tvl-depot/src/libstore/pathlocks.cc

#include "pathlocks.hh"
#include "util.hh"

#include <cerrno>
#include <cstdlib>

#include <sys/types.h>
#include <sys/stat.h>
#include <fcntl.h>


namespace nix {


int openLockFile(const Path & path, bool create)
{
    AutoCloseFD fd;

    fd = open(path.c_str(), O_RDWR | (create ? O_CREAT : 0), 0600);
    if (fd == -1 && (create || errno != ENOENT))
        throw SysError(format("opening lock file ‘%1%’") % path);

    closeOnExec(fd);

    return fd.borrow();
}


void deleteLockFile(const Path & path, int fd)
{
    /* Get rid of the lock file.  Have to be careful not to introduce
       races.  Write a (meaningless) token to the file to indicate to
       other processes waiting on this lock that the lock is stale
       (deleted). */
    unlink(path.c_str());
    writeFull(fd, "d");
    /* Note that the result of unlink() is ignored; removing the lock
       file is an optimisation, not a necessity. */
}


bool lockFile(int fd, LockType lockType, bool wait)
{
    struct flock lock;
    if (lockType == ltRead) lock.l_type = F_RDLCK;
    else if (lockType == ltWrite) lock.l_type = F_WRLCK;
    else if (lockType == ltNone) lock.l_type = F_UNLCK;
    else abort();
    lock.l_whence = SEEK_SET;
    lock.l_start = 0;
    lock.l_len = 0; /* entire file */

    if (wait) {
        while (fcntl(fd, F_SETLKW, &lock) != 0) {
            checkInterrupt();
            if (errno != EINTR)
                throw SysError(format("acquiring/releasing lock"));
        }
    } else {
        while (fcntl(fd, F_SETLK, &lock) != 0) {
            checkInterrupt();
            if (errno == EACCES || errno == EAGAIN) return false;
            if (errno != EINTR)
                throw SysError(format("acquiring/releasing lock"));
        }
    }

    return true;
}


/* This enables us to check whether are not already holding a lock on
   a file ourselves.  POSIX locks (fcntl) suck in this respect: if we
   close a descriptor, the previous lock will be closed as well.  And
   there is no way to query whether we already have a lock (F_GETLK
   only works on locks held by other processes). */
static StringSet lockedPaths; /* !!! not thread-safe */


PathLocks::PathLocks()
    : deletePaths(false)
{
}


PathLocks::PathLocks(const PathSet & paths, const string & waitMsg)
    : deletePaths(false)
{
    lockPaths(paths, waitMsg);
}


bool PathLocks::lockPaths(const PathSet & _paths,
    const string & waitMsg, bool wait)
{
    assert(fds.empty());

    /* Note that `fds' is built incrementally so that the destructor
       will only release those locks that we have already acquired. */

    /* Sort the paths.  This assures that locks are always acquired in
       the same order, thus preventing deadlocks. */
    Paths paths(_paths.begin(), _paths.end());
    paths.sort();

    /* Acquire the lock for each path. */
    for (auto & path : paths) {
        checkInterrupt();
        Path lockPath = path + ".lock";

        debug(format("locking path ‘%1%’") % path);

        if (lockedPaths.find(lockPath) != lockedPaths.end())
            throw Error("deadlock: trying to re-acquire self-held lock");

        AutoCloseFD fd;

        while (1) {

            /* Open/create the lock file. */
            fd = openLockFile(lockPath, true);

            /* Acquire an exclusive lock. */
            if (!lockFile(fd, ltWrite, false)) {
                if (wait) {
                    if (waitMsg != "") printMsg(lvlError, waitMsg);
                    lockFile(fd, ltWrite, true);
                } else {
                    /* Failed to lock this path; release all other
                       locks. */
                    unlock();
                    return false;
                }
            }

            debug(format("lock acquired on ‘%1%’") % lockPath);

            /* Check that the lock file hasn't become stale (i.e.,
               hasn't been unlinked). */
            struct stat st;
            if (fstat(fd, &st) == -1)
                throw SysError(format("statting lock file ‘%1%’") % lockPath);
            if (st.st_size != 0)
                /* This lock file has been unlinked, so we're holding
                   a lock on a deleted file.  This means that other
                   processes may create and acquire a lock on
                   `lockPath', and proceed.  So we must retry. */
                debug(format("open lock file ‘%1%’ has become stale") % lockPath);
            else
                break;
        }

        /* Use borrow so that the descriptor isn't closed. */
        fds.push_back(FDPair(fd.borrow(), lockPath));
        lockedPaths.insert(lockPath);
    }

    return true;
}


PathLocks::~PathLocks()
{
    try {
        unlock();
    } catch (...) {
        ignoreException();
    }
}


void PathLocks::unlock()
{
    for (auto & i : fds) {
        if (deletePaths) deleteLockFile(i.second, i.first);

        lockedPaths.erase(i.second);
        if (close(i.first) == -1)
            printMsg(lvlError,
                format("error (ignored): cannot close lock file on ‘%1%’") % i.second);

        debug(format("lock released on ‘%1%’") % i.second);
    }

    fds.clear();
}


void PathLocks::setDeletion(bool deletePaths)
{
    this->deletePaths = deletePaths;
}


bool pathIsLockedByMe(const Path & path)
{
    Path lockPath = path + ".lock";
    return lockedPaths.find(lockPath) != lockedPaths.end();
}


}
-												* Use a proper namespace.
* Optimise header file usage a bit.
* Compile the parser as C++.


											
										
										
											2006-09-04 23:06:23 +02:00
+								#include "pathlocks.hh"
 								#include "util.hh"
-												* Added some missing #includes.


											
										
										
											2003-09-11 10:31:29 +02:00
+								#include <cerrno>
-												* GCC 4.3.0 (Fedora 9) compatibility fixes.  Reported by Gour and
  Armijn Hemel.


											
										
										
											2008-05-21 13:17:31 +02:00
+								#include <cstdlib>
-												* Added some missing #includes.


											
										
										
											2003-09-11 10:31:29 +02:00
-												* Automatically recover the database in case of a crash.


											
										
										
											2003-10-14 17:33:00 +02:00
+								#include <sys/types.h>
 								#include <sys/stat.h>
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								#include <fcntl.h>
-												* Use a proper namespace.
* Optimise header file usage a bit.
* Compile the parser as C++.


											
										
										
											2006-09-04 23:06:23 +02:00
+								namespace nix {
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
+								int openLockFile(const Path & path, bool create)
 								{
 								    AutoCloseFD fd;
-												* Another case of lock file permissions being too liberal.


											
										
										
											2011-12-21 20:17:45 +01:00
+								    fd = open(path.c_str(), O_RDWR | (create ? O_CREAT : 0), 0600);
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
+								    if (fd == -1 && (create || errno != ENOENT))
-												Use proper quotes everywhere

											
										
										
											2014-08-20 17:00:17 +02:00
+								        throw SysError(format("opening lock file ‘%1%’") % path);
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
-												Set the close-on-exec flag on file descriptors

											
										
										
											2012-03-05 20:29:00 +01:00
+								    closeOnExec(fd);
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
+								    return fd.borrow();
 								}
-												* Remove most Cygwin-specific code.  Cygwin 1.7 implements advisory
  POSIX locks, and simulates Unix-style file deletion semantics
  sufficiently.  Note that this means that Nix won't work on Cygwin
  1.5 anymore.


											
										
										
											2010-02-02 16:28:36 +01:00
+								void deleteLockFile(const Path & path, int fd)
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
+								{
 								    /* Get rid of the lock file.  Have to be careful not to introduce
-												* Remove most Cygwin-specific code.  Cygwin 1.7 implements advisory
  POSIX locks, and simulates Unix-style file deletion semantics
  sufficiently.  Note that this means that Nix won't work on Cygwin
  1.5 anymore.


											
										
										
											2010-02-02 16:28:36 +01:00
+								       races.  Write a (meaningless) token to the file to indicate to
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
+								       other processes waiting on this lock that the lock is stale
 								       (deleted). */
 								    unlink(path.c_str());
-												Ensure we're writing to stderr in the builder

http://hydra.nixos.org/build/17862041

											
										
										
											2014-12-12 14:35:44 +01:00
+								    writeFull(fd, "d");
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
+								    /* Note that the result of unlink() is ignored; removing the lock
 								       file is an optimisation, not a necessity. */
 								}
-												* Revert r19797, and use a simpler solution: just don't monitor build
  hooks for silence.  It's unnecessary because the remote nix-store
  command is already monitoring the real build.


											
										
										
											2010-02-03 22:38:41 +01:00
+								bool lockFile(int fd, LockType lockType, bool wait)
-												* Automatically recover the database in case of a crash.


											
										
										
											2003-10-14 17:33:00 +02:00
+								{
 								    struct flock lock;
 								    if (lockType == ltRead) lock.l_type = F_RDLCK;
 								    else if (lockType == ltWrite) lock.l_type = F_WRLCK;
 								    else if (lockType == ltNone) lock.l_type = F_UNLCK;
 								    else abort();
 								    lock.l_whence = SEEK_SET;
 								    lock.l_start = 0;
 								    lock.l_len = 0; /* entire file */
 								    if (wait) {
-												* Revert r19797, and use a simpler solution: just don't monitor build
  hooks for silence.  It's unnecessary because the remote nix-store
  command is already monitoring the real build.


											
										
										
											2010-02-03 22:38:41 +01:00
+								        while (fcntl(fd, F_SETLKW, &lock) != 0) {
-												* Catch SIGINT to terminate cleanly when the user tries to interrupt
  Nix.  This is to prevent Berkeley DB from becoming wedged.

  Unfortunately it is not possible to throw C++ exceptions from a
  signal handler.  In fact, you can't do much of anything except
  change variables of type `volatile sig_atomic_t'.  So we set an
  interrupt flag in the signal handler and check it at various
  strategic locations in the code (by calling checkInterrupt()).
  Since this is unlikely to cover all cases (e.g., (semi-)infinite
  loops), sometimes SIGTERM may now be required to kill Nix.


											
										
										
											2004-01-15 21:23:55 +01:00
+								            checkInterrupt();
-												* Automatically recover the database in case of a crash.


											
										
										
											2003-10-14 17:33:00 +02:00
+								            if (errno != EINTR)
 								                throw SysError(format("acquiring/releasing lock"));
-												* Catch SIGINT to terminate cleanly when the user tries to interrupt
  Nix.  This is to prevent Berkeley DB from becoming wedged.

  Unfortunately it is not possible to throw C++ exceptions from a
  signal handler.  In fact, you can't do much of anything except
  change variables of type `volatile sig_atomic_t'.  So we set an
  interrupt flag in the signal handler and check it at various
  strategic locations in the code (by calling checkInterrupt()).
  Since this is unlikely to cover all cases (e.g., (semi-)infinite
  loops), sometimes SIGTERM may now be required to kill Nix.


											
										
										
											2004-01-15 21:23:55 +01:00
+								        }
-												* Automatically recover the database in case of a crash.


											
										
										
											2003-10-14 17:33:00 +02:00
+								    } else {
 								        while (fcntl(fd, F_SETLK, &lock) != 0) {
-												* Catch SIGINT to terminate cleanly when the user tries to interrupt
  Nix.  This is to prevent Berkeley DB from becoming wedged.

  Unfortunately it is not possible to throw C++ exceptions from a
  signal handler.  In fact, you can't do much of anything except
  change variables of type `volatile sig_atomic_t'.  So we set an
  interrupt flag in the signal handler and check it at various
  strategic locations in the code (by calling checkInterrupt()).
  Since this is unlikely to cover all cases (e.g., (semi-)infinite
  loops), sometimes SIGTERM may now be required to kill Nix.


											
										
										
											2004-01-15 21:23:55 +01:00
+								            checkInterrupt();
-												* Automatically recover the database in case of a crash.


											
										
										
											2003-10-14 17:33:00 +02:00
+								            if (errno == EACCES || errno == EAGAIN) return false;
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
+								            if (errno != EINTR)
-												* Automatically recover the database in case of a crash.


											
										
										
											2003-10-14 17:33:00 +02:00
+								                throw SysError(format("acquiring/releasing lock"));
 								        }
 								    }
 								    return true;
 								}
-												* Defensive programming against POSIX locking idiocy.
* Simplified realiseSlice().


											
										
										
											2003-08-01 17:06:23 +02:00
+								/* This enables us to check whether are not already holding a lock on
 								   a file ourselves.  POSIX locks (fcntl) suck in this respect: if we
 								   close a descriptor, the previous lock will be closed as well.  And
 								   there is no way to query whether we already have a lock (F_GETLK
 								   only works on locks held by other processes). */
 								static StringSet lockedPaths; /* !!! not thread-safe */
-												* True parallel builds.  Nix can now run as many build jobs in
  parallel as possible (similar to GNU Make's `-j' switch).  This is
  useful on SMP systems, but it is especially useful for doing builds
  on multiple machines.  The idea is that a large derivation is
  initiated on one master machine, which then distributes
  sub-derivations to any number of slave machines.  This should not
  happen synchronously or in lock-step, so the master must be capable
  of dealing with multiple parallel build jobs.  We now have the
  infrastructure to support this.

  TODO: substitutes are currently broken.


											
										
										
											2004-05-11 20:05:44 +02:00
+								PathLocks::PathLocks()
-												* Remove lock files after building. 


											
										
										
											2003-11-21 17:05:19 +01:00
+								    : deletePaths(false)
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								{
-												* True parallel builds.  Nix can now run as many build jobs in
  parallel as possible (similar to GNU Make's `-j' switch).  This is
  useful on SMP systems, but it is especially useful for doing builds
  on multiple machines.  The idea is that a large derivation is
  initiated on one master machine, which then distributes
  sub-derivations to any number of slave machines.  This should not
  happen synchronously or in lock-step, so the master must be capable
  of dealing with multiple parallel build jobs.  We now have the
  infrastructure to support this.

  TODO: substitutes are currently broken.


											
										
										
											2004-05-11 20:05:44 +02:00
+								}
-												* In `nix-env -i|-u|-e', lock the profile to prevent races between
  concurrent nix-env operations on the same profile.  Fixes NIX-7.


											
										
										
											2006-06-15 13:56:49 +02:00
+								PathLocks::PathLocks(const PathSet & paths, const string & waitMsg)
-												* True parallel builds.  Nix can now run as many build jobs in
  parallel as possible (similar to GNU Make's `-j' switch).  This is
  useful on SMP systems, but it is especially useful for doing builds
  on multiple machines.  The idea is that a large derivation is
  initiated on one master machine, which then distributes
  sub-derivations to any number of slave machines.  This should not
  happen synchronously or in lock-step, so the master must be capable
  of dealing with multiple parallel build jobs.  We now have the
  infrastructure to support this.

  TODO: substitutes are currently broken.


											
										
										
											2004-05-11 20:05:44 +02:00
+								    : deletePaths(false)
 								{
-												* In `nix-env -i|-u|-e', lock the profile to prevent races between
  concurrent nix-env operations on the same profile.  Fixes NIX-7.


											
										
										
											2006-06-15 13:56:49 +02:00
+								    lockPaths(paths, waitMsg);
-												* True parallel builds.  Nix can now run as many build jobs in
  parallel as possible (similar to GNU Make's `-j' switch).  This is
  useful on SMP systems, but it is especially useful for doing builds
  on multiple machines.  The idea is that a large derivation is
  initiated on one master machine, which then distributes
  sub-derivations to any number of slave machines.  This should not
  happen synchronously or in lock-step, so the master must be capable
  of dealing with multiple parallel build jobs.  We now have the
  infrastructure to support this.

  TODO: substitutes are currently broken.


											
										
										
											2004-05-11 20:05:44 +02:00
+								}
-												* No longer block while waiting for a lock on a store path.  Instead
  poll for it (i.e. if we can't acquire the lock, then let the main
  select() loop wait for at most a few seconds and then try again).
  This improves parallelism: if two nix-store processes are both
  trying to build a path at the same time, the second one shouldn't
  block; it should first see if it can build other goals.  Also, it
  prevents the deadlocks that have been occuring in Hydra lately,
  where a process waits for a lock held by another process that's
  waiting for a lock held by the first.

  The downside is that polling isn't really elegant, but POSIX doesn't
  provide a way to wait for locks in a select() loop.  The only
  solution would be to spawn a thread for each lock to do a blocking
  fcntl() and then signal the main thread, but that would require
  pthreads.


											
										
										
											2009-03-23 02:05:54 +01:00
+								bool PathLocks::lockPaths(const PathSet & _paths,
 								    const string & waitMsg, bool wait)
-												* True parallel builds.  Nix can now run as many build jobs in
  parallel as possible (similar to GNU Make's `-j' switch).  This is
  useful on SMP systems, but it is especially useful for doing builds
  on multiple machines.  The idea is that a large derivation is
  initiated on one master machine, which then distributes
  sub-derivations to any number of slave machines.  This should not
  happen synchronously or in lock-step, so the master must be capable
  of dealing with multiple parallel build jobs.  We now have the
  infrastructure to support this.

  TODO: substitutes are currently broken.


											
										
										
											2004-05-11 20:05:44 +02:00
+								{
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
+								    assert(fds.empty());
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								    /* Note that `fds' is built incrementally so that the destructor
 								       will only release those locks that we have already acquired. */
 								    /* Sort the paths.  This assures that locks are always acquired in
 								       the same order, thus preventing deadlocks. */
-												* Get rid of identifiers since they are redundant now.  This greatly
  simplifies stuff.

* The format of Nix expressions and the database schema changed
  because of this, so it's best to delete old Nix installations.


											
										
										
											2003-10-08 17:06:59 +02:00
+								    Paths paths(_paths.begin(), _paths.end());
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								    paths.sort();
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								    /* Acquire the lock for each path. */
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
+								    for (auto & path : paths) {
-												* Catch SIGINT to terminate cleanly when the user tries to interrupt
  Nix.  This is to prevent Berkeley DB from becoming wedged.

  Unfortunately it is not possible to throw C++ exceptions from a
  signal handler.  In fact, you can't do much of anything except
  change variables of type `volatile sig_atomic_t'.  So we set an
  interrupt flag in the signal handler and check it at various
  strategic locations in the code (by calling checkInterrupt()).
  Since this is unlikely to cover all cases (e.g., (semi-)infinite
  loops), sometimes SIGTERM may now be required to kill Nix.


											
										
										
											2004-01-15 21:23:55 +01:00
+								        checkInterrupt();
-												* Get rid of identifiers since they are redundant now.  This greatly
  simplifies stuff.

* The format of Nix expressions and the database schema changed
  because of this, so it's best to delete old Nix installations.


											
										
										
											2003-10-08 17:06:59 +02:00
+								        Path lockPath = path + ".lock";
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
-												Use proper quotes everywhere

											
										
										
											2014-08-20 17:00:17 +02:00
+								        debug(format("locking path ‘%1%’") % path);
-												* Defensive programming against POSIX locking idiocy.
* Simplified realiseSlice().


											
										
										
											2003-08-01 17:06:23 +02:00
-												* PathLocks::lockPaths: don't allow reacquiring a lock we already
  hold.


											
										
										
											2007-08-28 11:39:03 +02:00
+								        if (lockedPaths.find(lockPath) != lockedPaths.end())
 								            throw Error("deadlock: trying to re-acquire self-held lock");
-												* Defensive programming against POSIX locking idiocy.
* Simplified realiseSlice().


											
										
										
											2003-08-01 17:06:23 +02:00
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
+								        AutoCloseFD fd;
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
+								        while (1) {
-												* On Windows we cannot delete open (lock) files, so we delete lock
  files after we've closed them.  Since this only succeeds if the lock
  is no longer opened by any process, the token trick used on Unix is
  not necessary.


											
										
										
											2006-06-19 16:43:13 +02:00
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
+								            /* Open/create the lock file. */
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
+								            fd = openLockFile(lockPath, true);
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
 								            /* Acquire an exclusive lock. */
-												* In `nix-env -i|-u|-e', lock the profile to prevent races between
  concurrent nix-env operations on the same profile.  Fixes NIX-7.


											
										
										
											2006-06-15 13:56:49 +02:00
+								            if (!lockFile(fd, ltWrite, false)) {
-												* No longer block while waiting for a lock on a store path.  Instead
  poll for it (i.e. if we can't acquire the lock, then let the main
  select() loop wait for at most a few seconds and then try again).
  This improves parallelism: if two nix-store processes are both
  trying to build a path at the same time, the second one shouldn't
  block; it should first see if it can build other goals.  Also, it
  prevents the deadlocks that have been occuring in Hydra lately,
  where a process waits for a lock held by another process that's
  waiting for a lock held by the first.

  The downside is that polling isn't really elegant, but POSIX doesn't
  provide a way to wait for locks in a select() loop.  The only
  solution would be to spawn a thread for each lock to do a blocking
  fcntl() and then signal the main thread, but that would require
  pthreads.


											
										
										
											2009-03-23 02:05:54 +01:00
+								                if (wait) {
 								                    if (waitMsg != "") printMsg(lvlError, waitMsg);
 								                    lockFile(fd, ltWrite, true);
 								                } else {
 								                    /* Failed to lock this path; release all other
 								                       locks. */
 								                    unlock();
 								                    return false;
 								                }
-												* In `nix-env -i|-u|-e', lock the profile to prevent races between
  concurrent nix-env operations on the same profile.  Fixes NIX-7.


											
										
										
											2006-06-15 13:56:49 +02:00
+								            }
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
-												Use proper quotes everywhere

											
										
										
											2014-08-20 17:00:17 +02:00
+								            debug(format("lock acquired on ‘%1%’") % lockPath);
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
 								            /* Check that the lock file hasn't become stale (i.e.,
 								               hasn't been unlinked). */
 								            struct stat st;
 								            if (fstat(fd, &st) == -1)
-												Use proper quotes everywhere

											
										
										
											2014-08-20 17:00:17 +02:00
+								                throw SysError(format("statting lock file ‘%1%’") % lockPath);
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
+								            if (st.st_size != 0)
 								                /* This lock file has been unlinked, so we're holding
 								                   a lock on a deleted file.  This means that other
 								                   processes may create and acquire a lock on
 								                   `lockPath', and proceed.  So we must retry. */
-												Use proper quotes everywhere

											
										
										
											2014-08-20 17:00:17 +02:00
+								                debug(format("open lock file ‘%1%’ has become stale") % lockPath);
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
+								            else
 								                break;
 								        }
-												* True parallel builds.  Nix can now run as many build jobs in
  parallel as possible (similar to GNU Make's `-j' switch).  This is
  useful on SMP systems, but it is especially useful for doing builds
  on multiple machines.  The idea is that a large derivation is
  initiated on one master machine, which then distributes
  sub-derivations to any number of slave machines.  This should not
  happen synchronously or in lock-step, so the master must be capable
  of dealing with multiple parallel build jobs.  We now have the
  infrastructure to support this.

  TODO: substitutes are currently broken.


											
										
										
											2004-05-11 20:05:44 +02:00
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
+								        /* Use borrow so that the descriptor isn't closed. */
 								        fds.push_back(FDPair(fd.borrow(), lockPath));
-												* Defensive programming against POSIX locking idiocy.
* Simplified realiseSlice().


											
										
										
											2003-08-01 17:06:23 +02:00
+								        lockedPaths.insert(lockPath);
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								    }
-												* No longer block while waiting for a lock on a store path.  Instead
  poll for it (i.e. if we can't acquire the lock, then let the main
  select() loop wait for at most a few seconds and then try again).
  This improves parallelism: if two nix-store processes are both
  trying to build a path at the same time, the second one shouldn't
  block; it should first see if it can build other goals.  Also, it
  prevents the deadlocks that have been occuring in Hydra lately,
  where a process waits for a lock held by another process that's
  waiting for a lock held by the first.

  The downside is that polling isn't really elegant, but POSIX doesn't
  provide a way to wait for locks in a select() loop.  The only
  solution would be to spawn a thread for each lock to do a blocking
  fcntl() and then signal the main thread, but that would require
  pthreads.


											
										
										
											2009-03-23 02:05:54 +01:00
 								    return true;
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								}
 								PathLocks::~PathLocks()
-												* Release output locks as soon as possible, not when the destructor of
  the DerivationGoal runs.  Otherwise, if a goal is a top-level goal,
  then the lock won't be released until nix-store finishes.  With
  --keep-going and lots of top-level goals, it's possible to run out
  of file descriptors (this happened sometimes in the build farm for
  Nixpkgs).  Also, for failed derivation, it won't be possible to
  build it again  until the lock is released.
  
* Idem for locks on build users: these weren't released in a timely
  manner for failed top-level derivation goals.  So if there were more
  than (say) 10 such failed builds, you would get an error about
  having run out of build users.


											
										
										
											2009-02-16 10:24:20 +01:00
+								{
-												~PathLocks(): Handle exceptions

Otherwise, since the call to write a "d" character to the lock file
can fail with ENOSPC, we can get an unhandled exception resulting in a
call to terminate().

											
										
										
											2016-01-04 11:32:46 +01:00
+								    try {
 								        unlock();
 								    } catch (...) {
 								        ignoreException();
 								    }
-												* Release output locks as soon as possible, not when the destructor of
  the DerivationGoal runs.  Otherwise, if a goal is a top-level goal,
  then the lock won't be released until nix-store finishes.  With
  --keep-going and lots of top-level goals, it's possible to run out
  of file descriptors (this happened sometimes in the build farm for
  Nixpkgs).  Also, for failed derivation, it won't be possible to
  build it again  until the lock is released.
  
* Idem for locks on build users: these weren't released in a timely
  manner for failed top-level derivation goals.  So if there were more
  than (say) 10 such failed builds, you would get an error about
  having run out of build users.


											
										
										
											2009-02-16 10:24:20 +01:00
+								}
 								void PathLocks::unlock()
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								{
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
+								    for (auto & i : fds) {
 								        if (deletePaths) deleteLockFile(i.second, i.first);
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
+								        lockedPaths.erase(i.second);
 								        if (close(i.first) == -1)
-												* Make lock removal safe by signalling to blocked processes that the
  lock they are waiting on has become stale (we do this by writing a
  meaningless token to the unlinked file).


											
										
										
											2005-01-27 13:19:25 +01:00
+								            printMsg(lvlError,
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
+								                format("error (ignored): cannot close lock file on ‘%1%’") % i.second);
-												* Concurrent GC on Cygwin.


											
										
										
											2006-06-20 19:48:10 +02:00
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
+								        debug(format("lock released on ‘%1%’") % i.second);
-												* Remove lock files after building. 


											
										
										
											2003-11-21 17:05:19 +01:00
+								    }
-												* Release output locks as soon as possible, not when the destructor of
  the DerivationGoal runs.  Otherwise, if a goal is a top-level goal,
  then the lock won't be released until nix-store finishes.  With
  --keep-going and lots of top-level goals, it's possible to run out
  of file descriptors (this happened sometimes in the build farm for
  Nixpkgs).  Also, for failed derivation, it won't be possible to
  build it again  until the lock is released.
  
* Idem for locks on build users: these weren't released in a timely
  manner for failed top-level derivation goals.  So if there were more
  than (say) 10 such failed builds, you would get an error about
  having run out of build users.


											
										
										
											2009-02-16 10:24:20 +01:00
 								    fds.clear();
-												* Remove lock files after building. 


											
										
										
											2003-11-21 17:05:19 +01:00
+								}
 								void PathLocks::setDeletion(bool deletePaths)
 								{
 								    this->deletePaths = deletePaths;
-												* normaliseFState() now locks all output paths prior to building, thus
  ensuring that simultaneous invocations of Nix don't clobber
  each other's  builds.

* Fixed a bug in `make install'.


											
										
										
											2003-08-01 16:11:19 +02:00
+								}
-												* Use a proper namespace.
* Optimise header file usage a bit.
* Compile the parser as C++.


											
										
										
											2006-09-04 23:06:23 +02:00
-												* Fix a race condition with parallel builds where multiple
  fixed-output derivations or substitutions try to build the same
  store path at the same time.  Locking generally catches this, but
  not between multiple goals in the same process.  This happened
  especially often (actually, only) in the build farm with fetchurl
  downloads of the same file being executed on multiple machines and
  then copied back to the main machine where they would clobber each
  other (NIXBF-13).

  Solution: if a goal notices that the output path is already locked,
  then go to sleep until another goal finishes (hopefully the one
  locking the path) and try again.


											
										
										
											2007-08-28 13:36:17 +02:00
 								bool pathIsLockedByMe(const Path & path)
 								{
 								    Path lockPath = path + ".lock";
 								    return lockedPaths.find(lockPath) != lockedPaths.end();
 								}
-												OCD: foreach -> C++11 ranged for

											
										
										
											2015-07-17 19:24:28 +02:00
-												* Use a proper namespace.
* Optimise header file usage a bit.
* Compile the parser as C++.


											
										
										
											2006-09-04 23:06:23 +02:00
+								}