1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
|
/*-------------------------------------------------------------------------
*
* pmchild.c
* Functions for keeping track of postmaster child processes.
*
* Postmaster keeps track of all child processes so that when a process exits,
* it knows what kind of a process it was and can clean up accordingly. Every
* child process is allocated a PMChild struct from a fixed pool of structs.
* The size of the pool is determined by various settings that configure how
* many worker processes and backend connections are allowed, i.e.
* autovacuum_max_workers, max_worker_processes, max_wal_senders, and
* max_connections.
*
* Dead-end backends are handled slightly differently. There is no limit
* on the number of dead-end backends, and they do not need unique IDs, so
* their PMChild structs are allocated dynamically, not from a pool.
*
* The structures and functions in this file are private to the postmaster
* process. But note that there is an array in shared memory, managed by
* pmsignal.c, that mirrors this.
*
*
* Portions Copyright (c) 1996-2025, PostgreSQL Global Development Group
* Portions Copyright (c) 1994, Regents of the University of California
*
* IDENTIFICATION
* src/backend/postmaster/pmchild.c
*
*-------------------------------------------------------------------------
*/
#include "postgres.h"
#include "miscadmin.h"
#include "postmaster/autovacuum.h"
#include "postmaster/postmaster.h"
#include "replication/walsender.h"
#include "storage/pmsignal.h"
#include "storage/proc.h"
/*
* Freelists for different kinds of child processes. We maintain separate
* pools for each, so that for example launching a lot of regular backends
* cannot prevent autovacuum or an aux process from launching.
*/
typedef struct PMChildPool
{
int size; /* number of PMChild slots reserved for this
* kind of processes */
int first_slotno; /* first slot belonging to this pool */
dlist_head freelist; /* currently unused PMChild entries */
} PMChildPool;
static PMChildPool pmchild_pools[BACKEND_NUM_TYPES];
NON_EXEC_STATIC int num_pmchild_slots = 0;
/*
* List of active child processes. This includes dead-end children.
*/
dlist_head ActiveChildList;
/*
* MaxLivePostmasterChildren
*
* This reports the number of postmaster child processes that can be active.
* It includes all children except for dead-end children. This allows the
* array in shared memory (PMChildFlags) to have a fixed maximum size.
*/
int
MaxLivePostmasterChildren(void)
{
if (num_pmchild_slots == 0)
elog(ERROR, "PM child array not initialized yet");
return num_pmchild_slots;
}
/*
* Initialize at postmaster startup
*
* Note: This is not called on crash restart. We rely on PMChild entries to
* remain valid through the restart process. This is important because the
* syslogger survives through the crash restart process, so we must not
* invalidate its PMChild slot.
*/
void
InitPostmasterChildSlots(void)
{
int slotno;
PMChild *slots;
/*
* We allow more connections here than we can have backends because some
* might still be authenticating; they might fail auth, or some existing
* backend might exit before the auth cycle is completed. The exact
* MaxConnections limit is enforced when a new backend tries to join the
* PGPROC array.
*
* WAL senders start out as regular backends, so they share the same pool.
*/
pmchild_pools[B_BACKEND].size = 2 * (MaxConnections + max_wal_senders);
pmchild_pools[B_AUTOVAC_WORKER].size = autovacuum_max_workers;
pmchild_pools[B_BG_WORKER].size = max_worker_processes;
/*
* There can be only one of each of these running at a time. They each
* get their own pool of just one entry.
*/
pmchild_pools[B_AUTOVAC_LAUNCHER].size = 1;
pmchild_pools[B_SLOTSYNC_WORKER].size = 1;
pmchild_pools[B_ARCHIVER].size = 1;
pmchild_pools[B_BG_WRITER].size = 1;
pmchild_pools[B_CHECKPOINTER].size = 1;
pmchild_pools[B_STARTUP].size = 1;
pmchild_pools[B_WAL_RECEIVER].size = 1;
pmchild_pools[B_WAL_SUMMARIZER].size = 1;
pmchild_pools[B_WAL_WRITER].size = 1;
pmchild_pools[B_LOGGER].size = 1;
/* The rest of the pmchild_pools are left at zero size */
/* Count the total number of slots */
num_pmchild_slots = 0;
for (int i = 0; i < BACKEND_NUM_TYPES; i++)
num_pmchild_slots += pmchild_pools[i].size;
/* Initialize them */
slots = palloc(num_pmchild_slots * sizeof(PMChild));
slotno = 0;
for (int btype = 0; btype < BACKEND_NUM_TYPES; btype++)
{
pmchild_pools[btype].first_slotno = slotno + 1;
dlist_init(&pmchild_pools[btype].freelist);
for (int j = 0; j < pmchild_pools[btype].size; j++)
{
slots[slotno].pid = 0;
slots[slotno].child_slot = slotno + 1;
slots[slotno].bkend_type = B_INVALID;
slots[slotno].rw = NULL;
slots[slotno].bgworker_notify = false;
dlist_push_tail(&pmchild_pools[btype].freelist, &slots[slotno].elem);
slotno++;
}
}
Assert(slotno == num_pmchild_slots);
/* Initialize other structures */
dlist_init(&ActiveChildList);
}
/*
* Allocate a PMChild entry for a postmaster child process of given type.
*
* The entry is taken from the right pool for the type.
*
* pmchild->child_slot in the returned struct is unique among all active child
* processes.
*/
PMChild *
AssignPostmasterChildSlot(BackendType btype)
{
dlist_head *freelist;
PMChild *pmchild;
if (pmchild_pools[btype].size == 0)
elog(ERROR, "cannot allocate a PMChild slot for backend type %d", btype);
freelist = &pmchild_pools[btype].freelist;
if (dlist_is_empty(freelist))
return NULL;
pmchild = dlist_container(PMChild, elem, dlist_pop_head_node(freelist));
pmchild->pid = 0;
pmchild->bkend_type = btype;
pmchild->rw = NULL;
pmchild->bgworker_notify = true;
/*
* pmchild->child_slot for each entry was initialized when the array of
* slots was allocated. Sanity check it.
*/
if (!(pmchild->child_slot >= pmchild_pools[btype].first_slotno &&
pmchild->child_slot < pmchild_pools[btype].first_slotno + pmchild_pools[btype].size))
{
elog(ERROR, "pmchild freelist for backend type %d is corrupt",
pmchild->bkend_type);
}
dlist_push_head(&ActiveChildList, &pmchild->elem);
/* Update the status in the shared memory array */
MarkPostmasterChildSlotAssigned(pmchild->child_slot);
elog(DEBUG2, "assigned pm child slot %d for %s",
pmchild->child_slot, PostmasterChildName(btype));
return pmchild;
}
/*
* Allocate a PMChild struct for a dead-end backend. Dead-end children are
* not assigned a child_slot number. The struct is palloc'd; returns NULL if
* out of memory.
*/
PMChild *
AllocDeadEndChild(void)
{
PMChild *pmchild;
elog(DEBUG2, "allocating dead-end child");
pmchild = (PMChild *) palloc_extended(sizeof(PMChild), MCXT_ALLOC_NO_OOM);
if (pmchild)
{
pmchild->pid = 0;
pmchild->child_slot = 0;
pmchild->bkend_type = B_DEAD_END_BACKEND;
pmchild->rw = NULL;
pmchild->bgworker_notify = false;
dlist_push_head(&ActiveChildList, &pmchild->elem);
}
return pmchild;
}
/*
* Release a PMChild slot, after the child process has exited.
*
* Returns true if the child detached cleanly from shared memory, false
* otherwise (see MarkPostmasterChildSlotUnassigned).
*/
bool
ReleasePostmasterChildSlot(PMChild *pmchild)
{
dlist_delete(&pmchild->elem);
if (pmchild->bkend_type == B_DEAD_END_BACKEND)
{
elog(DEBUG2, "releasing dead-end backend");
pfree(pmchild);
return true;
}
else
{
PMChildPool *pool;
elog(DEBUG2, "releasing pm child slot %d", pmchild->child_slot);
/* WAL senders start out as regular backends, and share the pool */
if (pmchild->bkend_type == B_WAL_SENDER)
pool = &pmchild_pools[B_BACKEND];
else
pool = &pmchild_pools[pmchild->bkend_type];
/* sanity check that we return the entry to the right pool */
if (!(pmchild->child_slot >= pool->first_slotno &&
pmchild->child_slot < pool->first_slotno + pool->size))
{
elog(ERROR, "pmchild freelist for backend type %d is corrupt",
pmchild->bkend_type);
}
dlist_push_head(&pool->freelist, &pmchild->elem);
return MarkPostmasterChildSlotUnassigned(pmchild->child_slot);
}
}
/*
* Find the PMChild entry of a running child process by PID.
*/
PMChild *
FindPostmasterChildByPid(int pid)
{
dlist_iter iter;
dlist_foreach(iter, &ActiveChildList)
{
PMChild *bp = dlist_container(PMChild, elem, iter.cur);
if (bp->pid == pid)
return bp;
}
return NULL;
}
|
