Motivation for top-level system requirements

Key design decisions to meet these requirements

More detail on requirements and design

Current status and future plans

(Using Cedar)

BeginTransaction: PROC [] -> [TransID]

CreateFile: PROC [TransID, PageCount] -> [FileID]

ReadPage: PROC [TransID, FileID, PageNumber] -> [PageValue]

WritePage: PROC [TransID, FileID, PageNumber, PageValue]

EndTransaction: PROC [TransID, {commit, abort}] ->
   [{committed, aborted}]

concurrent access to shared files

soft failure (main store error)
hard failure (disk head crash)

Make use of powerful workstation (processing, data caching)

Easy to write new access methods (no locking or recovery issues)

Easy to write applications that mix database and raw file access

Loss of concurrency due to physical locking

Volume of communication is not minimal

Fine-grained access control requires trusted workstation software

Alto (Bcpl)

Alto OS volume format

Pup FTP protocol

Problems:

Alto/Mesa

Specialized volume format

Specialized communication protocol

Problems:

Fewer I/O transfers

Support versions

Cheaper I/O transfers

Less allocation overhead

Support backup

Allows extent-based file structure

Less work before commit

Can be layered on existing file implementation

Can improve performance by buying hardware

Reduce communication overhead by deferring or piggybacking acks, etc.

Provide parallelism

Reduce communication overhead by optimizing standard case at all levels

Clients want abstraction in terms of interfaces and procedures

Useful separation of concerns

Access control

Disk space accounting

Reliability, availability

Configure as workstation file system

Directory system (path name -> [volume ID, file ID])

Pup FTP access

Archive system

Location- and replication-transparent file access

Continuous availability

Guaranteed real-time response

Runs of pages
Accepts random/sequential access hint at open time
Concurrent operations within a transaction
High water mark optimization

Nondisruptive, driven from log

Per-file access lists
Uses Grapevine registration database

System R style
Two-phase commit, optimizations for readonly and local-only cases

Implements buffer pool
Different buffer strategy for random/sequential files
Accepts read-ahead hint, notices chances for write-behind
Isolates rest of Alpine from underlying file system (to be tested soon)

Server in operation since March
About 10 regular users
Used primarily for electronic mail databases
Simple directory system adequate for current use
Real backup not implemented -- copy important files to IFS daily

Size of implementation

Support more users
Implement "real" backup
Implement "real" directory system, FTP protocol
Replace one IFS server with an Alpine server this year
Implement archive system next year

Property: TYPE = {byteLength, createTime, ... }

PropertyValuePair: TYPE = RECORD [
SELECT property: Property FROM
byteLength => [byteLength: ByteCount],
createTime => [createTime: System.GreenwichMeanTime],
...
ENDCASE];

ReadProperties: PROC [...] -> [properties: LIST OF PropertyValuePair]

WriteProperties: PROC [... , properties: LIST OF PropertyValuePair]

You can say what you mean, without worrying about storage allocation or intermediate results

(But not when you care a lot about performance)

Volatile data structures, tied together with REFs

High concurrency; new REFs being handed out all the time

When do you throw an object away?

Each in-call is a new process
Many background processes to manage resources

Clients want a handy way to pass around a file

Package up "conversation", interface, open file