Request a Demo
Home   >   mailing lists

Re: `pg_ctl init` crashes when run concurrently; semget(2) suspected - Mailing list pgsql-hackers

From Tom Lane
Subject Re: `pg_ctl init` crashes when run concurrently; semget(2) suspected
Date
Msg-id 2825802.1754925137@sss.pgh.pa.us
Whole thread Raw
In response to Re: `pg_ctl init` crashes when run concurrently; semget(2) suspected  (Tom Lane <tgl@sss.pgh.pa.us>)
Responses Re: `pg_ctl init` crashes when run concurrently; semget(2) suspected
List pgsql-hackers
Tree view 
I wrote:
> My first thought about fixing it is to go ahead and retry after
> EINVAL, but keep a count of failures, and give up after 100 or 1000
> or so.  This'd be safer in any case --- it's not really great that
> IpcSemaphoreCreate is willing to retry an infinite number of times.

Concretely, about like the attached.  I don't have any clear idea
about what loop limit to use, but I think we do need one.

            regards, tom lane

diff --git a/src/backend/port/sysv_sema.c b/src/backend/port/sysv_sema.c
index 423b2b4f9d6..8984a0aa2d1 100644
--- a/src/backend/port/sysv_sema.c
+++ b/src/backend/port/sysv_sema.c
@@ -69,7 +69,7 @@ static int    nextSemaNumber;        /* next free sem num in last sema set */


 static IpcSemaphoreId InternalIpcSemaphoreCreate(IpcSemaphoreKey semKey,
-                                                 int numSems);
+                                                 int numSems, bool retry_ok);
 static void IpcSemaphoreInitialize(IpcSemaphoreId semId, int semNum,
                                    int value);
 static void IpcSemaphoreKill(IpcSemaphoreId semId);
@@ -88,9 +88,13 @@ static void ReleaseSemaphores(int status, Datum arg);
  * If we fail with a failure code other than collision-with-existing-set,
  * print out an error and abort.  Other types of errors suggest nonrecoverable
  * problems.
+ *
+ * Unfortunately, it's sometimes hard to tell whether errors are
+ * nonrecoverable.  Our caller keeps track of whether continuing to retry
+ * is sane or not; if not, we abort on failure regardless of the errno.
  */
 static IpcSemaphoreId
-InternalIpcSemaphoreCreate(IpcSemaphoreKey semKey, int numSems)
+InternalIpcSemaphoreCreate(IpcSemaphoreKey semKey, int numSems, bool retry_ok)
 {
     int            semId;

@@ -101,16 +105,27 @@ InternalIpcSemaphoreCreate(IpcSemaphoreKey semKey, int numSems)
         int            saved_errno = errno;

         /*
-         * Fail quietly if error indicates a collision with existing set. One
-         * would expect EEXIST, given that we said IPC_EXCL, but perhaps we
-         * could get a permission violation instead?  Also, EIDRM might occur
-         * if an old set is slated for destruction but not gone yet.
+         * Fail quietly if error suggests a collision with an existing set and
+         * our caller has not lost patience.
+         *
+         * One would expect EEXIST, given that we said IPC_EXCL, but perhaps
+         * we could get a permission violation instead.  On some platforms
+         * EINVAL will be reported if the existing set has too few semaphores.
+         * Also, EIDRM might occur if an old set is slated for destruction but
+         * not gone yet.
+         *
+         * EINVAL is the key reason why we need the caller-level loop limit,
+         * as it can also mean that the platform's SEMMSL is less than
+         * numSems, and that condition will not go away.
          */
-        if (saved_errno == EEXIST || saved_errno == EACCES
+        if (retry_ok &&
+            (saved_errno == EEXIST
+             || saved_errno == EACCES
+             || saved_errno == EINVAL
 #ifdef EIDRM
-            || saved_errno == EIDRM
+             || saved_errno == EIDRM
 #endif
-            )
+             ))
             return -1;

         /*
@@ -207,17 +222,22 @@ IpcSemaphoreGetLastPID(IpcSemaphoreId semId, int semNum)
 static IpcSemaphoreId
 IpcSemaphoreCreate(int numSems)
 {
+    int            num_tries = 0;
     IpcSemaphoreId semId;
     union semun semun;
     PGSemaphoreData mysema;

     /* Loop till we find a free IPC key */
-    for (nextSemaKey++;; nextSemaKey++)
+    for (nextSemaKey++;; nextSemaKey++, num_tries++)
     {
         pid_t        creatorPID;

-        /* Try to create new semaphore set */
-        semId = InternalIpcSemaphoreCreate(nextSemaKey, numSems + 1);
+        /*
+         * Try to create new semaphore set.  Give up after trying 1000
+         * distinct IPC keys.
+         */
+        semId = InternalIpcSemaphoreCreate(nextSemaKey, numSems + 1,
+                                           num_tries < 1000);
         if (semId >= 0)
             break;                /* successful create */

@@ -254,7 +274,7 @@ IpcSemaphoreCreate(int numSems)
         /*
          * Now try again to create the sema set.
          */
-        semId = InternalIpcSemaphoreCreate(nextSemaKey, numSems + 1);
+        semId = InternalIpcSemaphoreCreate(nextSemaKey, numSems + 1, true);
         if (semId >= 0)
             break;                /* successful create */

pgsql-hackers by date:

Previous
From: Robert Haas
Date:
Subject: Re: Foreign key isolation tests
Next
From: Xuneng Zhou
Date:
Subject: Re: Possible inaccurate description of wal_compression in docs