| From: | Heikki Linnakangas <heikki(dot)linnakangas(at)enterprisedb(dot)com> |
|---|---|
| To: | Simon Riggs <simon(at)2ndQuadrant(dot)com> |
| Cc: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Robert Haas <robertmhaas(at)gmail(dot)com>, jd(at)commandprompt(dot)com, Thom Brown <thom(at)linux(dot)com>, Bruce Momjian <bruce(at)momjian(dot)us>, Andrew Dunstan <andrew(at)dunslane(dot)net>, Dave Page <dpage(at)pgadmin(dot)org>, Peter Eisentraut <peter_e(at)gmx(dot)net>, Fujii Masao <masao(dot)fujii(at)gmail(dot)com>, Josh Berkus <josh(at)agliodbs(dot)com>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Configuring synchronous replication |
| Date: | 2010-09-24 08:43:07 |
| Message-ID: | 4C9C649B.9060600@enterprisedb.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers pgsql-hackers |
On 24/09/10 01:11, Simon Riggs wrote:
> On Thu, 2010-09-23 at 20:42 +0300, Heikki Linnakangas wrote:
>> If you want the behavior where the master doesn't acknowledge a
>> commit
>> to the client until the standby (or all standbys, or one of them
>> etc.)
>> acknowledges it, even if the standby is not currently connected, the
>> master needs to know what standby servers exist. *That's* why
>> synchronous replication needs a list of standby servers in the master.
>>
>> If you're willing to downgrade to a mode where commit waits for
>> acknowledgment only from servers that are currently connected, then
>> you don't need any new configuration files.
>
> As I keep pointing out, waiting for an acknowledgement from something
> that isn't there might just take a while. The only guarantee that
> provides is that you will wait a long time. Is my data more safe? No.
It provides zero data loss, at the expense of availability. That's what
synchronous replication is all about.
> To get zero data loss *and* continuous availability, you need two
> standbys offering sync rep and reply-to-first behaviour.
Yes, that is a good point.
I'm starting to understand what your proposal was all about. It makes
sense when you think of a three node system configured for high
availability with zero data loss like that.
The use case of keeping hot standby servers up todate in a cluster where
read-only queries are distributed across all nodes seems equally
important though. What's the simplest method of configuration that
supports both use cases?
> You don't need standby registration to achieve that.
Not necessarily I guess, but it creeps me out that a standby can just
connect to the master and act as a synchronous slave, and there is no
controls in the master on what standby servers there are.
More complicated scenarios with quorums and different number of votes
get increasingly complicated if there is no central place to configure
it. But maybe we can ignore the more complicated setups for now.
--
Heikki Linnakangas
EnterpriseDB http://www.enterprisedb.com
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Simon Riggs | 2010-09-24 10:37:44 | Re: Configuring synchronous replication |
| Previous Message | Heikki Linnakangas | 2010-09-24 08:08:24 | Re: Configuring synchronous replication |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Heikki Linnakangas | 2010-09-24 09:12:38 | Re: patch: SQL/MED(FDW) DDL |
| Previous Message | Thom Brown | 2010-09-24 08:33:17 | Enable logging requires restart |