| blob | 9601fd8d9cf9e5145df1cf54d9555734b1104b6a |
1 /*-------------------------------------------------------------------------
2 *
3 * receivelog.c - receive WAL files using the streaming
4 * replication protocol.
5 *
6 * Author: Magnus Hagander <magnus@hagander.net>
7 *
8 * Portions Copyright (c) 1996-2021, PostgreSQL Global Development Group
9 *
10 * IDENTIFICATION
11 * src/bin/pg_basebackup/receivelog.c
12 *-------------------------------------------------------------------------
13 */
17 #include <sys/stat.h>
18 #include <unistd.h>
19 #ifdef HAVE_SYS_SELECT_H
20 #include <sys/select.h>
21 #endif
30 /* fd and filename for currently open WAL file */
51 TimestampTz last_status);
56 static bool
58 {
63 fname);
67 {
71 }
76 }
78 /*
79 * Open a new WAL file in the specified directory.
80 *
81 * Returns true if OK; on failure, returns false after printing an error msg.
82 * On success, 'walfile' is set to the FD for the file, and the base filename
83 * (without partial_suffix) is stored in 'current_walfile_name'.
84 *
85 * The file will be padded to 16Mb with zeroes.
86 */
87 static bool
89 {
92 ssize_t size;
93 XLogSegNo segno;
98 /* Note that this considers the compression used if necessary */
102 /*
103 * When streaming to files, if an existing file exists we verify that it's
104 * either empty (just created), or a complete WalSegSz segment (in which
105 * case it has been created and padded). Anything else indicates a corrupt
106 * file. Compressed files have no need for padding, so just ignore this
107 * case.
108 *
109 * When streaming to tar, no file with this name will exist before, so we
110 * never have to verify a size.
111 */
114 {
117 {
122 }
124 {
125 /* Already padded file. Open it for use */
128 {
133 }
135 /* fsync file in case of a previous crash */
137 {
142 }
147 }
149 {
150 /* if write didn't set errno, assume problem is no disk space */
155 size),
159 }
160 /* File existed and was empty, so fall through and open */
161 }
163 /* No file existed, so create one */
168 {
173 }
178 }
180 /*
181 * Close the current WAL file (if open), and rename it to the correct
182 * filename if it's complete. On failure, prints an error message to stderr
183 * and returns false, otherwise returns true.
184 */
185 static bool
187 {
188 off_t currpos;
196 {
203 }
206 {
209 else
210 {
214 }
215 }
216 else
222 {
226 }
228 /*
229 * Mark file as archived if requested by the caller - pg_basebackup needs
230 * to do so as files can otherwise get archived again after promotion of a
231 * new node. This is in line with walreceiver.c always doing a
232 * XLogArchiveForceDone() after a complete segment.
233 */
235 {
236 /* writes error message if failed */
239 }
243 }
246 /*
247 * Check if a timeline history file exists.
248 */
249 static bool
251 {
254 /*
255 * Timeline 1 never has a history file. We treat that as if it existed,
256 * since we never need to stream it.
257 */
264 }
266 static bool
268 {
273 /*
274 * Check that the server's idea of how timeline history files should be
275 * named matches ours.
276 */
279 {
283 }
287 {
291 }
294 {
298 /*
299 * If we fail to make the file, delete it to release disk space
300 */
304 }
307 {
311 }
313 /* Maintain archive_status, check close_walfile() for details. */
315 {
316 /* writes error message if failed */
319 }
322 }
324 /*
325 * Send a Standby Status Update message to server.
326 */
327 static bool
329 {
339 else
350 {
354 }
357 }
359 /*
360 * Check that the server version we're connected to is supported by
361 * ReceiveXlogStream().
362 *
363 * If it's not, an error message is printed to stderr, and false is returned.
364 */
365 bool
367 {
369 maxServerMajor;
372 /*
373 * The message format used in streaming replication changed in 9.3, so we
374 * cannot stream from older servers. And we don't support servers newer
375 * than the client; it might work, but we don't know, so err on the safe
376 * side.
377 */
382 {
385 pg_log_error("incompatible server version %s; client does not support streaming from server versions older than %s",
389 }
391 {
394 pg_log_error("incompatible server version %s; client does not support streaming from server versions newer than %s",
396 PG_VERSION);
398 }
400 }
402 /*
403 * Receive a log stream starting at the specified position.
404 *
405 * Individual parameters are passed through the StreamCtl structure.
406 *
407 * If sysidentifier is specified, validate that both the system
408 * identifier and the timeline matches the specified ones
409 * (by sending an extra IDENTIFY_SYSTEM command)
410 *
411 * All received segments will be written to the directory
412 * specified by basedir. This will also fetch any missing timeline history
413 * files.
414 *
415 * The stream_stop callback will be called every time data
416 * is received, and whenever a segment is completed. If it returns
417 * true, the streaming will stop and the function
418 * return. As long as it returns false, streaming will continue
419 * indefinitely.
420 *
421 * If stream_stop() checks for external input, stop_socket should be set to
422 * the FD it checks. This will allow such input to be detected promptly
423 * rather than after standby_message_timeout (which might be indefinite).
424 * Note that signals will interrupt waits for input as well, but that is
425 * race-y since a signal received while busy won't interrupt the wait.
426 *
427 * standby_message_timeout controls how often we send a message
428 * back to the primary letting it know our progress, in milliseconds.
429 * Zero means no messages are sent.
430 * This message will only contain the write location, and never
431 * flush or replay.
432 *
433 * If 'partial_suffix' is not NULL, files are initially created with the
434 * given suffix, and the suffix is removed once the file is finished. That
435 * allows you to tell the difference between partial and completed files,
436 * so that you can continue later where you left.
437 *
438 * If 'synchronous' is true, the received WAL is flushed as soon as written,
439 * otherwise only when the WAL file is closed.
440 *
441 * Note: The WAL location *must* be at a log segment start!
442 */
443 bool
445 {
449 XLogRecPtr stoppos;
451 /*
452 * The caller should've checked the server version already, but doesn't do
453 * any harm to check it here too.
454 */
458 /*
459 * Decide whether we want to report the flush position. If we report the
460 * flush position, the primary will know what WAL we'll possibly
461 * re-request, and it can then remove older WAL safely. We must always do
462 * that when we are using slots.
463 *
464 * Reporting the flush position makes one eligible as a synchronous
465 * replica. People shouldn't include generic names in
466 * synchronous_standby_names, but we've protected them against it so far,
467 * so let's continue to do so unless specifically requested.
468 */
470 {
473 }
474 else
475 {
478 else
481 }
484 {
486 TimeLineID servertli;
488 /*
489 * Get the server system identifier and timeline, and validate them.
490 */
492 {
495 }
498 {
502 }
506 {
510 }
511 }
513 /*
514 * initialize flush position to starting point, it's the caller's
515 * responsibility that that's sane.
516 */
520 {
521 /*
522 * Fetch the timeline history file for this timeline, if we don't have
523 * it already. When streaming log to tar, this will always return
524 * false, as we are never streaming into an existing file and
525 * therefore there can be no pre-existing timeline history file.
526 */
528 {
532 {
533 /* FIXME: we might send it ok, but get an error */
538 }
540 /*
541 * The response to TIMELINE_HISTORY is a single row result set
542 * with two fields: filename and content
543 */
545 {
546 pg_log_warning("unexpected response to TIMELINE_HISTORY command: got %d rows and %d fields, expected %d rows and %d fields",
548 }
550 /* Write the history file to disk */
556 }
558 /*
559 * Before we start streaming from the requested location, check if the
560 * callback tells us to stop here.
561 */
565 /* Initiate the replication stream at specified location */
567 slotcmd,
572 {
577 }
580 /* Stream the WAL */
585 /*
586 * Streaming finished.
587 *
588 * There are two possible reasons for that: a controlled shutdown, or
589 * we reached the end of the current timeline. In case of
590 * end-of-timeline, the server sends a result set after Copy has
591 * finished, containing information about the next timeline. Read
592 * that, and restart streaming from the next timeline. In case of
593 * controlled shutdown, stop here.
594 */
596 {
597 /*
598 * End-of-timeline. Read the next timeline's ID and starting
599 * position. Usually, the starting position will match the end of
600 * the previous timeline, but there are corner cases like if the
601 * server had sent us half of a WAL record, when it was promoted.
602 * The new timeline will begin at the end of the last complete
603 * record in that case, overlapping the partial WAL record on the
604 * old timeline.
605 */
606 uint32 newtimeline;
614 /* Sanity check the values the server gave us */
616 {
620 }
622 {
623 pg_log_error("server stopped streaming timeline %u at %X/%X, but reported next timeline %u to begin at %X/%X",
627 }
629 /* Read the final result, which should be CommandComplete. */
632 {
637 }
640 /*
641 * Loop back to start streaming from the new timeline. Always
642 * start streaming at the beginning of a segment.
643 */
648 }
650 {
653 /*
654 * End of replication (ie. controlled shut down of the server).
655 *
656 * Check if the callback thinks it's OK to stop here. If not,
657 * complain.
658 */
661 else
662 {
665 }
666 }
667 else
668 {
669 /* Server returned an error. */
674 }
675 }
677 error:
683 }
685 /*
686 * Helper function to parse the result set returned by server after streaming
687 * has finished. On failure, prints an error to stderr and returns false.
688 */
689 static bool
691 {
692 uint32 startpos_xlogid,
693 startpos_xrecoff;
695 /*----------
696 * The result set consists of one row and two columns, e.g:
697 *
698 * next_tli | next_tli_startpos
699 * ----------+-------------------
700 * 4 | 0/9949AE0
701 *
702 * next_tli is the timeline ID of the next timeline after the one that
703 * just finished streaming. next_tli_startpos is the WAL location where
704 * the server switched to it.
705 *----------
706 */
708 {
709 pg_log_error("unexpected result set after end-of-timeline: got %d rows and %d fields, expected %d rows and %d fields",
712 }
717 {
721 }
725 }
727 /*
728 * The main loop of ReceiveXlogStream. Handles the COPY stream after
729 * initiating streaming with the START_REPLICATION command.
730 *
731 * If the COPY ends (not necessarily successfully) due a message from the
732 * server, returns a PGresult and sets *stoppos to the last byte written.
733 * On any other sort of error, returns NULL.
734 */
738 {
746 {
748 TimestampTz now;
751 /*
752 * Check if we should continue streaming, or abort at this point.
753 */
759 /*
760 * If synchronous option is true, issue sync command as soon as there
761 * are WAL data which has not been flushed yet.
762 */
764 {
766 {
770 }
773 /*
774 * Send feedback so that the server sees the latest WAL locations
775 * immediately.
776 */
780 }
782 /*
783 * Potentially send a status message to the primary
784 */
788 {
789 /* Time to send feedback! */
793 }
795 /*
796 * Calculate how long send/receive loops should sleep
797 */
799 last_status);
803 {
807 {
812 else
814 }
816 /* Check the message type. */
818 {
822 }
824 {
828 /*
829 * Check if we should continue streaming, or abort at this
830 * point.
831 */
834 }
835 else
836 {
840 }
842 /*
843 * Process the received data, and any subsequent data we can read
844 * without blocking.
845 */
847 }
848 }
850 error:
854 }
856 /*
857 * Wait until we can read a CopyData message,
858 * or timeout, or occurrence of a signal or input on the stop_socket.
859 * (timeout_ms < 0 means wait indefinitely; 0 means don't wait.)
860 *
861 * Returns 1 if data has become available for reading, 0 if timed out
862 * or interrupted by signal or stop_socket input, and -1 on an error.
863 */
864 static int
866 {
868 fd_set input_mask;
876 {
879 }
885 {
888 }
892 else
893 {
897 }
902 {
907 }
912 }
914 /*
915 * Receive CopyData message available from XLOG stream, blocking for
916 * maximum of 'timeout' ms.
917 *
918 * If data was received, returns the length of the data. *buffer is set to
919 * point to a buffer holding the received message. The buffer is only valid
920 * until the next CopyStreamReceive call.
921 *
922 * Returns 0 if no data was available within timeout, or if wait was
923 * interrupted by signal or stop_socket input.
924 * -1 on error. -2 if the server ended the COPY.
925 */
926 static int
929 {
937 /* Try to receive a CopyData message */
940 {
943 /*
944 * No data available. Wait for some to appear, but not longer than
945 * the specified timeout, so that we can ping the server. Also stop
946 * waiting if input appears on stop_socket.
947 */
952 /* Now there is actually data on the socket */
954 {
958 }
960 /* Now that we've consumed some input, try again */
964 }
968 {
971 }
973 /* Return received messages to caller */
976 }
978 /*
979 * Process the keepalive message.
980 */
981 static bool
984 {
987 TimestampTz now;
989 /*
990 * Parse the keepalive message, enclosed in the CopyData message. We just
991 * check if the server requested a reply, and ignore the rest.
992 */
998 {
1001 }
1004 /* If the server requested an immediate reply, send one. */
1006 {
1009 {
1010 /*
1011 * If a valid flush location needs to be reported, flush the
1012 * current WAL file so that the latest flush location is sent back
1013 * to the server. This is necessary to see whether the last WAL
1014 * data has been successfully replicated or not, at the normal
1015 * shutdown of the server.
1016 */
1018 {
1022 }
1024 }
1030 }
1033 }
1035 /*
1036 * Process XLogData message.
1037 */
1038 static bool
1041 {
1047 /*
1048 * Once we've decided we don't want to receive any more, just ignore any
1049 * subsequent XLogData messages.
1050 */
1054 /*
1055 * Read the header of the XLogData message, enclosed in the CopyData
1056 * message. We only need the WAL location field (dataStart), the rest of
1057 * the header is ignored.
1058 */
1064 {
1067 }
1070 /* Extract WAL location for this block */
1073 /*
1074 * Verify that the initial location in the stream matches where we think
1075 * we are.
1076 */
1078 {
1079 /* No file open yet */
1081 {
1083 xlogoff);
1085 }
1086 }
1087 else
1088 {
1089 /* More data in existing segment */
1091 {
1095 }
1096 }
1102 {
1105 /*
1106 * If crossing a WAL boundary, only write up until we reach wal
1107 * segment size.
1108 */
1111 else
1115 {
1117 {
1118 /* Error logged by open_walfile */
1120 }
1121 }
1125 {
1130 }
1132 /* Write was successful, advance our position */
1138 /* Did we reach the end of a WAL segment? */
1140 {
1142 /* Error message written in close_walfile() */
1148 {
1150 {
1154 }
1157 }
1158 }
1159 }
1160 /* No more data left to write, receive next copy packet */
1163 }
1165 /*
1166 * Handle end of the copy stream.
1167 */
1171 {
1174 /*
1175 * The server closed its end of the copy stream. If we haven't closed
1176 * ours already, we need to do so now, unless the server threw an error,
1177 * in which case we don't.
1178 */
1180 {
1182 {
1183 /* Error message written in close_walfile() */
1186 }
1188 {
1190 {
1195 }
1197 }
1199 }
1204 }
1206 /*
1207 * Check if we should continue streaming, or abort at this point.
1208 */
1209 static bool
1211 {
1213 {
1215 {
1216 /* Potential error message is written by close_walfile */
1218 }
1220 {
1224 }
1226 }
1229 }
1231 /*
1232 * Calculate how long send/receive loops should sleep
1233 */
1234 static long
1236 TimestampTz last_status)
1237 {
1246 {
1251 status_targettime,
1254 /* Always sleep at least 1 sec */
1256 {
1259 }
1262 }
1263 else
1267 }