interprocess icon indicating copy to clipboard operation
interprocess copied to clipboard

Published 20 hours ago verified publisher icon boostorg

Add flock based implementation for managed_nonpersistent_shared_memory

Open stheophil opened this issue 5 years ago • 0 comments

Hi Ion,

a few years back we ran into the same problem like many other boost.interprocess users. Posix shared memory / file-backed shared memory semantics make it hard to recover after one of the participating processes has terminated unexpectedly, see [1] [2] [3] [4] and issues https://github.com/boostorg/interprocess/issues/65 https://github.com/boostorg/interprocess/issues/56 https://github.com/boostorg/interprocess/issues/109

Windows shared memory fixes this by releasing the shared memory object. Linux has robust locks that tell the user that the owner has crashes. Other systems such as macOS have no easy solution.

We have used and tested the attached solution for the last few years on macOS and hope that it is robust. The core of the implementation is nonpersistent_shared_memory_object::priv_open_or_create

In short, the backing file is first opened with an exclusive lock, which indicates that the caller is the first to open the file. The file is then truncated and the lock is degraded to a shared lock. When obtaining the exclusive lock fails, the caller tries immediately to get a shared lock.

A callback notifies the user if the shared memory was created, not opened and lets the user reinitialize associated objects such as semaphores. See the example in example/cpp11_nonpersistent_shared_memory.cpp

There are frequently documented problems with flock that don't seem to be a problem here:

  • Switching from an exclusive lock to a shared lock is not actually atomic. Only two things can happen (see comments in nonpersistent_shared_memory_object::priv_open_or_create:

    1. After the exclusive lock is released but before the degraded shared lock is acquired another waiting process acquires the shared lock. The order in which processes with shared locks proceed does not matter.
    2. After the exclusive lock is released another process acquires the exclusive lock and truncates the file to size 0 again, then both acquire shared locks and proceed. Also seems harmless.

  • flock style locks do not work reliably on NFS file systems. Using shared memory backing files on different computers simultaneously seems to be an accident and not a feature. If the backing file is stored on an NFS drive but only accessed locally (by adding a host identifier to the file name?), NFS locallocks seems to be well supported and sufficient.

stheophil avatar Oct 09 '20 12:10 stheophil