diff options
| author | Heikki Linnakangas | 2012-11-27 08:25:50 +0000 |
|---|---|---|
| committer | Heikki Linnakangas | 2012-11-27 08:25:50 +0000 |
| commit | 1f67078ea324d492a366a24abb2ac313c629314f (patch) | |
| tree | ba8f833b8d1054ec8f687484a744af2f533704a4 /src/backend/utils/cache | |
| parent | 532994299e2ff208a58376134fab75f5ae471e41 (diff) | |
Add OpenTransientFile, with automatic cleanup at end-of-xact.
Files opened with BasicOpenFile or PathNameOpenFile are not automatically
cleaned up on error. That puts unnecessary burden on callers that only want
to keep the file open for a short time. There is AllocateFile, but that
returns a buffered FILE * stream, which in many cases is not the nicest API
to work with. So add function called OpenTransientFile, which returns a
unbuffered fd that's cleaned up like the FILE* returned by AllocateFile().
This plugs a few rare fd leaks in error cases:
1. copy_file() - fixed by by using OpenTransientFile instead of BasicOpenFile
2. XLogFileInit() - fixed by adding close() calls to the error cases. Can't
use OpenTransientFile here because the fd is supposed to persist over
transaction boundaries.
3. lo_import/lo_export - fixed by using OpenTransientFile instead of
PathNameOpenFile.
In addition to plugging those leaks, this replaces many BasicOpenFile() calls
with OpenTransientFile() that were not leaking, because the code meticulously
closed the file on error. That wasn't strictly necessary, but IMHO it's good
for robustness.
The same leaks exist in older versions, but given the rarity of the issues,
I'm not backpatching this. Not yet, anyway - it might be good to backpatch
later, after this mechanism has had some more testing in master branch.
Diffstat (limited to 'src/backend/utils/cache')
| -rw-r--r-- | src/backend/utils/cache/relmapper.c | 19 |
1 files changed, 7 insertions, 12 deletions
diff --git a/src/backend/utils/cache/relmapper.c b/src/backend/utils/cache/relmapper.c index 6f214957bf8..18bf9daf8bf 100644 --- a/src/backend/utils/cache/relmapper.c +++ b/src/backend/utils/cache/relmapper.c @@ -588,7 +588,8 @@ load_relmap_file(bool shared) } /* Read data ... */ - fd = BasicOpenFile(mapfilename, O_RDONLY | PG_BINARY, S_IRUSR | S_IWUSR); + fd = OpenTransientFile(mapfilename, + O_RDONLY | PG_BINARY, S_IRUSR | S_IWUSR); if (fd < 0) ereport(FATAL, (errcode_for_file_access(), @@ -608,7 +609,7 @@ load_relmap_file(bool shared) errmsg("could not read relation mapping file \"%s\": %m", mapfilename))); - close(fd); + CloseTransientFile(fd); /* check for correct magic number, etc */ if (map->magic != RELMAPPER_FILEMAGIC || @@ -672,12 +673,6 @@ write_relmap_file(bool shared, RelMapFile *newmap, /* * Open the target file. We prefer to do this before entering the * critical section, so that an open() failure need not force PANIC. - * - * Note: since we use BasicOpenFile, we are nominally responsible for - * ensuring the fd is closed on error. In practice, this isn't important - * because either an error happens inside the critical section, or we are - * in bootstrap or WAL replay; so an error past this point is always fatal - * anyway. */ if (shared) { @@ -692,9 +687,9 @@ write_relmap_file(bool shared, RelMapFile *newmap, realmap = &local_map; } - fd = BasicOpenFile(mapfilename, - O_WRONLY | O_CREAT | PG_BINARY, - S_IRUSR | S_IWUSR); + fd = OpenTransientFile(mapfilename, + O_WRONLY | O_CREAT | PG_BINARY, + S_IRUSR | S_IWUSR); if (fd < 0) ereport(ERROR, (errcode_for_file_access(), @@ -753,7 +748,7 @@ write_relmap_file(bool shared, RelMapFile *newmap, errmsg("could not fsync relation mapping file \"%s\": %m", mapfilename))); - if (close(fd)) + if (CloseTransientFile(fd)) ereport(ERROR, (errcode_for_file_access(), errmsg("could not close relation mapping file \"%s\": %m", |