| blob | c5bd30929d7ac9a48d4f3d0b5ec2c9d8b9c8d7f4 |
1 /*-------------------------------------------------------------------------
2 *
3 * md.c
4 * This code manages relations that reside on magnetic disk.
5 *
6 * Portions Copyright (c) 1996-2009, PostgreSQL Global Development Group
7 * Portions Copyright (c) 1994, Regents of the University of California
8 *
9 *
10 * IDENTIFICATION
11 * $PostgreSQL$
12 *
13 *-------------------------------------------------------------------------
14 */
17 #include <unistd.h>
18 #include <fcntl.h>
19 #include <sys/file.h>
33 /* interval for calling AbsorbFsyncRequests in mdsync */
34 #define FSYNCS_PER_ABSORB 10
36 /* special values for the segno arg to RememberFsyncRequest */
37 #define FORGET_RELATION_FSYNC (InvalidBlockNumber)
38 #define FORGET_DATABASE_FSYNC (InvalidBlockNumber-1)
39 #define UNLINK_RELATION_REQUEST (InvalidBlockNumber-2)
41 /*
42 * On Windows, we have to interpret EACCES as possibly meaning the same as
43 * ENOENT, because if a file is unlinked-but-not-yet-gone on that platform,
44 * that's what you get. Ugh. This code is designed so that we don't
45 * actually believe these cases are okay without further evidence (namely,
46 * a pending fsync request getting revoked ... see mdsync).
47 */
48 #ifndef WIN32
49 #define FILE_POSSIBLY_DELETED(err) ((err) == ENOENT)
50 #else
51 #define FILE_POSSIBLY_DELETED(err) ((err) == ENOENT || (err) == EACCES)
52 #endif
54 /*
55 * The magnetic disk storage manager keeps track of open file
56 * descriptors in its own descriptor pool. This is done to make it
57 * easier to support relations that are larger than the operating
58 * system's file size limit (often 2GBytes). In order to do that,
59 * we break relations up into "segment" files that are each shorter than
60 * the OS file size limit. The segment size is set by the RELSEG_SIZE
61 * configuration constant in pg_config.h.
62 *
63 * On disk, a relation must consist of consecutively numbered segment
64 * files in the pattern
65 * -- Zero or more full segments of exactly RELSEG_SIZE blocks each
66 * -- Exactly one partial segment of size 0 <= size < RELSEG_SIZE blocks
67 * -- Optionally, any number of inactive segments of size 0 blocks.
68 * The full and partial segments are collectively the "active" segments.
69 * Inactive segments are those that once contained data but are currently
70 * not needed because of an mdtruncate() operation. The reason for leaving
71 * them present at size zero, rather than unlinking them, is that other
72 * backends and/or the bgwriter might be holding open file references to
73 * such segments. If the relation expands again after mdtruncate(), such
74 * that a deactivated segment becomes active again, it is important that
75 * such file references still be valid --- else data might get written
76 * out to an unlinked old copy of a segment file that will eventually
77 * disappear.
78 *
79 * The file descriptor pointer (md_fd field) stored in the SMgrRelation
80 * cache is, therefore, just the head of a list of MdfdVec objects, one
81 * per segment. But note the md_fd pointer can be NULL, indicating
82 * relation not open.
83 *
84 * Also note that mdfd_chain == NULL does not necessarily mean the relation
85 * doesn't have another segment after this one; we may just not have
86 * opened the next segment yet. (We could not have "all segments are
87 * in the chain" as an invariant anyway, since another backend could
88 * extend the relation when we weren't looking.) We do not make chain
89 * entries for inactive segments, however; as soon as we find a partial
90 * segment, we assume that any subsequent segments are inactive.
91 *
92 * All MdfdVec objects are palloc'd in the MdCxt memory context.
93 */
96 {
105 /*
106 * In some contexts (currently, standalone backends and the bgwriter process)
107 * we keep track of pending fsync operations: we need to remember all relation
108 * segments that have been written since the last checkpoint, so that we can
109 * fsync them down to disk before completing the next checkpoint. This hash
110 * table remembers the pending operations. We use a hash table mostly as
111 * a convenient way of eliminating duplicate requests.
112 *
113 * We use a similar mechanism to remember no-longer-needed files that can
114 * be deleted after the next checkpoint, but we use a linked list instead of
115 * a hash table, because we don't expect there to be any duplicate requests.
116 *
117 * (Regular backends do not track pending operations locally, but forward
118 * them to the bgwriter.)
119 */
121 {
123 ForkNumber forknum;
130 {
137 {
150 {
153 EXTENSION_CREATE /* create new segments as needed */
156 /* local routines */
158 ExtensionBehavior behavior);
171 /*
172 * mdinit() -- Initialize private state for magnetic disk storage manager.
173 */
174 void
176 {
179 ALLOCSET_DEFAULT_MINSIZE,
180 ALLOCSET_DEFAULT_INITSIZE,
181 ALLOCSET_DEFAULT_MAXSIZE);
183 /*
184 * Create pending-operations hashtable if we need it. Currently, we need
185 * it if we are standalone (not under a postmaster) OR if we are a
186 * bootstrap-mode subprocess of a postmaster (that is, a startup or
187 * bgwriter process).
188 */
190 {
191 HASHCTL hash_ctl;
203 }
204 }
206 /*
207 * In archive recovery, we rely on bgwriter to do fsyncs, but we will have
208 * already created the pendingOpsTable during initialization of the startup
209 * process. Calling this function drops the local pendingOpsTable so that
210 * subsequent requests will be forwarded to bgwriter.
211 */
212 void
214 {
215 /* Perform any pending ops we may have queued up */
219 }
221 /*
222 * mdexists() -- Does the physical file exist?
223 *
224 * Note: this will return true for lingering files, with pending deletions
225 */
226 bool
228 {
229 /*
230 * Close it first, to ensure that we notice if the fork has been unlinked
231 * since we opened it.
232 */
236 }
238 /*
239 * mdcreate() -- Create a new relation on magnetic disk.
240 *
241 * If isRedo is true, it's okay for the relation to exist already.
242 */
243 void
245 {
247 File fd;
259 {
262 /*
263 * During bootstrap, there are cases where a system relation will be
264 * accessed (by internal backend processes) before the bootstrap
265 * script nominally creates it. Therefore, allow the file to exist
266 * already, even if isRedo is not set. (See also mdopen)
267 */
271 {
272 /* be sure to report the error reported by create, not open */
277 }
278 }
287 }
289 /*
290 * mdunlink() -- Unlink a relation.
291 *
292 * Note that we're passed a RelFileNode --- by the time this is called,
293 * there won't be an SMgrRelation hashtable entry anymore.
294 *
295 * Actually, we don't unlink the first segment file of the relation, but
296 * just truncate it to zero length, and record a request to unlink it after
297 * the next checkpoint. Additional segments can be unlinked immediately,
298 * however. Leaving the empty file in place prevents that relfilenode
299 * number from being reused. The scenario this protects us from is:
300 * 1. We delete a relation (and commit, and actually remove its file).
301 * 2. We create a new relation, which by chance gets the same relfilenode as
302 * the just-deleted one (OIDs must've wrapped around for that to happen).
303 * 3. We crash before another checkpoint occurs.
304 * During replay, we would delete the file and then recreate it, which is fine
305 * if the contents of the file were repopulated by subsequent WAL entries.
306 * But if we didn't WAL-log insertions, but instead relied on fsyncing the
307 * file after populating it (as for instance CLUSTER and CREATE INDEX do),
308 * the contents of the file would be lost forever. By leaving the empty file
309 * until after the next checkpoint, we prevent reassignment of the relfilenode
310 * number until it's safe, because relfilenode assignment skips over any
311 * existing file.
312 *
313 * If isRedo is true, it's okay for the relation to be already gone.
314 * Also, we should remove the file immediately instead of queuing a request
315 * for later, since during redo there's no possibility of creating a
316 * conflicting relation.
317 *
318 * Note: any failure should be reported as WARNING not ERROR, because
319 * we are usually not in a transaction anymore when this is called.
320 */
321 void
323 {
327 /*
328 * We have to clean out any pending fsync requests for the doomed
329 * relation, else the next mdsync() will fail.
330 */
335 /*
336 * Delete or truncate the first segment.
337 */
340 else
341 {
342 /* truncate(2) would be easier here, but Windows hasn't got it */
347 {
354 }
355 else
357 }
359 {
364 }
366 /*
367 * Delete any additional segments.
368 */
369 else
370 {
372 BlockNumber segno;
374 /*
375 * Note that because we loop until getting ENOENT, we will correctly
376 * remove all inactive segments as well as active ones.
377 */
379 {
382 {
383 /* ENOENT is expected after the last segment... */
390 }
391 }
393 }
397 /* Register request to unlink first segment later */
400 }
402 /*
403 * mdextend() -- Add a block to the specified relation.
404 *
405 * The semantics are nearly the same as mdwrite(): write at the
406 * specified position. However, this is to be used for the case of
407 * extending a relation (i.e., blocknum is at or beyond the current
408 * EOF). Note that we assume writing a block beyond current EOF
409 * causes intervening file space to become filled with zeroes.
410 */
411 void
414 {
415 off_t seekpos;
419 /* This assert is too expensive to have on normally ... */
420 #ifdef CHECK_WRITE_VS_EXTEND
422 #endif
424 /*
425 * If a relation manages to grow to 2^32-1 blocks, refuse to extend it any
426 * more --- we mustn't create a block whose number actually is
427 * InvalidBlockNumber.
428 */
434 InvalidBlockNumber)));
442 /*
443 * Note: because caller usually obtained blocknum by calling mdnblocks,
444 * which did a seek(SEEK_END), this seek is often redundant and will be
445 * optimized away by fd.c. It's not redundant, however, if there is a
446 * partial page at the end of the file. In that case we want to try to
447 * overwrite the partial page with a full page. It's also not redundant
448 * if bufmgr.c had to dump another buffer of the same file to make room
449 * for the new page's buffer.
450 */
455 blocknum,
459 {
466 /* short write: complain appropriately */
473 }
479 }
481 /*
482 * mdopen() -- Open the specified relation.
483 *
484 * Note we only open the first segment, when there are multiple segments.
485 *
486 * If first segment is not present, either ereport or return NULL according
487 * to "behavior". We treat EXTENSION_CREATE the same as EXTENSION_FAIL;
488 * EXTENSION_CREATE means it's OK to extend an existing relation, not to
489 * invent one out of whole cloth.
490 */
493 {
496 File fd;
498 /* No work if already open */
507 {
508 /*
509 * During bootstrap, there are cases where a system relation will be
510 * accessed (by internal backend processes) before the bootstrap
511 * script nominally creates it. Therefore, accept mdopen() as a
512 * substitute for mdcreate() in bootstrap mode only. (See mdcreate)
513 */
517 {
520 {
523 }
527 }
528 }
540 }
542 /*
543 * mdclose() -- Close the specified relation, if it isn't closed already.
544 */
545 void
547 {
550 /* No work if already closed */
557 {
560 /* if not closed already */
563 /* Now free vector */
566 }
567 }
569 /*
570 * mdprefetch() -- Initiate asynchronous read of the specified block of a relation
571 */
572 void
574 {
575 #ifdef USE_PREFETCH
576 off_t seekpos;
587 }
590 /*
591 * mdread() -- Read the specified block from a relation.
592 */
593 void
596 {
597 off_t seekpos;
624 nbytes,
625 BLCKSZ);
628 {
635 /*
636 * Short read: we are at or past EOF, or we read a partial block at
637 * EOF. Normally this is an error; upper levels should never try to
638 * read a nonexistent block. However, if zero_damaged_pages is ON or
639 * we are InRecovery, we should instead return zeroes without
640 * complaining. This allows, for example, the case of trying to
641 * update a block that was later truncated away.
642 */
645 else
651 }
652 }
654 /*
655 * mdwrite() -- Write the supplied block at the appropriate location.
656 *
657 * This is to be used only for updating already-existing blocks of a
658 * relation (ie, those before the current EOF). To extend a relation,
659 * use mdextend().
660 */
661 void
664 {
665 off_t seekpos;
669 /* This assert is too expensive to have on normally ... */
670 #ifdef CHECK_WRITE_VS_EXTEND
672 #endif
697 nbytes,
698 BLCKSZ);
701 {
707 /* short write: complain appropriately */
711 blocknum,
715 }
719 }
721 /*
722 * mdnblocks() -- Get the number of blocks stored in a relation.
723 *
724 * Important side effect: all active segments of the relation are opened
725 * and added to the mdfd_chain list. If this routine has not been
726 * called, then only segments up to the last one actually touched
727 * are present in the chain.
728 */
729 BlockNumber
731 {
733 BlockNumber nblocks;
736 /*
737 * Skip through any segments that aren't the last one, to avoid redundant
738 * seeks on them. We have previously verified that these segments are
739 * exactly RELSEG_SIZE long, and it's useless to recheck that each time.
740 *
741 * NOTE: this assumption could only be wrong if another backend has
742 * truncated the relation. We rely on higher code levels to handle that
743 * scenario by closing and re-opening the md fd, which is handled via
744 * relcache flush. (Since the bgwriter doesn't participate in relcache
745 * flush, it could have segment chain entries for inactive segments;
746 * that's OK because the bgwriter never needs to compute relation size.)
747 */
749 {
750 segno++;
752 }
755 {
762 /*
763 * If segment is exactly RELSEG_SIZE, advance to next one.
764 */
765 segno++;
768 {
769 /*
770 * Because we pass O_CREAT, we will create the next segment (with
771 * zero length) immediately, if the last segment is of length
772 * RELSEG_SIZE. While perhaps not strictly necessary, this keeps
773 * the logic simple.
774 */
780 segno,
782 }
785 }
786 }
788 /*
789 * mdtruncate() -- Truncate relation to specified number of blocks.
790 */
791 void
794 {
796 BlockNumber curnblk;
797 BlockNumber priorblocks;
799 /*
800 * NOTE: mdnblocks makes sure we have opened all active segments, so that
801 * truncation loop will get them all!
802 */
805 {
806 /* Bogus request ... but no complaint if InRecovery */
813 }
821 {
825 {
826 /*
827 * This segment is no longer active (and has already been unlinked
828 * from the mdfd_chain). We truncate the file, but do not delete
829 * it, for reasons explained in the header comments.
830 */
836 nblocks)));
841 * segment */
843 }
845 {
846 /*
847 * This is the last segment we want to keep. Truncate the file to
848 * the right length, and clear chain link that points to any
849 * remaining segments (which we shall zap). NOTE: if nblocks is
850 * exactly a multiple K of RELSEG_SIZE, we will truncate the K+1st
851 * segment to 0 length but keep it. This adheres to the invariant
852 * given in the header comments.
853 */
861 nblocks)));
866 }
867 else
868 {
869 /*
870 * We still need this segment and 0 or more blocks beyond it, so
871 * nothing to do here.
872 */
874 }
876 }
877 }
879 /*
880 * mdimmedsync() -- Immediately sync a relation to stable storage.
881 *
882 * Note that only writes already issued are synced; this routine knows
883 * nothing of dirty buffers that may exist inside the buffer manager.
884 */
885 void
887 {
889 BlockNumber curnblk;
891 /*
892 * NOTE: mdnblocks makes sure we have opened all active segments, so that
893 * fsync loop will get them all!
894 */
900 {
908 }
909 }
911 /*
912 * mdsync() -- Sync previous writes to stable storage.
913 */
914 void
916 {
919 HASH_SEQ_STATUS hstat;
923 /*
924 * This is only called during checkpoints, and checkpoints should only
925 * occur in processes that have created a pendingOpsTable.
926 */
930 /*
931 * If we are in the bgwriter, the sync had better include all fsync
932 * requests that were queued by backends up to this point. The tightest
933 * race condition that could occur is that a buffer that must be written
934 * and fsync'd for the checkpoint could have been dumped by a backend just
935 * before it was visited by BufferSync(). We know the backend will have
936 * queued an fsync request before clearing the buffer's dirtybit, so we
937 * are safe as long as we do an Absorb after completing BufferSync().
938 */
941 /*
942 * To avoid excess fsync'ing (in the worst case, maybe a never-terminating
943 * checkpoint), we want to ignore fsync requests that are entered into the
944 * hashtable after this point --- they should be processed next time,
945 * instead. We use mdsync_cycle_ctr to tell old entries apart from new
946 * ones: new ones will have cycle_ctr equal to the incremented value of
947 * mdsync_cycle_ctr.
948 *
949 * In normal circumstances, all entries present in the table at this point
950 * will have cycle_ctr exactly equal to the current (about to be old)
951 * value of mdsync_cycle_ctr. However, if we fail partway through the
952 * fsync'ing loop, then older values of cycle_ctr might remain when we
953 * come back here to try again. Repeated checkpoint failures would
954 * eventually wrap the counter around to the point where an old entry
955 * might appear new, causing us to skip it, possibly allowing a checkpoint
956 * to succeed that should not have. To forestall wraparound, any time the
957 * previous mdsync() failed to complete, run through the table and
958 * forcibly set cycle_ctr = mdsync_cycle_ctr.
959 *
960 * Think not to merge this loop with the main loop, as the problem is
961 * exactly that that loop may fail before having visited all the entries.
962 * From a performance point of view it doesn't matter anyway, as this path
963 * will never be taken in a system that's functioning normally.
964 */
966 {
967 /* prior try failed, so update any stale cycle_ctr values */
970 {
972 }
973 }
975 /* Advance counter so that new hashtable entries are distinguishable */
976 mdsync_cycle_ctr++;
978 /* Set flag to detect failure if we don't reach the end of the loop */
981 /* Now scan the hashtable for fsync requests to process */
985 {
986 /*
987 * If the entry is new then don't process it this time. Note that
988 * "continue" bypasses the hash-remove call at the bottom of the loop.
989 */
993 /* Else assert we haven't missed it */
996 /*
997 * If fsync is off then we don't have to bother opening the file at
998 * all. (We delay checking until this point so that changing fsync on
999 * the fly behaves sensibly.) Also, if the entry is marked canceled,
1000 * fall through to delete it.
1001 */
1003 {
1006 /*
1007 * If in bgwriter, we want to absorb pending requests every so
1008 * often to prevent overflow of the fsync request queue. It is
1009 * unspecified whether newly-added entries will be visited by
1010 * hash_seq_search, but we don't care since we don't need to
1011 * process them anyway.
1012 */
1014 {
1017 }
1019 /*
1020 * The fsync table could contain requests to fsync segments that
1021 * have been deleted (unlinked) by the time we get to them. Rather
1022 * than just hoping an ENOENT (or EACCES on Windows) error can be
1023 * ignored, what we do on error is absorb pending requests and
1024 * then retry. Since mdunlink() queues a "revoke" message before
1025 * actually unlinking, the fsync request is guaranteed to be
1026 * marked canceled after the absorb if it really was this case.
1027 * DROP DATABASE likewise has to tell us to forget fsync requests
1028 * before it starts deletions.
1029 */
1031 {
1032 SMgrRelation reln;
1036 /*
1037 * Find or create an smgr hash entry for this relation. This
1038 * may seem a bit unclean -- md calling smgr? But it's really
1039 * the best solution. It ensures that the open file reference
1040 * isn't permanently leaked if we get an error here. (You may
1041 * say "but an unreferenced SMgrRelation is still a leak!" Not
1042 * really, because the only case in which a checkpoint is done
1043 * by a process that isn't about to shut down is in the
1044 * bgwriter, and it will periodically do smgrcloseall(). This
1045 * fact justifies our not closing the reln in the success path
1046 * either, which is a good thing since in non-bgwriter cases
1047 * we couldn't safely do that.) Furthermore, in many cases
1048 * the relation will have been dirtied through this same smgr
1049 * relation, and so we can save a file open/close cycle.
1050 */
1053 /*
1054 * It is possible that the relation has been dropped or
1055 * truncated since the fsync request was entered. Therefore,
1056 * allow ENOENT, but only if we didn't fail already on this
1057 * file. This applies both during _mdfd_getseg() and during
1058 * FileSync, since fd.c might have closed the file behind our
1059 * back.
1060 */
1068 /*
1069 * XXX is there any point in allowing more than one retry?
1070 * Don't see one at the moment, but easy to change the test
1071 * here if so.
1072 */
1080 else
1087 /*
1088 * Absorb incoming requests and check to see if canceled.
1089 */
1096 }
1098 /*
1099 * If we get here, either we fsync'd successfully, or we don't have to
1100 * because enableFsync is off, or the entry is (now) marked canceled.
1101 * Okay to delete it.
1102 */
1108 /* Flag successful completion of mdsync */
1110 }
1112 /*
1113 * mdpreckpt() -- Do pre-checkpoint work
1114 *
1115 * To distinguish unlink requests that arrived before this checkpoint
1116 * started from those that arrived during the checkpoint, we use a cycle
1117 * counter similar to the one we use for fsync requests. That cycle
1118 * counter is incremented here.
1119 *
1120 * This must be called *before* the checkpoint REDO point is determined.
1121 * That ensures that we won't delete files too soon.
1122 *
1123 * Note that we can't do anything here that depends on the assumption
1124 * that the checkpoint will be completed.
1125 */
1126 void
1128 {
1131 /*
1132 * In case the prior checkpoint wasn't completed, stamp all entries in the
1133 * list with the current cycle counter. Anything that's in the list at
1134 * the start of checkpoint can surely be deleted after the checkpoint is
1135 * finished, regardless of when the request was made.
1136 */
1138 {
1142 }
1144 /*
1145 * Any unlink requests arriving after this point will be assigned the next
1146 * cycle counter, and won't be unlinked until next checkpoint.
1147 */
1148 mdckpt_cycle_ctr++;
1149 }
1151 /*
1152 * mdpostckpt() -- Do post-checkpoint work
1153 *
1154 * Remove any lingering files that can now be safely removed.
1155 */
1156 void
1158 {
1160 {
1164 /*
1165 * New entries are appended to the end, so if the entry is new we've
1166 * reached the end of old entries.
1167 */
1171 /* Else assert we haven't missed it */
1174 /* Unlink the file */
1177 {
1178 /*
1179 * There's a race condition, when the database is dropped at the
1180 * same time that we process the pending unlink requests. If the
1181 * DROP DATABASE deletes the file before we do, we will get ENOENT
1182 * here. rmtree() also has to ignore ENOENT errors, to deal with
1183 * the possibility that we delete the file first.
1184 */
1189 }
1194 }
1195 }
1197 /*
1198 * register_dirty_segment() -- Mark a relation segment as needing fsync
1199 *
1200 * If there is a local pending-ops table, just make an entry in it for
1201 * mdsync to process later. Otherwise, try to pass off the fsync request
1202 * to the background writer process. If that fails, just do the fsync
1203 * locally before returning (we expect this will not happen often enough
1204 * to be a performance problem).
1205 */
1206 static void
1208 {
1210 {
1211 /* push it into local pending-ops table */
1213 }
1214 else
1215 {
1225 }
1226 }
1228 /*
1229 * register_unlink() -- Schedule a file to be deleted after next checkpoint
1230 *
1231 * As with register_dirty_segment, this could involve either a local or
1232 * a remote pending-ops table.
1233 */
1234 static void
1236 {
1238 {
1239 /* push it into local pending-ops table */
1241 }
1242 else
1243 {
1244 /*
1245 * Notify the bgwriter about it. If we fail to queue the request
1246 * message, we have to sleep and try again, because we can't simply
1247 * delete the file now. Ugly, but hopefully won't happen often.
1248 *
1249 * XXX should we just leave the file orphaned instead?
1250 */
1253 UNLINK_RELATION_REQUEST))
1255 }
1256 }
1258 /*
1259 * RememberFsyncRequest() -- callback from bgwriter side of fsync request
1260 *
1261 * We stuff most fsync requests into the local hash table for execution
1262 * during the bgwriter's next checkpoint. UNLINK requests go into a
1263 * separate linked list, however, because they get processed separately.
1264 *
1265 * The range of possible segment numbers is way less than the range of
1266 * BlockNumber, so we can reserve high values of segno for special purposes.
1267 * We define three:
1268 * - FORGET_RELATION_FSYNC means to cancel pending fsyncs for a relation
1269 * - FORGET_DATABASE_FSYNC means to cancel pending fsyncs for a whole database
1270 * - UNLINK_RELATION_REQUEST is a request to delete the file after the next
1271 * checkpoint.
1272 *
1273 * (Handling the FORGET_* requests is a tad slow because the hash table has
1274 * to be searched linearly, but it doesn't seem worth rethinking the table
1275 * structure for them.)
1276 */
1277 void
1279 {
1283 {
1284 /* Remove any pending requests for the entire relation */
1285 HASH_SEQ_STATUS hstat;
1290 {
1293 {
1294 /* Okay, cancel this entry */
1296 }
1297 }
1298 }
1300 {
1301 /* Remove any pending requests for the entire database */
1302 HASH_SEQ_STATUS hstat;
1308 /* Remove fsync requests */
1311 {
1313 {
1314 /* Okay, cancel this entry */
1316 }
1317 }
1319 /* Remove unlink requests */
1322 {
1327 {
1330 }
1331 else
1333 }
1334 }
1336 {
1337 /* Unlink request: put it in the linked list */
1348 }
1349 else
1350 {
1351 /* Normal case: enter a request to fsync this segment */
1352 PendingOperationTag key;
1356 /* ensure any pad bytes in the hash key are zeroed */
1364 HASH_ENTER,
1366 /* if new or previously canceled entry, initialize it */
1368 {
1371 }
1373 /*
1374 * NB: it's intentional that we don't change cycle_ctr if the entry
1375 * already exists. The fsync request must be treated as old, even
1376 * though the new request will be satisfied too by any subsequent
1377 * fsync.
1378 *
1379 * However, if the entry is present but is marked canceled, we should
1380 * act just as though it wasn't there. The only case where this could
1381 * happen would be if a file had been deleted, we received but did not
1382 * yet act on the cancel request, and the same relfilenode was then
1383 * assigned to a new file. We mustn't lose the new request, but it
1384 * should be considered new not old.
1385 */
1386 }
1387 }
1389 /*
1390 * ForgetRelationFsyncRequests -- forget any fsyncs for a rel
1391 */
1392 void
1394 {
1396 {
1397 /* standalone backend or startup process: fsync state is local */
1399 }
1401 {
1402 /*
1403 * Notify the bgwriter about it. If we fail to queue the revoke
1404 * message, we have to sleep and try again ... ugly, but hopefully
1405 * won't happen often.
1406 *
1407 * XXX should we CHECK_FOR_INTERRUPTS in this loop? Escaping with an
1408 * error would leave the no-longer-used file still present on disk,
1409 * which would be bad, so I'm inclined to assume that the bgwriter
1410 * will always empty the queue soon.
1411 */
1415 /*
1416 * Note we don't wait for the bgwriter to actually absorb the revoke
1417 * message; see mdsync() for the implications.
1418 */
1419 }
1420 }
1422 /*
1423 * ForgetDatabaseFsyncRequests -- forget any fsyncs and unlinks for a DB
1424 */
1425 void
1427 {
1428 RelFileNode rnode;
1435 {
1436 /* standalone backend or startup process: fsync state is local */
1438 }
1440 {
1441 /* see notes in ForgetRelationFsyncRequests */
1443 FORGET_DATABASE_FSYNC))
1445 }
1446 }
1449 /*
1450 * _fdvec_alloc() -- Make a MdfdVec object.
1451 */
1454 {
1456 }
1458 /*
1459 * Open the specified segment of the relation,
1460 * and make a MdfdVec object for it. Returns NULL on failure.
1461 */
1465 {
1474 {
1475 /* be sure we have enough space for the '.segno' */
1479 }
1480 else
1483 /* open the file */
1491 /* allocate an mdfdvec entry for it */
1494 /* fill the entry */
1500 /* all done */
1502 }
1504 /*
1505 * _mdfd_getseg() -- Find the segment of the relation holding the
1506 * specified block.
1507 *
1508 * If the segment doesn't exist, we ereport, return NULL, or create the
1509 * segment, according to "behavior". Note: isTemp need only be correct
1510 * in the EXTENSION_CREATE case.
1511 */
1515 {
1517 BlockNumber targetseg;
1518 BlockNumber nextsegno;
1525 {
1529 {
1530 /*
1531 * Normally we will create new segments only if authorized by the
1532 * caller (i.e., we are doing mdextend()). But when doing WAL
1533 * recovery, create segments anyway; this allows cases such as
1534 * replaying WAL data that has a write into a high-numbered
1535 * segment of a relation that was later deleted. We want to go
1536 * ahead and create the segments so we can finish out the replay.
1537 *
1538 * We have to maintain the invariant that segments before the last
1539 * active segment are of size RELSEG_SIZE; therefore, pad them out
1540 * with zeroes if needed. (This only matters if caller is
1541 * extending the relation discontiguously, but that can happen in
1542 * hash indexes.)
1543 */
1545 {
1547 {
1554 }
1556 }
1557 else
1558 {
1559 /* We won't create segment if not existent */
1561 }
1563 {
1570 nextsegno,
1572 blkno)));
1573 }
1574 }
1576 }
1578 }
1580 /*
1581 * Get number of blocks present in a single disk file
1582 */
1583 static BlockNumber
1585 {
1586 off_t len;
1594 /* note that this calculation will ignore any partial block at EOF */
1596 }