| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Giles Lean <giles(at)nemeton(dot)com(dot)au> |
| Cc: | pgsql-hackers(at)postgreSQL(dot)org |
| Subject: | Re: Improving backend startup interlock |
| Date: | 2002-09-29 03:06:07 |
| Message-ID: | 7395.1033268767@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Giles Lean <giles(at)nemeton(dot)com(dot)au> writes:
> I'm certainly no fan of NFS locking, but if someone trusts their NFS
> client and server implementations enough to put their data on, they
> might as well trust it to get a single lock file for startup right
> too. IMHO. Your mileage may vary.
Well, my local man page for lockf() sez
The advisory record-locking capabilities of lockf() are implemented
throughout the network by the ``network lock daemon'' (see lockd(1M)).
If the file server crashes and is rebooted, the lock daemon attempts
to recover all locks associated with the crashed server. If a lock
cannot be reclaimed, the process that held the lock is issued a
SIGLOST signal.
and the lockd man page mentions that not only lockd but statd have to be
running locally *and* at the NFS server.
This sure sounds like file locking on NFS introduces additional
failure modes above and beyond what we have already.
Since the entire point of this locking exercise is to improve PG's
robustness, solutions that depend on other daemons not crashing
don't sound like a step forward to me. I'm willing to trust the local
kernel, but I get antsy if I have to trust more than that.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2002-09-29 03:24:44 | Re: NUMERIC's transcendental functions |
| Previous Message | Giles Lean | 2002-09-29 02:58:53 | Re: Improving backend startup interlock |