PostgreSQL Source Code  git master
dsm_impl.c
Go to the documentation of this file.
1 /*-------------------------------------------------------------------------
2  *
3  * dsm_impl.c
4  * manage dynamic shared memory segments
5  *
6  * This file provides low-level APIs for creating and destroying shared
7  * memory segments using several different possible techniques. We refer
8  * to these segments as dynamic because they can be created, altered, and
9  * destroyed at any point during the server life cycle. This is unlike
10  * the main shared memory segment, of which there is always exactly one
11  * and which is always mapped at a fixed address in every PostgreSQL
12  * background process.
13  *
14  * Because not all systems provide the same primitives in this area, nor
15  * do all primitives behave the same way on all systems, we provide
16  * several implementations of this facility. Many systems implement
17  * POSIX shared memory (shm_open etc.), which is well-suited to our needs
18  * in this area, with the exception that shared memory identifiers live
19  * in a flat system-wide namespace, raising the uncomfortable prospect of
20  * name collisions with other processes (including other copies of
21  * PostgreSQL) running on the same system. Some systems only support
22  * the older System V shared memory interface (shmget etc.) which is
23  * also usable; however, the default allocation limits are often quite
24  * small, and the namespace is even more restricted.
25  *
26  * We also provide an mmap-based shared memory implementation. This may
27  * be useful on systems that provide shared memory via a special-purpose
28  * filesystem; by opting for this implementation, the user can even
29  * control precisely where their shared memory segments are placed. It
30  * can also be used as a fallback for systems where shm_open and shmget
31  * are not available or can't be used for some reason. Of course,
32  * mapping a file residing on an actual spinning disk is a fairly poor
33  * approximation for shared memory because writeback may hurt performance
34  * substantially, but there should be few systems where we must make do
35  * with such poor tools.
36  *
37  * As ever, Windows requires its own implementation.
38  *
39  * Portions Copyright (c) 1996-2023, PostgreSQL Global Development Group
40  * Portions Copyright (c) 1994, Regents of the University of California
41  *
42  *
43  * IDENTIFICATION
44  * src/backend/storage/ipc/dsm_impl.c
45  *
46  *-------------------------------------------------------------------------
47  */
48 
49 #include "postgres.h"
50 
51 #include <fcntl.h>
52 #include <signal.h>
53 #include <unistd.h>
54 #ifndef WIN32
55 #include <sys/mman.h>
56 #include <sys/ipc.h>
57 #include <sys/shm.h>
58 #include <sys/stat.h>
59 #endif
60 
61 #include "common/file_perm.h"
62 #include "libpq/pqsignal.h"
63 #include "miscadmin.h"
64 #include "pgstat.h"
65 #include "portability/mem.h"
66 #include "postmaster/postmaster.h"
67 #include "storage/dsm_impl.h"
68 #include "storage/fd.h"
69 #include "utils/guc.h"
70 #include "utils/memutils.h"
71 
72 #ifdef USE_DSM_POSIX
73 static bool dsm_impl_posix(dsm_op op, dsm_handle handle, Size request_size,
74  void **impl_private, void **mapped_address,
75  Size *mapped_size, int elevel);
76 static int dsm_impl_posix_resize(int fd, off_t size);
77 #endif
78 #ifdef USE_DSM_SYSV
79 static bool dsm_impl_sysv(dsm_op op, dsm_handle handle, Size request_size,
80  void **impl_private, void **mapped_address,
81  Size *mapped_size, int elevel);
82 #endif
83 #ifdef USE_DSM_WINDOWS
84 static bool dsm_impl_windows(dsm_op op, dsm_handle handle, Size request_size,
85  void **impl_private, void **mapped_address,
86  Size *mapped_size, int elevel);
87 #endif
88 #ifdef USE_DSM_MMAP
89 static bool dsm_impl_mmap(dsm_op op, dsm_handle handle, Size request_size,
90  void **impl_private, void **mapped_address,
91  Size *mapped_size, int elevel);
92 #endif
93 static int errcode_for_dynamic_shared_memory(void);
94 
95 const struct config_enum_entry dynamic_shared_memory_options[] = {
96 #ifdef USE_DSM_POSIX
97  {"posix", DSM_IMPL_POSIX, false},
98 #endif
99 #ifdef USE_DSM_SYSV
100  {"sysv", DSM_IMPL_SYSV, false},
101 #endif
102 #ifdef USE_DSM_WINDOWS
103  {"windows", DSM_IMPL_WINDOWS, false},
104 #endif
105 #ifdef USE_DSM_MMAP
106  {"mmap", DSM_IMPL_MMAP, false},
107 #endif
108  {NULL, 0, false}
109 };
110 
111 /* Implementation selector. */
112 int dynamic_shared_memory_type = DEFAULT_DYNAMIC_SHARED_MEMORY_TYPE;
113 
114 /* Amount of space reserved for DSM segments in the main area. */
115 int min_dynamic_shared_memory;
116 
117 /* Size of buffer to be used for zero-filling. */
118 #define ZBUFFER_SIZE 8192
119 
120 #define SEGMENT_NAME_PREFIX "Global/PostgreSQL"
121 
122 /*------
123  * Perform a low-level shared memory operation in a platform-specific way,
124  * as dictated by the selected implementation. Each implementation is
125  * required to implement the following primitives.
126  *
127  * DSM_OP_CREATE. Create a segment whose size is the request_size and
128  * map it.
129  *
130  * DSM_OP_ATTACH. Map the segment, whose size must be the request_size.
131  *
132  * DSM_OP_DETACH. Unmap the segment.
133  *
134  * DSM_OP_DESTROY. Unmap the segment, if it is mapped. Destroy the
135  * segment.
136  *
137  * Arguments:
138  * op: The operation to be performed.
139  * handle: The handle of an existing object, or for DSM_OP_CREATE, the
140  * a new handle the caller wants created.
141  * request_size: For DSM_OP_CREATE, the requested size. Otherwise, 0.
142  * impl_private: Private, implementation-specific data. Will be a pointer
143  * to NULL for the first operation on a shared memory segment within this
144  * backend; thereafter, it will point to the value to which it was set
145  * on the previous call.
146  * mapped_address: Pointer to start of current mapping; pointer to NULL
147  * if none. Updated with new mapping address.
148  * mapped_size: Pointer to size of current mapping; pointer to 0 if none.
149  * Updated with new mapped size.
150  * elevel: Level at which to log errors.
151  *
152  * Return value: true on success, false on failure. When false is returned,
153  * a message should first be logged at the specified elevel, except in the
154  * case where DSM_OP_CREATE experiences a name collision, which should
155  * silently return false.
156  *-----
157  */
158 bool
159 dsm_impl_op(dsm_op op, dsm_handle handle, Size request_size,
160  void **impl_private, void **mapped_address, Size *mapped_size,
161  int elevel)
162 {
163  Assert(op == DSM_OP_CREATE || request_size == 0);
164  Assert((op != DSM_OP_CREATE && op != DSM_OP_ATTACH) ||
165  (*mapped_address == NULL && *mapped_size == 0));
166 
167  switch (dynamic_shared_memory_type)
168  {
169 #ifdef USE_DSM_POSIX
170  case DSM_IMPL_POSIX:
171  return dsm_impl_posix(op, handle, request_size, impl_private,
172  mapped_address, mapped_size, elevel);
173 #endif
174 #ifdef USE_DSM_SYSV
175  case DSM_IMPL_SYSV:
176  return dsm_impl_sysv(op, handle, request_size, impl_private,
177  mapped_address, mapped_size, elevel);
178 #endif
179 #ifdef USE_DSM_WINDOWS
180  case DSM_IMPL_WINDOWS:
181  return dsm_impl_windows(op, handle, request_size, impl_private,
182  mapped_address, mapped_size, elevel);
183 #endif
184 #ifdef USE_DSM_MMAP
185  case DSM_IMPL_MMAP:
186  return dsm_impl_mmap(op, handle, request_size, impl_private,
187  mapped_address, mapped_size, elevel);
188 #endif
189  default:
190  elog(ERROR, "unexpected dynamic shared memory type: %d",
191  dynamic_shared_memory_type);
192  return false;
193  }
194 }
195 
196 #ifdef USE_DSM_POSIX
197 /*
198  * Operating system primitives to support POSIX shared memory.
199  *
200  * POSIX shared memory segments are created and attached using shm_open()
201  * and shm_unlink(); other operations, such as sizing or mapping the
202  * segment, are performed as if the shared memory segments were files.
203  *
204  * Indeed, on some platforms, they may be implemented that way. While
205  * POSIX shared memory segments seem intended to exist in a flat namespace,
206  * some operating systems may implement them as files, even going so far
207  * to treat a request for /xyz as a request to create a file by that name
208  * in the root directory. Users of such broken platforms should select
209  * a different shared memory implementation.
210  */
211 static bool
212 dsm_impl_posix(dsm_op op, dsm_handle handle, Size request_size,
213  void **impl_private, void **mapped_address, Size *mapped_size,
214  int elevel)
215 {
216  char name[64];
217  int flags;
218  int fd;
219  char *address;
220 
221  snprintf(name, 64, "/PostgreSQL.%u", handle);
222 
223  /* Handle teardown cases. */
224  if (op == DSM_OP_DETACH || op == DSM_OP_DESTROY)
225  {
226  if (*mapped_address != NULL
227  && munmap(*mapped_address, *mapped_size) != 0)
228  {
229  ereport(elevel,
230  (errcode_for_dynamic_shared_memory(),
231  errmsg("could not unmap shared memory segment \"%s\": %m",
232  name)));
233  return false;
234  }
235  *mapped_address = NULL;
236  *mapped_size = 0;
237  if (op == DSM_OP_DESTROY && shm_unlink(name) != 0)
238  {
239  ereport(elevel,
240  (errcode_for_dynamic_shared_memory(),
241  errmsg("could not remove shared memory segment \"%s\": %m",
242  name)));
243  return false;
244  }
245  return true;
246  }
247 
248  /*
249  * Create new segment or open an existing one for attach.
250  *
251  * Even though we will close the FD before returning, it seems desirable
252  * to use Reserve/ReleaseExternalFD, to reduce the probability of EMFILE
253  * failure. The fact that we won't hold the FD open long justifies using
254  * ReserveExternalFD rather than AcquireExternalFD, though.
255  */
256  ReserveExternalFD();
257 
258  flags = O_RDWR | (op == DSM_OP_CREATE ? O_CREAT | O_EXCL : 0);
259  if ((fd = shm_open(name, flags, PG_FILE_MODE_OWNER)) == -1)
260  {
261  ReleaseExternalFD();
262  if (op == DSM_OP_ATTACH || errno != EEXIST)
263  ereport(elevel,
264  (errcode_for_dynamic_shared_memory(),
265  errmsg("could not open shared memory segment \"%s\": %m",
266  name)));
267  return false;
268  }
269 
270  /*
271  * If we're attaching the segment, determine the current size; if we are
272  * creating the segment, set the size to the requested value.
273  */
274  if (op == DSM_OP_ATTACH)
275  {
276  struct stat st;
277 
278  if (fstat(fd, &st) != 0)
279  {
280  int save_errno;
281 
282  /* Back out what's already been done. */
283  save_errno = errno;
284  close(fd);
285  ReleaseExternalFD();
286  errno = save_errno;
287 
288  ereport(elevel,
289  (errcode_for_dynamic_shared_memory(),
290  errmsg("could not stat shared memory segment \"%s\": %m",
291  name)));
292  return false;
293  }
294  request_size = st.st_size;
295  }
296  else if (dsm_impl_posix_resize(fd, request_size) != 0)
297  {
298  int save_errno;
299 
300  /* Back out what's already been done. */
301  save_errno = errno;
302  close(fd);
303  ReleaseExternalFD();
304  shm_unlink(name);
305  errno = save_errno;
306 
307  ereport(elevel,
308  (errcode_for_dynamic_shared_memory(),
309  errmsg("could not resize shared memory segment \"%s\" to %zu bytes: %m",
310  name, request_size)));
311  return false;
312  }
313 
314  /* Map it. */
315  address = mmap(NULL, request_size, PROT_READ | PROT_WRITE,
316  MAP_SHARED | MAP_HASSEMAPHORE | MAP_NOSYNC, fd, 0);
317  if (address == MAP_FAILED)
318  {
319  int save_errno;
320 
321  /* Back out what's already been done. */
322  save_errno = errno;
323  close(fd);
324  ReleaseExternalFD();
325  if (op == DSM_OP_CREATE)
326  shm_unlink(name);
327  errno = save_errno;
328 
329  ereport(elevel,
330  (errcode_for_dynamic_shared_memory(),
331  errmsg("could not map shared memory segment \"%s\": %m",
332  name)));
333  return false;
334  }
335  *mapped_address = address;
336  *mapped_size = request_size;
337  close(fd);
338  ReleaseExternalFD();
339 
340  return true;
341 }
342 
343 /*
344  * Set the size of a virtual memory region associated with a file descriptor.
345  * If necessary, also ensure that virtual memory is actually allocated by the
346  * operating system, to avoid nasty surprises later.
347  *
348  * Returns non-zero if either truncation or allocation fails, and sets errno.
349  */
350 static int
351 dsm_impl_posix_resize(int fd, off_t size)
352 {
353  int rc;
354  int save_errno;
355  sigset_t save_sigmask;
356 
357  /*
358  * Block all blockable signals, except SIGQUIT. posix_fallocate() can run
359  * for quite a long time, and is an all-or-nothing operation. If we
360  * allowed SIGUSR1 to interrupt us repeatedly (for example, due to recovery
361  * conflicts), the retry loop might never succeed.
362  */
363  if (IsUnderPostmaster)
364  sigprocmask(SIG_SETMASK, &BlockSig, &save_sigmask);
365 
366  pgstat_report_wait_start(WAIT_EVENT_DSM_ALLOCATE);
367 #if defined(HAVE_POSIX_FALLOCATE) && defined(__linux__)
368  /*
369  * On Linux, a shm_open fd is backed by a tmpfs file. If we were to use
370  * ftruncate, the file would contain a hole. Accessing memory backed by a
371  * hole causes tmpfs to allocate pages, which fails with SIGBUS if there
372  * is no more tmpfs space available. So we ask tmpfs to allocate pages
373  * here, so we can fail gracefully with ENOSPC now rather than risking
374  * SIGBUS later.
375  *
376  * We still use a traditional EINTR retry loop to handle SIGCONT.
377  * posix_fallocate() doesn't restart automatically, and we don't want
378  * this to fail if you attach a debugger.
379  */
380  do
381  {
382  rc = posix_fallocate(fd, 0, size);
383  } while (rc == EINTR);
384 
385  /*
386  * The caller expects errno to be set, but posix_fallocate() doesn't
387  * set it. Instead it returns error numbers directly. So set errno,
388  * even though we'll also return rc to indicate success or failure.
389  */
390  errno = rc;
391 #else
392  /* Extend the file to the requested size. */
393  do
394  {
395  rc = ftruncate(fd, size);
396  } while (rc < 0 && errno == EINTR);
397 #endif
398  pgstat_report_wait_end();
399 
400  if (IsUnderPostmaster)
401  {
402  save_errno = errno;
403  sigprocmask(SIG_SETMASK, &save_sigmask, NULL);
404  errno = save_errno;
405  }
406 
407  return rc;
408 }
409 
410 #endif /* USE_DSM_POSIX */
411 
412 #ifdef USE_DSM_SYSV
413 /*
414  * Operating system primitives to support System V shared memory.
415  *
416  * System V shared memory segments are manipulated using shmget(), shmat(),
417  * shmdt(), and shmctl(). As the default allocation limits for System V
418  * shared memory are usually quite low, the POSIX facilities may be
419  * preferable; but those are not supported everywhere.
420  */
421 static bool
422 dsm_impl_sysv(dsm_op op, dsm_handle handle, Size request_size,
423  void **impl_private, void **mapped_address, Size *mapped_size,
424  int elevel)
425 {
426  key_t key;
427  int ident;
428  char *address;
429  char name[64];
430  int *ident_cache;
431 
432  /*
433  * POSIX shared memory and mmap-based shared memory identify segments with
434  * names. To avoid needless error message variation, we use the handle as
435  * the name.
436  */
437  snprintf(name, 64, "%u", handle);
438 
439  /*
440  * The System V shared memory namespace is very restricted; names are of
441  * type key_t, which is expected to be some sort of integer data type, but
442  * not necessarily the same one as dsm_handle. Since we use dsm_handle to
443  * identify shared memory segments across processes, this might seem like
444  * a problem, but it's really not. If dsm_handle is bigger than key_t,
445  * the cast below might truncate away some bits from the handle the
446  * user-provided, but it'll truncate exactly the same bits away in exactly
447  * the same fashion every time we use that handle, which is all that
448  * really matters. Conversely, if dsm_handle is smaller than key_t, we
449  * won't use the full range of available key space, but that's no big deal
450  * either.
451  *
452  * We do make sure that the key isn't negative, because that might not be
453  * portable.
454  */
455  key = (key_t) handle;
456  if (key < 1) /* avoid compiler warning if type is unsigned */
457  key = -key;
458 
459  /*
460  * There's one special key, IPC_PRIVATE, which can't be used. If we end
461  * up with that value by chance during a create operation, just pretend it
462  * already exists, so that caller will retry. If we run into it anywhere
463  * else, the caller has passed a handle that doesn't correspond to
464  * anything we ever created, which should not happen.
465  */
466  if (key == IPC_PRIVATE)
467  {
468  if (op != DSM_OP_CREATE)
469  elog(DEBUG4, "System V shared memory key may not be IPC_PRIVATE");
470  errno = EEXIST;
471  return false;
472  }
473 
474  /*
475  * Before we can do anything with a shared memory segment, we have to map
476  * the shared memory key to a shared memory identifier using shmget(). To
477  * avoid repeated lookups, we store the key using impl_private.
478  */
479  if (*impl_private != NULL)
480  {
481  ident_cache = *impl_private;
482  ident = *ident_cache;
483  }
484  else
485  {
486  int flags = IPCProtection;
487  size_t segsize;
488 
489  /*
490  * Allocate the memory BEFORE acquiring the resource, so that we don't
491  * leak the resource if memory allocation fails.
492  */
493  ident_cache = MemoryContextAlloc(TopMemoryContext, sizeof(int));
494 
495  /*
496  * When using shmget to find an existing segment, we must pass the
497  * size as 0. Passing a non-zero size which is greater than the
498  * actual size will result in EINVAL.
499  */
500  segsize = 0;
501 
502  if (op == DSM_OP_CREATE)
503  {
504  flags |= IPC_CREAT | IPC_EXCL;
505  segsize = request_size;
506  }
507 
508  if ((ident = shmget(key, segsize, flags)) == -1)
509  {
510  if (op == DSM_OP_ATTACH || errno != EEXIST)
511  {
512  int save_errno = errno;
513 
514  pfree(ident_cache);
515  errno = save_errno;
516  ereport(elevel,
517  (errcode_for_dynamic_shared_memory(),
518  errmsg("could not get shared memory segment: %m")));
519  }
520  return false;
521  }
522 
523  *ident_cache = ident;
524  *impl_private = ident_cache;
525  }
526 
527  /* Handle teardown cases. */
528  if (op == DSM_OP_DETACH || op == DSM_OP_DESTROY)
529  {
530  pfree(ident_cache);
531  *impl_private = NULL;
532  if (*mapped_address != NULL && shmdt(*mapped_address) != 0)
533  {
534  ereport(elevel,
535  (errcode_for_dynamic_shared_memory(),
536  errmsg("could not unmap shared memory segment \"%s\": %m",
537  name)));
538  return false;
539  }
540  *mapped_address = NULL;
541  *mapped_size = 0;
542  if (op == DSM_OP_DESTROY && shmctl(ident, IPC_RMID, NULL) < 0)
543  {
544  ereport(elevel,
545  (errcode_for_dynamic_shared_memory(),
546  errmsg("could not remove shared memory segment \"%s\": %m",
547  name)));
548  return false;
549  }
550  return true;
551  }
552 
553  /* If we're attaching it, we must use IPC_STAT to determine the size. */
554  if (op == DSM_OP_ATTACH)
555  {
556  struct shmid_ds shm;
557 
558  if (shmctl(ident, IPC_STAT, &shm) != 0)
559  {
560  ereport(elevel,
561  (errcode_for_dynamic_shared_memory(),
562  errmsg("could not stat shared memory segment \"%s\": %m",
563  name)));
564  return false;
565  }
566  request_size = shm.shm_segsz;
567  }
568 
569  /* Map it. */
570  address = shmat(ident, NULL, PG_SHMAT_FLAGS);
571  if (address == (void *) -1)
572  {
573  int save_errno;
574 
575  /* Back out what's already been done. */
576  save_errno = errno;
577  if (op == DSM_OP_CREATE)
578  shmctl(ident, IPC_RMID, NULL);
579  errno = save_errno;
580 
581  ereport(elevel,
582  (errcode_for_dynamic_shared_memory(),
583  errmsg("could not map shared memory segment \"%s\": %m",
584  name)));
585  return false;
586  }
587  *mapped_address = address;
588  *mapped_size = request_size;
589 
590  return true;
591 }
592 #endif
593 
594 #ifdef USE_DSM_WINDOWS
595 /*
596  * Operating system primitives to support Windows shared memory.
597  *
598  * Windows shared memory implementation is done using file mapping
599  * which can be backed by either physical file or system paging file.
600  * Current implementation uses system paging file as other effects
601  * like performance are not clear for physical file and it is used in similar
602  * way for main shared memory in windows.
603  *
604  * A memory mapping object is a kernel object - they always get deleted when
605  * the last reference to them goes away, either explicitly via a CloseHandle or
606  * when the process containing the reference exits.
607  */
608 static bool
609 dsm_impl_windows(dsm_op op, dsm_handle handle, Size request_size,
610  void **impl_private, void **mapped_address,
611  Size *mapped_size, int elevel)
612 {
613  char *address;
614  HANDLE hmap;
615  char name[64];
616  MEMORY_BASIC_INFORMATION info;
617 
618  /*
619  * Storing the shared memory segment in the Global\ namespace, can allow
620  * any process running in any session to access that file mapping object
621  * provided that the caller has the required access rights. But to avoid
622  * issues faced in main shared memory, we are using the naming convention
623  * similar to main shared memory. We can change here once issue mentioned
624  * in GetSharedMemName is resolved.
625  */
626  snprintf(name, 64, "%s.%u", SEGMENT_NAME_PREFIX, handle);
627 
628  /*
629  * Handle teardown cases. Since Windows automatically destroys the object
630  * when no references remain, we can treat it the same as detach.
631  */
632  if (op == DSM_OP_DETACH || op == DSM_OP_DESTROY)
633  {
634  if (*mapped_address != NULL
635  && UnmapViewOfFile(*mapped_address) == 0)
636  {
637  _dosmaperr(GetLastError());
638  ereport(elevel,
639  (errcode_for_dynamic_shared_memory(),
640  errmsg("could not unmap shared memory segment \"%s\": %m",
641  name)));
642  return false;
643  }
644  if (*impl_private != NULL
645  && CloseHandle(*impl_private) == 0)
646  {
647  _dosmaperr(GetLastError());
648  ereport(elevel,
649  (errcode_for_dynamic_shared_memory(),
650  errmsg("could not remove shared memory segment \"%s\": %m",
651  name)));
652  return false;
653  }
654 
655  *impl_private = NULL;
656  *mapped_address = NULL;
657  *mapped_size = 0;
658  return true;
659  }
660 
661  /* Create new segment or open an existing one for attach. */
662  if (op == DSM_OP_CREATE)
663  {
664  DWORD size_high;
665  DWORD size_low;
666  DWORD errcode;
667 
668  /* Shifts >= the width of the type are undefined. */
669 #ifdef _WIN64
670  size_high = request_size >> 32;
671 #else
672  size_high = 0;
673 #endif
674  size_low = (DWORD) request_size;
675 
676  /* CreateFileMapping might not clear the error code on success */
677  SetLastError(0);
678 
679  hmap = CreateFileMapping(INVALID_HANDLE_VALUE, /* Use the pagefile */
680  NULL, /* Default security attrs */
681  PAGE_READWRITE, /* Memory is read/write */
682  size_high, /* Upper 32 bits of size */
683  size_low, /* Lower 32 bits of size */
684  name);
685 
686  errcode = GetLastError();
687  if (errcode == ERROR_ALREADY_EXISTS || errcode == ERROR_ACCESS_DENIED)
688  {
689  /*
690  * On Windows, when the segment already exists, a handle for the
691  * existing segment is returned. We must close it before
692  * returning. However, if the existing segment is created by a
693  * service, then it returns ERROR_ACCESS_DENIED. We don't do
694  * _dosmaperr here, so errno won't be modified.
695  */
696  if (hmap)
697  CloseHandle(hmap);
698  return false;
699  }
700 
701  if (!hmap)
702  {
703  _dosmaperr(errcode);
704  ereport(elevel,
705  (errcode_for_dynamic_shared_memory(),
706  errmsg("could not create shared memory segment \"%s\": %m",
707  name)));
708  return false;
709  }
710  }
711  else
712  {
713  hmap = OpenFileMapping(FILE_MAP_WRITE | FILE_MAP_READ,
714  FALSE, /* do not inherit the name */
715  name); /* name of mapping object */
716  if (!hmap)
717  {
718  _dosmaperr(GetLastError());
719  ereport(elevel,
720  (errcode_for_dynamic_shared_memory(),
721  errmsg("could not open shared memory segment \"%s\": %m",
722  name)));
723  return false;
724  }
725  }
726 
727  /* Map it. */
728  address = MapViewOfFile(hmap, FILE_MAP_WRITE | FILE_MAP_READ,
729  0, 0, 0);
730  if (!address)
731  {
732  int save_errno;
733 
734  _dosmaperr(GetLastError());
735  /* Back out what's already been done. */
736  save_errno = errno;
737  CloseHandle(hmap);
738  errno = save_errno;
739 
740  ereport(elevel,
741  (errcode_for_dynamic_shared_memory(),
742  errmsg("could not map shared memory segment \"%s\": %m",
743  name)));
744  return false;
745  }
746 
747  /*
748  * VirtualQuery gives size in page_size units, which is 4K for Windows. We
749  * need size only when we are attaching, but it's better to get the size
750  * when creating new segment to keep size consistent both for
751  * DSM_OP_CREATE and DSM_OP_ATTACH.
752  */
753  if (VirtualQuery(address, &info, sizeof(info)) == 0)
754  {
755  int save_errno;
756 
757  _dosmaperr(GetLastError());
758  /* Back out what's already been done. */
759  save_errno = errno;
760  UnmapViewOfFile(address);
761  CloseHandle(hmap);
762  errno = save_errno;
763 
764  ereport(elevel,
765  (errcode_for_dynamic_shared_memory(),
766  errmsg("could not stat shared memory segment \"%s\": %m",
767  name)));
768  return false;
769  }
770 
771  *mapped_address = address;
772  *mapped_size = info.RegionSize;
773  *impl_private = hmap;
774 
775  return true;
776 }
777 #endif
778 
779 #ifdef USE_DSM_MMAP
780 /*
781  * Operating system primitives to support mmap-based shared memory.
782  *
783  * Calling this "shared memory" is somewhat of a misnomer, because what
784  * we're really doing is creating a bunch of files and mapping them into
785  * our address space. The operating system may feel obliged to
786  * synchronize the contents to disk even if nothing is being paged out,
787  * which will not serve us well. The user can relocate the pg_dynshmem
788  * directory to a ramdisk to avoid this problem, if available.
789  */
790 static bool
791 dsm_impl_mmap(dsm_op op, dsm_handle handle, Size request_size,
792  void **impl_private, void **mapped_address, Size *mapped_size,
793  int elevel)
794 {
795  char name[64];
796  int flags;
797  int fd;
798  char *address;
799 
800  snprintf(name, 64, PG_DYNSHMEM_DIR "/" PG_DYNSHMEM_MMAP_FILE_PREFIX "%u",
801  handle);
802 
803  /* Handle teardown cases. */
804  if (op == DSM_OP_DETACH || op == DSM_OP_DESTROY)
805  {
806  if (*mapped_address != NULL
807  && munmap(*mapped_address, *mapped_size) != 0)
808  {
809  ereport(elevel,
810  (errcode_for_dynamic_shared_memory(),
811  errmsg("could not unmap shared memory segment \"%s\": %m",
812  name)));
813  return false;
814  }
815  *mapped_address = NULL;
816  *mapped_size = 0;
817  if (op == DSM_OP_DESTROY && unlink(name) != 0)
818  {
819  ereport(elevel,
820  (errcode_for_dynamic_shared_memory(),
821  errmsg("could not remove shared memory segment \"%s\": %m",
822  name)));
823  return false;
824  }
825  return true;
826  }
827 
828  /* Create new segment or open an existing one for attach. */
829  flags = O_RDWR | (op == DSM_OP_CREATE ? O_CREAT | O_EXCL : 0);
830  if ((fd = OpenTransientFile(name, flags)) == -1)
831  {
832  if (op == DSM_OP_ATTACH || errno != EEXIST)
833  ereport(elevel,
834  (errcode_for_dynamic_shared_memory(),
835  errmsg("could not open shared memory segment \"%s\": %m",
836  name)));
837  return false;
838  }
839 
840  /*
841  * If we're attaching the segment, determine the current size; if we are
842  * creating the segment, set the size to the requested value.
843  */
844  if (op == DSM_OP_ATTACH)
845  {
846  struct stat st;
847 
848  if (fstat(fd, &st) != 0)
849  {
850  int save_errno;
851 
852  /* Back out what's already been done. */
853  save_errno = errno;
854  CloseTransientFile(fd);
855  errno = save_errno;
856 
857  ereport(elevel,
858  (errcode_for_dynamic_shared_memory(),
859  errmsg("could not stat shared memory segment \"%s\": %m",
860  name)));
861  return false;
862  }
863  request_size = st.st_size;
864  }
865  else
866  {
867  /*
868  * Allocate a buffer full of zeros.
869  *
870  * Note: palloc zbuffer, instead of just using a local char array, to
871  * ensure it is reasonably well-aligned; this may save a few cycles
872  * transferring data to the kernel.
873  */
874  char *zbuffer = (char *) palloc0(ZBUFFER_SIZE);
875  uint32 remaining = request_size;
876  bool success = true;
877 
878  /*
879  * Zero-fill the file. We have to do this the hard way to ensure that
880  * all the file space has really been allocated, so that we don't
881  * later seg fault when accessing the memory mapping. This is pretty
882  * pessimal.
883  */
884  while (success && remaining > 0)
885  {
886  Size goal = remaining;
887 
888  if (goal > ZBUFFER_SIZE)
889  goal = ZBUFFER_SIZE;
890  pgstat_report_wait_start(WAIT_EVENT_DSM_FILL_ZERO_WRITE);
891  if (write(fd, zbuffer, goal) == goal)
892  remaining -= goal;
893  else
894  success = false;
895  pgstat_report_wait_end();
896  }
897 
898  if (!success)
899  {
900  int save_errno;
901 
902  /* Back out what's already been done. */
903  save_errno = errno;
904  CloseTransientFile(fd);
905  unlink(name);
906  errno = save_errno ? save_errno : ENOSPC;
907 
908  ereport(elevel,
909  (errcode_for_dynamic_shared_memory(),
910  errmsg("could not resize shared memory segment \"%s\" to %zu bytes: %m",
911  name, request_size)));
912  return false;
913  }
914  }
915 
916  /* Map it. */
917  address = mmap(NULL, request_size, PROT_READ | PROT_WRITE,
918  MAP_SHARED | MAP_HASSEMAPHORE | MAP_NOSYNC, fd, 0);
919  if (address == MAP_FAILED)
920  {
921  int save_errno;
922 
923  /* Back out what's already been done. */
924  save_errno = errno;
925  CloseTransientFile(fd);
926  if (op == DSM_OP_CREATE)
927  unlink(name);
928  errno = save_errno;
929 
930  ereport(elevel,
931  (errcode_for_dynamic_shared_memory(),
932  errmsg("could not map shared memory segment \"%s\": %m",
933  name)));
934  return false;
935  }
936  *mapped_address = address;
937  *mapped_size = request_size;
938 
939  if (CloseTransientFile(fd) != 0)
940  {
941  ereport(elevel,
942  (errcode_for_file_access(),
943  errmsg("could not close shared memory segment \"%s\": %m",
944  name)));
945  return false;
946  }
947 
948  return true;
949 }
950 #endif
951 
952 /*
953  * Implementation-specific actions that must be performed when a segment is to
954  * be preserved even when no backend has it attached.
955  *
956  * Except on Windows, we don't need to do anything at all. But since Windows
957  * cleans up segments automatically when no references remain, we duplicate
958  * the segment handle into the postmaster process. The postmaster needn't
959  * do anything to receive the handle; Windows transfers it automatically.
960  */
961 void
962 dsm_impl_pin_segment(dsm_handle handle, void *impl_private,
963  void **impl_private_pm_handle)
964 {
965  switch (dynamic_shared_memory_type)
966  {
967 #ifdef USE_DSM_WINDOWS
968  case DSM_IMPL_WINDOWS:
969  if (IsUnderPostmaster)
970  {
971  HANDLE hmap;
972 
973  if (!DuplicateHandle(GetCurrentProcess(), impl_private,
974  PostmasterHandle, &hmap, 0, FALSE,
975  DUPLICATE_SAME_ACCESS))
976  {
977  char name[64];
978 
979  snprintf(name, 64, "%s.%u", SEGMENT_NAME_PREFIX, handle);
980  _dosmaperr(GetLastError());
981  ereport(ERROR,
982  (errcode_for_dynamic_shared_memory(),
983  errmsg("could not duplicate handle for \"%s\": %m",
984  name)));
985  }
986 
987  /*
988  * Here, we remember the handle that we created in the
989  * postmaster process. This handle isn't actually usable in
990  * any process other than the postmaster, but that doesn't
991  * matter. We're just holding onto it so that, if the segment
992  * is unpinned, dsm_impl_unpin_segment can close it.
993  */
994  *impl_private_pm_handle = hmap;
995  }
996  break;
997 #endif
998  default:
999  break;
1000  }
1001 }
1002 
1003 /*
1004  * Implementation-specific actions that must be performed when a segment is no
1005  * longer to be preserved, so that it will be cleaned up when all backends
1006  * have detached from it.
1007  *
1008  * Except on Windows, we don't need to do anything at all. For Windows, we
1009  * close the extra handle that dsm_impl_pin_segment created in the
1010  * postmaster's process space.
1011  */
1012 void
1013 dsm_impl_unpin_segment(dsm_handle handle, void **impl_private)
1014 {
1015  switch (dynamic_shared_memory_type)
1016  {
1017 #ifdef USE_DSM_WINDOWS
1018  case DSM_IMPL_WINDOWS:
1019  if (IsUnderPostmaster)
1020  {
1021  if (*impl_private &&
1022  !DuplicateHandle(PostmasterHandle, *impl_private,
1023  NULL, NULL, 0, FALSE,
1024  DUPLICATE_CLOSE_SOURCE))
1025  {
1026  char name[64];
1027 
1028  snprintf(name, 64, "%s.%u", SEGMENT_NAME_PREFIX, handle);
1029  _dosmaperr(GetLastError());
1030  ereport(ERROR,
1031  (errcode_for_dynamic_shared_memory(),
1032  errmsg("could not duplicate handle for \"%s\": %m",
1033  name)));
1034  }
1035 
1036  *impl_private = NULL;
1037  }
1038  break;
1039 #endif
1040  default:
1041  break;
1042  }
1043 }
1044 
1045 static int
1046 errcode_for_dynamic_shared_memory(void)
1047 {
1048  if (errno == EFBIG || errno == ENOMEM)
1049  return errcode(ERRCODE_OUT_OF_MEMORY);
1050  else
1051  return errcode_for_file_access();
1052 }
BlockSig
sigset_t BlockSig
Definition: pqsignal.c:23
uint32
unsigned int uint32
Definition: c.h:490
Size
size_t Size
Definition: c.h:589
dsm_impl_pin_segment
void dsm_impl_pin_segment(dsm_handle handle, void *impl_private, void **impl_private_pm_handle)
Definition: dsm_impl.c:962
min_dynamic_shared_memory
int min_dynamic_shared_memory
Definition: dsm_impl.c:115
errcode_for_dynamic_shared_memory
static int errcode_for_dynamic_shared_memory(void)
Definition: dsm_impl.c:1046
SEGMENT_NAME_PREFIX
#define SEGMENT_NAME_PREFIX
Definition: dsm_impl.c:120
dsm_impl_unpin_segment
void dsm_impl_unpin_segment(dsm_handle handle, void **impl_private)
Definition: dsm_impl.c:1013
dsm_impl_posix_resize
static int dsm_impl_posix_resize(int fd, off_t size)
Definition: dsm_impl.c:351
dsm_impl_op
bool dsm_impl_op(dsm_op op, dsm_handle handle, Size request_size, void **impl_private, void **mapped_address, Size *mapped_size, int elevel)
Definition: dsm_impl.c:159
dynamic_shared_memory_type
int dynamic_shared_memory_type
Definition: dsm_impl.c:112
dsm_impl_sysv
static bool dsm_impl_sysv(dsm_op op, dsm_handle handle, Size request_size, void **impl_private, void **mapped_address, Size *mapped_size, int elevel)
Definition: dsm_impl.c:422
dynamic_shared_memory_options
const struct config_enum_entry dynamic_shared_memory_options[]
Definition: dsm_impl.c:95
dsm_impl_posix
static bool dsm_impl_posix(dsm_op op, dsm_handle handle, Size request_size, void **impl_private, void **mapped_address, Size *mapped_size, int elevel)
Definition: dsm_impl.c:212
ZBUFFER_SIZE
#define ZBUFFER_SIZE
Definition: dsm_impl.c:118
dsm_impl_mmap
static bool dsm_impl_mmap(dsm_op op, dsm_handle handle, Size request_size, void **impl_private, void **mapped_address, Size *mapped_size, int elevel)
Definition: dsm_impl.c:791
dsm_impl.h
dsm_handle
uint32 dsm_handle
Definition: dsm_impl.h:55
dsm_op
dsm_op
Definition: dsm_impl.h:62
DSM_OP_DETACH
@ DSM_OP_DETACH
Definition: dsm_impl.h:65
DSM_OP_CREATE
@ DSM_OP_CREATE
Definition: dsm_impl.h:63
DSM_OP_DESTROY
@ DSM_OP_DESTROY
Definition: dsm_impl.h:66
DSM_OP_ATTACH
@ DSM_OP_ATTACH
Definition: dsm_impl.h:64
DSM_IMPL_WINDOWS
#define DSM_IMPL_WINDOWS
Definition: dsm_impl.h:19
DSM_IMPL_POSIX
#define DSM_IMPL_POSIX
Definition: dsm_impl.h:17
DEFAULT_DYNAMIC_SHARED_MEMORY_TYPE
#define DEFAULT_DYNAMIC_SHARED_MEMORY_TYPE
Definition: dsm_impl.h:36
PG_DYNSHMEM_MMAP_FILE_PREFIX
#define PG_DYNSHMEM_MMAP_FILE_PREFIX
Definition: dsm_impl.h:52
PG_DYNSHMEM_DIR
#define PG_DYNSHMEM_DIR
Definition: dsm_impl.h:51
DSM_IMPL_SYSV
#define DSM_IMPL_SYSV
Definition: dsm_impl.h:18
DSM_IMPL_MMAP
#define DSM_IMPL_MMAP
Definition: dsm_impl.h:20
errcode_for_file_access
int errcode_for_file_access(void)
Definition: elog.c:881
errcode
int errcode(int sqlerrcode)
Definition: elog.c:858
errmsg
int errmsg(const char *fmt,...)
Definition: elog.c:1069
ERROR
#define ERROR
Definition: elog.h:39
ereport
#define ereport(elevel,...)
Definition: elog.h:149
DEBUG4
#define DEBUG4
Definition: elog.h:27
name
const char * name
Definition: encode.c:571
CloseTransientFile
int CloseTransientFile(int fd)
Definition: fd.c:2609
ReleaseExternalFD
void ReleaseExternalFD(void)
Definition: fd.c:1152
ReserveExternalFD
void ReserveExternalFD(void)
Definition: fd.c:1134
OpenTransientFile
int OpenTransientFile(const char *fileName, int fileFlags)
Definition: fd.c:2433
file_perm.h
PG_FILE_MODE_OWNER
#define PG_FILE_MODE_OWNER
Definition: file_perm.h:38
IsUnderPostmaster
bool IsUnderPostmaster
Definition: globals.c:113
remaining
int remaining
Definition: informix.c:667
success
static bool success
Definition: initdb.c:170
close
#define close(a)
Definition: win32.h:12
write
#define write(a, b, c)
Definition: win32.h:14
Assert
Assert(fmt[strlen(fmt) - 1] !='\n')
pfree
void pfree(void *pointer)
Definition: mcxt.c:1436
TopMemoryContext
MemoryContext TopMemoryContext
Definition: mcxt.c:141
palloc0
void * palloc0(Size size)
Definition: mcxt.c:1241
MemoryContextAlloc
void * MemoryContextAlloc(MemoryContext context, Size size)
Definition: mcxt.c:1005
PG_SHMAT_FLAGS
#define PG_SHMAT_FLAGS
Definition: mem.h:20
MAP_FAILED
#define MAP_FAILED
Definition: mem.h:45
MAP_HASSEMAPHORE
#define MAP_HASSEMAPHORE
Definition: mem.h:30
MAP_NOSYNC
#define MAP_NOSYNC
Definition: mem.h:38
snprintf
#define snprintf
Definition: port.h:238
IPCProtection
#define IPCProtection
Definition: posix_sema.c:59
fd
static int fd(const char *x, int i)
Definition: preproc-init.c:105
config_enum_entry
Definition: guc.h:168
stat::st_size
__int64 st_size
Definition: win32_port.h:275
WAIT_EVENT_DSM_ALLOCATE
@ WAIT_EVENT_DSM_ALLOCATE
Definition: wait_event.h:184
WAIT_EVENT_DSM_FILL_ZERO_WRITE
@ WAIT_EVENT_DSM_FILL_ZERO_WRITE
Definition: wait_event.h:185
pgstat_report_wait_start
static void pgstat_report_wait_start(uint32 wait_event_info)
Definition: wait_event.h:270
pgstat_report_wait_end
static void pgstat_report_wait_end(void)
Definition: wait_event.h:286
IPC_STAT
#define IPC_STAT
Definition: win32_port.h:108
EINTR
#define EINTR
Definition: win32_port.h:369
IPC_RMID
#define IPC_RMID
Definition: win32_port.h:103
_dosmaperr
void _dosmaperr(unsigned long)
Definition: win32error.c:177
key_t
long key_t
Definition: win32_port.h:249
fstat
#define fstat
Definition: win32_port.h:285
ftruncate
#define ftruncate(a, b)
Definition: win32_port.h:82
IPC_EXCL
#define IPC_EXCL
Definition: win32_port.h:105
IPC_CREAT
#define IPC_CREAT
Definition: win32_port.h:104
IPC_PRIVATE
#define IPC_PRIVATE
Definition: win32_port.h:106