| blob | b8ae7e28065cb47abca1d827bb87521228e03f01 |
1 /*-------------------------------------------------------------------------
2 *
3 * md.c
4 * This code manages relations that reside on magnetic disk.
5 *
6 * Portions Copyright (c) 1996-2008, PostgreSQL Global Development Group
7 * Portions Copyright (c) 1994, Regents of the University of California
8 *
9 *
10 * IDENTIFICATION
11 * $PostgreSQL$
12 *
13 *-------------------------------------------------------------------------
14 */
17 #include <unistd.h>
18 #include <fcntl.h>
19 #include <sys/file.h>
32 /* interval for calling AbsorbFsyncRequests in mdsync */
33 #define FSYNCS_PER_ABSORB 10
35 /* special values for the segno arg to RememberFsyncRequest */
36 #define FORGET_RELATION_FSYNC (InvalidBlockNumber)
37 #define FORGET_DATABASE_FSYNC (InvalidBlockNumber-1)
38 #define UNLINK_RELATION_REQUEST (InvalidBlockNumber-2)
40 /*
41 * On Windows, we have to interpret EACCES as possibly meaning the same as
42 * ENOENT, because if a file is unlinked-but-not-yet-gone on that platform,
43 * that's what you get. Ugh. This code is designed so that we don't
44 * actually believe these cases are okay without further evidence (namely,
45 * a pending fsync request getting revoked ... see mdsync).
46 */
47 #ifndef WIN32
48 #define FILE_POSSIBLY_DELETED(err) ((err) == ENOENT)
49 #else
50 #define FILE_POSSIBLY_DELETED(err) ((err) == ENOENT || (err) == EACCES)
51 #endif
53 /*
54 * The magnetic disk storage manager keeps track of open file
55 * descriptors in its own descriptor pool. This is done to make it
56 * easier to support relations that are larger than the operating
57 * system's file size limit (often 2GBytes). In order to do that,
58 * we break relations up into "segment" files that are each shorter than
59 * the OS file size limit. The segment size is set by the RELSEG_SIZE
60 * configuration constant in pg_config.h.
61 *
62 * On disk, a relation must consist of consecutively numbered segment
63 * files in the pattern
64 * -- Zero or more full segments of exactly RELSEG_SIZE blocks each
65 * -- Exactly one partial segment of size 0 <= size < RELSEG_SIZE blocks
66 * -- Optionally, any number of inactive segments of size 0 blocks.
67 * The full and partial segments are collectively the "active" segments.
68 * Inactive segments are those that once contained data but are currently
69 * not needed because of an mdtruncate() operation. The reason for leaving
70 * them present at size zero, rather than unlinking them, is that other
71 * backends and/or the bgwriter might be holding open file references to
72 * such segments. If the relation expands again after mdtruncate(), such
73 * that a deactivated segment becomes active again, it is important that
74 * such file references still be valid --- else data might get written
75 * out to an unlinked old copy of a segment file that will eventually
76 * disappear.
77 *
78 * The file descriptor pointer (md_fd field) stored in the SMgrRelation
79 * cache is, therefore, just the head of a list of MdfdVec objects, one
80 * per segment. But note the md_fd pointer can be NULL, indicating
81 * relation not open.
82 *
83 * Also note that mdfd_chain == NULL does not necessarily mean the relation
84 * doesn't have another segment after this one; we may just not have
85 * opened the next segment yet. (We could not have "all segments are
86 * in the chain" as an invariant anyway, since another backend could
87 * extend the relation when we weren't looking.) We do not make chain
88 * entries for inactive segments, however; as soon as we find a partial
89 * segment, we assume that any subsequent segments are inactive.
90 *
91 * All MdfdVec objects are palloc'd in the MdCxt memory context.
92 */
95 {
104 /*
105 * In some contexts (currently, standalone backends and the bgwriter process)
106 * we keep track of pending fsync operations: we need to remember all relation
107 * segments that have been written since the last checkpoint, so that we can
108 * fsync them down to disk before completing the next checkpoint. This hash
109 * table remembers the pending operations. We use a hash table mostly as
110 * a convenient way of eliminating duplicate requests.
111 *
112 * We use a similar mechanism to remember no-longer-needed files that can
113 * be deleted after the next checkpoint, but we use a linked list instead of
114 * a hash table, because we don't expect there to be any duplicate requests.
115 *
116 * (Regular backends do not track pending operations locally, but forward
117 * them to the bgwriter.)
118 */
120 {
122 ForkNumber forknum;
129 {
136 {
149 {
152 EXTENSION_CREATE /* create new segments as needed */
155 /* local routines */
157 ExtensionBehavior behavior);
170 /*
171 * mdinit() -- Initialize private state for magnetic disk storage manager.
172 */
173 void
175 {
178 ALLOCSET_DEFAULT_MINSIZE,
179 ALLOCSET_DEFAULT_INITSIZE,
180 ALLOCSET_DEFAULT_MAXSIZE);
182 /*
183 * Create pending-operations hashtable if we need it. Currently, we need
184 * it if we are standalone (not under a postmaster) OR if we are a
185 * bootstrap-mode subprocess of a postmaster (that is, a startup or
186 * bgwriter process).
187 */
189 {
190 HASHCTL hash_ctl;
202 }
203 }
205 /*
206 * mdexists() -- Does the physical file exist?
207 *
208 * Note: this will return true for lingering files, with pending deletions
209 */
210 bool
212 {
213 /*
214 * Close it first, to ensure that we notice if the fork has been
215 * unlinked since we opened it.
216 */
220 }
222 /*
223 * mdcreate() -- Create a new relation on magnetic disk.
224 *
225 * If isRedo is true, it's okay for the relation to exist already.
226 */
227 void
229 {
231 File fd;
243 {
246 /*
247 * During bootstrap, there are cases where a system relation will be
248 * accessed (by internal backend processes) before the bootstrap
249 * script nominally creates it. Therefore, allow the file to exist
250 * already, even if isRedo is not set. (See also mdopen)
251 */
255 {
257 /* be sure to report the error reported by create, not open */
265 forkNum)));
266 }
267 }
276 }
278 /*
279 * mdunlink() -- Unlink a relation.
280 *
281 * Note that we're passed a RelFileNode --- by the time this is called,
282 * there won't be an SMgrRelation hashtable entry anymore.
283 *
284 * Actually, we don't unlink the first segment file of the relation, but
285 * just truncate it to zero length, and record a request to unlink it after
286 * the next checkpoint. Additional segments can be unlinked immediately,
287 * however. Leaving the empty file in place prevents that relfilenode
288 * number from being reused. The scenario this protects us from is:
289 * 1. We delete a relation (and commit, and actually remove its file).
290 * 2. We create a new relation, which by chance gets the same relfilenode as
291 * the just-deleted one (OIDs must've wrapped around for that to happen).
292 * 3. We crash before another checkpoint occurs.
293 * During replay, we would delete the file and then recreate it, which is fine
294 * if the contents of the file were repopulated by subsequent WAL entries.
295 * But if we didn't WAL-log insertions, but instead relied on fsyncing the
296 * file after populating it (as for instance CLUSTER and CREATE INDEX do),
297 * the contents of the file would be lost forever. By leaving the empty file
298 * until after the next checkpoint, we prevent reassignment of the relfilenode
299 * number until it's safe, because relfilenode assignment skips over any
300 * existing file.
301 *
302 * If isRedo is true, it's okay for the relation to be already gone.
303 * Also, we should remove the file immediately instead of queuing a request
304 * for later, since during redo there's no possibility of creating a
305 * conflicting relation.
306 *
307 * Note: any failure should be reported as WARNING not ERROR, because
308 * we are usually not in a transaction anymore when this is called.
309 */
310 void
312 {
316 /*
317 * We have to clean out any pending fsync requests for the doomed
318 * relation, else the next mdsync() will fail.
319 */
324 /*
325 * Delete or truncate the first segment.
326 */
329 else
330 {
331 /* truncate(2) would be easier here, but Windows hasn't got it */
336 {
343 }
344 else
346 }
348 {
356 forkNum)));
357 }
359 /*
360 * Delete any additional segments.
361 */
362 else
363 {
365 BlockNumber segno;
367 /*
368 * Note that because we loop until getting ENOENT, we will correctly
369 * remove all inactive segments as well as active ones.
370 */
372 {
375 {
376 /* ENOENT is expected after the last segment... */
381 segno,
385 forkNum)));
387 }
388 }
390 }
394 /* Register request to unlink first segment later */
397 }
399 /*
400 * mdextend() -- Add a block to the specified relation.
401 *
402 * The semantics are nearly the same as mdwrite(): write at the
403 * specified position. However, this is to be used for the case of
404 * extending a relation (i.e., blocknum is at or beyond the current
405 * EOF). Note that we assume writing a block beyond current EOF
406 * causes intervening file space to become filled with zeroes.
407 */
408 void
411 {
412 off_t seekpos;
416 /* This assert is too expensive to have on normally ... */
417 #ifdef CHECK_WRITE_VS_EXTEND
419 #endif
421 /*
422 * If a relation manages to grow to 2^32-1 blocks, refuse to extend it any
423 * more --- we mustn't create a block whose number actually is
424 * InvalidBlockNumber.
425 */
433 forknum,
434 InvalidBlockNumber)));
441 /*
442 * Note: because caller usually obtained blocknum by calling mdnblocks,
443 * which did a seek(SEEK_END), this seek is often redundant and will be
444 * optimized away by fd.c. It's not redundant, however, if there is a
445 * partial page at the end of the file. In that case we want to try to
446 * overwrite the partial page with a full page. It's also not redundant
447 * if bufmgr.c had to dump another buffer of the same file to make room
448 * for the new page's buffer.
449 */
454 blocknum,
458 forknum)));
461 {
469 forknum),
471 /* short write: complain appropriately */
478 forknum,
481 }
487 }
489 /*
490 * mdopen() -- Open the specified relation.
491 *
492 * Note we only open the first segment, when there are multiple segments.
493 *
494 * If first segment is not present, either ereport or return NULL according
495 * to "behavior". We treat EXTENSION_CREATE the same as EXTENSION_FAIL;
496 * EXTENSION_CREATE means it's OK to extend an existing relation, not to
497 * invent one out of whole cloth.
498 */
501 {
504 File fd;
506 /* No work if already open */
515 {
516 /*
517 * During bootstrap, there are cases where a system relation will be
518 * accessed (by internal backend processes) before the bootstrap
519 * script nominally creates it. Therefore, accept mdopen() as a
520 * substitute for mdcreate() in bootstrap mode only. (See mdcreate)
521 */
525 {
536 forknum)));
537 }
538 }
550 }
552 /*
553 * mdclose() -- Close the specified relation, if it isn't closed already.
554 */
555 void
557 {
560 /* No work if already closed */
567 {
570 /* if not closed already */
573 /* Now free vector */
576 }
577 }
579 /*
580 * mdread() -- Read the specified block from a relation.
581 */
582 void
585 {
586 off_t seekpos;
599 blocknum,
603 forknum)));
606 {
611 blocknum,
615 forknum)));
617 /*
618 * Short read: we are at or past EOF, or we read a partial block at
619 * EOF. Normally this is an error; upper levels should never try to
620 * read a nonexistent block. However, if zero_damaged_pages is ON or
621 * we are InRecovery, we should instead return zeroes without
622 * complaining. This allows, for example, the case of trying to
623 * update a block that was later truncated away.
624 */
627 else
631 blocknum,
635 forknum,
637 }
638 }
640 /*
641 * mdwrite() -- Write the supplied block at the appropriate location.
642 *
643 * This is to be used only for updating already-existing blocks of a
644 * relation (ie, those before the current EOF). To extend a relation,
645 * use mdextend().
646 */
647 void
650 {
651 off_t seekpos;
655 /* This assert is too expensive to have on normally ... */
656 #ifdef CHECK_WRITE_VS_EXTEND
658 #endif
669 blocknum,
673 forknum)));
676 {
681 blocknum,
685 forknum)));
686 /* short write: complain appropriately */
690 blocknum,
694 forknum,
697 }
701 }
703 /*
704 * mdnblocks() -- Get the number of blocks stored in a relation.
705 *
706 * Important side effect: all active segments of the relation are opened
707 * and added to the mdfd_chain list. If this routine has not been
708 * called, then only segments up to the last one actually touched
709 * are present in the chain.
710 */
711 BlockNumber
713 {
715 BlockNumber nblocks;
718 /*
719 * Skip through any segments that aren't the last one, to avoid redundant
720 * seeks on them. We have previously verified that these segments are
721 * exactly RELSEG_SIZE long, and it's useless to recheck that each time.
722 *
723 * NOTE: this assumption could only be wrong if another backend has
724 * truncated the relation. We rely on higher code levels to handle that
725 * scenario by closing and re-opening the md fd, which is handled via
726 * relcache flush. (Since the bgwriter doesn't participate in relcache
727 * flush, it could have segment chain entries for inactive segments;
728 * that's OK because the bgwriter never needs to compute relation size.)
729 */
731 {
732 segno++;
734 }
737 {
744 /*
745 * If segment is exactly RELSEG_SIZE, advance to next one.
746 */
747 segno++;
750 {
751 /*
752 * Because we pass O_CREAT, we will create the next segment (with
753 * zero length) immediately, if the last segment is of length
754 * RELSEG_SIZE. While perhaps not strictly necessary, this keeps
755 * the logic simple.
756 */
762 segno,
766 forknum)));
767 }
770 }
771 }
773 /*
774 * mdtruncate() -- Truncate relation to specified number of blocks.
775 */
776 void
779 {
781 BlockNumber curnblk;
782 BlockNumber priorblocks;
784 /*
785 * NOTE: mdnblocks makes sure we have opened all active segments, so that
786 * truncation loop will get them all!
787 */
790 {
791 /* Bogus request ... but no complaint if InRecovery */
799 forknum,
801 }
809 {
813 {
814 /*
815 * This segment is no longer active (and has already been unlinked
816 * from the mdfd_chain). We truncate the file, but do not delete
817 * it, for reasons explained in the header comments.
818 */
826 forknum,
827 nblocks)));
833 }
835 {
836 /*
837 * This is the last segment we want to keep. Truncate the file to
838 * the right length, and clear chain link that points to any
839 * remaining segments (which we shall zap). NOTE: if nblocks is
840 * exactly a multiple K of RELSEG_SIZE, we will truncate the K+1st
841 * segment to 0 length but keep it. This adheres to the invariant
842 * given in the header comments.
843 */
853 forknum,
854 nblocks)));
859 }
860 else
861 {
862 /*
863 * We still need this segment and 0 or more blocks beyond it, so
864 * nothing to do here.
865 */
867 }
869 }
870 }
872 /*
873 * mdimmedsync() -- Immediately sync a relation to stable storage.
874 *
875 * Note that only writes already issued are synced; this routine knows
876 * nothing of dirty buffers that may exist inside the buffer manager.
877 */
878 void
880 {
882 BlockNumber curnblk;
884 /*
885 * NOTE: mdnblocks makes sure we have opened all active segments, so that
886 * fsync loop will get them all!
887 */
893 {
902 forknum)));
904 }
905 }
907 /*
908 * mdsync() -- Sync previous writes to stable storage.
909 */
910 void
912 {
915 HASH_SEQ_STATUS hstat;
919 /*
920 * This is only called during checkpoints, and checkpoints should only
921 * occur in processes that have created a pendingOpsTable.
922 */
926 /*
927 * If we are in the bgwriter, the sync had better include all fsync
928 * requests that were queued by backends up to this point. The tightest
929 * race condition that could occur is that a buffer that must be written
930 * and fsync'd for the checkpoint could have been dumped by a backend just
931 * before it was visited by BufferSync(). We know the backend will have
932 * queued an fsync request before clearing the buffer's dirtybit, so we
933 * are safe as long as we do an Absorb after completing BufferSync().
934 */
937 /*
938 * To avoid excess fsync'ing (in the worst case, maybe a never-terminating
939 * checkpoint), we want to ignore fsync requests that are entered into the
940 * hashtable after this point --- they should be processed next time,
941 * instead. We use mdsync_cycle_ctr to tell old entries apart from new
942 * ones: new ones will have cycle_ctr equal to the incremented value of
943 * mdsync_cycle_ctr.
944 *
945 * In normal circumstances, all entries present in the table at this point
946 * will have cycle_ctr exactly equal to the current (about to be old)
947 * value of mdsync_cycle_ctr. However, if we fail partway through the
948 * fsync'ing loop, then older values of cycle_ctr might remain when we
949 * come back here to try again. Repeated checkpoint failures would
950 * eventually wrap the counter around to the point where an old entry
951 * might appear new, causing us to skip it, possibly allowing a checkpoint
952 * to succeed that should not have. To forestall wraparound, any time the
953 * previous mdsync() failed to complete, run through the table and
954 * forcibly set cycle_ctr = mdsync_cycle_ctr.
955 *
956 * Think not to merge this loop with the main loop, as the problem is
957 * exactly that that loop may fail before having visited all the entries.
958 * From a performance point of view it doesn't matter anyway, as this path
959 * will never be taken in a system that's functioning normally.
960 */
962 {
963 /* prior try failed, so update any stale cycle_ctr values */
966 {
968 }
969 }
971 /* Advance counter so that new hashtable entries are distinguishable */
972 mdsync_cycle_ctr++;
974 /* Set flag to detect failure if we don't reach the end of the loop */
977 /* Now scan the hashtable for fsync requests to process */
981 {
982 /*
983 * If the entry is new then don't process it this time. Note that
984 * "continue" bypasses the hash-remove call at the bottom of the loop.
985 */
989 /* Else assert we haven't missed it */
992 /*
993 * If fsync is off then we don't have to bother opening the file at
994 * all. (We delay checking until this point so that changing fsync on
995 * the fly behaves sensibly.) Also, if the entry is marked canceled,
996 * fall through to delete it.
997 */
999 {
1002 /*
1003 * If in bgwriter, we want to absorb pending requests every so
1004 * often to prevent overflow of the fsync request queue. It is
1005 * unspecified whether newly-added entries will be visited by
1006 * hash_seq_search, but we don't care since we don't need to
1007 * process them anyway.
1008 */
1010 {
1013 }
1015 /*
1016 * The fsync table could contain requests to fsync segments that
1017 * have been deleted (unlinked) by the time we get to them. Rather
1018 * than just hoping an ENOENT (or EACCES on Windows) error can be
1019 * ignored, what we do on error is absorb pending requests and
1020 * then retry. Since mdunlink() queues a "revoke" message before
1021 * actually unlinking, the fsync request is guaranteed to be
1022 * marked canceled after the absorb if it really was this case.
1023 * DROP DATABASE likewise has to tell us to forget fsync requests
1024 * before it starts deletions.
1025 */
1027 {
1028 SMgrRelation reln;
1031 /*
1032 * Find or create an smgr hash entry for this relation. This
1033 * may seem a bit unclean -- md calling smgr? But it's really
1034 * the best solution. It ensures that the open file reference
1035 * isn't permanently leaked if we get an error here. (You may
1036 * say "but an unreferenced SMgrRelation is still a leak!" Not
1037 * really, because the only case in which a checkpoint is done
1038 * by a process that isn't about to shut down is in the
1039 * bgwriter, and it will periodically do smgrcloseall(). This
1040 * fact justifies our not closing the reln in the success path
1041 * either, which is a good thing since in non-bgwriter cases
1042 * we couldn't safely do that.) Furthermore, in many cases
1043 * the relation will have been dirtied through this same smgr
1044 * relation, and so we can save a file open/close cycle.
1045 */
1048 /*
1049 * It is possible that the relation has been dropped or
1050 * truncated since the fsync request was entered. Therefore,
1051 * allow ENOENT, but only if we didn't fail already on this
1052 * file. This applies both during _mdfd_getseg() and during
1053 * FileSync, since fd.c might have closed the file behind our
1054 * back.
1055 */
1063 /*
1064 * XXX is there any point in allowing more than one retry?
1065 * Don't see one at the moment, but easy to change the test
1066 * here if so.
1067 */
1078 else
1088 /*
1089 * Absorb incoming requests and check to see if canceled.
1090 */
1097 }
1099 /*
1100 * If we get here, either we fsync'd successfully, or we don't have to
1101 * because enableFsync is off, or the entry is (now) marked canceled.
1102 * Okay to delete it.
1103 */
1109 /* Flag successful completion of mdsync */
1111 }
1113 /*
1114 * mdpreckpt() -- Do pre-checkpoint work
1115 *
1116 * To distinguish unlink requests that arrived before this checkpoint
1117 * started from those that arrived during the checkpoint, we use a cycle
1118 * counter similar to the one we use for fsync requests. That cycle
1119 * counter is incremented here.
1120 *
1121 * This must be called *before* the checkpoint REDO point is determined.
1122 * That ensures that we won't delete files too soon.
1123 *
1124 * Note that we can't do anything here that depends on the assumption
1125 * that the checkpoint will be completed.
1126 */
1127 void
1129 {
1132 /*
1133 * In case the prior checkpoint wasn't completed, stamp all entries in the
1134 * list with the current cycle counter. Anything that's in the list at
1135 * the start of checkpoint can surely be deleted after the checkpoint is
1136 * finished, regardless of when the request was made.
1137 */
1139 {
1143 }
1145 /*
1146 * Any unlink requests arriving after this point will be assigned the next
1147 * cycle counter, and won't be unlinked until next checkpoint.
1148 */
1149 mdckpt_cycle_ctr++;
1150 }
1152 /*
1153 * mdpostckpt() -- Do post-checkpoint work
1154 *
1155 * Remove any lingering files that can now be safely removed.
1156 */
1157 void
1159 {
1161 {
1165 /*
1166 * New entries are appended to the end, so if the entry is new we've
1167 * reached the end of old entries.
1168 */
1172 /* Else assert we haven't missed it */
1175 /* Unlink the file */
1178 {
1179 /*
1180 * There's a race condition, when the database is dropped at the
1181 * same time that we process the pending unlink requests. If the
1182 * DROP DATABASE deletes the file before we do, we will get ENOENT
1183 * here. rmtree() also has to ignore ENOENT errors, to deal with
1184 * the possibility that we delete the file first.
1185 */
1193 MAIN_FORKNUM)));
1194 }
1199 }
1200 }
1202 /*
1203 * register_dirty_segment() -- Mark a relation segment as needing fsync
1204 *
1205 * If there is a local pending-ops table, just make an entry in it for
1206 * mdsync to process later. Otherwise, try to pass off the fsync request
1207 * to the background writer process. If that fails, just do the fsync
1208 * locally before returning (we expect this will not happen often enough
1209 * to be a performance problem).
1210 */
1211 static void
1213 {
1215 {
1216 /* push it into local pending-ops table */
1218 }
1219 else
1220 {
1232 forknum)));
1233 }
1234 }
1236 /*
1237 * register_unlink() -- Schedule a file to be deleted after next checkpoint
1238 *
1239 * As with register_dirty_segment, this could involve either a local or
1240 * a remote pending-ops table.
1241 */
1242 static void
1244 {
1246 {
1247 /* push it into local pending-ops table */
1249 }
1250 else
1251 {
1252 /*
1253 * Notify the bgwriter about it. If we fail to queue the request
1254 * message, we have to sleep and try again, because we can't simply
1255 * delete the file now. Ugly, but hopefully won't happen often.
1256 *
1257 * XXX should we just leave the file orphaned instead?
1258 */
1261 UNLINK_RELATION_REQUEST))
1263 }
1264 }
1266 /*
1267 * RememberFsyncRequest() -- callback from bgwriter side of fsync request
1268 *
1269 * We stuff most fsync requests into the local hash table for execution
1270 * during the bgwriter's next checkpoint. UNLINK requests go into a
1271 * separate linked list, however, because they get processed separately.
1272 *
1273 * The range of possible segment numbers is way less than the range of
1274 * BlockNumber, so we can reserve high values of segno for special purposes.
1275 * We define three:
1276 * - FORGET_RELATION_FSYNC means to cancel pending fsyncs for a relation
1277 * - FORGET_DATABASE_FSYNC means to cancel pending fsyncs for a whole database
1278 * - UNLINK_RELATION_REQUEST is a request to delete the file after the next
1279 * checkpoint.
1280 *
1281 * (Handling the FORGET_* requests is a tad slow because the hash table has
1282 * to be searched linearly, but it doesn't seem worth rethinking the table
1283 * structure for them.)
1284 */
1285 void
1287 {
1291 {
1292 /* Remove any pending requests for the entire relation */
1293 HASH_SEQ_STATUS hstat;
1298 {
1301 {
1302 /* Okay, cancel this entry */
1304 }
1305 }
1306 }
1308 {
1309 /* Remove any pending requests for the entire database */
1310 HASH_SEQ_STATUS hstat;
1316 /* Remove fsync requests */
1319 {
1321 {
1322 /* Okay, cancel this entry */
1324 }
1325 }
1327 /* Remove unlink requests */
1330 {
1335 {
1338 }
1339 else
1341 }
1342 }
1344 {
1345 /* Unlink request: put it in the linked list */
1356 }
1357 else
1358 {
1359 /* Normal case: enter a request to fsync this segment */
1360 PendingOperationTag key;
1364 /* ensure any pad bytes in the hash key are zeroed */
1372 HASH_ENTER,
1374 /* if new or previously canceled entry, initialize it */
1376 {
1379 }
1381 /*
1382 * NB: it's intentional that we don't change cycle_ctr if the entry
1383 * already exists. The fsync request must be treated as old, even
1384 * though the new request will be satisfied too by any subsequent
1385 * fsync.
1386 *
1387 * However, if the entry is present but is marked canceled, we should
1388 * act just as though it wasn't there. The only case where this could
1389 * happen would be if a file had been deleted, we received but did not
1390 * yet act on the cancel request, and the same relfilenode was then
1391 * assigned to a new file. We mustn't lose the new request, but it
1392 * should be considered new not old.
1393 */
1394 }
1395 }
1397 /*
1398 * ForgetRelationFsyncRequests -- forget any fsyncs for a rel
1399 */
1400 void
1402 {
1404 {
1405 /* standalone backend or startup process: fsync state is local */
1407 }
1409 {
1410 /*
1411 * Notify the bgwriter about it. If we fail to queue the revoke
1412 * message, we have to sleep and try again ... ugly, but hopefully
1413 * won't happen often.
1414 *
1415 * XXX should we CHECK_FOR_INTERRUPTS in this loop? Escaping with an
1416 * error would leave the no-longer-used file still present on disk,
1417 * which would be bad, so I'm inclined to assume that the bgwriter
1418 * will always empty the queue soon.
1419 */
1423 /*
1424 * Note we don't wait for the bgwriter to actually absorb the revoke
1425 * message; see mdsync() for the implications.
1426 */
1427 }
1428 }
1430 /*
1431 * ForgetDatabaseFsyncRequests -- forget any fsyncs and unlinks for a DB
1432 */
1433 void
1435 {
1436 RelFileNode rnode;
1443 {
1444 /* standalone backend or startup process: fsync state is local */
1446 }
1448 {
1449 /* see notes in ForgetRelationFsyncRequests */
1451 FORGET_DATABASE_FSYNC))
1453 }
1454 }
1457 /*
1458 * _fdvec_alloc() -- Make a MdfdVec object.
1459 */
1462 {
1464 }
1466 /*
1467 * Open the specified segment of the relation,
1468 * and make a MdfdVec object for it. Returns NULL on failure.
1469 */
1473 {
1482 {
1483 /* be sure we have enough space for the '.segno' */
1487 }
1488 else
1491 /* open the file */
1499 /* allocate an mdfdvec entry for it */
1502 /* fill the entry */
1508 /* all done */
1510 }
1512 /*
1513 * _mdfd_getseg() -- Find the segment of the relation holding the
1514 * specified block.
1515 *
1516 * If the segment doesn't exist, we ereport, return NULL, or create the
1517 * segment, according to "behavior". Note: isTemp need only be correct
1518 * in the EXTENSION_CREATE case.
1519 */
1523 {
1525 BlockNumber targetseg;
1526 BlockNumber nextsegno;
1533 {
1537 {
1538 /*
1539 * Normally we will create new segments only if authorized by the
1540 * caller (i.e., we are doing mdextend()). But when doing WAL
1541 * recovery, create segments anyway; this allows cases such as
1542 * replaying WAL data that has a write into a high-numbered
1543 * segment of a relation that was later deleted. We want to go
1544 * ahead and create the segments so we can finish out the replay.
1545 *
1546 * We have to maintain the invariant that segments before the last
1547 * active segment are of size RELSEG_SIZE; therefore, pad them out
1548 * with zeroes if needed. (This only matters if caller is
1549 * extending the relation discontiguously, but that can happen in
1550 * hash indexes.)
1551 */
1553 {
1555 {
1562 }
1564 }
1565 else
1566 {
1567 /* We won't create segment if not existent */
1569 }
1571 {
1578 nextsegno,
1582 forknum,
1583 blkno)));
1584 }
1585 }
1587 }
1589 }
1591 /*
1592 * Get number of blocks present in a single disk file
1593 */
1594 static BlockNumber
1596 {
1597 off_t len;
1608 forknum)));
1609 /* note that this calculation will ignore any partial block at EOF */
1611 }