| blob | fcb874d234f015f347c1406b53ae315f382f102d |
1 /*-------------------------------------------------------------------------
2 *
3 * deadlock.c
4 * POSTGRES deadlock detection code
5 *
6 * See src/backend/storage/lmgr/README for a description of the deadlock
7 * detection and resolution algorithms.
8 *
9 *
10 * Portions Copyright (c) 1996-2024, PostgreSQL Global Development Group
11 * Portions Copyright (c) 1994, Regents of the University of California
12 *
13 *
14 * IDENTIFICATION
15 * src/backend/storage/lmgr/deadlock.c
16 *
17 * Interface:
18 *
19 * DeadLockCheck()
20 * DeadLockReport()
21 * RememberSimpleDeadLock()
22 * InitDeadLockChecking()
23 *
24 *-------------------------------------------------------------------------
25 */
36 /*
37 * One edge in the waits-for graph.
38 *
39 * waiter and blocker may or may not be members of a lock group, but if either
40 * is, it will be the leader rather than any other member of the lock group.
41 * The group leaders act as representatives of the whole group even though
42 * those particular processes need not be waiting at all. There will be at
43 * least one member of the waiter's lock group on the wait queue for the given
44 * lock, maybe more.
45 */
47 {
55 /* One potential reordering of a lock's wait queue */
57 {
63 /*
64 * Information saved about each edge in a detected deadlock cycle. This
65 * is used to print a diagnostic message upon failure.
66 *
67 * Note: because we want to examine this info after releasing the lock
68 * manager's partition locks, we can't just store LOCK and PGPROC pointers;
69 * we must extract out all the info we want to be able to print.
70 */
72 {
92 #ifdef DEBUG_DEADLOCK
94 #endif
97 /*
98 * Working space for the deadlock detector
99 */
101 /* Workspace for FindLockCycle */
105 /* Workspace for TopoSort */
110 /* Output area for ExpandConstraints */
115 /* Current list of constraints being considered */
120 /* Storage space for results from FindLockCycle */
127 /* PGPROC pointer of any blocking autovacuum worker found */
131 /*
132 * InitDeadLockChecking -- initialize deadlock checker during backend startup
133 *
134 * This does per-backend initialization of the deadlock checker; primarily,
135 * allocation of working memory for DeadLockCheck. We do this per-backend
136 * since there's no percentage in making the kernel do copy-on-write
137 * inheritance of workspace from the postmaster. We want to allocate the
138 * space at startup because (a) the deadlock checker might be invoked when
139 * there's no free memory left, and (b) the checker is normally run inside a
140 * signal handler, which is a very dangerous place to invoke palloc from.
141 */
142 void
144 {
145 MemoryContext oldcxt;
147 /* Make sure allocations are permanent */
150 /*
151 * FindLockCycle needs at most MaxBackends entries in visitedProcs[] and
152 * deadlockDetails[].
153 */
157 /*
158 * TopoSort needs to consider at most MaxBackends wait-queue entries, and
159 * it needn't run concurrently with FindLockCycle.
160 */
165 /*
166 * We need to consider rearranging at most MaxBackends/2 wait queues
167 * (since it takes at least two waiters in a queue to create a soft edge),
168 * and the expanded form of the wait queues can't involve more than
169 * MaxBackends total waiters.
170 */
175 /*
176 * Allow at most MaxBackends distinct constraints in a configuration. (Is
177 * this enough? In practice it seems it should be, but I don't quite see
178 * how to prove it. If we run out, we might fail to find a workable wait
179 * queue rearrangement even though one exists.) NOTE that this number
180 * limits the maximum recursion depth of DeadLockCheckRecurse. Making it
181 * really big might potentially allow a stack-overflow problem.
182 */
186 /*
187 * Allow up to 3*MaxBackends constraints to be saved without having to
188 * re-run TestConfiguration. (This is probably more than enough, but we
189 * can survive if we run low on space by doing excess runs of
190 * TestConfiguration to re-compute constraint lists each time needed.) The
191 * last MaxBackends entries in possibleConstraints[] are reserved as
192 * output workspace for FindLockCycle.
193 */
195 possibleConstraints =
199 }
201 /*
202 * DeadLockCheck -- Checks for deadlocks for a given process
203 *
204 * This code looks for deadlocks involving the given process. If any
205 * are found, it tries to rearrange lock wait queues to resolve the
206 * deadlock. If resolution is impossible, return DS_HARD_DEADLOCK ---
207 * the caller is then expected to abort the given proc's transaction.
208 *
209 * Caller must already have locked all partitions of the lock tables.
210 *
211 * On failure, deadlock details are recorded in deadlockDetails[] for
212 * subsequent printing by DeadLockReport(). That activity is separate
213 * because (a) we don't want to do it while holding all those LWLocks,
214 * and (b) we are typically invoked inside a signal handler.
215 */
216 DeadLockState
218 {
219 /* Initialize to "no constraints" */
224 /* Initialize to not blocked by an autovacuum worker */
227 /* Search for deadlocks and possible fixes */
229 {
230 /*
231 * Call FindLockCycle one more time, to record the correct
232 * deadlockDetails[] for the basic state with no rearrangements.
233 */
243 }
245 /* Apply any needed rearrangements of wait queues */
247 {
255 #ifdef DEBUG_DEADLOCK
257 #endif
259 /* Reset the queue and re-add procs in the desired order */
264 #ifdef DEBUG_DEADLOCK
266 #endif
268 /* See if any waiters for the lock can be woken up now */
270 }
272 /* Return code tells caller if we had to escape a deadlock or not */
277 else
279 }
281 /*
282 * Return the PGPROC of the autovacuum that's blocking a process.
283 *
284 * We reset the saved pointer as soon as we pass it back.
285 */
286 PGPROC *
288 {
295 }
297 /*
298 * DeadLockCheckRecurse -- recursively search for valid orderings
299 *
300 * curConstraints[] holds the current set of constraints being considered
301 * by an outer level of recursion. Add to this each possible solution
302 * constraint for any cycle detected at this level.
303 *
304 * Returns true if no solution exists. Returns false if a deadlock-free
305 * state is attainable, in which case waitOrders[] shows the required
306 * rearrangements of lock wait queues (if any).
307 */
308 static bool
310 {
325 {
326 /* We can save the edge list in possibleConstraints[] */
329 }
330 else
331 {
332 /* Not room; will need to regenerate the edges on-the-fly */
334 }
336 /*
337 * Try each available soft edge as an addition to the configuration.
338 */
340 {
342 {
343 /* Regenerate the list of possible added constraints */
346 }
349 nCurConstraints++;
352 /* give up on that added constraint, try again */
353 nCurConstraints--;
354 }
357 }
360 /*--------------------
361 * Test a configuration (current set of constraints) for validity.
362 *
363 * Returns:
364 * 0: the configuration is good (no deadlocks)
365 * -1: the configuration has a hard deadlock or is not self-consistent
366 * >0: the configuration has one or more soft deadlocks
367 *
368 * In the soft-deadlock case, one of the soft cycles is chosen arbitrarily
369 * and a list of its soft edges is returned beginning at
370 * possibleConstraints+nPossibleConstraints. The return value is the
371 * number of soft edges.
372 *--------------------
373 */
374 static int
376 {
382 /*
383 * Make sure we have room for FindLockCycle's output.
384 */
388 /*
389 * Expand current constraint set into wait orderings. Fail if the
390 * constraint set is not self-consistent.
391 */
395 /*
396 * Check for cycles involving startProc or any of the procs mentioned in
397 * constraints. We check startProc last because if it has a soft cycle
398 * still to be dealt with, we want to deal with that first.
399 */
401 {
403 {
407 }
409 {
413 }
414 }
416 {
420 }
422 }
425 /*
426 * FindLockCycle -- basic check for deadlock cycles
427 *
428 * Scan outward from the given proc to see if there is a cycle in the
429 * waits-for graph that includes this proc. Return true if a cycle
430 * is found, else false. If a cycle is found, we return a list of
431 * the "soft edges", if any, included in the cycle. These edges could
432 * potentially be eliminated by rearranging wait queues. We also fill
433 * deadlockDetails[] with information about the detected cycle; this info
434 * is not used by the deadlock algorithm itself, only to print a useful
435 * message after failing.
436 *
437 * Since we need to be able to check hypothetical configurations that would
438 * exist after wait queue rearrangement, the routine pays attention to the
439 * table of hypothetical queue orders in waitOrders[]. These orders will
440 * be believed in preference to the actual ordering seen in the locktable.
441 */
442 static bool
446 {
451 }
453 static bool
458 {
460 dlist_iter iter;
462 /*
463 * If this process is a lock group member, check the leader instead. (Note
464 * that we might be the leader, in which case this is a no-op.)
465 */
469 /*
470 * Have we already seen this proc?
471 */
473 {
475 {
476 /* If we return to starting point, we have a deadlock cycle */
478 {
479 /*
480 * record total length of cycle --- outer levels will now fill
481 * deadlockDetails[]
482 */
487 }
489 /*
490 * Otherwise, we have a cycle but it does not include the start
491 * point, so say "no deadlock".
492 */
494 }
495 }
496 /* Mark proc as seen */
500 /*
501 * If the process is waiting, there is an outgoing waits-for edge to each
502 * process that blocks it.
503 */
506 nSoftEdges))
509 /*
510 * If the process is not waiting, there could still be outgoing waits-for
511 * edges if it is part of a lock group, because other members of the lock
512 * group might be waiting even though this process is not. (Given lock
513 * groups {A1, A2} and {B1, B2}, if A1 waits for B1 and B2 waits for A2,
514 * that is a deadlock even neither of B1 and A2 are waiting for anything.)
515 */
517 {
525 nSoftEdges))
527 }
530 }
532 static bool
538 {
541 dlist_iter proclock_iter;
542 LockMethod lockMethodTable;
546 lm;
548 /*
549 * The relation extension lock can never participate in actual deadlock
550 * cycle. See Assert in LockAcquireExtended. So, there is no advantage
551 * in checking wait edges from it.
552 */
560 /*
561 * Scan for procs that already hold conflicting locks. These are "hard"
562 * edges in the waits-for graph.
563 */
565 {
572 /* A proc never blocks itself or any other lock group member */
574 {
576 {
579 {
580 /* This proc hard-blocks checkProc */
583 {
584 /* fill deadlockDetails[] */
592 }
594 /*
595 * No deadlock here, but see if this proc is an autovacuum
596 * that is directly hard-blocking our own proc. If so,
597 * report it so that the caller can send a cancel signal
598 * to it, if appropriate. If there's more than one such
599 * proc, it's indeterminate which one will be reported.
600 *
601 * We don't touch autovacuums that are indirectly blocking
602 * us; it's up to the direct blockee to take action. This
603 * rule simplifies understanding the behavior and ensures
604 * that an autovacuum won't be canceled with less than
605 * deadlock_timeout grace period.
606 *
607 * Note we read statusFlags without any locking. This is
608 * OK only for checking the PROC_IS_AUTOVACUUM flag,
609 * because that flag is set at process start and never
610 * reset. There is logic elsewhere to avoid canceling an
611 * autovacuum that is working to prevent XID wraparound
612 * problems (which needs to read a different statusFlags
613 * bit), but we don't do that here to avoid grabbing
614 * ProcArrayLock.
615 */
620 /* We're done looking at this proclock */
622 }
623 }
624 }
625 }
627 /*
628 * Scan for procs that are ahead of this one in the lock's wait queue.
629 * Those that have conflicting requests soft-block this one. This must be
630 * done after the hard-block search, since if another proc both hard- and
631 * soft-blocks this one, we want to call it a hard edge.
632 *
633 * If there is a proposed re-ordering of the lock's wait order, use that
634 * rather than the current wait order.
635 */
637 {
640 }
643 {
644 /* Use the given hypothetical wait queue order */
649 {
656 /*
657 * TopoSort will always return an ordering with group members
658 * adjacent to each other in the wait queue (see comments
659 * therein). So, as soon as we reach a process in the same lock
660 * group as checkProc, we know we've found all the conflicts that
661 * precede any member of the lock group lead by checkProcLeader.
662 */
666 /* Is there a conflict with this guy's request? */
668 {
669 /* This proc soft-blocks checkProc */
672 {
673 /* fill deadlockDetails[] */
680 /*
681 * Add this edge to the list of soft edges in the cycle
682 */
689 }
690 }
691 }
692 }
693 else
694 {
696 dlist_iter proc_iter;
699 /* Use the true lock wait queue order */
702 /*
703 * Find the last member of the lock group that is present in the wait
704 * queue. Anything after this is not a soft lock conflict. If group
705 * locking is not in use, then we know immediately which process we're
706 * looking for, but otherwise we've got to search the wait queue to
707 * find the last process actually present.
708 */
711 else
712 {
714 {
719 }
721 }
723 /*
724 * OK, now rescan (or scan) the queue to identify the soft conflicts.
725 */
727 {
735 /* Done when we reach the target proc */
739 /* Is there a conflict with this guy's request? */
742 {
743 /* This proc soft-blocks checkProc */
746 {
747 /* fill deadlockDetails[] */
754 /*
755 * Add this edge to the list of soft edges in the cycle
756 */
763 }
764 }
765 }
766 }
768 /*
769 * No conflict detected here.
770 */
772 }
775 /*
776 * ExpandConstraints -- expand a list of constraints into a set of
777 * specific new orderings for affected wait queues
778 *
779 * Input is a list of soft edges to be reversed. The output is a list
780 * of nWaitOrders WAIT_ORDER structs in waitOrders[], with PGPROC array
781 * workspace in waitOrderProcs[].
782 *
783 * Returns true if able to build an ordering that satisfies all the
784 * constraints, false if not (there are contradictory constraints).
785 */
786 static bool
789 {
792 j;
796 /*
797 * Scan constraint list backwards. This is because the last-added
798 * constraint is the only one that could fail, and so we want to test it
799 * for inconsistency first.
800 */
802 {
805 /* Did we already make a list for this lock? */
807 {
810 }
813 /* No, so allocate a new list */
820 /*
821 * Do the topo sort. TopoSort need not examine constraints after this
822 * one, since they must be for different locks.
823 */
827 nWaitOrders++;
828 }
830 }
833 /*
834 * TopoSort -- topological sort of a wait queue
835 *
836 * Generate a re-ordering of a lock's wait queue that satisfies given
837 * constraints about certain procs preceding others. (Each such constraint
838 * is a fact of a partial ordering.) Minimize rearrangement of the queue
839 * not needed to achieve the partial ordering.
840 *
841 * This is a lot simpler and slower than, for example, the topological sort
842 * algorithm shown in Knuth's Volume 1. However, Knuth's method doesn't
843 * try to minimize the damage to the existing order. In practice we are
844 * not likely to be working with more than a few constraints, so the apparent
845 * slowness of the algorithm won't really matter.
846 *
847 * The initial queue ordering is taken directly from the lock's wait queue.
848 * The output is an array of PGPROC pointers, of length equal to the lock's
849 * wait queue length (the caller is responsible for providing this space).
850 * The partial order is specified by an array of EDGE structs. Each EDGE
851 * is one that we need to reverse, therefore the "waiter" must appear before
852 * the "blocker" in the output array. The EDGE array may well contain
853 * edges associated with other locks; these should be ignored.
854 *
855 * Returns true if able to build an ordering that satisfies all the
856 * constraints, false if not (there are contradictory constraints).
857 */
858 static bool
863 {
868 j,
869 jj,
870 k,
871 kk,
872 last;
873 dlist_iter proc_iter;
875 /* First, fill topoProcs[] array with the procs in their current order */
878 {
881 }
884 /*
885 * Scan the constraints, and for each proc in the array, generate a count
886 * of the number of constraints that say it must be before something else,
887 * plus a list of the constraints that say it must be after something
888 * else. The count for the j'th proc is stored in beforeConstraints[j],
889 * and the head of its list in afterConstraints[j]. Each constraint
890 * stores its list link in constraints[i].link (note any constraint will
891 * be in just one list). The array index for the before-proc of the i'th
892 * constraint is remembered in constraints[i].pred.
893 *
894 * Note that it's not necessarily the case that every constraint affects
895 * this particular wait queue. Prior to group locking, a process could be
896 * waiting for at most one lock. But a lock group can be waiting for
897 * zero, one, or multiple locks. Since topoProcs[] is an array of the
898 * processes actually waiting, while constraints[] is an array of group
899 * leaders, we've got to scan through topoProcs[] for each constraint,
900 * checking whether both a waiter and a blocker for that group are
901 * present. If so, the constraint is relevant to this wait queue; if not,
902 * it isn't.
903 */
907 {
908 /*
909 * Find a representative process that is on the lock queue and part of
910 * the waiting lock group. This may or may not be the leader, which
911 * may or may not be waiting at all. If there are any other processes
912 * in the same lock group on the queue, set their number of
913 * beforeConstraints to -1 to indicate that they should be emitted
914 * with their groupmates rather than considered separately.
915 *
916 * In this loop and the similar one just below, it's critical that we
917 * consistently select the same representative member of any one lock
918 * group, so that all the constraints are associated with the same
919 * proc, and the -1's are only associated with not-representative
920 * members. We select the last one in the topoProcs array.
921 */
926 {
930 {
934 else
935 {
938 }
939 }
940 }
942 /* If no matching waiter, constraint is not relevant to this lock. */
946 /*
947 * Similarly, find a representative process that is on the lock queue
948 * and waiting for the blocking lock group. Again, this could be the
949 * leader but does not need to be.
950 */
955 {
959 {
963 else
964 {
967 }
968 }
969 }
971 /* If no matching blocker, constraint is not relevant to this lock. */
977 /* add this constraint to list of after-constraints for blocker */
981 }
983 /*--------------------
984 * Now scan the topoProcs array backwards. At each step, output the
985 * last proc that has no remaining before-constraints plus any other
986 * members of the same lock group; then decrease the beforeConstraints
987 * count of each of the procs it was constrained against.
988 * i = index of ordering[] entry we want to output this time
989 * j = search index for topoProcs[]
990 * k = temp for scanning constraint list for proc j
991 * last = last non-null index in topoProcs (avoid redundant searches)
992 *--------------------
993 */
996 {
1000 /* Find next candidate to output */
1002 last--;
1004 {
1007 }
1009 /* If no available candidate, topological sort fails */
1013 /*
1014 * Output everything in the lock group. There's no point in
1015 * outputting an ordering where members of the same lock group are not
1016 * consecutive on the wait queue: if some other waiter is between two
1017 * requests that belong to the same group, then either it conflicts
1018 * with both of them and is certainly not a solution; or it conflicts
1019 * with at most one of them and is thus isomorphic to an ordering
1020 * where the group members are consecutive.
1021 */
1027 {
1030 {
1034 }
1035 }
1039 /* Update beforeConstraints counts of its predecessors */
1042 }
1044 /* Done */
1046 }
1048 #ifdef DEBUG_DEADLOCK
1049 static void
1051 {
1053 dlist_iter proc_iter;
1058 {
1062 }
1065 }
1066 #endif
1068 /*
1069 * Report a detected deadlock, with available details.
1070 */
1071 void
1073 {
1076 StringInfoData locktagbuf;
1083 /* Generate the "waits for" lines sent to the client */
1085 {
1089 /* The last proc waits for the first one... */
1092 else
1095 /* reset locktagbuf to hold next object description */
1109 nextpid);
1110 }
1112 /* Duplicate all the above for the server ... */
1115 /* ... and add info about query strings */
1117 {
1126 }
1136 }
1138 /*
1139 * RememberSimpleDeadLock: set up info for DeadLockReport when ProcSleep
1140 * detects a trivial (two-way) deadlock. proc1 wants to block for lockmode
1141 * on lock, but proc2 is already waiting and would be blocked by proc1.
1142 */
1143 void
1145 LOCKMODE lockmode,
1148 {
1154 info++;
1159 }