iceoryx2 stores all data in shared memory, which imposes certain restrictions.
Only data that is self-contained and does not use pointers to reference itself
is allowed. This is because shared memory is mapped at different offsets in
each process, rendering absolute pointers invalid. Additionally, if the data
structure uses the heap, it is stored locally within a process and cannot be
accessed by other processes. As a result, data types such as String, Vec,
or HashMap cannot be used as payload types.
Additionally, every data type must be annotated with #[repr(C)]. The Rust
compiler may reorder the members of a struct, which can lead to undefined
behavior if another process expects a different ordering.
To address this, iceoryx2 provides shared-memory-compatible data types. You
can refer to the complex data types example,
which demonstrates the use of FixedSizeByteString and FixedSizeVec.
-
Ensure to only use data types suitable for shared memory communication like pod-types (plain old data, e.g.
u64,f32, ...) or explicitly shared-memory compatible containers like some of the constructs in theiceoryx2-bb-containers. -
Add
#[repr(C)]` to your custom data type so that it has a uniform memory representation.#[repr(C)] struct MyDataType { //.... }
-
Do not use pointers, or data types that are not self-contained or use pointers for their internal management!
- Ensure to only use data types suitable for shared memory communication like
pod-types (plain old data, e.g.
uint64_t,int32_t, ...) or explicitly shared-memory compatible containers like some of the constructs in theiceoryx-hoofs. - Do not use pointers, or data types that are not self-contained or use pointers for their internal management!
Take a look at the publish-subscribe dynamic data size example.
The idea is to create a service based on a slice and define at runtime a
max_slice_len. Then samples up to a length of the max slice length can be
allocated with loan_slice{_uninit}. When it turns out that the slice length is
insufficient, a new publisher with a larger max_slice_len can be created.
Important
Be aware that the history of the old publisher is lost when it is removed.
Note
We are also working on an API that does not require the user to explicitly create a new publisher whenever the memory is insufficient. It would also solve the history issue.
This is currently not possible since we cannot guarantee to have the same layout of the data structures in the shared memory. On 32-bit architectures 64-bit POD are aligned to a 4 byte boundary but to a 8 byte boundary on 64-bit architectures. Some additional work is required to make 32-bit and 64-bit applications interoperabel.
Take a look at the complex data types example.
In this example the PlacementDefault trait is introduced that allows in place
initialization and solves the stack overflow issue when the data type is larger
than the available stack size.
The WaitSet wakes up whenever an attachment, such as a Listener or a socket,
has something to read. If you do not handle all notifications, for example,
with Listener::try_wait_one(), the WaitSet will wake up immediately again,
potentially causing an infinite loop and resulting in 100% CPU usage.
No, but it is on our roadmap. However, we offer an event-based API to implement push notifications. For more details, see the event example.
Application does not remove services/ports on shutdown or several application restarts lead to port count exceeded
The structs of iceoryx2 need to be able to cleanup all resources when they go out of scope. This is not the case when the application is:
- killed with the sigkill signal (
kill -9) - the
SIGTERMsignal is not explicitly handled
iceoryx2 already provides a mechanism that registers a signal handler that handles termination requests gracefully, see publish subscribe example and
while node.wait(CYCLE_TIME).is_ok() {
// user code
}But you can also use a crate like ctrlc.
- log, add the feature flag
logger_logto the dependency inCargo.tomliceoryx2 = { version = "0.1.0", features = ["logger_log"]}
- tracing, add the feature flag
logger_tracingto the dependency inCargo.tomliceoryx2 = { version = "0.1.0", features = ["logger_tracing"]}
use iceoryx2::prelude::*
// ...
set_log_level(LogLevel::Trace);When an application crashes, some resources may remain in the system and need to be cleaned up. This issue is detected whenever a new iceoryx2 instance is created, removed, or when someone opens the service that the crashed process had previously opened. On the command line, you may see a message like this:
6 [W] "Node::<iceoryx2::service::ipc::Service>::cleanup_dead_nodes()"
| Dead node (NodeId(UniqueSystemId { value: 1667667095615766886193595845
| , pid: 34245, creation_time: Time { clock_type: Realtime, seconds: 172
| 8553806, nanoseconds: 90404414 } })) detected
However, for successful cleanup, the process attempting the cleanup must have sufficient permissions to remove the stale resources of the dead process. If the cleanup fails due to insufficient permissions, the process that attempted the cleanup will continue without removing the resources.
Generally, it is not necessary to manually clean up these resources, as other processes should detect and handle the cleanup when creating or removing nodes, or when services are opened or closed.
Nevertheless, there are three different approaches to initiate stale resource cleanup:
-
Using the iceoryx2 API:
Node::<ipc::Service>::list(Config::global_config(), |node_state| { if let NodeState::<ipc::Service>::Dead(view) = node_state { println!("Cleanup resources of dead node {:?}", view); if let Err(e) = view.remove_stale_resources() { println!("Failed to clean up resources due to {:?}", e); } } CallbackProgression::Continue })?;
-
Using the command line tool:
iox2 node -h(NOT YET IMPLEMENTED) -
Manual cleanup: Stop all running services and remove all shared memory files with the
iox2prefix from:- POSIX:
/dev/shm/,/tmp/iceoryx2 - Windows:
c:\Temp\iceoryx2
- POSIX: