Cylinder Group Summary

Both UFS1 and UFS2 have one or more fragments that contain the cylinder group summary data structures. These data structures are the same in both versions of UFS, and they contain statistical information about each cylinder group. They are organized as a table, and each entry in the table corresponds to a cylinder group. The address and size of the area are given in the superblock. Each table entry has the fields given in Table 17.4.

As we will see in the next section, these data also can be found in each of the cylinder group descriptors. This information is used when allocating new inodes and blocks.

In our example UFS1 file system image, we saw that the cylinder group summary area was in block 272 and that it was allocated 1,024 bytes. The contents of that fragment are shown here:

# dcat -f openbsd openbsd.dd 272 | xxd

0000000: 0200 0000 2f03 0000 7807 0000 0b00 0000 ..../...x.......

0000016: 0200 0000 cf00 0000 6d07 0000 0500 0000 ........m.......

[REMOVED]

The table entry for group 0 is the first line, and we can see that it has two directories and 815 (0x032f) free blocks. Bytes 8 to 11 show that it has 1,912 (0x0778) free inodes, and bytes 12 to 15 show it has 11 (0x0b) free fragments in partial blocks. The second row is for the second group.

The fsstat tool in TSK will show the cylinder group information when run on a UFS image. The "File System Category" section of Chapter 16 has the fsstat output for our example image. The output contains the cylinder group information from the superblock, from the cylinder group summary area, and from the group descriptors.