mirror of
https://github.com/postgres/postgres.git
synced 2025-11-24 00:23:06 +03:00
Replace RelationOpenSmgr() with RelationGetSmgr().
The idea behind this patch is to design out bugs like the one fixed
by commit 9d523119f. Previously, once one did RelationOpenSmgr(rel),
it was considered okay to access rel->rd_smgr directly for some
not-very-clear interval. But since that pointer will be cleared by
relcache flushes, we had bugs arising from overreliance on a previous
RelationOpenSmgr call still being effective.
Now, very little code except that in rel.h and relcache.c should ever
touch the rd_smgr field directly. The normal coding rule is to use
RelationGetSmgr(rel) and not expect the result to be valid for longer
than one smgr function call. There are a couple of places where using
the function every single time seemed like overkill, but they are now
annotated with large warning comments.
Amul Sul, after an idea of mine.
Discussion: https://postgr.es/m/CANiYTQsU7yMFpQYnv=BrcRVqK_3U3mtAzAsJCaqtzsDHfsUbdQ@mail.gmail.com
This commit is contained in:
Tom Lane
@@ -282,16 +282,16 @@ RelationTruncate(Relation rel, BlockNumber nblocks)
|
||||
ForkNumber forks[MAX_FORKNUM];
|
||||
BlockNumber blocks[MAX_FORKNUM];
|
||||
int nforks = 0;
|
||||
|
||||
/* Open it at the smgr level if not already done */
|
||||
RelationOpenSmgr(rel);
|
||||
SMgrRelation reln;
|
||||
|
||||
/*
|
||||
* Make sure smgr_targblock etc aren't pointing somewhere past new end
|
||||
* Make sure smgr_targblock etc aren't pointing somewhere past new end.
|
||||
* (Note: don't rely on this reln pointer below this loop.)
|
||||
*/
|
||||
rel->rd_smgr->smgr_targblock = InvalidBlockNumber;
|
||||
reln = RelationGetSmgr(rel);
|
||||
reln->smgr_targblock = InvalidBlockNumber;
|
||||
for (int i = 0; i <= MAX_FORKNUM; ++i)
|
||||
rel->rd_smgr->smgr_cached_nblocks[i] = InvalidBlockNumber;
|
||||
reln->smgr_cached_nblocks[i] = InvalidBlockNumber;
|
||||
|
||||
/* Prepare for truncation of MAIN fork of the relation */
|
||||
forks[nforks] = MAIN_FORKNUM;
|
||||
@@ -299,7 +299,7 @@ RelationTruncate(Relation rel, BlockNumber nblocks)
|
||||
nforks++;
|
||||
|
||||
/* Prepare for truncation of the FSM if it exists */
|
||||
fsm = smgrexists(rel->rd_smgr, FSM_FORKNUM);
|
||||
fsm = smgrexists(RelationGetSmgr(rel), FSM_FORKNUM);
|
||||
if (fsm)
|
||||
{
|
||||
blocks[nforks] = FreeSpaceMapPrepareTruncateRel(rel, nblocks);
|
||||
@@ -312,7 +312,7 @@ RelationTruncate(Relation rel, BlockNumber nblocks)
|
||||
}
|
||||
|
||||
/* Prepare for truncation of the visibility map too if it exists */
|
||||
vm = smgrexists(rel->rd_smgr, VISIBILITYMAP_FORKNUM);
|
||||
vm = smgrexists(RelationGetSmgr(rel), VISIBILITYMAP_FORKNUM);
|
||||
if (vm)
|
||||
{
|
||||
blocks[nforks] = visibilitymap_prepare_truncate(rel, nblocks);
|
||||
@@ -364,7 +364,7 @@ RelationTruncate(Relation rel, BlockNumber nblocks)
|
||||
}
|
||||
|
||||
/* Do the real work to truncate relation forks */
|
||||
smgrtruncate(rel->rd_smgr, forks, nforks, blocks);
|
||||
smgrtruncate(RelationGetSmgr(rel), forks, nforks, blocks);
|
||||
|
||||
/*
|
||||
* Update upper-level FSM pages to account for the truncation. This is
|
||||
@@ -389,9 +389,9 @@ RelationPreTruncate(Relation rel)
|
||||
|
||||
if (!pendingSyncHash)
|
||||
return;
|
||||
RelationOpenSmgr(rel);
|
||||
|
||||
pending = hash_search(pendingSyncHash, &(rel->rd_smgr->smgr_rnode.node),
|
||||
pending = hash_search(pendingSyncHash,
|
||||
&(RelationGetSmgr(rel)->smgr_rnode.node),
|
||||
HASH_FIND, NULL);
|
||||
if (pending)
|
||||
pending->is_truncated = true;
|
||||
@@ -403,6 +403,12 @@ RelationPreTruncate(Relation rel)
|
||||
* Note that this requires that there is no dirty data in shared buffers. If
|
||||
* it's possible that there are, callers need to flush those using
|
||||
* e.g. FlushRelationBuffers(rel).
|
||||
*
|
||||
* Also note that this is frequently called via locutions such as
|
||||
* RelationCopyStorage(RelationGetSmgr(rel), ...);
|
||||
* That's safe only because we perform only smgr and WAL operations here.
|
||||
* If we invoked anything else, a relcache flush could cause our SMgrRelation
|
||||
* argument to become a dangling pointer.
|
||||
*/
|
||||
void
|
||||
RelationCopyStorage(SMgrRelation src, SMgrRelation dst,
|
||||
@@ -445,13 +451,23 @@ RelationCopyStorage(SMgrRelation src, SMgrRelation dst,
|
||||
|
||||
if (!PageIsVerifiedExtended(page, blkno,
|
||||
PIV_LOG_WARNING | PIV_REPORT_STAT))
|
||||
{
|
||||
/*
|
||||
* For paranoia's sake, capture the file path before invoking the
|
||||
* ereport machinery. This guards against the possibility of a
|
||||
* relcache flush caused by, e.g., an errcontext callback.
|
||||
* (errcontext callbacks shouldn't be risking any such thing, but
|
||||
* people have been known to forget that rule.)
|
||||
*/
|
||||
char *relpath = relpathbackend(src->smgr_rnode.node,
|
||||
src->smgr_rnode.backend,
|
||||
forkNum);
|
||||
|
||||
ereport(ERROR,
|
||||
(errcode(ERRCODE_DATA_CORRUPTED),
|
||||
errmsg("invalid page in block %u of relation %s",
|
||||
blkno,
|
||||
relpathbackend(src->smgr_rnode.node,
|
||||
src->smgr_rnode.backend,
|
||||
forkNum))));
|
||||
blkno, relpath)));
|
||||
}
|
||||
|
||||
/*
|
||||
* WAL-log the copied page. Unfortunately we don't know what kind of a
|
||||
|
||||
Reference in New Issue
Block a user