- Desktop
- Enterprise
- Gaming
- Graphics
- Hardware
- Linux Kernel
- Multimedia
- Operating Systems
- Programming
- System Internals
- All Projects
- Latest News
- Sync psm/evdev/atkbd with FreeBSD
- lavfi: Add pad_vaapi filter
- lavfi: Add drawbox_vaapi filter
- Linux Kernel: Linux 6.9-rc4
- Embind: support .implement()-based JS UNO objects
- tdf#33603: sd: rework notes panel
- xwayland: Add SourceValidate hook
- UPower: Release 1.90.4
- Latest News (cont.)
- timezone: sync to TZDB 2024a
- Linux Kernel: Linux 6.9-rc3
- Optimize pg_popcount() with AVX-512 instructions
- Enhance nbtree ScalarArrayOp execution
- Add basic JSON_TABLE() functionality
- Introduce a non-recursive JSON parser
- aarch64/fpu: Add vector variants of erfc
- tdf#160376 Add uno:Reload to the Notebookbar UI
- Update to latest Rhino 1.7.14
- Provide API for streaming relation data
- Linux Kernel: Linux 6.9-rc2
Featured content is also available via:
Protect against multixact members wraparound
Enterprise / PostgreSQL - Alvaro Herrera [alvh.no-ip.org] - 28 April 2015 09:32 UTC
Multixact member files are subject to early wraparound overflow and removal: if the average multixact size is above a certain threshold (see note below) the protections against offset overflow are not enough: during multixact truncation at checkpoint time, some pg_multixact/members files would be removed because the server considers them to be old and not needed anymore. This leads to loss of files that are critical to interpret existing tuples's Xmax values.
To protect against this, since we don't have enough info in pg_control and we can't modify it in old branches, we maintain shared memory state about the oldest value that we need to keep; we use this during new multixact creation to abort if an old still-needed file would get overwritten. This value is kept up to date by checkpoints, which makes it not completely accurate but should be good enough. We start emitting warnings sometime earlier, so that the eventual multixact-shutdown doesn't take DBAs completely by surprise (more precisely: once 20 members SLRU segments are remaining before shutdown.)
On troublesome average multixact size: The threshold size depends on the multixact freeze parameters. The oldest age is related to the greater of multixact_freeze_table_age and multixact_freeze_min_age: anything older than that should be removed promptly by autovacuum. If autovacuum is keeping up with multixact freezing, the troublesome multixact average size is (2^32-1) / Max(freeze table age, freeze min age) or around 28 members per multixact. Having an average multixact size larger than that will eventually cause new multixact data to overwrite the data area for older multixacts. (If autovacuum is not able to keep up, or there are errors in vacuuming, the actual maximum is multixact_freeeze_max_age instead, at which point multixact generation is stopped completely. The default value for this limit is 400 million, which means that the multixact size that would cause trouble is about 10 members).
Initial bug report by Timothy Garnett, bug #12990 Backpatch to 9.3, where the problem was introduced.
Authors: Álvaro Herrera, Thomas Munro Reviews: Thomas Munro, Amit Kapila, Robert Haas, Kevin Grittner
b69bf30 Protect against multixact members wraparound
src/backend/access/transam/multixact.c | 203 ++++++++++++++++++++++++++++----
src/backend/bootstrap/bootstrap.c | 9 +-
2 files changed, 187 insertions(+), 25 deletions(-)
Upstream: git.postgresql.org
Related PostgreSQL Activity
- Ensure generated join clauses for child rels have correct relids
Tom Lane - Explicitly list dependent types as extension members in pg_depend
Tom Lane - Fix 'mmap' DSM implementation with allocations larger than 4 GB
Heikki Linnakangas - Clean up Windows-specific mutex code in libpq and ecpglib
Tom Lane
Share
- Tweet
Recent PostgreSQL Activity
- Better handle indirect constraint drops
Alvaro Herrera - Ensure generated join clauses for child rels have correct relids
Tom Lane - psql: Make output of \dD more stable
Peter Eisentraut - Revert: Custom reloptions for table AM
Alexander Korotkov - Doc: Update ulinks to RFC documents to avoid redirect
Daniel Gustafsson