2014-02-01 04:45:17 +01:00
|
|
|
/*-------------------------------------------------------------------------
|
|
|
|
|
*
|
|
|
|
|
* slot.c
|
|
|
|
|
* Replication slot management.
|
|
|
|
|
*
|
|
|
|
|
*
|
2015-01-06 17:43:47 +01:00
|
|
|
* Copyright (c) 2012-2015, PostgreSQL Global Development Group
|
2014-02-01 04:45:17 +01:00
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* IDENTIFICATION
|
|
|
|
|
* src/backend/replication/slot.c
|
|
|
|
|
*
|
|
|
|
|
* NOTES
|
|
|
|
|
*
|
|
|
|
|
* Replication slots are used to keep state about replication streams
|
|
|
|
|
* originating from this cluster. Their primary purpose is to prevent the
|
|
|
|
|
* premature removal of WAL or of old tuple versions in a manner that would
|
2014-02-02 02:28:18 +01:00
|
|
|
* interfere with replication; they are also useful for monitoring purposes.
|
2014-02-01 04:45:17 +01:00
|
|
|
* Slots need to be permanent (to allow restarts), crash-safe, and allocatable
|
|
|
|
|
* on standbys (to support cascading setups). The requirement that slots be
|
|
|
|
|
* usable on standbys precludes storing them in the system catalogs.
|
|
|
|
|
*
|
|
|
|
|
* Each replication slot gets its own directory inside the $PGDATA/pg_replslot
|
|
|
|
|
* directory. Inside that directory the state file will contain the slot's
|
|
|
|
|
* own data. Additional data can be stored alongside that file if required.
|
|
|
|
|
* While the server is running, the state data is also cached in memory for
|
|
|
|
|
* efficiency.
|
|
|
|
|
*
|
|
|
|
|
* ReplicationSlotAllocationLock must be taken in exclusive mode to allocate
|
|
|
|
|
* or free a slot. ReplicationSlotControlLock must be taken in shared mode
|
|
|
|
|
* to iterate over the slots, and in exclusive mode to change the in_use flag
|
|
|
|
|
* of a slot. The remaining data in each slot is protected by its mutex.
|
|
|
|
|
*
|
|
|
|
|
*-------------------------------------------------------------------------
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#include "postgres.h"
|
|
|
|
|
|
|
|
|
|
#include <unistd.h>
|
|
|
|
|
#include <sys/stat.h>
|
|
|
|
|
|
|
|
|
|
#include "access/transam.h"
|
2015-01-03 20:51:52 +01:00
|
|
|
#include "common/string.h"
|
2014-02-01 04:45:17 +01:00
|
|
|
#include "miscadmin.h"
|
|
|
|
|
#include "replication/slot.h"
|
|
|
|
|
#include "storage/fd.h"
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
#include "storage/proc.h"
|
2014-02-01 04:45:17 +01:00
|
|
|
#include "storage/procarray.h"
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Replication slot on-disk data structure.
|
|
|
|
|
*/
|
|
|
|
|
typedef struct ReplicationSlotOnDisk
|
|
|
|
|
{
|
|
|
|
|
/* first part of this struct needs to be version independent */
|
|
|
|
|
|
|
|
|
|
/* data not covered by checksum */
|
|
|
|
|
uint32 magic;
|
2015-04-14 16:03:42 +02:00
|
|
|
pg_crc32c checksum;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/* data covered by checksum */
|
|
|
|
|
uint32 version;
|
|
|
|
|
uint32 length;
|
|
|
|
|
|
2014-11-12 18:52:49 +01:00
|
|
|
/*
|
|
|
|
|
* The actual data in the slot that follows can differ based on the above
|
|
|
|
|
* 'version'.
|
|
|
|
|
*/
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
ReplicationSlotPersistentData slotdata;
|
|
|
|
|
} ReplicationSlotOnDisk;
|
|
|
|
|
|
2014-11-12 18:52:49 +01:00
|
|
|
/* size of version independent data */
|
2014-02-01 04:45:17 +01:00
|
|
|
#define ReplicationSlotOnDiskConstantSize \
|
|
|
|
|
offsetof(ReplicationSlotOnDisk, slotdata)
|
2014-11-12 18:52:49 +01:00
|
|
|
/* size of the part of the slot not covered by the checksum */
|
|
|
|
|
#define SnapBuildOnDiskNotChecksummedSize \
|
|
|
|
|
offsetof(ReplicationSlotOnDisk, version)
|
|
|
|
|
/* size of the part covered by the checksum */
|
|
|
|
|
#define SnapBuildOnDiskChecksummedSize \
|
|
|
|
|
sizeof(ReplicationSlotOnDisk) - SnapBuildOnDiskNotChecksummedSize
|
2015-05-20 18:44:46 +02:00
|
|
|
/* size of the slot data that is version dependent */
|
2014-11-12 18:52:49 +01:00
|
|
|
#define ReplicationSlotOnDiskV2Size \
|
2014-02-01 04:45:17 +01:00
|
|
|
sizeof(ReplicationSlotOnDisk) - ReplicationSlotOnDiskConstantSize
|
|
|
|
|
|
|
|
|
|
#define SLOT_MAGIC 0x1051CA1 /* format identifier */
|
2015-05-24 03:35:49 +02:00
|
|
|
#define SLOT_VERSION 2 /* version for new files */
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/* Control array for replication slot management */
|
|
|
|
|
ReplicationSlotCtlData *ReplicationSlotCtl = NULL;
|
|
|
|
|
|
|
|
|
|
/* My backend's replication slot in the shared memory array */
|
|
|
|
|
ReplicationSlot *MyReplicationSlot = NULL;
|
|
|
|
|
|
|
|
|
|
/* GUCs */
|
2014-05-06 18:12:18 +02:00
|
|
|
int max_replication_slots = 0; /* the maximum number of replication
|
|
|
|
|
* slots */
|
2014-02-01 04:45:17 +01:00
|
|
|
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
static void ReplicationSlotDropAcquired(void);
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
/* internal persistency functions */
|
|
|
|
|
static void RestoreSlotFromDisk(const char *name);
|
|
|
|
|
static void CreateSlotOnDisk(ReplicationSlot *slot);
|
|
|
|
|
static void SaveSlotToPath(ReplicationSlot *slot, const char *path, int elevel);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Report shared-memory space needed by ReplicationSlotShmemInit.
|
|
|
|
|
*/
|
|
|
|
|
Size
|
|
|
|
|
ReplicationSlotsShmemSize(void)
|
|
|
|
|
{
|
|
|
|
|
Size size = 0;
|
|
|
|
|
|
|
|
|
|
if (max_replication_slots == 0)
|
|
|
|
|
return size;
|
|
|
|
|
|
|
|
|
|
size = offsetof(ReplicationSlotCtlData, replication_slots);
|
|
|
|
|
size = add_size(size,
|
|
|
|
|
mul_size(max_replication_slots, sizeof(ReplicationSlot)));
|
|
|
|
|
|
|
|
|
|
return size;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Allocate and initialize walsender-related shared memory.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
ReplicationSlotsShmemInit(void)
|
|
|
|
|
{
|
|
|
|
|
bool found;
|
|
|
|
|
|
|
|
|
|
if (max_replication_slots == 0)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
ReplicationSlotCtl = (ReplicationSlotCtlData *)
|
|
|
|
|
ShmemInitStruct("ReplicationSlot Ctl", ReplicationSlotsShmemSize(),
|
|
|
|
|
&found);
|
|
|
|
|
|
|
|
|
|
if (!found)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
/* First time through, so initialize */
|
|
|
|
|
MemSet(ReplicationSlotCtl, 0, ReplicationSlotsShmemSize());
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *slot = &ReplicationSlotCtl->replication_slots[i];
|
|
|
|
|
|
|
|
|
|
/* everything else is zeroed by the memset above */
|
|
|
|
|
SpinLockInit(&slot->mutex);
|
|
|
|
|
slot->io_in_progress_lock = LWLockAssign();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Check whether the passed slot name is valid and report errors at elevel.
|
|
|
|
|
*
|
|
|
|
|
* Slot names may consist out of [a-z0-9_]{1,NAMEDATALEN-1} which should allow
|
2014-02-02 02:28:18 +01:00
|
|
|
* the name to be used as a directory name on every supported OS.
|
2014-02-01 04:45:17 +01:00
|
|
|
*
|
|
|
|
|
* Returns whether the directory name is valid or not if elevel < ERROR.
|
|
|
|
|
*/
|
|
|
|
|
bool
|
|
|
|
|
ReplicationSlotValidateName(const char *name, int elevel)
|
|
|
|
|
{
|
|
|
|
|
const char *cp;
|
|
|
|
|
|
|
|
|
|
if (strlen(name) == 0)
|
|
|
|
|
{
|
|
|
|
|
ereport(elevel,
|
|
|
|
|
(errcode(ERRCODE_INVALID_NAME),
|
|
|
|
|
errmsg("replication slot name \"%s\" is too short",
|
|
|
|
|
name)));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (strlen(name) >= NAMEDATALEN)
|
|
|
|
|
{
|
|
|
|
|
ereport(elevel,
|
|
|
|
|
(errcode(ERRCODE_NAME_TOO_LONG),
|
|
|
|
|
errmsg("replication slot name \"%s\" is too long",
|
|
|
|
|
name)));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (cp = name; *cp; cp++)
|
|
|
|
|
{
|
|
|
|
|
if (!((*cp >= 'a' && *cp <= 'z')
|
|
|
|
|
|| (*cp >= '0' && *cp <= '9')
|
|
|
|
|
|| (*cp == '_')))
|
|
|
|
|
{
|
|
|
|
|
ereport(elevel,
|
|
|
|
|
(errcode(ERRCODE_INVALID_NAME),
|
2014-05-06 18:12:18 +02:00
|
|
|
errmsg("replication slot name \"%s\" contains invalid character",
|
|
|
|
|
name),
|
2014-09-05 07:20:33 +02:00
|
|
|
errhint("Replication slot names may only contain letters, numbers, and the underscore character.")));
|
2014-02-01 04:45:17 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Create a new replication slot and mark it as used by this backend.
|
|
|
|
|
*
|
|
|
|
|
* name: Name of the slot
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
* db_specific: logical decoding is db specific; if the slot is going to
|
2014-05-06 18:12:18 +02:00
|
|
|
* be used for that pass true, otherwise false.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
|
|
|
|
void
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
ReplicationSlotCreate(const char *name, bool db_specific,
|
|
|
|
|
ReplicationSlotPersistency persistency)
|
2014-02-01 04:45:17 +01:00
|
|
|
{
|
|
|
|
|
ReplicationSlot *slot = NULL;
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
Assert(MyReplicationSlot == NULL);
|
|
|
|
|
|
|
|
|
|
ReplicationSlotValidateName(name, ERROR);
|
|
|
|
|
|
|
|
|
|
/*
|
2015-06-11 03:30:17 +02:00
|
|
|
* If some other backend ran this code concurrently with us, we'd likely both
|
2014-05-06 18:12:18 +02:00
|
|
|
* allocate the same slot, and that would be bad. We'd also be at risk of
|
|
|
|
|
* missing a name collision. Also, we don't want to try to create a new
|
|
|
|
|
* slot while somebody's busy cleaning up an old one, because we might
|
|
|
|
|
* both be monkeying with the same directory.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
|
|
|
|
LWLockAcquire(ReplicationSlotAllocationLock, LW_EXCLUSIVE);
|
|
|
|
|
|
|
|
|
|
/*
|
2014-05-06 18:12:18 +02:00
|
|
|
* Check for name collision, and identify an allocatable slot. We need to
|
|
|
|
|
* hold ReplicationSlotControlLock in shared mode for this, so that nobody
|
|
|
|
|
* else can change the in_use flags while we're looking at them.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
|
|
|
|
LWLockAcquire(ReplicationSlotControlLock, LW_SHARED);
|
|
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *s = &ReplicationSlotCtl->replication_slots[i];
|
|
|
|
|
|
|
|
|
|
if (s->in_use && strcmp(name, NameStr(s->data.name)) == 0)
|
|
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode(ERRCODE_DUPLICATE_OBJECT),
|
|
|
|
|
errmsg("replication slot \"%s\" already exists", name)));
|
|
|
|
|
if (!s->in_use && slot == NULL)
|
|
|
|
|
slot = s;
|
|
|
|
|
}
|
|
|
|
|
LWLockRelease(ReplicationSlotControlLock);
|
|
|
|
|
|
|
|
|
|
/* If all slots are in use, we're out of luck. */
|
|
|
|
|
if (slot == NULL)
|
|
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode(ERRCODE_CONFIGURATION_LIMIT_EXCEEDED),
|
|
|
|
|
errmsg("all replication slots are in use"),
|
|
|
|
|
errhint("Free one or increase max_replication_slots.")));
|
|
|
|
|
|
|
|
|
|
/*
|
2014-05-06 18:12:18 +02:00
|
|
|
* Since this slot is not in use, nobody should be looking at any part of
|
|
|
|
|
* it other than the in_use field unless they're trying to allocate it.
|
|
|
|
|
* And since we hold ReplicationSlotAllocationLock, nobody except us can
|
|
|
|
|
* be doing that. So it's safe to initialize the slot.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
|
|
|
|
Assert(!slot->in_use);
|
2015-04-21 11:51:06 +02:00
|
|
|
Assert(slot->active_pid == 0);
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
slot->data.persistency = persistency;
|
2014-02-01 04:45:17 +01:00
|
|
|
slot->data.xmin = InvalidTransactionId;
|
|
|
|
|
slot->effective_xmin = InvalidTransactionId;
|
Replace a bunch more uses of strncpy() with safer coding.
strncpy() has a well-deserved reputation for being unsafe, so make an
effort to get rid of nearly all occurrences in HEAD.
A large fraction of the remaining uses were passing length less than or
equal to the known strlen() of the source, in which case no null-padding
can occur and the behavior is equivalent to memcpy(), though doubtless
slower and certainly harder to reason about. So just use memcpy() in
these cases.
In other cases, use either StrNCpy() or strlcpy() as appropriate (depending
on whether padding to the full length of the destination buffer seems
useful).
I left a few strncpy() calls alone in the src/timezone/ code, to keep it
in sync with upstream (the IANA tzcode distribution). There are also a
few such calls in ecpg that could possibly do with more analysis.
AFAICT, none of these changes are more than cosmetic, except for the four
occurrences in fe-secure-openssl.c, which are in fact buggy: an overlength
source leads to a non-null-terminated destination buffer and ensuing
misbehavior. These don't seem like security issues, first because no stack
clobber is possible and second because if your values of sslcert etc are
coming from untrusted sources then you've got problems way worse than this.
Still, it's undesirable to have unpredictable behavior for overlength
inputs, so back-patch those four changes to all active branches.
2015-01-24 19:05:42 +01:00
|
|
|
StrNCpy(NameStr(slot->data.name), name, NAMEDATALEN);
|
2014-02-01 04:45:17 +01:00
|
|
|
slot->data.database = db_specific ? MyDatabaseId : InvalidOid;
|
|
|
|
|
slot->data.restart_lsn = InvalidXLogRecPtr;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Create the slot on disk. We haven't actually marked the slot allocated
|
|
|
|
|
* yet, so no special cleanup is required if this errors out.
|
|
|
|
|
*/
|
|
|
|
|
CreateSlotOnDisk(slot);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We need to briefly prevent any other backend from iterating over the
|
|
|
|
|
* slots while we flip the in_use flag. We also need to set the active
|
|
|
|
|
* flag while holding the ControlLock as otherwise a concurrent
|
|
|
|
|
* SlotAcquire() could acquire the slot as well.
|
|
|
|
|
*/
|
|
|
|
|
LWLockAcquire(ReplicationSlotControlLock, LW_EXCLUSIVE);
|
|
|
|
|
|
|
|
|
|
slot->in_use = true;
|
|
|
|
|
|
|
|
|
|
/* We can now mark the slot active, and that makes it our slot. */
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = slot;
|
|
|
|
|
|
|
|
|
|
SpinLockAcquire(&slot->mutex);
|
2015-04-21 11:51:06 +02:00
|
|
|
Assert(vslot->active_pid == 0);
|
|
|
|
|
vslot->active_pid = MyProcPid;
|
2014-02-01 04:45:17 +01:00
|
|
|
SpinLockRelease(&slot->mutex);
|
|
|
|
|
MyReplicationSlot = slot;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LWLockRelease(ReplicationSlotControlLock);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Now that the slot has been marked as in_use and in_active, it's safe to
|
|
|
|
|
* let somebody else try to allocate a slot.
|
|
|
|
|
*/
|
|
|
|
|
LWLockRelease(ReplicationSlotAllocationLock);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
2014-02-02 02:28:18 +01:00
|
|
|
* Find a previously created slot and mark it as used by this backend.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
ReplicationSlotAcquire(const char *name)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *slot = NULL;
|
|
|
|
|
int i;
|
2015-04-21 11:51:06 +02:00
|
|
|
int active_pid = 0;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
Assert(MyReplicationSlot == NULL);
|
|
|
|
|
|
|
|
|
|
ReplicationSlotValidateName(name, ERROR);
|
|
|
|
|
|
|
|
|
|
/* Search for the named slot and mark it active if we find it. */
|
|
|
|
|
LWLockAcquire(ReplicationSlotControlLock, LW_SHARED);
|
|
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *s = &ReplicationSlotCtl->replication_slots[i];
|
|
|
|
|
|
|
|
|
|
if (s->in_use && strcmp(name, NameStr(s->data.name)) == 0)
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = s;
|
|
|
|
|
|
|
|
|
|
SpinLockAcquire(&s->mutex);
|
2015-04-21 11:51:06 +02:00
|
|
|
active_pid = vslot->active_pid;
|
|
|
|
|
if (active_pid == 0)
|
|
|
|
|
vslot->active_pid = MyProcPid;
|
2014-02-01 04:45:17 +01:00
|
|
|
SpinLockRelease(&s->mutex);
|
|
|
|
|
slot = s;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
LWLockRelease(ReplicationSlotControlLock);
|
|
|
|
|
|
|
|
|
|
/* If we did not find the slot or it was already active, error out. */
|
|
|
|
|
if (slot == NULL)
|
|
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode(ERRCODE_UNDEFINED_OBJECT),
|
|
|
|
|
errmsg("replication slot \"%s\" does not exist", name)));
|
2015-04-21 11:51:06 +02:00
|
|
|
if (active_pid != 0)
|
2014-02-01 04:45:17 +01:00
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode(ERRCODE_OBJECT_IN_USE),
|
2015-05-24 03:35:49 +02:00
|
|
|
errmsg("replication slot \"%s\" is already active for pid %d",
|
|
|
|
|
name, active_pid)));
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/* We made this slot active, so it's ours now. */
|
|
|
|
|
MyReplicationSlot = slot;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Release a replication slot, this or another backend can ReAcquire it
|
|
|
|
|
* later. Resources this slot requires will be preserved.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
ReplicationSlotRelease(void)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *slot = MyReplicationSlot;
|
|
|
|
|
|
2015-04-21 11:51:06 +02:00
|
|
|
Assert(slot != NULL && slot->active_pid != 0);
|
2014-02-01 04:45:17 +01:00
|
|
|
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
if (slot->data.persistency == RS_EPHEMERAL)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* Delete the slot. There is no !PANIC case where this is allowed to
|
|
|
|
|
* fail, all that may happen is an incomplete cleanup of the on-disk
|
|
|
|
|
* data.
|
|
|
|
|
*/
|
|
|
|
|
ReplicationSlotDropAcquired();
|
|
|
|
|
}
|
|
|
|
|
else
|
2014-02-01 04:45:17 +01:00
|
|
|
{
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
/* Mark slot inactive. We're not freeing it, just disconnecting. */
|
2014-02-01 04:45:17 +01:00
|
|
|
volatile ReplicationSlot *vslot = slot;
|
2014-05-06 18:12:18 +02:00
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
SpinLockAcquire(&slot->mutex);
|
2015-04-21 11:51:06 +02:00
|
|
|
vslot->active_pid = 0;
|
2014-02-01 04:45:17 +01:00
|
|
|
SpinLockRelease(&slot->mutex);
|
|
|
|
|
}
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
|
|
|
|
|
MyReplicationSlot = NULL;
|
|
|
|
|
|
|
|
|
|
/* might not have been set when we've been a plain slot */
|
|
|
|
|
LWLockAcquire(ProcArrayLock, LW_EXCLUSIVE);
|
|
|
|
|
MyPgXact->vacuumFlags &= ~PROC_IN_LOGICAL_DECODING;
|
|
|
|
|
LWLockRelease(ProcArrayLock);
|
2014-02-01 04:45:17 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Permanently drop replication slot identified by the passed in name.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
ReplicationSlotDrop(const char *name)
|
|
|
|
|
{
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
Assert(MyReplicationSlot == NULL);
|
|
|
|
|
|
|
|
|
|
ReplicationSlotAcquire(name);
|
|
|
|
|
|
|
|
|
|
ReplicationSlotDropAcquired();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Permanently drop the currently acquired replication slot which will be
|
|
|
|
|
* released by the point this function returns.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
ReplicationSlotDropAcquired(void)
|
|
|
|
|
{
|
2014-02-01 04:45:17 +01:00
|
|
|
char path[MAXPGPATH];
|
|
|
|
|
char tmppath[MAXPGPATH];
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
ReplicationSlot *slot = MyReplicationSlot;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
Assert(MyReplicationSlot != NULL);
|
|
|
|
|
|
|
|
|
|
/* slot isn't acquired anymore */
|
|
|
|
|
MyReplicationSlot = NULL;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/*
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
* If some other backend ran this code concurrently with us, we might try
|
|
|
|
|
* to delete a slot with a certain name while someone else was trying to
|
|
|
|
|
* create a slot with the same name.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
|
|
|
|
LWLockAcquire(ReplicationSlotAllocationLock, LW_EXCLUSIVE);
|
|
|
|
|
|
|
|
|
|
/* Generate pathnames. */
|
|
|
|
|
sprintf(path, "pg_replslot/%s", NameStr(slot->data.name));
|
|
|
|
|
sprintf(tmppath, "pg_replslot/%s.tmp", NameStr(slot->data.name));
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Rename the slot directory on disk, so that we'll no longer recognize
|
|
|
|
|
* this as a valid slot. Note that if this fails, we've got to mark the
|
2015-05-20 15:18:11 +02:00
|
|
|
* slot inactive before bailing out. If we're dropping an ephemeral slot,
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
* we better never fail hard as the caller won't expect the slot to
|
|
|
|
|
* survive and this might get called during error handling.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
if (rename(path, tmppath) == 0)
|
|
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* We need to fsync() the directory we just renamed and its parent to
|
|
|
|
|
* make sure that our changes are on disk in a crash-safe fashion. If
|
|
|
|
|
* fsync() fails, we can't be sure whether the changes are on disk or
|
|
|
|
|
* not. For now, we handle that by panicking;
|
|
|
|
|
* StartupReplicationSlots() will try to straighten it out after
|
|
|
|
|
* restart.
|
|
|
|
|
*/
|
|
|
|
|
START_CRIT_SECTION();
|
|
|
|
|
fsync_fname(tmppath, true);
|
|
|
|
|
fsync_fname("pg_replslot", true);
|
|
|
|
|
END_CRIT_SECTION();
|
|
|
|
|
}
|
|
|
|
|
else
|
2014-02-01 04:45:17 +01:00
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = slot;
|
2014-05-06 18:12:18 +02:00
|
|
|
bool fail_softly = slot->data.persistency == RS_EPHEMERAL;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
SpinLockAcquire(&slot->mutex);
|
2015-04-21 11:51:06 +02:00
|
|
|
vslot->active_pid = 0;
|
2014-02-01 04:45:17 +01:00
|
|
|
SpinLockRelease(&slot->mutex);
|
|
|
|
|
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
ereport(fail_softly ? WARNING : ERROR,
|
2014-02-01 04:45:17 +01:00
|
|
|
(errcode_for_file_access(),
|
2014-09-05 07:20:33 +02:00
|
|
|
errmsg("could not rename file \"%s\" to \"%s\": %m",
|
2014-02-01 04:45:17 +01:00
|
|
|
path, tmppath)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* The slot is definitely gone. Lock out concurrent scans of the array
|
|
|
|
|
* long enough to kill it. It's OK to clear the active flag here without
|
|
|
|
|
* grabbing the mutex because nobody else can be scanning the array here,
|
|
|
|
|
* and nobody can be attached to this slot and thus access it without
|
|
|
|
|
* scanning the array.
|
|
|
|
|
*/
|
|
|
|
|
LWLockAcquire(ReplicationSlotControlLock, LW_EXCLUSIVE);
|
2015-04-21 11:51:06 +02:00
|
|
|
slot->active_pid = 0;
|
2014-02-01 04:45:17 +01:00
|
|
|
slot->in_use = false;
|
|
|
|
|
LWLockRelease(ReplicationSlotControlLock);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Slot is dead and doesn't prevent resource removal anymore, recompute
|
|
|
|
|
* limits.
|
|
|
|
|
*/
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
ReplicationSlotsComputeRequiredXmin(false);
|
2014-02-01 04:45:17 +01:00
|
|
|
ReplicationSlotsComputeRequiredLSN();
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If removing the directory fails, the worst thing that will happen is
|
|
|
|
|
* that the user won't be able to create a new slot with the same name
|
|
|
|
|
* until the next server restart. We warn about it, but that's all.
|
|
|
|
|
*/
|
|
|
|
|
if (!rmtree(tmppath, true))
|
|
|
|
|
ereport(WARNING,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not remove directory \"%s\"", tmppath)));
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We release this at the very end, so that nobody starts trying to create
|
|
|
|
|
* a slot while we're still cleaning up the detritus of the old one.
|
|
|
|
|
*/
|
|
|
|
|
LWLockRelease(ReplicationSlotAllocationLock);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Serialize the currently acquired slot's state from memory to disk, thereby
|
|
|
|
|
* guaranteeing the current state will survive a crash.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
ReplicationSlotSave(void)
|
|
|
|
|
{
|
|
|
|
|
char path[MAXPGPATH];
|
|
|
|
|
|
|
|
|
|
Assert(MyReplicationSlot != NULL);
|
|
|
|
|
|
|
|
|
|
sprintf(path, "pg_replslot/%s", NameStr(MyReplicationSlot->data.name));
|
|
|
|
|
SaveSlotToPath(MyReplicationSlot, path, ERROR);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Signal that it would be useful if the currently acquired slot would be
|
|
|
|
|
* flushed out to disk.
|
|
|
|
|
*
|
|
|
|
|
* Note that the actual flush to disk can be delayed for a long time, if
|
|
|
|
|
* required for correctness explicitly do a ReplicationSlotSave().
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
ReplicationSlotMarkDirty(void)
|
|
|
|
|
{
|
|
|
|
|
Assert(MyReplicationSlot != NULL);
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = MyReplicationSlot;
|
|
|
|
|
|
|
|
|
|
SpinLockAcquire(&vslot->mutex);
|
|
|
|
|
MyReplicationSlot->just_dirtied = true;
|
|
|
|
|
MyReplicationSlot->dirty = true;
|
|
|
|
|
SpinLockRelease(&vslot->mutex);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
/*
|
2015-04-02 13:45:19 +02:00
|
|
|
* Convert a slot that's marked as RS_EPHEMERAL to a RS_PERSISTENT slot,
|
2015-05-20 15:18:11 +02:00
|
|
|
* guaranteeing it will be there after an eventual crash.
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
ReplicationSlotPersist(void)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *slot = MyReplicationSlot;
|
|
|
|
|
|
|
|
|
|
Assert(slot != NULL);
|
|
|
|
|
Assert(slot->data.persistency != RS_PERSISTENT);
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = slot;
|
|
|
|
|
|
|
|
|
|
SpinLockAcquire(&slot->mutex);
|
|
|
|
|
vslot->data.persistency = RS_PERSISTENT;
|
|
|
|
|
SpinLockRelease(&slot->mutex);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ReplicationSlotMarkDirty();
|
|
|
|
|
ReplicationSlotSave();
|
|
|
|
|
}
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
/*
|
|
|
|
|
* Compute the oldest xmin across all slots and store it in the ProcArray.
|
|
|
|
|
*/
|
|
|
|
|
void
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
ReplicationSlotsComputeRequiredXmin(bool already_locked)
|
2014-02-01 04:45:17 +01:00
|
|
|
{
|
|
|
|
|
int i;
|
|
|
|
|
TransactionId agg_xmin = InvalidTransactionId;
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
TransactionId agg_catalog_xmin = InvalidTransactionId;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
Assert(ReplicationSlotCtl != NULL);
|
|
|
|
|
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
if (!already_locked)
|
|
|
|
|
LWLockAcquire(ReplicationSlotControlLock, LW_SHARED);
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *s = &ReplicationSlotCtl->replication_slots[i];
|
2014-05-06 18:12:18 +02:00
|
|
|
TransactionId effective_xmin;
|
|
|
|
|
TransactionId effective_catalog_xmin;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
if (!s->in_use)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = s;
|
|
|
|
|
|
|
|
|
|
SpinLockAcquire(&s->mutex);
|
|
|
|
|
effective_xmin = vslot->effective_xmin;
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
effective_catalog_xmin = vslot->effective_catalog_xmin;
|
2014-02-01 04:45:17 +01:00
|
|
|
SpinLockRelease(&s->mutex);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* check the data xmin */
|
|
|
|
|
if (TransactionIdIsValid(effective_xmin) &&
|
|
|
|
|
(!TransactionIdIsValid(agg_xmin) ||
|
|
|
|
|
TransactionIdPrecedes(effective_xmin, agg_xmin)))
|
|
|
|
|
agg_xmin = effective_xmin;
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
|
|
|
|
|
/* check the catalog xmin */
|
|
|
|
|
if (TransactionIdIsValid(effective_catalog_xmin) &&
|
|
|
|
|
(!TransactionIdIsValid(agg_catalog_xmin) ||
|
|
|
|
|
TransactionIdPrecedes(effective_catalog_xmin, agg_catalog_xmin)))
|
|
|
|
|
agg_catalog_xmin = effective_catalog_xmin;
|
2014-02-01 04:45:17 +01:00
|
|
|
}
|
|
|
|
|
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
if (!already_locked)
|
|
|
|
|
LWLockRelease(ReplicationSlotControlLock);
|
|
|
|
|
|
|
|
|
|
ProcArraySetReplicationSlotXmin(agg_xmin, agg_catalog_xmin, already_locked);
|
2014-02-01 04:45:17 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Compute the oldest restart LSN across all slots and inform xlog module.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
ReplicationSlotsComputeRequiredLSN(void)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
2014-05-06 18:12:18 +02:00
|
|
|
XLogRecPtr min_required = InvalidXLogRecPtr;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
Assert(ReplicationSlotCtl != NULL);
|
|
|
|
|
|
|
|
|
|
LWLockAcquire(ReplicationSlotControlLock, LW_SHARED);
|
|
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *s = &ReplicationSlotCtl->replication_slots[i];
|
2014-05-06 18:12:18 +02:00
|
|
|
XLogRecPtr restart_lsn;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
if (!s->in_use)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = s;
|
|
|
|
|
|
|
|
|
|
SpinLockAcquire(&s->mutex);
|
|
|
|
|
restart_lsn = vslot->data.restart_lsn;
|
|
|
|
|
SpinLockRelease(&s->mutex);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (restart_lsn != InvalidXLogRecPtr &&
|
|
|
|
|
(min_required == InvalidXLogRecPtr ||
|
|
|
|
|
restart_lsn < min_required))
|
|
|
|
|
min_required = restart_lsn;
|
|
|
|
|
}
|
|
|
|
|
LWLockRelease(ReplicationSlotControlLock);
|
|
|
|
|
|
|
|
|
|
XLogSetReplicationSlotMinimumLSN(min_required);
|
|
|
|
|
}
|
|
|
|
|
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
/*
|
|
|
|
|
* Compute the oldest WAL LSN required by *logical* decoding slots..
|
|
|
|
|
*
|
|
|
|
|
* Returns InvalidXLogRecPtr if logical decoding is disabled or no logicals
|
|
|
|
|
* slots exist.
|
|
|
|
|
*
|
|
|
|
|
* NB: this returns a value >= ReplicationSlotsComputeRequiredLSN(), since it
|
|
|
|
|
* ignores physical replication slots.
|
|
|
|
|
*
|
|
|
|
|
* The results aren't required frequently, so we don't maintain a precomputed
|
|
|
|
|
* value like we do for ComputeRequiredLSN() and ComputeRequiredXmin().
|
|
|
|
|
*/
|
|
|
|
|
XLogRecPtr
|
|
|
|
|
ReplicationSlotsComputeLogicalRestartLSN(void)
|
|
|
|
|
{
|
|
|
|
|
XLogRecPtr result = InvalidXLogRecPtr;
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
if (max_replication_slots <= 0)
|
|
|
|
|
return InvalidXLogRecPtr;
|
|
|
|
|
|
|
|
|
|
LWLockAcquire(ReplicationSlotControlLock, LW_SHARED);
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *s;
|
2014-05-06 18:12:18 +02:00
|
|
|
XLogRecPtr restart_lsn;
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
|
|
|
|
|
s = &ReplicationSlotCtl->replication_slots[i];
|
|
|
|
|
|
|
|
|
|
/* cannot change while ReplicationSlotCtlLock is held */
|
|
|
|
|
if (!s->in_use)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/* we're only interested in logical slots */
|
|
|
|
|
if (s->data.database == InvalidOid)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/* read once, it's ok if it increases while we're checking */
|
|
|
|
|
SpinLockAcquire(&s->mutex);
|
|
|
|
|
restart_lsn = s->data.restart_lsn;
|
|
|
|
|
SpinLockRelease(&s->mutex);
|
|
|
|
|
|
|
|
|
|
if (result == InvalidXLogRecPtr ||
|
|
|
|
|
restart_lsn < result)
|
|
|
|
|
result = restart_lsn;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LWLockRelease(ReplicationSlotControlLock);
|
|
|
|
|
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* ReplicationSlotsCountDBSlots -- count the number of slots that refer to the
|
|
|
|
|
* passed database oid.
|
|
|
|
|
*
|
|
|
|
|
* Returns true if there are any slots referencing the database. *nslots will
|
|
|
|
|
* be set to the absolute number of slots in the database, *nactive to ones
|
|
|
|
|
* currently active.
|
|
|
|
|
*/
|
|
|
|
|
bool
|
|
|
|
|
ReplicationSlotsCountDBSlots(Oid dboid, int *nslots, int *nactive)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
*nslots = *nactive = 0;
|
|
|
|
|
|
|
|
|
|
if (max_replication_slots <= 0)
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
LWLockAcquire(ReplicationSlotControlLock, LW_SHARED);
|
|
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *s;
|
|
|
|
|
|
|
|
|
|
s = &ReplicationSlotCtl->replication_slots[i];
|
|
|
|
|
|
|
|
|
|
/* cannot change while ReplicationSlotCtlLock is held */
|
|
|
|
|
if (!s->in_use)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/* not database specific, skip */
|
|
|
|
|
if (s->data.database == InvalidOid)
|
2014-03-07 17:42:18 +01:00
|
|
|
continue;
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
|
|
|
|
|
/* not our database, skip */
|
|
|
|
|
if (s->data.database != dboid)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/* count slots with spinlock held */
|
|
|
|
|
SpinLockAcquire(&s->mutex);
|
|
|
|
|
(*nslots)++;
|
2015-04-21 11:51:06 +02:00
|
|
|
if (s->active_pid != 0)
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
(*nactive)++;
|
|
|
|
|
SpinLockRelease(&s->mutex);
|
|
|
|
|
}
|
|
|
|
|
LWLockRelease(ReplicationSlotControlLock);
|
|
|
|
|
|
|
|
|
|
if (*nslots > 0)
|
|
|
|
|
return true;
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
/*
|
|
|
|
|
* Check whether the server's configuration supports using replication
|
|
|
|
|
* slots.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
CheckSlotRequirements(void)
|
|
|
|
|
{
|
|
|
|
|
if (max_replication_slots == 0)
|
|
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode(ERRCODE_OBJECT_NOT_IN_PREREQUISITE_STATE),
|
|
|
|
|
(errmsg("replication slots can only be used if max_replication_slots > 0"))));
|
|
|
|
|
|
|
|
|
|
if (wal_level < WAL_LEVEL_ARCHIVE)
|
|
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode(ERRCODE_OBJECT_NOT_IN_PREREQUISITE_STATE),
|
|
|
|
|
errmsg("replication slots can only be used if wal_level >= archive")));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Flush all replication slots to disk.
|
|
|
|
|
*
|
|
|
|
|
* This needn't actually be part of a checkpoint, but it's a convenient
|
|
|
|
|
* location.
|
|
|
|
|
*/
|
|
|
|
|
void
|
|
|
|
|
CheckPointReplicationSlots(void)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
|
|
|
|
|
2014-11-12 02:00:58 +01:00
|
|
|
elog(DEBUG1, "performing replication slot checkpoint");
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Prevent any slot from being created/dropped while we're active. As we
|
|
|
|
|
* explicitly do *not* want to block iterating over replication_slots or
|
|
|
|
|
* acquiring a slot we cannot take the control lock - but that's OK,
|
2014-05-06 18:12:18 +02:00
|
|
|
* because holding ReplicationSlotAllocationLock is strictly stronger, and
|
|
|
|
|
* enough to guarantee that nobody can change the in_use bits on us.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
|
|
|
|
LWLockAcquire(ReplicationSlotAllocationLock, LW_SHARED);
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *s = &ReplicationSlotCtl->replication_slots[i];
|
|
|
|
|
char path[MAXPGPATH];
|
|
|
|
|
|
|
|
|
|
if (!s->in_use)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/* save the slot to disk, locking is handled in SaveSlotToPath() */
|
|
|
|
|
sprintf(path, "pg_replslot/%s", NameStr(s->data.name));
|
|
|
|
|
SaveSlotToPath(s, path, LOG);
|
|
|
|
|
}
|
|
|
|
|
LWLockRelease(ReplicationSlotAllocationLock);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Load all replication slots from disk into memory at server startup. This
|
|
|
|
|
* needs to be run before we start crash recovery.
|
|
|
|
|
*/
|
|
|
|
|
void
|
2014-06-12 13:23:46 +02:00
|
|
|
StartupReplicationSlots(void)
|
2014-02-01 04:45:17 +01:00
|
|
|
{
|
|
|
|
|
DIR *replication_dir;
|
|
|
|
|
struct dirent *replication_de;
|
|
|
|
|
|
2014-11-12 02:00:58 +01:00
|
|
|
elog(DEBUG1, "starting up replication slots");
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/* restore all slots by iterating over all on-disk entries */
|
|
|
|
|
replication_dir = AllocateDir("pg_replslot");
|
|
|
|
|
while ((replication_de = ReadDir(replication_dir, "pg_replslot")) != NULL)
|
|
|
|
|
{
|
2014-05-06 18:12:18 +02:00
|
|
|
struct stat statbuf;
|
2014-02-01 04:45:17 +01:00
|
|
|
char path[MAXPGPATH];
|
|
|
|
|
|
|
|
|
|
if (strcmp(replication_de->d_name, ".") == 0 ||
|
|
|
|
|
strcmp(replication_de->d_name, "..") == 0)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
snprintf(path, MAXPGPATH, "pg_replslot/%s", replication_de->d_name);
|
|
|
|
|
|
|
|
|
|
/* we're only creating directories here, skip if it's not our's */
|
|
|
|
|
if (lstat(path, &statbuf) == 0 && !S_ISDIR(statbuf.st_mode))
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/* we crashed while a slot was being setup or deleted, clean up */
|
2015-01-03 20:51:52 +01:00
|
|
|
if (pg_str_endswith(replication_de->d_name, ".tmp"))
|
2014-02-01 04:45:17 +01:00
|
|
|
{
|
|
|
|
|
if (!rmtree(path, true))
|
|
|
|
|
{
|
|
|
|
|
ereport(WARNING,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not remove directory \"%s\"", path)));
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
fsync_fname("pg_replslot", true);
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* looks like a slot in a normal state, restore */
|
|
|
|
|
RestoreSlotFromDisk(replication_de->d_name);
|
|
|
|
|
}
|
|
|
|
|
FreeDir(replication_dir);
|
|
|
|
|
|
|
|
|
|
/* currently no slots exist, we're done. */
|
|
|
|
|
if (max_replication_slots <= 0)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/* Now that we have recovered all the data, compute replication xmin */
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
ReplicationSlotsComputeRequiredXmin(false);
|
2014-02-01 04:45:17 +01:00
|
|
|
ReplicationSlotsComputeRequiredLSN();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* ----
|
|
|
|
|
* Manipulation of ondisk state of replication slots
|
|
|
|
|
*
|
|
|
|
|
* NB: none of the routines below should take any notice whether a slot is the
|
|
|
|
|
* current one or not, that's all handled a layer above.
|
|
|
|
|
* ----
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
CreateSlotOnDisk(ReplicationSlot *slot)
|
|
|
|
|
{
|
|
|
|
|
char tmppath[MAXPGPATH];
|
|
|
|
|
char path[MAXPGPATH];
|
2014-05-06 18:12:18 +02:00
|
|
|
struct stat st;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* No need to take out the io_in_progress_lock, nobody else can see this
|
2014-02-02 02:28:18 +01:00
|
|
|
* slot yet, so nobody else will write. We're reusing SaveSlotToPath which
|
2014-02-01 04:45:17 +01:00
|
|
|
* takes out the lock, if we'd take the lock here, we'd deadlock.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
sprintf(path, "pg_replslot/%s", NameStr(slot->data.name));
|
|
|
|
|
sprintf(tmppath, "pg_replslot/%s.tmp", NameStr(slot->data.name));
|
|
|
|
|
|
|
|
|
|
/*
|
2014-05-06 18:12:18 +02:00
|
|
|
* It's just barely possible that some previous effort to create or drop a
|
|
|
|
|
* slot with this name left a temp directory lying around. If that seems
|
|
|
|
|
* to be the case, try to remove it. If the rmtree() fails, we'll error
|
|
|
|
|
* out at the mkdir() below, so we don't bother checking success.
|
2014-02-01 04:45:17 +01:00
|
|
|
*/
|
|
|
|
|
if (stat(tmppath, &st) == 0 && S_ISDIR(st.st_mode))
|
|
|
|
|
rmtree(tmppath, true);
|
|
|
|
|
|
|
|
|
|
/* Create and fsync the temporary slot directory. */
|
|
|
|
|
if (mkdir(tmppath, S_IRWXU) < 0)
|
|
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not create directory \"%s\": %m",
|
|
|
|
|
tmppath)));
|
|
|
|
|
fsync_fname(tmppath, true);
|
|
|
|
|
|
|
|
|
|
/* Write the actual state file. */
|
2014-05-06 18:12:18 +02:00
|
|
|
slot->dirty = true; /* signal that we really need to write */
|
2014-02-01 04:45:17 +01:00
|
|
|
SaveSlotToPath(slot, tmppath, ERROR);
|
|
|
|
|
|
|
|
|
|
/* Rename the directory into place. */
|
|
|
|
|
if (rename(tmppath, path) != 0)
|
|
|
|
|
ereport(ERROR,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not rename file \"%s\" to \"%s\": %m",
|
|
|
|
|
tmppath, path)));
|
|
|
|
|
|
|
|
|
|
/*
|
2014-02-02 02:28:18 +01:00
|
|
|
* If we'd now fail - really unlikely - we wouldn't know whether this slot
|
2014-02-01 04:45:17 +01:00
|
|
|
* would persist after an OS crash or not - so, force a restart. The
|
|
|
|
|
* restart would try to fysnc this again till it works.
|
|
|
|
|
*/
|
|
|
|
|
START_CRIT_SECTION();
|
|
|
|
|
|
|
|
|
|
fsync_fname(path, true);
|
|
|
|
|
fsync_fname("pg_replslot", true);
|
|
|
|
|
|
|
|
|
|
END_CRIT_SECTION();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Shared functionality between saving and creating a replication slot.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
SaveSlotToPath(ReplicationSlot *slot, const char *dir, int elevel)
|
|
|
|
|
{
|
|
|
|
|
char tmppath[MAXPGPATH];
|
|
|
|
|
char path[MAXPGPATH];
|
|
|
|
|
int fd;
|
|
|
|
|
ReplicationSlotOnDisk cp;
|
|
|
|
|
bool was_dirty;
|
|
|
|
|
|
|
|
|
|
/* first check whether there's something to write out */
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = slot;
|
|
|
|
|
|
|
|
|
|
SpinLockAcquire(&vslot->mutex);
|
|
|
|
|
was_dirty = vslot->dirty;
|
|
|
|
|
vslot->just_dirtied = false;
|
|
|
|
|
SpinLockRelease(&vslot->mutex);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* and don't do anything if there's nothing to write */
|
|
|
|
|
if (!was_dirty)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
LWLockAcquire(slot->io_in_progress_lock, LW_EXCLUSIVE);
|
|
|
|
|
|
|
|
|
|
/* silence valgrind :( */
|
|
|
|
|
memset(&cp, 0, sizeof(ReplicationSlotOnDisk));
|
|
|
|
|
|
|
|
|
|
sprintf(tmppath, "%s/state.tmp", dir);
|
|
|
|
|
sprintf(path, "%s/state", dir);
|
|
|
|
|
|
|
|
|
|
fd = OpenTransientFile(tmppath,
|
|
|
|
|
O_CREAT | O_EXCL | O_WRONLY | PG_BINARY,
|
|
|
|
|
S_IRUSR | S_IWUSR);
|
|
|
|
|
if (fd < 0)
|
|
|
|
|
{
|
|
|
|
|
ereport(elevel,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not create file \"%s\": %m",
|
|
|
|
|
tmppath)));
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
cp.magic = SLOT_MAGIC;
|
Switch to CRC-32C in WAL and other places.
The old algorithm was found to not be the usual CRC-32 algorithm, used by
Ethernet et al. We were using a non-reflected lookup table with code meant
for a reflected lookup table. That's a strange combination that AFAICS does
not correspond to any bit-wise CRC calculation, which makes it difficult to
reason about its properties. Although it has worked well in practice, seems
safer to use a well-known algorithm.
Since we're changing the algorithm anyway, we might as well choose a
different polynomial. The Castagnoli polynomial has better error-correcting
properties than the traditional CRC-32 polynomial, even if we had
implemented it correctly. Another reason for picking that is that some new
CPUs have hardware support for calculating CRC-32C, but not CRC-32, let
alone our strange variant of it. This patch doesn't add any support for such
hardware, but a future patch could now do that.
The old algorithm is kept around for tsquery and pg_trgm, which use the
values in indexes that need to remain compatible so that pg_upgrade works.
While we're at it, share the old lookup table for CRC-32 calculation
between hstore, ltree and core. They all use the same table, so might as
well.
2014-11-04 10:35:15 +01:00
|
|
|
INIT_CRC32C(cp.checksum);
|
2014-11-12 18:52:49 +01:00
|
|
|
cp.version = SLOT_VERSION;
|
|
|
|
|
cp.length = ReplicationSlotOnDiskV2Size;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
SpinLockAcquire(&slot->mutex);
|
|
|
|
|
|
|
|
|
|
memcpy(&cp.slotdata, &slot->data, sizeof(ReplicationSlotPersistentData));
|
|
|
|
|
|
|
|
|
|
SpinLockRelease(&slot->mutex);
|
|
|
|
|
|
Switch to CRC-32C in WAL and other places.
The old algorithm was found to not be the usual CRC-32 algorithm, used by
Ethernet et al. We were using a non-reflected lookup table with code meant
for a reflected lookup table. That's a strange combination that AFAICS does
not correspond to any bit-wise CRC calculation, which makes it difficult to
reason about its properties. Although it has worked well in practice, seems
safer to use a well-known algorithm.
Since we're changing the algorithm anyway, we might as well choose a
different polynomial. The Castagnoli polynomial has better error-correcting
properties than the traditional CRC-32 polynomial, even if we had
implemented it correctly. Another reason for picking that is that some new
CPUs have hardware support for calculating CRC-32C, but not CRC-32, let
alone our strange variant of it. This patch doesn't add any support for such
hardware, but a future patch could now do that.
The old algorithm is kept around for tsquery and pg_trgm, which use the
values in indexes that need to remain compatible so that pg_upgrade works.
While we're at it, share the old lookup table for CRC-32 calculation
between hstore, ltree and core. They all use the same table, so might as
well.
2014-11-04 10:35:15 +01:00
|
|
|
COMP_CRC32C(cp.checksum,
|
2014-11-12 18:52:49 +01:00
|
|
|
(char *) (&cp) + SnapBuildOnDiskNotChecksummedSize,
|
|
|
|
|
SnapBuildOnDiskChecksummedSize);
|
|
|
|
|
FIN_CRC32C(cp.checksum);
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
if ((write(fd, &cp, sizeof(cp))) != sizeof(cp))
|
|
|
|
|
{
|
2014-05-06 18:12:18 +02:00
|
|
|
int save_errno = errno;
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
CloseTransientFile(fd);
|
|
|
|
|
errno = save_errno;
|
|
|
|
|
ereport(elevel,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not write to file \"%s\": %m",
|
|
|
|
|
tmppath)));
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* fsync the temporary file */
|
|
|
|
|
if (pg_fsync(fd) != 0)
|
|
|
|
|
{
|
2014-05-06 18:12:18 +02:00
|
|
|
int save_errno = errno;
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
CloseTransientFile(fd);
|
|
|
|
|
errno = save_errno;
|
|
|
|
|
ereport(elevel,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not fsync file \"%s\": %m",
|
|
|
|
|
tmppath)));
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
CloseTransientFile(fd);
|
|
|
|
|
|
|
|
|
|
/* rename to permanent file, fsync file and directory */
|
|
|
|
|
if (rename(tmppath, path) != 0)
|
|
|
|
|
{
|
|
|
|
|
ereport(elevel,
|
|
|
|
|
(errcode_for_file_access(),
|
2014-09-05 07:20:33 +02:00
|
|
|
errmsg("could not rename file \"%s\" to \"%s\": %m",
|
2014-02-01 04:45:17 +01:00
|
|
|
tmppath, path)));
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Check CreateSlot() for the reasoning of using a crit. section. */
|
|
|
|
|
START_CRIT_SECTION();
|
|
|
|
|
|
|
|
|
|
fsync_fname(path, false);
|
|
|
|
|
fsync_fname((char *) dir, true);
|
|
|
|
|
fsync_fname("pg_replslot", true);
|
|
|
|
|
|
|
|
|
|
END_CRIT_SECTION();
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Successfully wrote, unset dirty bit, unless somebody dirtied again
|
|
|
|
|
* already.
|
|
|
|
|
*/
|
|
|
|
|
{
|
|
|
|
|
volatile ReplicationSlot *vslot = slot;
|
|
|
|
|
|
|
|
|
|
SpinLockAcquire(&vslot->mutex);
|
|
|
|
|
if (!vslot->just_dirtied)
|
|
|
|
|
vslot->dirty = false;
|
|
|
|
|
SpinLockRelease(&vslot->mutex);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
LWLockRelease(slot->io_in_progress_lock);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Load a single slot from disk into memory.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
RestoreSlotFromDisk(const char *name)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlotOnDisk cp;
|
|
|
|
|
int i;
|
|
|
|
|
char path[MAXPGPATH];
|
|
|
|
|
int fd;
|
|
|
|
|
bool restored = false;
|
|
|
|
|
int readBytes;
|
2015-04-14 16:03:42 +02:00
|
|
|
pg_crc32c checksum;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/* no need to lock here, no concurrent access allowed yet */
|
|
|
|
|
|
|
|
|
|
/* delete temp file if it exists */
|
|
|
|
|
sprintf(path, "pg_replslot/%s/state.tmp", name);
|
|
|
|
|
if (unlink(path) < 0 && errno != ENOENT)
|
|
|
|
|
ereport(PANIC,
|
|
|
|
|
(errcode_for_file_access(),
|
2014-09-05 07:20:33 +02:00
|
|
|
errmsg("could not remove file \"%s\": %m", path)));
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
sprintf(path, "pg_replslot/%s/state", name);
|
|
|
|
|
|
|
|
|
|
elog(DEBUG1, "restoring replication slot from \"%s\"", path);
|
|
|
|
|
|
2015-04-28 00:12:38 +02:00
|
|
|
fd = OpenTransientFile(path, O_RDWR | PG_BINARY, 0);
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* We do not need to handle this as we are rename()ing the directory into
|
|
|
|
|
* place only after we fsync()ed the state file.
|
|
|
|
|
*/
|
|
|
|
|
if (fd < 0)
|
|
|
|
|
ereport(PANIC,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not open file \"%s\": %m", path)));
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Sync state file before we're reading from it. We might have crashed
|
|
|
|
|
* while it wasn't synced yet and we shouldn't continue on that basis.
|
|
|
|
|
*/
|
|
|
|
|
if (pg_fsync(fd) != 0)
|
|
|
|
|
{
|
|
|
|
|
CloseTransientFile(fd);
|
|
|
|
|
ereport(PANIC,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not fsync file \"%s\": %m",
|
|
|
|
|
path)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Also sync the parent directory */
|
|
|
|
|
START_CRIT_SECTION();
|
|
|
|
|
fsync_fname(path, true);
|
|
|
|
|
END_CRIT_SECTION();
|
|
|
|
|
|
|
|
|
|
/* read part of statefile that's guaranteed to be version independent */
|
|
|
|
|
readBytes = read(fd, &cp, ReplicationSlotOnDiskConstantSize);
|
|
|
|
|
if (readBytes != ReplicationSlotOnDiskConstantSize)
|
|
|
|
|
{
|
|
|
|
|
int saved_errno = errno;
|
|
|
|
|
|
|
|
|
|
CloseTransientFile(fd);
|
|
|
|
|
errno = saved_errno;
|
|
|
|
|
ereport(PANIC,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not read file \"%s\", read %d of %u: %m",
|
|
|
|
|
path, readBytes,
|
|
|
|
|
(uint32) ReplicationSlotOnDiskConstantSize)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* verify magic */
|
|
|
|
|
if (cp.magic != SLOT_MAGIC)
|
|
|
|
|
ereport(PANIC,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("replication slot file \"%s\" has wrong magic %u instead of %u",
|
|
|
|
|
path, cp.magic, SLOT_MAGIC)));
|
|
|
|
|
|
|
|
|
|
/* verify version */
|
|
|
|
|
if (cp.version != SLOT_VERSION)
|
|
|
|
|
ereport(PANIC,
|
|
|
|
|
(errcode_for_file_access(),
|
2014-05-06 18:12:18 +02:00
|
|
|
errmsg("replication slot file \"%s\" has unsupported version %u",
|
|
|
|
|
path, cp.version)));
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/* boundary check on length */
|
2014-11-12 18:52:49 +01:00
|
|
|
if (cp.length != ReplicationSlotOnDiskV2Size)
|
2014-02-01 04:45:17 +01:00
|
|
|
ereport(PANIC,
|
|
|
|
|
(errcode_for_file_access(),
|
2014-05-06 18:12:18 +02:00
|
|
|
errmsg("replication slot file \"%s\" has corrupted length %u",
|
|
|
|
|
path, cp.length)));
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
/* Now that we know the size, read the entire file */
|
|
|
|
|
readBytes = read(fd,
|
2014-05-06 18:12:18 +02:00
|
|
|
(char *) &cp + ReplicationSlotOnDiskConstantSize,
|
2014-02-01 04:45:17 +01:00
|
|
|
cp.length);
|
|
|
|
|
if (readBytes != cp.length)
|
|
|
|
|
{
|
|
|
|
|
int saved_errno = errno;
|
|
|
|
|
|
|
|
|
|
CloseTransientFile(fd);
|
|
|
|
|
errno = saved_errno;
|
|
|
|
|
ereport(PANIC,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not read file \"%s\", read %d of %u: %m",
|
|
|
|
|
path, readBytes, cp.length)));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
CloseTransientFile(fd);
|
|
|
|
|
|
Switch to CRC-32C in WAL and other places.
The old algorithm was found to not be the usual CRC-32 algorithm, used by
Ethernet et al. We were using a non-reflected lookup table with code meant
for a reflected lookup table. That's a strange combination that AFAICS does
not correspond to any bit-wise CRC calculation, which makes it difficult to
reason about its properties. Although it has worked well in practice, seems
safer to use a well-known algorithm.
Since we're changing the algorithm anyway, we might as well choose a
different polynomial. The Castagnoli polynomial has better error-correcting
properties than the traditional CRC-32 polynomial, even if we had
implemented it correctly. Another reason for picking that is that some new
CPUs have hardware support for calculating CRC-32C, but not CRC-32, let
alone our strange variant of it. This patch doesn't add any support for such
hardware, but a future patch could now do that.
The old algorithm is kept around for tsquery and pg_trgm, which use the
values in indexes that need to remain compatible so that pg_upgrade works.
While we're at it, share the old lookup table for CRC-32 calculation
between hstore, ltree and core. They all use the same table, so might as
well.
2014-11-04 10:35:15 +01:00
|
|
|
/* now verify the CRC */
|
|
|
|
|
INIT_CRC32C(checksum);
|
|
|
|
|
COMP_CRC32C(checksum,
|
2014-11-12 18:52:49 +01:00
|
|
|
(char *) &cp + SnapBuildOnDiskNotChecksummedSize,
|
|
|
|
|
SnapBuildOnDiskChecksummedSize);
|
|
|
|
|
FIN_CRC32C(checksum);
|
2014-02-01 04:45:17 +01:00
|
|
|
|
Switch to CRC-32C in WAL and other places.
The old algorithm was found to not be the usual CRC-32 algorithm, used by
Ethernet et al. We were using a non-reflected lookup table with code meant
for a reflected lookup table. That's a strange combination that AFAICS does
not correspond to any bit-wise CRC calculation, which makes it difficult to
reason about its properties. Although it has worked well in practice, seems
safer to use a well-known algorithm.
Since we're changing the algorithm anyway, we might as well choose a
different polynomial. The Castagnoli polynomial has better error-correcting
properties than the traditional CRC-32 polynomial, even if we had
implemented it correctly. Another reason for picking that is that some new
CPUs have hardware support for calculating CRC-32C, but not CRC-32, let
alone our strange variant of it. This patch doesn't add any support for such
hardware, but a future patch could now do that.
The old algorithm is kept around for tsquery and pg_trgm, which use the
values in indexes that need to remain compatible so that pg_upgrade works.
While we're at it, share the old lookup table for CRC-32 calculation
between hstore, ltree and core. They all use the same table, so might as
well.
2014-11-04 10:35:15 +01:00
|
|
|
if (!EQ_CRC32C(checksum, cp.checksum))
|
2014-02-01 04:45:17 +01:00
|
|
|
ereport(PANIC,
|
|
|
|
|
(errmsg("replication slot file %s: checksum mismatch, is %u, should be %u",
|
|
|
|
|
path, checksum, cp.checksum)));
|
|
|
|
|
|
2014-07-24 14:32:34 +02:00
|
|
|
/*
|
|
|
|
|
* If we crashed with an ephemeral slot active, don't restore but delete
|
|
|
|
|
* it.
|
|
|
|
|
*/
|
|
|
|
|
if (cp.slotdata.persistency != RS_PERSISTENT)
|
|
|
|
|
{
|
|
|
|
|
sprintf(path, "pg_replslot/%s", name);
|
|
|
|
|
|
|
|
|
|
if (!rmtree(path, true))
|
|
|
|
|
{
|
|
|
|
|
ereport(WARNING,
|
|
|
|
|
(errcode_for_file_access(),
|
|
|
|
|
errmsg("could not remove directory \"%s\"", path)));
|
|
|
|
|
}
|
|
|
|
|
fsync_fname("pg_replslot", true);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
/* nothing can be active yet, don't lock anything */
|
|
|
|
|
for (i = 0; i < max_replication_slots; i++)
|
|
|
|
|
{
|
|
|
|
|
ReplicationSlot *slot;
|
|
|
|
|
|
|
|
|
|
slot = &ReplicationSlotCtl->replication_slots[i];
|
|
|
|
|
|
|
|
|
|
if (slot->in_use)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
/* restore the entire set of persistent data */
|
|
|
|
|
memcpy(&slot->data, &cp.slotdata,
|
|
|
|
|
sizeof(ReplicationSlotPersistentData));
|
|
|
|
|
|
|
|
|
|
/* initialize in memory state */
|
|
|
|
|
slot->effective_xmin = cp.slotdata.xmin;
|
Introduce logical decoding.
This feature, building on previous commits, allows the write-ahead log
stream to be decoded into a series of logical changes; that is,
inserts, updates, and deletes and the transactions which contain them.
It is capable of handling decoding even across changes to the schema
of the effected tables. The output format is controlled by a
so-called "output plugin"; an example is included. To make use of
this in a real replication system, the output plugin will need to be
modified to produce output in the format appropriate to that system,
and to perform filtering.
Currently, information can be extracted from the logical decoding
system only via SQL; future commits will add the ability to stream
changes via walsender.
Andres Freund, with review and other contributions from many other
people, including Álvaro Herrera, Abhijit Menon-Sen, Peter Gheogegan,
Kevin Grittner, Robert Haas, Heikki Linnakangas, Fujii Masao, Abhijit
Menon-Sen, Michael Paquier, Simon Riggs, Craig Ringer, and Steve
Singer.
2014-03-03 22:32:18 +01:00
|
|
|
slot->effective_catalog_xmin = cp.slotdata.catalog_xmin;
|
|
|
|
|
|
|
|
|
|
slot->candidate_catalog_xmin = InvalidTransactionId;
|
|
|
|
|
slot->candidate_xmin_lsn = InvalidXLogRecPtr;
|
|
|
|
|
slot->candidate_restart_lsn = InvalidXLogRecPtr;
|
|
|
|
|
slot->candidate_restart_valid = InvalidXLogRecPtr;
|
|
|
|
|
|
2014-02-01 04:45:17 +01:00
|
|
|
slot->in_use = true;
|
2015-04-21 11:51:06 +02:00
|
|
|
slot->active_pid = 0;
|
2014-02-01 04:45:17 +01:00
|
|
|
|
|
|
|
|
restored = true;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!restored)
|
|
|
|
|
ereport(PANIC,
|
|
|
|
|
(errmsg("too many replication slots active before shutdown"),
|
|
|
|
|
errhint("Increase max_replication_slots and try again.")));
|
|
|
|
|
}
|
