On Tue, Nov 07, 2023 at 12:57:32AM +0000, John Morris wrote:
> I incorporated your suggestions and added a few more. The changes are
> mainly related to catching potential errors if some basic assumptions
> aren’t met.
Hm. Could we move that to a separate patch? We've lived without these
extra checks for a very long time, and I'm not aware of any related issues,
so I'm not sure it's worth the added complexity. And IMO it'd be better to
keep it separate from the initial atomics conversion, anyway.
> I found the comment about cache coherency a bit confusing. We are dealing
> with a single address, so there should be no memory ordering or coherency
> issues. (Did I misunderstand?) I see it more as a race condition. Rather
> than merely explaining why it shouldn’t happen, the new version verifies
> the assumptions and throws an Assert() if something goes wrong.
I was thinking of the comment for pg_atomic_read_u32() that I cited earlier
[0]. This comment also notes that pg_atomic_read_u32/64() has no barrier
semantics. My interpretation of that comment is that these functions
provide no guarantee that the value returned is the most up-to-date value.
But my interpretation could be wrong, and maybe this is meant to highlight
that the value might change before we can use the return value in a
compare/exchange or something.
I spent a little time earlier today reviewing the various underlying
implementations, but apparently I need to spend some more time looking at
those...
[0] https://postgr.es/m/20231102034006.GA85609%40nathanxps13
--
Nathan Bossart
Amazon Web Services: https://aws.amazon.com
