Postgres Pro
Downloads
Home   >   mailing lists

Re: SIGQUIT on archiver child processes maybe not such a hot idea? - Mailing list pgsql-hackers

From Stephen Frost
Subject Re: SIGQUIT on archiver child processes maybe not such a hot idea?
Date
Msg-id 20190903194337.GV16436@tamriel.snowman.net
Whole thread Raw
In response to Re: SIGQUIT on archiver child processes maybe not such a hot idea?  (Michael Paquier <michael@paquier.xyz>)
List pgsql-hackers
Tree view 
Greetings,

* Michael Paquier (michael@paquier.xyz) wrote:
> On Mon, Sep 02, 2019 at 12:27:09AM +0000, Tsunakawa, Takayuki wrote:
> > From: Tom Lane [mailto:tgl@sss.pgh.pa.us]
> >> After investigation, the mechanism that's causing that is that the
> >> src/test/recovery/t/010_logical_decoding_timelines.pl test shuts
> >> down its replica server with a mode-immediate stop, which causes
> >> that postmaster to shut down all its children with SIGQUIT, and
> >> in particular that signal propagates to a "cp" command that the
> >> archiver process is executing.  The "cp" is unsurprisingly running
> >> with default SIGQUIT handling, which per the signal man page
> >> includes dumping core.
> >
> > We've experienced this (core dump in the data directory by an
> > archive command) years ago.  Related to this, the example of using
> > cp in the PostgreSQL manual is misleading, because cp doesn't
> > reliably persist the WAL archive file.
>
> The previous talks about having pg_copy are still where they were a
> couple of years ago as we did not agree on which semantics it should
> have.  If we could move forward with that and update the documentation
> from its insanity that would be great and...  The signal handling is
> something else we could customize in a more favorable way with the
> archiver.  Anyway, switching from something else than SIGQUIT to stop
> the archiver will not prevent any other tools from generating core
> dumps with this other signal.

Any tools being used for archive command (which should basically be
things designed to be used as such and certainly not cp...) should be
prepared to handle what PG ends up doing here.  I don't think we should
change to a different signal because it'll make 'cp' do something
different.  If there's a good reason to use a different signal, great.

In other words, I think I agree with Tom that maybe we should be using
SIGINT here, but not so much because of exactly what cp does but rather
because that's a more appropriate signal, as shown by what the default
handling for those signals is.

Thanks,

Stephen
Attachment

pgsql-hackers by date:

Previous
From: Stephen Frost
Date:
Subject: Re: add a MAC check for TRUNCATE
Next
From: Stephen Frost
Date:
Subject: Re: SIGQUIT on archiver child processes maybe not such a hot idea?