital Edition

Caption

Using declarative invariants for protecting file-system integrity

PLOS '11: Proceedings of the 6th Workshop on Programming Languages and Operating Systems

ABSTRACT

References

Cited By

Index Terms

Recommendations

File system performance and transaction support

File System Performance and Transaction Support

The zebra striped network file system

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Permissions

Check for updates

Qualifiers

Conference

Acceptance Rates

Upcoming Conference

Funding Sources

Article Metrics

Other Metrics

PDF Format

eReader

Digital Edition

Share this Publication link

Share on Social Media