SYSTEM AND METHOD FOR PROVIDING AND MANAGING MESSAGE QUEUES FOR MULTINODE APPLICATIONS IN A MIDDLEWARE MACHINE ENVIRONMENT Copyright Notice:
[0001] A portion of the disclosure of this patent document contains material which is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or the patent disclosure, as it appears in the Patent and Trademark Office patent file or records, but otherwise reserves all copyright rights whatsoever.
Field of Invention:
[0002] The present invention is generally related to computer systems and software such as middleware, and is particularly related to supporting a transactional middleware machine environment.
Background:
[0003] A transactional middleware system, or transaction oriented middleware, includes enterprise application servers that can process various transactions within an organization. With the developments in new technologies such as high performance network and multiprocessor computers, there is a need to further improve the performance of transactional middleware. These are the generally areas that embodiments of the invention are intended to address.
Summary:
[0004] Described herein are systems and methods for providing message queues in a middleware machine environment. The transactional middleware machine environment includes a message control data structure on a message receiver and a heap data structure in a shared memory that is associated with the message receiver. The message sender operates to write a message directly into the heap data structure, and to maintain metadata associated with the message in the message control data structure. Furthermore, the middleware machine environment includes a shared memory on a message receiver, wherein the shared memory maintains one or more message queues for the middleware machine environment. Additionally, the middleware machine environment includes a daemon process that is capable of creating at least one message queue in the shared memory, when a client requests that the at least one message queue be set up to support sending and receiving messages.
Brief Description of the Figures:
[0005] Figure 1 shows an illustration of providing message queues for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention.
[0006] Figure 2 illustrates an exemplary flow chart for supporting accurate load balance in a middleware machine environment, in accordance with an embodiment of the invention.
[0007] Figure 3 shows an illustration of providing remote memory rings for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention.
[0008] Figure 4 shows an illustration of a message queue that can be concurrently accessed by multiple message senders in a middleware machine environment, in accordance with an embodiment of the invention.
[0009] Figure 5 shows an illustration of using System V message queues for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention.
[0010] Figure 6 shows an illustration of a remote direct memory access (RDMA) message queues for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention.
[0011] Figure 7 shows an illustration of a daemon process that can create and manage a message queue in a middleware machine environment, in accordance with an embodiment of the invention.
[0012] Figure 8 illustrates an exemplary flow chart for supporting accurate load balance in a transactional middleware machine environment, in accordance with an embodiment of the invention.
[0013] Figure 9 shows an illustration of a security model that can be used to protect a message queue in a middleware machine environment, in accordance with an embodiment of the invention.
[0014] Figure 10 illustrates an exemplary flow chart for protecting a message queue in a middleware machine environment, in accordance with an embodiment of the invention.
Detailed Description:
[0015] Described herein is a system and method for supporting a transactional middleware system that can take advantage of fast machines with multiple processors, and a high performance network connection in a transactional middleware machine environment. The system can provide message queues for multinode applications using a data structure based on a ring buffer (a circular queue). The system includes a remote ring structure with a first ring structure on a reader and a second ring structure on a writer, wherein each of the first ring structure and the second ring structure has a head pointer and a tail pointer. When the writer operates to write a message to the remote ring, the writer can update the head pointers for both the first ring structure and the second ring structure, and the data in the remote ring structure. When the reader operates to read a message from the remote ring, the reader can update the tail pointers for both the first ring structure and the second ring structure. Additionally, the
message can be stored in a heap data structure, while the metadata associated with the message can be stored in the remote ring structure.
[0016] In accordance with an embodiment of the invention, the system comprises a combination of high performance hardware, e.g. 64-bit processor technology, high performance large memory, and redundant InfiniBand and Ethernet networking, together with an application server or middleware environment, such as WebLogic Suite, to provide a complete Java EE application server complex which includes a massively parallel in-memory grid, that can be provisioned quickly, and can scale on demand. In accordance with an embodiment, the system can be deployed as a full, half, or quarter rack, or other configuration, that provides an application server grid, storage area network, and InfiniBand (IB) network. The middleware machine software can provide application server, middleware and other functionality such as, for example, WebLogic Server, JRockit or Hotspot JVM, Oracle Linux or Solaris, and Oracle VM. The system can include a plurality of compute nodes, IB switch gateway, and storage nodes or units, communicating with one another via an IB network. When implemented as a rack configuration, unused portions of the rack can be left empty or occupied by fillers.
[0017] In accordance with an embodiment of the invention, referred to herein as "Sun Oracle Exalogic" or "Exalogic", the system is an easy-to-deploy solution for hosting middleware or application server software, such as the Oracle Middleware SW suite, or Weblogic. As described herein, the system is a "grid in a box" that comprises one or more servers, storage units, an IB fabric for storage networking, and all the other components required to host a middleware application. Significant performance can be delivered for all types of middleware applications by leveraging a massively parallel grid architecture using, e.g. Real Application Clusters and Exalogic Open storage. The system delivers improved performance with linear I/O scalability, is simple to use and manage, and delivers mission-critical availability and reliability.
[0018] In accordance with an embodiment of the invention, Tuxedo is a set of software modules that enables the construction, execution, and administration of high performance, distributed business applications and has been used as transactional middleware by a number of multi-tier application development tools. Tuxedo is a middleware platform that can be used to manage distributed transaction processing in distributed computing environments. It is a proven platform for unlocking enterprise legacy applications and extending them to a services oriented architecture, while delivering unlimited scalability and standards-based interoperability.
[0019] In accordance with one embodiment of the invention, a middleware machine environment can provide message queues for multinode applications. The transactional middleware machine environment includes a message control data structure on a message receiver and a heap data structure in a shared memory that is associated with the message receiver. The message sender operates to write a message directly into the heap data structure, and to maintain metadata associated with the message in the message control data structure. Furthermore, the message control data structure can be a ring structure with a head pointer and
a tail pointer. Additionally, the message receiver resides on a server that is connected with a plurality of clients, with each of said clients keeping a private copy of the message control data structure. Also, the message receiver can support concurrent access to the message control data structure associated with the message receiver.
[0020] In accordance with another embodiment of the invention, a middleware machine environment can manage message queues for multimode applications. The middleware machine environment includes a shared memory on a message receiver, wherein the shared memory maintains one or more message queues for the middleware machine environment. The middleware machine environment further includes a daemon process that is capable of creating at least one message queue in the shared memory, when a client requests that the at least one message queue be set up to support sending and receiving messages. Additionally, different processes on a client operate to use at least one proxy to communicate with the message server. Furthermore, the middleware machine environment can protect message queues for multimode applications using a security token created by the daemon process.
Message Queues for Multinode Applications
[0021] In accordance with an embodiment of the invention, messaging software, such as messaging queues, can take advantage of a high performance network, such as an IB network using a remote direct memory access (RDMA) protocol. The RDMA protocol allows a message sender to bypass OS kernels and directly access to the memory without a need to wake up a process on the remote machine.
[0022] Figure 1 shows an illustration of providing message queues for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 1 , a middleware machine environment 100 can include multiple server machines, such as Machine A 101 and Machine B 102. A message sender 103 on a local machine, e.g. Machine A 101 , can send a message 107 to a message receiver 104 on a remote machine, e.g. Machine B 102. The message receiver 104 on the remote Machine B 102 can use a shared memory 106 that includes a message queue or a message control data structure 108 and a heap data structure 110.
[0023] In accordance with an embodiment of the invention, a message queue can contain only the metadata information that is associated with the message, while the heap data structure contains the physical message. Thus, messages with variable size can be easily accommodated and be stored in the shared memory. As shown in Figure 1 , the message sender 103 operates to write the message directly into the heap data structure 110, and maintain metadata associated with the message in the message control data structure 108.
[0024] Also as shown in Figure 1 , the message sender 103 includes a message control data structure 105 on the local machine, Machine A 101 . The message control data structure 105 can be a copy of the message queue 108 for the message sender 103. The message sender on the
local Machine A 101 can further maintain metadata associated with the message in the message control data structure 105 on the local Machine A 101.
[0025] In accordance with an embodiment of the invention, a message sender on a local Machine A 101 can directly write a message into heap data structure 1 10 in a shared memory 106 on the remote Machine B 102. As shown in Figure 1 , the message sender 103 can bypass the OS kernel on the remote Machine B 102, with the addressing information provided by the message receiver 104. Furthermore, the message sender 103 on the local Machine A 101 can update the status information of the message such as an input sequence number in the queue in the remote Machine B 102 via the control structure on the local Machine A 101 .
[0026] Furthermore, the message sender 103 on the local Machine A 101 can send a message to a message receiver 104 regardless the size of the message. Hence, this messaging mechanism can be cost effective, efficient, and requires less overhead for large volume of data.
[0027] Additionally, the message sender 103 can wake up a process 1 12 on the remote Machine B 102 that is associated with the message receiver 104, according to a pre-configured procedure. For example, the message sender can wake up the process when a service request message that can be handled by the process has been delivered. In another example, the message sender can wake up a daemon process on the remote Machine B 102 when the queue is full.
[0028] In accordance with an embodiment of the invention, before a process on the message receiver, e.g. process 1 12, goes to sleep, the process can notice the message control structure 105 on the client side, and/or provide a procedure to the message control structure 105 on how to wake itself up. Then, the process on the receiver side can wait for the delivery of the message. For example, a process that is expecting the message can be in a sleeping status until it is wakened up by the message sender.
[0029] Also as shown in Figure 1 , after a message receiver 104 consumes a message, the message receiver can take the message out from the queue, in which case the message receiver can update the message queue 108 and the control structure 105 on the sender side by performing a RDMA write operation. Such a RDMA write operation can be performed in a manner without intervention from the client on the remote Machine B 102.
[0030] In accordance with an embodiment of the invention, in order to support two-way communications between two servers in a middleware machine environment, each server on the middleware machine can be provided with a receiver and a sender. Thus, the communication between these two servers can be performed by different message senders at the different machines, using RDMA protocol such as RDMA write operations.
[0031] Figure 2 illustrates an exemplary flow chart for providing message queues for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 2, at step 201 , the system can provide a first message control data structure on a message receiver. At step 202, the system can associate a
heap data structure in a shared memory with the message receiver. Then, at 203, the system allows a message sender to write a message directly into the heap data structure, and maintain metadata associated with the message in the first message control data structure. Remote Memory Rings
[0032] In accordance with an embodiment of the invention, a data structure based on a ring buffer (a circular queue) can be the backbone of this system. In a simplified case, this ring structure can work as a first-in first-out (FIFO) queue.
[0033] Figure 3 shows an illustration of providing remote memory rings for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 3, both the message sender 301 and the message receiver 302 can use a ring structure as a message control data structure, and each ring structure can have a head pointer and a tail pointer. When a message sender 301 operates to write a message into a message queue on a message reader 302, e.g. a heap data structure in a shared memory, the message sender 301 can update the head pointers 303 and 304 for both ring structures. On the other hand, when a message receiver 302, or a reader, operates to read a message from the heap data structure in the shared memory, the reader updates the tail pointers 305 and 306 for both ring structures.
[0034] In accordance with an embodiment of the invention, a head pointer in a ring structure points to the latest message added to the message queue and a tail pointer in a ring structure points to the oldest message in the message queue. Active messages are stored between the head pointer and the tail pointer. Message senders, or writers, can look at the free space between the head pointer and the tail pointer of the queue (the white section of the ring structure in Figure 3) and move the head pointer forward as it writes a new message. On the other hand, message readers can look between the head pointer and the tail pointer of the queue (the shadowed section of the ring structure in Figure 3) to get new messages and move the tail pointer forward as readers read a message. This ensures that both the head pointer and the tail pointer move only in a single direction.
[0035] In accordance with an embodiment of the invention, the following restrictions can be maintained for each ring operation: only readers update tail pointer; only writers update head pointer; the section from the tail pointer to the head pointer in a ring structure contains valid unread messages; and the section from the head pointer to the tail pointer in a ring structure is always free. Thus, the reader can read a message even when a writer writes to the ring, and synchronization is not required between the reader and the writer.
Concurrent readers and writers
[0036] In accordance with an embodiment of the invention, multiple message senders on different clients in a middleware machine environment can concurrently access a message
queue on a server machine in the middleware machine environment.
[0037] Figure 4 shows an illustration of a message queue that can be concurrently accessed by multiple message senders in a middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 4, a server 401 can use a message queue 403 to concurrently handle service requests from multiple clients, e.g. Client A-D 41 1-414. The message queue 403 can be maintained in a shared memory 402 on the server machine. Each client can maintain a separate message queue 421-424, which can be a private copy of the message queue 403. Furthermore, the different private copies of the message queue 403 (i.e. message queues 421 -424) can be synchronized with the message queue 403, e.g. periodically, in order to ensure that each message queue 421-424 is timely updated.
[0038] In accordance with an embodiment of the invention, a lock can be activated on a message queue, when the queue, or a particular entry in the queue, is currently being updated by a client. Since the queue is in a shared memory on the server machine, every other client can notice that the queue is locked and can be prevented from writing into a corresponding portion of memory that is associated with the particular entry in the queue. Furthermore, the sending of a message can be implemented by performing a RDMA write operation on the sending side. Hence, there is no need to implement a latch or a serialization mechanism on the receiving side for the lock in order to guarantee there is no confliction in writing and accessing the queue and its associated heap data structure in the shared memory.
[0039] In accordance with an embodiment of the invention, the clients can race to get an access to the queue. Once a client obtains a lock on the queue, or a particular entry in the queue, other clients can wait for the release of the lock, e.g. using semaphore mechanism provided by the OS in a single node environment or using RDMA atomics and latchless mechanisms in a multinode environment.
System V Message Queues
[0040] In accordance with an embodiment of the invention, a distributed transactional system can use a server-client model that allows clients to submit work to an available server. The clients can be provided with the results when the work is done. Work submission and its completions can be communicated using message queues. System V message queues provide an efficient way of handling work submission and completion on a single machine in a distributed transactional environment, such as the Oracle Tuxedo environment. Furthermore, System V message queues can be extended for sharing work between multiple machines.
[0041] Figure 5 shows an illustration of using System V message queues for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 5, a shadow queue creation model can be applied over System V message queues in a middleware machine environment 500. When a message queue Q 51 1 is created on a node A 501 , a broker on that node, broker A 504, can be informed of the existence
of the message queue Q 51 1. Then, broker A 504 can talk to similar brokers on other nodes 502-503 and can make them create queues with same name - 'Q' - on each of the node in the cluster.
[0042] In accordance with an embodiment of the invention, a process 507 on a node B 502 can write to a local message queue Q 512. Since node B is not the node where the message queue Q 51 1 was originally created, the broker process on node B can read the message from the message queue 512 and send the message to the broker A 504 on node A over network using TCP connections. Then, the broker A 504 can write the message into the message queue Q 51 1 on node A. In such a way, a process on any node can write to a queue created from any node without really knowing whether the queue is local or remote. Additionally, the broker A 504 on node A can continuously monitor all the shadow queues and propagate the messages written to any of the shadow queues into the node A where the original queue was created.
[0043] There are limitations associated with the above programming model, for example: 1 ) a message written from a remote node to a queue may require several (e.g. 5) memory copies to reach the destination queue. Thus, this model puts a lot of stress on the CPU bus; 2) when there are a large number of queues, the entire environment depends on the throughput of the broker, which can become a bottleneck; and 3) this model does not take advantage of an available RDMA network that can scale the transfer of messages. RDMA Message Queues
[0044] In accordance with an embodiment of the invention, a transactional middleware system, such as a Tuxedo system, can take advantage of fast machines with multiple processors, such as an Exalogic middleware machine, and a high performance network connection.
[0045] The system can provide the transactional middleware system, e.g. Oracle Tuxedo, with an ability of using an available RDMA capable IB network with Exalogic middleware machine. RDMA can offload most of the CPU work associated with message transfer to the host channel adapter (HCA) and/or the network interface card (NIC). The system can help Tuxedo to scale its transaction processing capacity on RDMA capable system, in a manner similar to the Exalogic machines. The system can add RDMA capability to existing messaging infrastructure implementation so that users can run message queue over IB network using RDMA.
[0046] Figure 6 shows an illustration of RDMA message queues for multinode applications in a middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 6, a two-node message queue can use a remote ring structure to represent the message queue. The remote ring structure consists on two normal ring structures: one ring structure 608 kept on the reader side and another ring structure 605 kept on the writer side. A message sender 603 on a local machine, Machine A 601 , can send a message to a message receiver 604 on a remote machine, Machine B 602, e.g. using RDMA protocol 620.
[0047] In accordance with an embodiment of the invention, the message receiver can first create a queue in a shared memory in the remote machine and inform the network interface card the address of the queue in the shared memory. The message queue can be implemented using a ring buffer data structure that includes a head pointer and tail pointer. Additionally, the message receiver can implement a heap data structure in the shared memory for containing incoming messages. Then, the message receiver can notify the message sender of the creation of the message queue as well as the address information of the heap data structure in the shared memory.
[0048] Additionally, when a writer writes a new message to the message queue, the system updates ring data and the head pointer on both ring structures. The system can use RDMA to update the reader side structure if the reader is on a remote node. Likewise, readers can keep both rings updated as the readers are reading messages.
[0049] In accordance with an embodiment of the invention, messages are not stored directly in the ring structure. Only metadata about where the actual message can be retrieved is kept in the ring structure. Messages are stored in a heap data structure 610 that is kept at the reader node. The actual message can be transferred from the writer process to the allocated memory on the reader node using a RDMA write operation 620. The remote heap 610 implementation can support variable size messages. In this remote heap 610, allocation and freeing operations are done on the writer node, even though the actual heap memory is kept on the reader node. In an example, the heap memory 610 is on a reader node, while the entire heap metadata is stored on the writer node. Hence, it is possible to do heap allocation from writer's side without any network communication. Furthermore, heap management can be dissociated from the slot allocation mutex/step, to further minimize contention/simplify remote queue recovery.
[0050] The following Listing 1 contains pseudo code that illustrates the queue write and read operations when the queue is created without allowing message priorities and with the help of locks: msgwrite(q, msg)
/* get lock for writers */
getlock(q->writers)
/* allocate a ring slot */
slot = allocate_ring_slot(q->ring);
/* free old memory allocated for this slot */
free_heap(q->heap, slot);
/* allocate new memory */
rmsgptr = allocate_heap(q->heap, msg->size);
/* copy message to the reader side( DMA) */
remote_copy_msg(q, rmsgptr, msg->data, msg->size);
/* update slot with message detail *
update_slot(q->ring, slot, rmsgptr, msg->size);
/* update slot at the remote side */
remote_update_slot(q->ring, slot);
/* update ring head */
q->ring->head++;
/* update ring head on remote side */
remote_update(q->ring->head);
/* free lock for writers */
putlock(q->writers);
}
msgread(q)
{
/* get lock for readers */
getlock(q->readers) /* get the next slot from tail */
slot = get_next_slot(q->ring);
/* read the message from location
pointed by ring entry at 'slot' */
msg = read_msg_from_slot(q->ring, slot);
/* update ring tail */
q->ring->tail++; /* update ring tail on writer side */
remote_update(q->ring->tail);
/* free lock */
putlock(q->writers); return msg;
}
Listing 1 [0051] In accordance with an embodiment of the invention, the entire queue operations can happen in the user mode by different client processes. A process can exit abnormally while it is updating a shared ring structure or heap metadata, e.g. when it is executing get_next_slot/allocate ring slot. A recovery mechanism can be used to detect the process death and make the metadata to consistent state so that other process can still operate on the same queue.
[0052] In accordance with an embodiment of the invention, a wakeup mechanism can be
provided. The above pseudo code in Listing 1 outlines the steps that the system can perform in the case of a queue when it is created for a single priority. The system also allows each message to have priorities and retrieval based on priorities. Sometimes a client may ask for a message with some particular property - priority less than 'n' or equal to 'n' or not 'n' etc. If a message which can satisfy this request is not in the queue at the moment then the client process can be put into a sleep mode and waked up when a process from any node writes a message that can satisfy the request. A mechanism can be implemented based on RDMA to wake up processes that wait of specific requests.
[0053] Different client processes can read and/or write on a same queue. In such a scenario, the queue can be created on a shared memory (or a shared storage). In most of the shared memory based applications, updating a shared data may require taking a mutex. A method based on ring structure and atomic compare and swap (CAS) instructions can be implemented to avoid locks in the frequent read and write paths.
[0054] In accordance with an embodiment of the invention, the use of RDMA for message transfer can reduce the memory bus utilization. This frees the CPU from the entire message transfer, so that the CPU can do other work while messages are being transferred. Furthermore, the system becomes more scalable with the bottleneck, such as the broker for System V message queues, removed. Thus, the use of RDMA provides substantial benefit in terms of CPU usage, message transfer throughput and message transfer latency.
[0055] In accordance with an embodiment of the invention, the system can take advantage of message queues using RDMA for internode message transfer. The system can use remote ring structures to do message read and write from different machines simultaneously. The system can handle variable sized messages with remote heap allocation. A recovery model can be used to recover queues in the case that an abnormal process exits on a local node or on a remote node. Queues are created on shared memory with devised mechanism to do local or RDMA operations on shared data. The system can use a wake up mechanism based on RDMA for remote process that wait for a message, and concurrent readers and writers are allowed to operate on the same queues using latchless synchronization from user mode processes.
[0056] In accordance with an embodiment of the invention, the system can provide an interface to do queue operations between different nodes by leveraging the RDMA facility available in modern network interface cards. The programming interface provided by the interface can be similar to that of a System V API.
Message Queue Creation and Management
[0057] In accordance with an embodiment of the invention, a daemon process on a server node in the middleware machine environment can be used to create and manage the message queue in the shared memory.
[0058] Figure 7 shows an illustration of a daemon process that can create and manage a
message queue in a middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 7, a middleware machine environment can include a server node 701 and several client nodes 702 and 703. The server node can include a shared memory 704 for receiving messages from different clients, wherein the shared memory maintains one or more message queues 71 1 and 712.
[0059] In accordance with an embodiment of the invention, the server node 301 can include a daemon process 306 that is responsible for creating the one or more message queues in the shared memory on the server, when the various clients request the server to set up the message queues for sending and receiving messages. For example, when Client B 703 initiates a connection with the server 701 , the daemon process 706 on the server can dynamically create a Queue B 712 for communicating with Client B 703 via a message control structure 722.
[0060] In accordance with an embodiment of the invention, this communication scheme between the server and multiple clients can be further extended using proxies. For example, the queue/control structure A 721 on Client A 702 can be extended using one or more proxies, e.g. Proxies l-lll 723-725. Using these proxies, the processes associated with the different proxies on Client A can use the queue/control structure A to communicate with the server.
[0061] Thus, a great scalability can be achieved in the middleware machine for supporting communication between different servers and clients using the RDMA protocol, since a message initiated from a process on Client A 702 can be sent to the server 701 by allowing the process to write the message directly into the heap data structure 705 on the server 701 , without server intervention.
[0062] In accordance with an embodiment of the invention, the daemon process 706 on the server 701 can also create and reserve a local message queue, e.g. Queue C 708, for local messaging purpose. In one example, the local server processes can communicate with each other using the local message queue, and the System V IPC protocol can be used instead of the RDMA protocol since the IPC protocol is faster than the RDMA protocol when it is used locally.
[0063] As shown in Figure 7, a local server process 707 can receive messages from a local message queue C 708 in addition to the remote message queues, such as Queue A 71 1 and Queue B 712. The local server process 707 can handle the messages from the different message queues, without a need to address the difference between a local message queue and a remote message queue.
[0064] In accordance with an embodiment of the invention, a client can determine whether a queue or a control structure on the client can be created in a shared memory or private memory. If the client chooses to create the queue or the control structure in a private memory of the client machine that is associated with a particular process, then the system can prevent other processes on the client machine and remote machines to access the control structure on the client. This can be beneficial since some messages can contain sensitive information such as custom financial information.
[0065] In accordance with an embodiment of the invention, an interruption can occur on a server process or even the daemon process in a server. The client can continue performing RDMA write operations in the shared memory on the server machine without a need of waiting for the recovery of the server process or the daemon process. This makes the disaster recovery for the system robust and straight-forward. Additionally, the clients can stop writing into the shared memory on the server machine when the queue is full.
[0066] Figure 8 illustrates an exemplary flow chart for creating and managing a message queue in a transactional middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 8, at step 801 , a server can provide a shared memory on a message receiver, wherein the shared memory maintains one or more message queues in the middleware machine environment. Then, at step 802, a client requests that the at least one message queue be set up on the server to support sending and receiving messages. Finally, at step 803, a daemon process on the server can dynamically create at least one message queue in the shared memory, when the server receives the client request.
Security Model for Protecting a Message Queue
[0067] In accordance with an embodiment of the invention, a security model can be used to protect the message queue in the middleware machine environment.
[0068] Figure 9 shows an illustration of a security model that can be used to protect a message queue in a middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 9, a message receiver 902 can be configured to communicate with a message sender 901. A daemon process 910 on the server node that is associated with the message receiver 902 can create a key or a security token 914, when the daemon process first creates a message queue 906 in a shared memory 904 on the server machine for communicating with the message sender 901.
[0069] In accordance with an embodiment of the invention, the daemon process 910 can further register the key or the security token 914 with the IB network, and send the security token 914 to the message sender 910 on the client node via a secured network 920. As shown in Figure 9, the message sender 901 can also be associated with a daemon process 905. There can be a separate communication link, for example a dedicated process in the secured network 920, between the daemon process 905 on the message sender 901 and the daemon process 910 on the message receiver 902.
[0070] In accordance with an embodiment of the invention, after the message sender 901 receives the security token 914, the message sender 901 can access the shared memory 904 in the receiver machine directly. As shown in Figure 9, the message sender 901 on the client node can use the security token 914 to perform an RDMA write operation 921 for writing a message directly in a heap data structure 908 in the shared memory 904 on the receiver side.
[0071] Figure 10 illustrates an exemplary flow chart for protecting a message queue in a
middleware machine environment, in accordance with an embodiment of the invention. As shown in Figure 10, at step 1001 , a daemon process on a message receiver can create a security token on a server node, when the daemon process first creates a message queue in a shared memory on the server node for communicating with a client node. Then, at step 1002, the daemon process on a message receiver can send the created security token from the server node to the client node via a secured network. Finally, at step 1003, after receiving the security token at the client side, the message sender can directly write a message into the message queue in the shared memory.
[0072] The present invention may be conveniently implemented using one or more conventional general purpose or specialized digital computer, computing device, machine, or microprocessor, including one or more processors, memory and/or computer readable storage media programmed according to the teachings of the present disclosure. Appropriate software coding can readily be prepared by skilled programmers based on the teachings of the present disclosure, as will be apparent to those skilled in the software art.
[0073] In some embodiments, the present invention includes a computer program product which is a storage medium or computer readable medium (media) having instructions stored thereon/in which can be used to program a computer to perform any of the processes of the present invention. The storage medium can include, but is not limited to, any type of disk including floppy disks, optical discs, DVD, CD-ROMs, microdrive, and magneto-optical disks, ROMs, RAMs, EPROMs, EEPROMs, DRAMs, VRAMs, flash memory devices, magnetic or optical cards, nanosystems (including molecular memory ICs), or any type of media or device suitable for storing instructions and/or data.
[0074] The foregoing description of the present invention has been provided for the purposes of illustration and description. It is not intended to be exhaustive or to limit the invention to the precise forms disclosed. Many modifications and variations will be apparent to the practitioner skilled in the art. The embodiments were chosen and described in order to best explain the principles of the invention and its practical application, thereby enabling others skilled in the art to understand the invention for various embodiments and with various modifications that are suited to the particular use contemplated. It is intended that the scope of the invention be defined by the following claims and their equivalence.