Skip to content

Implement fine grain locking for build-dir #16155

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
ranger-ross wants to merge 4 commits into
base: master
Choose a base branch
from
+800 −70
Open

Implement fine grain locking for build-dir #16155

Changes from 1 commit
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
24417eb
feat(unstable): Added -Zfine-grain-locking unstable feature
ranger-ross Nov 22, 2025
ab5e95e
feat(locking): Added build unit level locking
ranger-ross Dec 4, 2025
3e9893f
feat(build): Added dynamic resource limit handling
ranger-ross Oct 28, 2025
8252855
feat(locking): Added reference counted file locking
ranger-ross Oct 29, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
212 changes: 187 additions & 25 deletions src/cargo/core/compiler/locking.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -31,14 +31,15 @@
//! [`CompilationLock`] is the primary interface for locking.

use std::{
collections::HashSet,
collections::{HashMap, HashSet},
fs::{File, OpenOptions},
path::{Path, PathBuf},
sync::{Arc, Condvar, LazyLock, Mutex},
};

use anyhow::Context;
use anyhow::{Context, anyhow};
use itertools::Itertools;
use tracing::{instrument, trace};
use tracing::{instrument, trace, warn};

use crate::{
CargoResult,
Expand Down Expand Up @@ -122,8 +123,17 @@ struct UnitLock {
}

struct UnitLockGuard {
partial: File,
_full: Option<File>,
partial: Arc<RcFileLock>,
full: Option<Arc<RcFileLock>>,
}

impl Drop for UnitLockGuard {
fn drop(&mut self) {
self.partial.unlock().unwrap();
if let Some(full) = &self.full {
full.unlock().unwrap();
}
}
}

impl UnitLock {
Expand All @@ -138,37 +148,48 @@ impl UnitLock {
pub fn lock_exclusive(&mut self) -> CargoResult<()> {
assert!(self.guard.is_none());

let partial = open_file(&self.partial)?;
let partial = FileLockInterner::get_or_create_lock(&self.partial)?;
partial.lock()?;

let full = open_file(&self.full)?;
full.lock()?;
let unlock_partial = || {
if let Err(err) = partial.unlock() {
warn!("Failed to unlock partial lock after failing to take full lock {err}");
}
};

let full =
FileLockInterner::get_or_create_lock(&self.full).inspect_err(|_| unlock_partial())?;
full.lock().inspect_err(|_| unlock_partial())?;

self.guard = Some(UnitLockGuard {
partial,
_full: Some(full),
full: Some(full),
});
Ok(())
}

pub fn lock_shared(&mut self, ty: &SharedLockType) -> CargoResult<()> {
assert!(self.guard.is_none());

let partial = open_file(&self.partial)?;
let partial = FileLockInterner::get_or_create_lock(&self.partial)?;
partial.lock_shared()?;

let unlock_partial = || {
if let Err(err) = partial.unlock() {
warn!("Failed to unlock partial lock after failing to take full lock {err}");
}
};

let full = if matches!(ty, SharedLockType::Full) {
let full_lock = open_file(&self.full)?;
full_lock.lock_shared()?;
let full_lock = FileLockInterner::get_or_create_lock(&self.full)
.inspect_err(|_| unlock_partial())?;
full_lock.lock_shared().inspect_err(|_| unlock_partial())?;
Some(full_lock)
} else {
None
};

self.guard = Some(UnitLockGuard {
partial,
_full: full,
});
self.guard = Some(UnitLockGuard { partial, full });
Ok(())
}

Expand All @@ -177,15 +198,7 @@ impl UnitLock {
.guard
.as_ref()
.context("guard was None while calling downgrade")?;

// NOTE:
// > Subsequent flock() calls on an already locked file will convert an existing lock to the new lock mode.
// https://man7.org/linux/man-pages/man2/flock.2.html
//
// However, the `std::file::File::lock/lock_shared` is allowed to change this in the
// future. So its probably up to us if we are okay with using this or if we want to use a
// different interface to flock.
guard.partial.lock_shared()?;
guard.partial.downgrade()?;

Ok(())
}
Expand Down Expand Up @@ -220,3 +233,152 @@ fn all_dependency_units<'a>(
inner(build_runner, unit, &mut results);
return results;
}

/// An interner to manage [`RcFileLock`]s to make sharing across compilation jobs easier.
pub struct FileLockInterner {
locks: Mutex<HashMap<PathBuf, Arc<RcFileLock>>>,
}

impl FileLockInterner {
pub fn new() -> Self {
Self {
locks: Mutex::new(HashMap::new()),
}
}

pub fn get_or_create_lock(path: &Path) -> CargoResult<Arc<RcFileLock>> {
static GLOBAL: LazyLock<FileLockInterner> = LazyLock::new(FileLockInterner::new);

let mut locks = GLOBAL
.locks
.lock()
.map_err(|_| anyhow!("lock was poisoned"))?;

if let Some(lock) = locks.get(path) {
return Ok(Arc::clone(lock));
}

let file = open_file(&path)?;

let lock = Arc::new(RcFileLock {
inner: Mutex::new(RcFileLockInner {
file,
share_count: 0,
exclusive: false,
}),
condvar: Condvar::new(),
});

locks.insert(path.to_path_buf(), Arc::clone(&lock));

return Ok(lock);
}
}

/// A reference counted file lock.
///
/// This lock is designed to reduce file descriptors by sharing a single file descriptor for a
/// given lock when the lock is shared. The motivation for this is to avoid hitting file descriptor
/// limits when fine grain locking is enabled.
pub struct RcFileLock {
Copy link
Contributor

@epage epage Dec 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a lot of complexity when we aren't needing to lock within our own process?

What if we tracked all locks inside of the BuildRunner? We could have a single lock per build unit that we grab exclusively as soon as we know the dep unit path, store them in a HashMap<PathBuf, FileLock> (either using Filesystem or added a public constructor for FileLock), and hold onto them until the end of the build.

At least for a first step, it simplifies things a lot. It does mean that another build will block until this one is done if they share some build units but not all. That won't be the case for cargo check vs cargo build or for cargo check vs cargo clippy. It will be an issue for cargo check vs cargo check --no-default-features or cargo check vs cargo check --workspace. We can at least defer that out of this initial PR and evaluate both different multi-lock designs under these scheme and how much of a need there is for that.

Copy link
Member Author

@ranger-ross ranger-ross Dec 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What if we tracked all locks inside of the BuildRunner?

We could try something like this but the .rmeta_produce() called for pipelined builds makes this tricky since build_runner is not in scope for the Work closure. (similar issue as this comment)

Though maybe it might be possible to plumb that over to the JobState.
Unsure how difficult that would be but I can look into it

Copy link
Contributor

@epage epage Dec 5, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was suggesting we simplify things down to just one lock per build unit. We grab it when doing the fingerprint check and then hold onto it until the end. We don't need these locks for coordination within our own build, this is just for cross-process coordination. If you have two processed doing cargo check && cargo check, the second one will effectively be blocked on the first anyways. Having finer grained locks than this only helps when some leaf crates can be shared but nothing else, like what happens when different features are activated. This seems minor enough especially when we get the cross-project build cache which is where these are more likely to live and will have a different locking scheme.

inner: Mutex<RcFileLockInner>,
condvar: Condvar,
}

struct RcFileLockInner {
file: File,
exclusive: bool,
share_count: u32,
}

impl RcFileLock {
pub fn lock(&self) -> CargoResult<()> {
let mut inner = self
.inner
.lock()
.map_err(|_| anyhow!("lock was poisoned"))?;

while inner.exclusive || inner.share_count > 0 {
inner = self
.condvar
.wait(inner)
.map_err(|_| anyhow!("lock was poisoned"))?;
}

inner.file.lock()?;
inner.exclusive = true;

Ok(())
}

pub fn lock_shared(&self) -> CargoResult<()> {
let mut inner = self
.inner
.lock()
.map_err(|_| anyhow!("lock was poisoned"))?;

while inner.exclusive {
inner = self
.condvar
.wait(inner)
.map_err(|_| anyhow!("lock was poisoned"))?;
}

if inner.share_count == 0 {
inner.file.lock_shared()?;
inner.share_count = 1;
} else {
inner.share_count += 1;
}

Ok(())
}

pub fn unlock(&self) -> CargoResult<()> {
let mut inner = self
.inner
.lock()
.map_err(|_| anyhow!("lock was poisoned"))?;

if inner.exclusive {
assert!(inner.share_count == 0);
inner.file.unlock()?;
self.condvar.notify_all();
inner.exclusive = false;
} else {
if inner.share_count > 1 {
inner.share_count -= 1;
} else {
inner.file.unlock()?;
inner.share_count = 0;
self.condvar.notify_all();
}
}

Ok(())
}

pub fn downgrade(&self) -> CargoResult<()> {
let mut inner = self
.inner
.lock()
.map_err(|_| anyhow!("lock was poisoned"))?;

assert!(inner.exclusive);
assert!(inner.share_count == 0);

// NOTE:
// > Subsequent flock() calls on an already locked file will convert an existing lock to the new lock mode.
// https://man7.org/linux/man-pages/man2/flock.2.html
//
// However, the `std::file::File::lock/lock_shared` is allowed to change this in the
// future. So its probably up to us if we are okay with using this or if we want to use a
// different interface to flock.
inner.file.lock_shared()?;

inner.exclusive = false;
inner.share_count = 1;

Ok(())
}
}