2010-05-12 04:19:11 +02:00
|
|
|
/*
|
|
|
|
|
* exec.c
|
|
|
|
|
*
|
|
|
|
|
* execution functions
|
2010-07-03 16:23:14 +02:00
|
|
|
*
|
2019-01-02 18:44:25 +01:00
|
|
|
* Copyright (c) 2010-2019, PostgreSQL Global Development Group
|
2015-03-11 03:33:25 +01:00
|
|
|
* src/bin/pg_upgrade/exec.c
|
2010-05-12 04:19:11 +02:00
|
|
|
*/
|
|
|
|
|
|
Create libpgcommon, and move pg_malloc et al to it
libpgcommon is a new static library to allow sharing code among the
various frontend programs and backend; this lets us eliminate duplicate
implementations of common routines. We avoid libpgport, because that's
intended as a place for porting issues; per discussion, it seems better
to keep them separate.
The first use case, and the only implemented by this patch, is pg_malloc
and friends, which many frontend programs were already using.
At the same time, we can use this to provide palloc emulation functions
for the frontend; this way, some palloc-using files in the backend can
also be used by the frontend cleanly. To do this, we change palloc() in
the backend to be a function instead of a macro on top of
MemoryContextAlloc(). This was previously believed to cause loss of
performance, but this implementation has been tweaked by Tom and Andres
so that on modern compilers it provides a slight improvement over the
previous one.
This lets us clean up some places that were already with
localized hacks.
Most of the pg_malloc/palloc changes in this patch were authored by
Andres Freund. Zoltán Böszörményi also independently provided a form of
that. libpgcommon infrastructure was authored by Álvaro.
2013-02-12 14:33:40 +01:00
|
|
|
#include "postgres_fe.h"
|
2011-08-27 03:16:24 +02:00
|
|
|
|
2010-05-12 04:19:11 +02:00
|
|
|
#include <fcntl.h>
|
2017-02-25 22:12:24 +01:00
|
|
|
|
|
|
|
|
#include "pg_upgrade.h"
|
2010-05-12 04:19:11 +02:00
|
|
|
|
2016-10-20 17:24:37 +02:00
|
|
|
static void check_data_dir(ClusterInfo *cluster);
|
2011-01-01 18:06:36 +01:00
|
|
|
static void check_bin_dir(ClusterInfo *cluster);
|
2017-02-15 16:14:16 +01:00
|
|
|
static void get_bin_version(ClusterInfo *cluster);
|
2011-04-10 17:42:00 +02:00
|
|
|
static void validate_exec(const char *dir, const char *cmdName);
|
2012-06-10 21:20:04 +02:00
|
|
|
|
2011-07-24 07:42:45 +02:00
|
|
|
#ifdef WIN32
|
2012-06-10 21:20:04 +02:00
|
|
|
static int win32_check_directory_write_permissions(void);
|
2011-07-24 07:42:45 +02:00
|
|
|
#endif
|
2010-05-12 04:19:11 +02:00
|
|
|
|
|
|
|
|
|
2017-02-15 16:14:16 +01:00
|
|
|
/*
|
|
|
|
|
* get_bin_version
|
|
|
|
|
*
|
2017-11-07 01:46:52 +01:00
|
|
|
* Fetch major version of binaries for cluster.
|
2017-02-15 16:14:16 +01:00
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
get_bin_version(ClusterInfo *cluster)
|
|
|
|
|
{
|
|
|
|
|
char cmd[MAXPGPATH],
|
|
|
|
|
cmd_output[MAX_STRING];
|
|
|
|
|
FILE *output;
|
2017-11-07 01:46:52 +01:00
|
|
|
int v1 = 0,
|
|
|
|
|
v2 = 0;
|
2017-02-15 16:14:16 +01:00
|
|
|
|
|
|
|
|
snprintf(cmd, sizeof(cmd), "\"%s/pg_ctl\" --version", cluster->bindir);
|
|
|
|
|
|
|
|
|
|
if ((output = popen(cmd, "r")) == NULL ||
|
|
|
|
|
fgets(cmd_output, sizeof(cmd_output), output) == NULL)
|
|
|
|
|
pg_fatal("could not get pg_ctl version data using %s: %s\n",
|
|
|
|
|
cmd, strerror(errno));
|
|
|
|
|
|
|
|
|
|
pclose(output);
|
|
|
|
|
|
2017-11-07 01:46:52 +01:00
|
|
|
if (sscanf(cmd_output, "%*s %*s %d.%d", &v1, &v2) < 1)
|
2017-09-09 23:32:10 +02:00
|
|
|
pg_fatal("could not get pg_ctl version output from %s\n", cmd);
|
2017-02-15 16:14:16 +01:00
|
|
|
|
2017-11-07 01:46:52 +01:00
|
|
|
if (v1 < 10)
|
|
|
|
|
{
|
|
|
|
|
/* old style, e.g. 9.6.1 */
|
|
|
|
|
cluster->bin_version = v1 * 10000 + v2 * 100;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
/* new style, e.g. 10.1 */
|
|
|
|
|
cluster->bin_version = v1 * 10000;
|
|
|
|
|
}
|
2017-02-15 16:14:16 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-05-12 04:19:11 +02:00
|
|
|
/*
|
|
|
|
|
* exec_prog()
|
2012-08-27 20:21:09 +02:00
|
|
|
* Execute an external program with stdout/stderr redirected, and report
|
|
|
|
|
* errors
|
2010-05-12 04:19:11 +02:00
|
|
|
*
|
2012-08-27 20:21:09 +02:00
|
|
|
* Formats a command from the given argument list, logs it to the log file,
|
|
|
|
|
* and attempts to execute that command. If the command executes
|
|
|
|
|
* successfully, exec_prog() returns true.
|
2010-05-12 04:19:11 +02:00
|
|
|
*
|
2018-01-09 04:43:51 +01:00
|
|
|
* If the command fails, an error message is optionally written to the specified
|
|
|
|
|
* log_file, and the program optionally exits.
|
2013-07-27 21:00:58 +02:00
|
|
|
*
|
|
|
|
|
* The code requires it be called first from the primary thread on Windows.
|
2010-05-12 04:19:11 +02:00
|
|
|
*/
|
2012-08-27 20:21:09 +02:00
|
|
|
bool
|
|
|
|
|
exec_prog(const char *log_file, const char *opt_log_file,
|
2018-01-09 04:43:51 +01:00
|
|
|
bool report_error, bool exit_on_error, const char *fmt,...)
|
2010-05-12 04:19:11 +02:00
|
|
|
{
|
2013-07-27 21:00:58 +02:00
|
|
|
int result = 0;
|
2012-08-27 20:21:09 +02:00
|
|
|
int written;
|
2013-05-29 22:58:43 +02:00
|
|
|
|
2012-08-27 20:21:09 +02:00
|
|
|
#define MAXCMDLEN (2 * MAXPGPATH)
|
|
|
|
|
char cmd[MAXCMDLEN];
|
2012-08-07 19:10:44 +02:00
|
|
|
FILE *log;
|
2012-08-27 20:21:09 +02:00
|
|
|
va_list ap;
|
2012-03-13 00:47:54 +01:00
|
|
|
|
2013-07-27 21:00:58 +02:00
|
|
|
#ifdef WIN32
|
2014-05-06 18:12:18 +02:00
|
|
|
static DWORD mainThreadId = 0;
|
2013-07-27 21:00:58 +02:00
|
|
|
|
|
|
|
|
/* We assume we are called from the primary thread first */
|
|
|
|
|
if (mainThreadId == 0)
|
|
|
|
|
mainThreadId = GetCurrentThreadId();
|
|
|
|
|
#endif
|
|
|
|
|
|
Replace SYSTEMQUOTEs with Windows-specific wrapper functions.
It's easy to forget using SYSTEMQUOTEs when constructing command strings
for system() or popen(). Even if we fix all the places missing it now, it is
bound to be forgotten again in the future. Introduce wrapper functions that
do the the extra quoting for you, and get rid of SYSTEMQUOTEs in all the
callers.
We previosly used SYSTEMQUOTEs in all the hard-coded command strings, and
this doesn't change the behavior of those. But user-supplied commands, like
archive_command, restore_command, COPY TO/FROM PROGRAM calls, as well as
pgbench's \shell, will now gain an extra pair of quotes. That is desirable,
but if you have existing scripts or config files that include an extra
pair of quotes, those might need to be adjusted.
Reviewed by Amit Kapila and Tom Lane
2014-05-05 15:07:40 +02:00
|
|
|
written = 0;
|
2012-08-27 20:21:09 +02:00
|
|
|
va_start(ap, fmt);
|
|
|
|
|
written += vsnprintf(cmd + written, MAXCMDLEN - written, fmt, ap);
|
|
|
|
|
va_end(ap);
|
|
|
|
|
if (written >= MAXCMDLEN)
|
2013-10-02 03:24:56 +02:00
|
|
|
pg_fatal("command too long\n");
|
2012-08-27 20:21:09 +02:00
|
|
|
written += snprintf(cmd + written, MAXCMDLEN - written,
|
Replace SYSTEMQUOTEs with Windows-specific wrapper functions.
It's easy to forget using SYSTEMQUOTEs when constructing command strings
for system() or popen(). Even if we fix all the places missing it now, it is
bound to be forgotten again in the future. Introduce wrapper functions that
do the the extra quoting for you, and get rid of SYSTEMQUOTEs in all the
callers.
We previosly used SYSTEMQUOTEs in all the hard-coded command strings, and
this doesn't change the behavior of those. But user-supplied commands, like
archive_command, restore_command, COPY TO/FROM PROGRAM calls, as well as
pgbench's \shell, will now gain an extra pair of quotes. That is desirable,
but if you have existing scripts or config files that include an extra
pair of quotes, those might need to be adjusted.
Reviewed by Amit Kapila and Tom Lane
2014-05-05 15:07:40 +02:00
|
|
|
" >> \"%s\" 2>&1", log_file);
|
2012-08-27 20:21:09 +02:00
|
|
|
if (written >= MAXCMDLEN)
|
2013-10-02 03:24:56 +02:00
|
|
|
pg_fatal("command too long\n");
|
2010-05-12 04:19:11 +02:00
|
|
|
|
2013-07-27 21:00:58 +02:00
|
|
|
pg_log(PG_VERBOSE, "%s\n", cmd);
|
|
|
|
|
|
|
|
|
|
#ifdef WIN32
|
2018-04-26 20:47:16 +02:00
|
|
|
|
2013-07-27 21:00:58 +02:00
|
|
|
/*
|
2014-05-06 18:12:18 +02:00
|
|
|
* For some reason, Windows issues a file-in-use error if we write data to
|
|
|
|
|
* the log file from a non-primary thread just before we create a
|
|
|
|
|
* subprocess that also writes to the same log file. One fix is to sleep
|
|
|
|
|
* for 100ms. A cleaner fix is to write to the log file _after_ the
|
|
|
|
|
* subprocess has completed, so we do this only when writing from a
|
|
|
|
|
* non-primary thread. fflush(), running system() twice, and pre-creating
|
|
|
|
|
* the file do not see to help.
|
2013-07-27 21:00:58 +02:00
|
|
|
*/
|
|
|
|
|
if (mainThreadId != GetCurrentThreadId())
|
|
|
|
|
result = system(cmd);
|
|
|
|
|
#endif
|
|
|
|
|
|
2013-07-25 17:33:15 +02:00
|
|
|
log = fopen(log_file, "a");
|
2012-09-06 05:14:49 +02:00
|
|
|
|
|
|
|
|
#ifdef WIN32
|
|
|
|
|
{
|
2013-05-29 22:58:43 +02:00
|
|
|
/*
|
|
|
|
|
* "pg_ctl -w stop" might have reported that the server has stopped
|
|
|
|
|
* because the postmaster.pid file has been removed, but "pg_ctl -w
|
|
|
|
|
* start" might still be in the process of closing and might still be
|
|
|
|
|
* holding its stdout and -l log file descriptors open. Therefore,
|
|
|
|
|
* try to open the log file a few more times.
|
2012-09-06 05:14:49 +02:00
|
|
|
*/
|
2013-05-29 22:58:43 +02:00
|
|
|
int iter;
|
|
|
|
|
|
2012-09-06 05:14:49 +02:00
|
|
|
for (iter = 0; iter < 4 && log == NULL; iter++)
|
|
|
|
|
{
|
2014-05-06 18:12:18 +02:00
|
|
|
pg_usleep(1000000); /* 1 sec */
|
2013-07-25 17:33:15 +02:00
|
|
|
log = fopen(log_file, "a");
|
2012-09-06 05:14:49 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
if (log == NULL)
|
2017-09-09 23:32:10 +02:00
|
|
|
pg_fatal("could not write to log file \"%s\"\n", log_file);
|
2013-07-27 21:00:58 +02:00
|
|
|
|
2012-09-05 06:01:13 +02:00
|
|
|
#ifdef WIN32
|
2013-07-27 21:00:58 +02:00
|
|
|
/* Are we printing "command:" before its output? */
|
|
|
|
|
if (mainThreadId == GetCurrentThreadId())
|
|
|
|
|
fprintf(log, "\n\n");
|
2012-09-05 06:01:13 +02:00
|
|
|
#endif
|
2012-06-29 05:27:00 +02:00
|
|
|
fprintf(log, "command: %s\n", cmd);
|
2013-07-27 21:00:58 +02:00
|
|
|
#ifdef WIN32
|
|
|
|
|
/* Are we printing "command:" after its output? */
|
|
|
|
|
if (mainThreadId != GetCurrentThreadId())
|
|
|
|
|
fprintf(log, "\n\n");
|
|
|
|
|
#endif
|
2012-08-27 20:21:09 +02:00
|
|
|
|
2012-08-07 19:10:44 +02:00
|
|
|
/*
|
2012-08-27 20:21:09 +02:00
|
|
|
* In Windows, we must close the log file at this point so the file is not
|
|
|
|
|
* open while the command is running, or we get a share violation.
|
2012-08-07 19:10:44 +02:00
|
|
|
*/
|
|
|
|
|
fclose(log);
|
2010-05-12 04:19:11 +02:00
|
|
|
|
2013-07-27 21:00:58 +02:00
|
|
|
#ifdef WIN32
|
|
|
|
|
/* see comment above */
|
|
|
|
|
if (mainThreadId == GetCurrentThreadId())
|
|
|
|
|
#endif
|
|
|
|
|
result = system(cmd);
|
2010-05-12 04:19:11 +02:00
|
|
|
|
2018-01-09 04:43:51 +01:00
|
|
|
if (result != 0 && report_error)
|
2010-05-12 04:19:11 +02:00
|
|
|
{
|
2012-11-30 22:30:13 +01:00
|
|
|
/* we might be in on a progress status line, so go to the next line */
|
|
|
|
|
report_status(PG_REPORT, "\n*failure*");
|
2012-03-13 00:47:54 +01:00
|
|
|
fflush(stdout);
|
2012-11-30 22:30:13 +01:00
|
|
|
|
2012-03-13 00:47:54 +01:00
|
|
|
pg_log(PG_VERBOSE, "There were problems executing \"%s\"\n", cmd);
|
2012-08-27 20:21:09 +02:00
|
|
|
if (opt_log_file)
|
2018-01-09 04:43:51 +01:00
|
|
|
pg_log(exit_on_error ? PG_FATAL : PG_REPORT,
|
2012-08-27 20:21:09 +02:00
|
|
|
"Consult the last few lines of \"%s\" or \"%s\" for\n"
|
|
|
|
|
"the probable cause of the failure.\n",
|
|
|
|
|
log_file, opt_log_file);
|
|
|
|
|
else
|
2018-01-09 04:43:51 +01:00
|
|
|
pg_log(exit_on_error ? PG_FATAL : PG_REPORT,
|
2012-08-27 20:21:09 +02:00
|
|
|
"Consult the last few lines of \"%s\" for\n"
|
|
|
|
|
"the probable cause of the failure.\n",
|
|
|
|
|
log_file);
|
2010-05-12 04:19:11 +02:00
|
|
|
}
|
|
|
|
|
|
2012-09-03 21:31:26 +02:00
|
|
|
#ifndef WIN32
|
2018-04-26 20:47:16 +02:00
|
|
|
|
2013-05-29 22:58:43 +02:00
|
|
|
/*
|
|
|
|
|
* We can't do this on Windows because it will keep the "pg_ctl start"
|
|
|
|
|
* output filename open until the server stops, so we do the \n\n above on
|
|
|
|
|
* that platform. We use a unique filename for "pg_ctl start" that is
|
2014-05-06 18:12:18 +02:00
|
|
|
* never reused while the server is running, so it works fine. We could
|
2013-05-29 22:58:43 +02:00
|
|
|
* log these commands to a third file, but that just adds complexity.
|
2012-09-03 21:31:26 +02:00
|
|
|
*/
|
2013-07-25 17:33:15 +02:00
|
|
|
if ((log = fopen(log_file, "a")) == NULL)
|
2017-09-09 23:32:10 +02:00
|
|
|
pg_fatal("could not write to log file \"%s\"\n", log_file);
|
2012-06-29 05:27:00 +02:00
|
|
|
fprintf(log, "\n\n");
|
|
|
|
|
fclose(log);
|
2012-09-03 21:31:26 +02:00
|
|
|
#endif
|
2012-06-29 05:27:00 +02:00
|
|
|
|
2012-08-27 20:21:09 +02:00
|
|
|
return result == 0;
|
2010-05-12 04:19:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-07-13 20:09:55 +02:00
|
|
|
/*
|
2013-01-24 21:20:11 +01:00
|
|
|
* pid_lock_file_exists()
|
2010-07-13 20:09:55 +02:00
|
|
|
*
|
2013-01-24 21:20:11 +01:00
|
|
|
* Checks whether the postmaster.pid file exists.
|
2010-07-13 20:09:55 +02:00
|
|
|
*/
|
|
|
|
|
bool
|
2013-01-24 21:20:11 +01:00
|
|
|
pid_lock_file_exists(const char *datadir)
|
2010-07-13 20:09:55 +02:00
|
|
|
{
|
|
|
|
|
char path[MAXPGPATH];
|
|
|
|
|
int fd;
|
|
|
|
|
|
|
|
|
|
snprintf(path, sizeof(path), "%s/postmaster.pid", datadir);
|
|
|
|
|
|
|
|
|
|
if ((fd = open(path, O_RDONLY, 0)) < 0)
|
|
|
|
|
{
|
2011-05-19 04:22:40 +02:00
|
|
|
/* ENOTDIR means we will throw a more useful error later */
|
|
|
|
|
if (errno != ENOENT && errno != ENOTDIR)
|
2013-10-02 03:24:56 +02:00
|
|
|
pg_fatal("could not open file \"%s\" for reading: %s\n",
|
Improve error reporting in pg_upgrade's file copying/linking/rewriting.
The previous design for this had copyFile(), linkFile(), and
rewriteVisibilityMap() returning strerror strings, with the caller
producing one-size-fits-all error messages based on that. This made it
impossible to produce messages that described the failures with any degree
of precision, especially not short-read problems since those don't set
errno at all.
Since pg_upgrade has no intention of continuing after any error in this
area, let's fix this by just letting these functions call pg_fatal() for
themselves, making it easy for each point of failure to have a suitable
error message. Taking this approach also allows dropping cleanup code
that was unnecessary and was often rather sloppy about preserving errno.
To not lose relevant info that was reported before, pass in the schema name
and table name of the current table so that they can be included in the
error reports.
An additional problem was the use of getErrorText(), which was flat out
wrong for all but a couple of call sites, because it unconditionally did
"_dosmaperr(GetLastError())" on Windows. That's only appropriate when
reporting an error from a Windows-native API, which only a couple of
the callers were actually doing. Thus, even the reported strerror string
would be unrelated to the actual failure in many cases on Windows.
To fix, get rid of getErrorText() altogether, and just have call sites
do strerror(errno) instead, since that's the way all the rest of our
frontend programs do it. Add back the _dosmaperr() calls in the two
places where that's actually appropriate.
In passing, make assorted messages hew more closely to project style
guidelines, notably by removing initial capitals in not-complete-sentence
primary error messages. (I didn't make any effort to clean up places
I didn't have another reason to touch, though.)
Per discussion of a report from Thomas Kellerer. Back-patch to 9.6,
but no further; given the relative infrequency of reports of problems
here, it's not clear it's worth adapting the patch to older branches.
Patch by me, but with credit to Alvaro Herrera for spotting the issue
with getErrorText's misuse of _dosmaperr().
Discussion: <nsjrbh$8li$1@blaine.gmane.org>
2016-10-01 02:40:27 +02:00
|
|
|
path, strerror(errno));
|
2010-07-13 20:09:55 +02:00
|
|
|
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
close(fd);
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-05-12 04:19:11 +02:00
|
|
|
/*
|
|
|
|
|
* verify_directories()
|
|
|
|
|
*
|
|
|
|
|
* does all the hectic work of verifying directories and executables
|
|
|
|
|
* of old and new server.
|
|
|
|
|
*
|
|
|
|
|
* NOTE: May update the values of all parameters
|
|
|
|
|
*/
|
|
|
|
|
void
|
2010-10-19 23:38:16 +02:00
|
|
|
verify_directories(void)
|
2010-05-12 04:19:11 +02:00
|
|
|
{
|
2011-05-18 18:13:37 +02:00
|
|
|
#ifndef WIN32
|
2011-07-24 07:42:45 +02:00
|
|
|
if (access(".", R_OK | W_OK | X_OK) != 0)
|
|
|
|
|
#else
|
|
|
|
|
if (win32_check_directory_write_permissions() != 0)
|
2011-05-18 18:13:37 +02:00
|
|
|
#endif
|
2013-10-02 03:24:56 +02:00
|
|
|
pg_fatal("You must have read and write access in the current directory.\n");
|
2011-05-16 17:01:29 +02:00
|
|
|
|
2011-01-01 18:06:36 +01:00
|
|
|
check_bin_dir(&old_cluster);
|
2016-10-20 17:24:37 +02:00
|
|
|
check_data_dir(&old_cluster);
|
2011-01-01 18:06:36 +01:00
|
|
|
check_bin_dir(&new_cluster);
|
2016-10-20 17:24:37 +02:00
|
|
|
check_data_dir(&new_cluster);
|
2010-05-12 04:19:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2011-07-24 07:42:45 +02:00
|
|
|
#ifdef WIN32
|
|
|
|
|
/*
|
|
|
|
|
* win32_check_directory_write_permissions()
|
|
|
|
|
*
|
|
|
|
|
* access() on WIN32 can't check directory permissions, so we have to
|
|
|
|
|
* optionally create, then delete a file to check.
|
|
|
|
|
* http://msdn.microsoft.com/en-us/library/1w06ktdy%28v=vs.80%29.aspx
|
|
|
|
|
*/
|
|
|
|
|
static int
|
|
|
|
|
win32_check_directory_write_permissions(void)
|
|
|
|
|
{
|
2012-06-10 21:20:04 +02:00
|
|
|
int fd;
|
2011-07-24 07:42:45 +02:00
|
|
|
|
|
|
|
|
/*
|
2014-05-06 18:12:18 +02:00
|
|
|
* We open a file we would normally create anyway. We do this even in
|
2012-06-10 21:20:04 +02:00
|
|
|
* 'check' mode, which isn't ideal, but this is the best we can do.
|
|
|
|
|
*/
|
2011-07-24 07:42:45 +02:00
|
|
|
if ((fd = open(GLOBALS_DUMP_FILE, O_RDWR | O_CREAT, S_IRUSR | S_IWUSR)) < 0)
|
|
|
|
|
return -1;
|
|
|
|
|
close(fd);
|
|
|
|
|
|
|
|
|
|
return unlink(GLOBALS_DUMP_FILE);
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
2016-10-20 17:24:37 +02:00
|
|
|
/*
|
|
|
|
|
* check_single_dir()
|
|
|
|
|
*
|
2017-05-17 22:31:56 +02:00
|
|
|
* Check for the presence of a single directory in PGDATA, and fail if
|
2016-10-20 17:24:37 +02:00
|
|
|
* is it missing or not accessible.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
check_single_dir(const char *pg_data, const char *subdir)
|
|
|
|
|
{
|
|
|
|
|
struct stat statBuf;
|
|
|
|
|
char subDirName[MAXPGPATH];
|
|
|
|
|
|
|
|
|
|
snprintf(subDirName, sizeof(subDirName), "%s%s%s", pg_data,
|
2017-05-17 22:31:56 +02:00
|
|
|
/* Win32 can't stat() a directory with a trailing slash. */
|
2016-10-20 17:24:37 +02:00
|
|
|
*subdir ? "/" : "",
|
|
|
|
|
subdir);
|
|
|
|
|
|
|
|
|
|
if (stat(subDirName, &statBuf) != 0)
|
|
|
|
|
report_status(PG_FATAL, "check for \"%s\" failed: %s\n",
|
|
|
|
|
subDirName, strerror(errno));
|
|
|
|
|
else if (!S_ISDIR(statBuf.st_mode))
|
2017-08-23 02:32:17 +02:00
|
|
|
report_status(PG_FATAL, "\"%s\" is not a directory\n",
|
2016-10-20 17:24:37 +02:00
|
|
|
subDirName);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2010-05-12 04:19:11 +02:00
|
|
|
/*
|
2010-07-13 20:09:55 +02:00
|
|
|
* check_data_dir()
|
|
|
|
|
*
|
|
|
|
|
* This function validates the given cluster directory - we search for a
|
|
|
|
|
* small set of subdirectories that we expect to find in a valid $PGDATA
|
2014-05-06 18:12:18 +02:00
|
|
|
* directory. If any of the subdirectories are missing (or secured against
|
2010-07-13 20:09:55 +02:00
|
|
|
* us) we display an error message and exit()
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2016-10-20 17:24:37 +02:00
|
|
|
check_data_dir(ClusterInfo *cluster)
|
2010-07-13 20:09:55 +02:00
|
|
|
{
|
2016-10-20 17:24:37 +02:00
|
|
|
const char *pg_data = cluster->pgdata;
|
|
|
|
|
|
2017-11-16 17:16:53 +01:00
|
|
|
/* get the cluster version */
|
|
|
|
|
cluster->major_version = get_major_server_version(cluster);
|
2016-10-20 17:24:37 +02:00
|
|
|
|
|
|
|
|
check_single_dir(pg_data, "");
|
|
|
|
|
check_single_dir(pg_data, "base");
|
|
|
|
|
check_single_dir(pg_data, "global");
|
|
|
|
|
check_single_dir(pg_data, "pg_multixact");
|
|
|
|
|
check_single_dir(pg_data, "pg_subtrans");
|
|
|
|
|
check_single_dir(pg_data, "pg_tblspc");
|
|
|
|
|
check_single_dir(pg_data, "pg_twophase");
|
|
|
|
|
|
2017-03-17 14:46:58 +01:00
|
|
|
/* pg_xlog has been renamed to pg_wal in v10 */
|
2016-10-20 17:24:37 +02:00
|
|
|
if (GET_MAJOR_VERSION(cluster->major_version) < 1000)
|
|
|
|
|
check_single_dir(pg_data, "pg_xlog");
|
|
|
|
|
else
|
|
|
|
|
check_single_dir(pg_data, "pg_wal");
|
2017-03-17 14:46:58 +01:00
|
|
|
|
|
|
|
|
/* pg_clog has been renamed to pg_xact in v10 */
|
|
|
|
|
if (GET_MAJOR_VERSION(cluster->major_version) < 1000)
|
|
|
|
|
check_single_dir(pg_data, "pg_clog");
|
|
|
|
|
else
|
|
|
|
|
check_single_dir(pg_data, "pg_xact");
|
2010-07-13 20:09:55 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* check_bin_dir()
|
2010-05-12 04:19:11 +02:00
|
|
|
*
|
|
|
|
|
* This function searches for the executables that we expect to find
|
2014-05-06 18:12:18 +02:00
|
|
|
* in the binaries directory. If we find that a required executable
|
2010-05-12 04:19:11 +02:00
|
|
|
* is missing (or secured against us), we display an error message and
|
|
|
|
|
* exit().
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2011-01-01 18:06:36 +01:00
|
|
|
check_bin_dir(ClusterInfo *cluster)
|
2010-05-12 04:19:11 +02:00
|
|
|
{
|
2011-05-19 00:36:52 +02:00
|
|
|
struct stat statBuf;
|
|
|
|
|
|
|
|
|
|
/* check bindir */
|
|
|
|
|
if (stat(cluster->bindir, &statBuf) != 0)
|
2011-07-12 06:13:51 +02:00
|
|
|
report_status(PG_FATAL, "check for \"%s\" failed: %s\n",
|
Improve error reporting in pg_upgrade's file copying/linking/rewriting.
The previous design for this had copyFile(), linkFile(), and
rewriteVisibilityMap() returning strerror strings, with the caller
producing one-size-fits-all error messages based on that. This made it
impossible to produce messages that described the failures with any degree
of precision, especially not short-read problems since those don't set
errno at all.
Since pg_upgrade has no intention of continuing after any error in this
area, let's fix this by just letting these functions call pg_fatal() for
themselves, making it easy for each point of failure to have a suitable
error message. Taking this approach also allows dropping cleanup code
that was unnecessary and was often rather sloppy about preserving errno.
To not lose relevant info that was reported before, pass in the schema name
and table name of the current table so that they can be included in the
error reports.
An additional problem was the use of getErrorText(), which was flat out
wrong for all but a couple of call sites, because it unconditionally did
"_dosmaperr(GetLastError())" on Windows. That's only appropriate when
reporting an error from a Windows-native API, which only a couple of
the callers were actually doing. Thus, even the reported strerror string
would be unrelated to the actual failure in many cases on Windows.
To fix, get rid of getErrorText() altogether, and just have call sites
do strerror(errno) instead, since that's the way all the rest of our
frontend programs do it. Add back the _dosmaperr() calls in the two
places where that's actually appropriate.
In passing, make assorted messages hew more closely to project style
guidelines, notably by removing initial capitals in not-complete-sentence
primary error messages. (I didn't make any effort to clean up places
I didn't have another reason to touch, though.)
Per discussion of a report from Thomas Kellerer. Back-patch to 9.6,
but no further; given the relative infrequency of reports of problems
here, it's not clear it's worth adapting the patch to older branches.
Patch by me, but with credit to Alvaro Herrera for spotting the issue
with getErrorText's misuse of _dosmaperr().
Discussion: <nsjrbh$8li$1@blaine.gmane.org>
2016-10-01 02:40:27 +02:00
|
|
|
cluster->bindir, strerror(errno));
|
2011-05-19 00:36:52 +02:00
|
|
|
else if (!S_ISDIR(statBuf.st_mode))
|
2017-08-23 02:32:17 +02:00
|
|
|
report_status(PG_FATAL, "\"%s\" is not a directory\n",
|
2011-06-09 20:32:50 +02:00
|
|
|
cluster->bindir);
|
2011-05-19 00:36:52 +02:00
|
|
|
|
2011-02-02 21:40:20 +01:00
|
|
|
validate_exec(cluster->bindir, "postgres");
|
|
|
|
|
validate_exec(cluster->bindir, "pg_ctl");
|
2017-02-15 16:14:16 +01:00
|
|
|
|
|
|
|
|
/*
|
2017-11-09 17:30:30 +01:00
|
|
|
* Fetch the binary version after checking for the existence of pg_ctl.
|
|
|
|
|
* This way we report a useful error if the pg_ctl binary used for version
|
|
|
|
|
* fetching is missing/broken.
|
2017-02-15 16:14:16 +01:00
|
|
|
*/
|
2017-11-09 17:30:30 +01:00
|
|
|
get_bin_version(cluster);
|
2017-02-15 16:14:16 +01:00
|
|
|
|
|
|
|
|
/* pg_resetxlog has been renamed to pg_resetwal in version 10 */
|
|
|
|
|
if (GET_MAJOR_VERSION(cluster->bin_version) < 1000)
|
|
|
|
|
validate_exec(cluster->bindir, "pg_resetxlog");
|
|
|
|
|
else
|
|
|
|
|
validate_exec(cluster->bindir, "pg_resetwal");
|
2011-01-01 18:06:36 +01:00
|
|
|
if (cluster == &new_cluster)
|
2010-12-29 19:43:53 +01:00
|
|
|
{
|
|
|
|
|
/* these are only needed in the new cluster */
|
2011-02-02 21:40:20 +01:00
|
|
|
validate_exec(cluster->bindir, "psql");
|
2014-07-01 01:55:55 +02:00
|
|
|
validate_exec(cluster->bindir, "pg_dump");
|
2011-02-02 21:40:20 +01:00
|
|
|
validate_exec(cluster->bindir, "pg_dumpall");
|
2010-12-29 19:43:53 +01:00
|
|
|
}
|
2010-05-12 04:19:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* validate_exec()
|
|
|
|
|
*
|
|
|
|
|
* validate "path" as an executable file
|
|
|
|
|
*/
|
2011-02-02 21:40:20 +01:00
|
|
|
static void
|
|
|
|
|
validate_exec(const char *dir, const char *cmdName)
|
2010-05-12 04:19:11 +02:00
|
|
|
{
|
2011-02-02 21:40:20 +01:00
|
|
|
char path[MAXPGPATH];
|
2010-05-12 04:19:11 +02:00
|
|
|
struct stat buf;
|
|
|
|
|
|
2011-02-02 21:40:20 +01:00
|
|
|
snprintf(path, sizeof(path), "%s/%s", dir, cmdName);
|
|
|
|
|
|
2010-05-12 04:19:11 +02:00
|
|
|
#ifdef WIN32
|
2011-02-03 02:26:43 +01:00
|
|
|
/* Windows requires a .exe suffix for stat() */
|
|
|
|
|
if (strlen(path) <= strlen(EXE_EXT) ||
|
2010-05-12 04:19:11 +02:00
|
|
|
pg_strcasecmp(path + strlen(path) - strlen(EXE_EXT), EXE_EXT) != 0)
|
2011-02-03 02:26:43 +01:00
|
|
|
strlcat(path, EXE_EXT, sizeof(path));
|
2010-05-12 04:19:11 +02:00
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Ensure that the file exists and is a regular file.
|
|
|
|
|
*/
|
|
|
|
|
if (stat(path, &buf) < 0)
|
2013-10-02 03:24:56 +02:00
|
|
|
pg_fatal("check for \"%s\" failed: %s\n",
|
Improve error reporting in pg_upgrade's file copying/linking/rewriting.
The previous design for this had copyFile(), linkFile(), and
rewriteVisibilityMap() returning strerror strings, with the caller
producing one-size-fits-all error messages based on that. This made it
impossible to produce messages that described the failures with any degree
of precision, especially not short-read problems since those don't set
errno at all.
Since pg_upgrade has no intention of continuing after any error in this
area, let's fix this by just letting these functions call pg_fatal() for
themselves, making it easy for each point of failure to have a suitable
error message. Taking this approach also allows dropping cleanup code
that was unnecessary and was often rather sloppy about preserving errno.
To not lose relevant info that was reported before, pass in the schema name
and table name of the current table so that they can be included in the
error reports.
An additional problem was the use of getErrorText(), which was flat out
wrong for all but a couple of call sites, because it unconditionally did
"_dosmaperr(GetLastError())" on Windows. That's only appropriate when
reporting an error from a Windows-native API, which only a couple of
the callers were actually doing. Thus, even the reported strerror string
would be unrelated to the actual failure in many cases on Windows.
To fix, get rid of getErrorText() altogether, and just have call sites
do strerror(errno) instead, since that's the way all the rest of our
frontend programs do it. Add back the _dosmaperr() calls in the two
places where that's actually appropriate.
In passing, make assorted messages hew more closely to project style
guidelines, notably by removing initial capitals in not-complete-sentence
primary error messages. (I didn't make any effort to clean up places
I didn't have another reason to touch, though.)
Per discussion of a report from Thomas Kellerer. Back-patch to 9.6,
but no further; given the relative infrequency of reports of problems
here, it's not clear it's worth adapting the patch to older branches.
Patch by me, but with credit to Alvaro Herrera for spotting the issue
with getErrorText's misuse of _dosmaperr().
Discussion: <nsjrbh$8li$1@blaine.gmane.org>
2016-10-01 02:40:27 +02:00
|
|
|
path, strerror(errno));
|
2011-05-19 00:36:52 +02:00
|
|
|
else if (!S_ISREG(buf.st_mode))
|
2017-09-09 23:32:10 +02:00
|
|
|
pg_fatal("check for \"%s\" failed: not a regular file\n",
|
2014-05-06 18:12:18 +02:00
|
|
|
path);
|
2010-05-12 04:19:11 +02:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Ensure that the file is both executable and readable (required for
|
|
|
|
|
* dynamic loading).
|
|
|
|
|
*/
|
|
|
|
|
#ifndef WIN32
|
2010-12-11 20:17:46 +01:00
|
|
|
if (access(path, R_OK) != 0)
|
2010-05-12 04:19:11 +02:00
|
|
|
#else
|
|
|
|
|
if ((buf.st_mode & S_IRUSR) == 0)
|
2011-02-02 21:40:20 +01:00
|
|
|
#endif
|
2013-10-02 03:24:56 +02:00
|
|
|
pg_fatal("check for \"%s\" failed: cannot read file (permission denied)\n",
|
2014-05-06 18:12:18 +02:00
|
|
|
path);
|
2011-02-02 21:40:20 +01:00
|
|
|
|
|
|
|
|
#ifndef WIN32
|
|
|
|
|
if (access(path, X_OK) != 0)
|
|
|
|
|
#else
|
2010-05-12 04:19:11 +02:00
|
|
|
if ((buf.st_mode & S_IXUSR) == 0)
|
|
|
|
|
#endif
|
2013-10-02 03:24:56 +02:00
|
|
|
pg_fatal("check for \"%s\" failed: cannot execute (permission denied)\n",
|
2014-05-06 18:12:18 +02:00
|
|
|
path);
|
2010-05-12 04:19:11 +02:00
|
|
|
}
|
