PostgreSQL Source Code  git master
dbcommands.c
Go to the documentation of this file.
1 /*-------------------------------------------------------------------------
2  *
3  * dbcommands.c
4  * Database management commands (create/drop database).
5  *
6  * Note: database creation/destruction commands use exclusive locks on
7  * the database objects (as expressed by LockSharedObject()) to avoid
8  * stepping on each others' toes. Formerly we used table-level locks
9  * on pg_database, but that's too coarse-grained.
10  *
11  * Portions Copyright (c) 1996-2022, PostgreSQL Global Development Group
12  * Portions Copyright (c) 1994, Regents of the University of California
13  *
14  *
15  * IDENTIFICATION
16  * src/backend/commands/dbcommands.c
17  *
18  *-------------------------------------------------------------------------
19  */
20 #include "postgres.h"
21 
22 #include <fcntl.h>
23 #include <unistd.h>
24 #include <sys/stat.h>
25 
26 #include "access/genam.h"
27 #include "access/heapam.h"
28 #include "access/htup_details.h"
29 #include "access/multixact.h"
30 #include "access/tableam.h"
31 #include "access/xact.h"
32 #include "access/xloginsert.h"
33 #include "access/xlogrecovery.h"
34 #include "access/xlogutils.h"
35 #include "catalog/catalog.h"
36 #include "catalog/dependency.h"
37 #include "catalog/indexing.h"
38 #include "catalog/objectaccess.h"
39 #include "catalog/pg_authid.h"
40 #include "catalog/pg_collation.h"
41 #include "catalog/pg_database.h"
42 #include "catalog/pg_db_role_setting.h"
43 #include "catalog/pg_subscription.h"
44 #include "catalog/pg_tablespace.h"
45 #include "commands/comment.h"
46 #include "commands/dbcommands.h"
47 #include "commands/dbcommands_xlog.h"
48 #include "commands/defrem.h"
49 #include "commands/seclabel.h"
50 #include "commands/tablespace.h"
51 #include "common/file_perm.h"
52 #include "mb/pg_wchar.h"
53 #include "miscadmin.h"
54 #include "pgstat.h"
55 #include "postmaster/bgwriter.h"
56 #include "replication/slot.h"
57 #include "storage/copydir.h"
58 #include "storage/fd.h"
59 #include "storage/ipc.h"
60 #include "storage/lmgr.h"
61 #include "storage/md.h"
62 #include "storage/procarray.h"
63 #include "storage/smgr.h"
64 #include "utils/acl.h"
65 #include "utils/builtins.h"
66 #include "utils/fmgroids.h"
67 #include "utils/guc.h"
68 #include "utils/pg_locale.h"
69 #include "utils/relmapper.h"
70 #include "utils/snapmgr.h"
71 #include "utils/syscache.h"
72 
73 /*
74  * Create database strategy.
75  *
76  * CREATEDB_WAL_LOG will copy the database at the block level and WAL log each
77  * copied block.
78  *
79  * CREATEDB_FILE_COPY will simply perform a file system level copy of the
80  * database and log a single record for each tablespace copied. To make this
81  * safe, it also triggers checkpoints before and after the operation.
82  */
83 typedef enum CreateDBStrategy
84 {
85  CREATEDB_WAL_LOG,
86  CREATEDB_FILE_COPY
87 } CreateDBStrategy;
88 
89 typedef struct
90 {
91  Oid src_dboid; /* source (template) DB */
92  Oid dest_dboid; /* DB we are trying to create */
93  CreateDBStrategy strategy; /* create db strategy */
94 } createdb_failure_params;
95 
96 typedef struct
97 {
98  Oid dest_dboid; /* DB we are trying to move */
99  Oid dest_tsoid; /* tablespace we are trying to move to */
100 } movedb_failure_params;
101 
102 /*
103  * Information about a relation to be copied when creating a database.
104  */
105 typedef struct CreateDBRelInfo
106 {
107  RelFileLocator rlocator; /* physical relation identifier */
108  Oid reloid; /* relation oid */
109  bool permanent; /* relation is permanent or unlogged */
110 } CreateDBRelInfo;
111 
112 
113 /* non-export function prototypes */
114 static void createdb_failure_callback(int code, Datum arg);
115 static void movedb(const char *dbname, const char *tblspcname);
116 static void movedb_failure_callback(int code, Datum arg);
117 static bool get_db_info(const char *name, LOCKMODE lockmode,
118  Oid *dbIdP, Oid *ownerIdP,
119  int *encodingP, bool *dbIsTemplateP, bool *dbAllowConnP,
120  TransactionId *dbFrozenXidP, MultiXactId *dbMinMultiP,
121  Oid *dbTablespace, char **dbCollate, char **dbCtype, char **dbIculocale,
122  char *dbLocProvider,
123  char **dbCollversion);
124 static bool have_createdb_privilege(void);
125 static void remove_dbtablespaces(Oid db_id);
126 static bool check_db_file_conflict(Oid db_id);
127 static int errdetail_busy_db(int notherbackends, int npreparedxacts);
128 static void CreateDatabaseUsingWalLog(Oid src_dboid, Oid dst_dboid, Oid src_tsid,
129  Oid dst_tsid);
130 static List *ScanSourceDatabasePgClass(Oid tbid, Oid dbid, char *srcpath);
131 static List *ScanSourceDatabasePgClassPage(Page page, Buffer buf, Oid tbid,
132  Oid dbid, char *srcpath,
133  List *rlocatorlist, Snapshot snapshot);
134 static CreateDBRelInfo *ScanSourceDatabasePgClassTuple(HeapTupleData *tuple,
135  Oid tbid, Oid dbid,
136  char *srcpath);
137 static void CreateDirAndVersionFile(char *dbpath, Oid dbid, Oid tsid,
138  bool isRedo);
139 static void CreateDatabaseUsingFileCopy(Oid src_dboid, Oid dst_dboid,
140  Oid src_tsid, Oid dst_tsid);
141 static void recovery_create_dbdir(char *path, bool only_tblspc);
142 
143 /*
144  * Create a new database using the WAL_LOG strategy.
145  *
146  * Each copied block is separately written to the write-ahead log.
147  */
148 static void
149 CreateDatabaseUsingWalLog(Oid src_dboid, Oid dst_dboid,
150  Oid src_tsid, Oid dst_tsid)
151 {
152  char *srcpath;
153  char *dstpath;
154  List *rlocatorlist = NULL;
155  ListCell *cell;
156  LockRelId srcrelid;
157  LockRelId dstrelid;
158  RelFileLocator srcrlocator;
159  RelFileLocator dstrlocator;
160  CreateDBRelInfo *relinfo;
161 
162  /* Get source and destination database paths. */
163  srcpath = GetDatabasePath(src_dboid, src_tsid);
164  dstpath = GetDatabasePath(dst_dboid, dst_tsid);
165 
166  /* Create database directory and write PG_VERSION file. */
167  CreateDirAndVersionFile(dstpath, dst_dboid, dst_tsid, false);
168 
169  /* Copy relmap file from source database to the destination database. */
170  RelationMapCopy(dst_dboid, dst_tsid, srcpath, dstpath);
171 
172  /* Get list of relfilelocators to copy from the source database. */
173  rlocatorlist = ScanSourceDatabasePgClass(src_tsid, src_dboid, srcpath);
174  Assert(rlocatorlist != NIL);
175 
176  /*
177  * Database IDs will be the same for all relations so set them before
178  * entering the loop.
179  */
180  srcrelid.dbId = src_dboid;
181  dstrelid.dbId = dst_dboid;
182 
183  /* Loop over our list of relfilelocators and copy each one. */
184  foreach(cell, rlocatorlist)
185  {
186  relinfo = lfirst(cell);
187  srcrlocator = relinfo->rlocator;
188 
189  /*
190  * If the relation is from the source db's default tablespace then we
191  * need to create it in the destination db's default tablespace.
192  * Otherwise, we need to create in the same tablespace as it is in the
193  * source database.
194  */
195  if (srcrlocator.spcOid == src_tsid)
196  dstrlocator.spcOid = dst_tsid;
197  else
198  dstrlocator.spcOid = srcrlocator.spcOid;
199 
200  dstrlocator.dbOid = dst_dboid;
201  dstrlocator.relNumber = srcrlocator.relNumber;
202 
203  /*
204  * Acquire locks on source and target relations before copying.
205  *
206  * We typically do not read relation data into shared_buffers without
207  * holding a relation lock. It's unclear what could go wrong if we
208  * skipped it in this case, because nobody can be modifying either the
209  * source or destination database at this point, and we have locks on
210  * both databases, too, but let's take the conservative route.
211  */
212  dstrelid.relId = srcrelid.relId = relinfo->reloid;
213  LockRelationId(&srcrelid, AccessShareLock);
214  LockRelationId(&dstrelid, AccessShareLock);
215 
216  /* Copy relation storage from source to the destination. */
217  CreateAndCopyRelationData(srcrlocator, dstrlocator, relinfo->permanent);
218 
219  /* Release the relation locks. */
220  UnlockRelationId(&srcrelid, AccessShareLock);
221  UnlockRelationId(&dstrelid, AccessShareLock);
222  }
223 
224  pfree(srcpath);
225  pfree(dstpath);
226  list_free_deep(rlocatorlist);
227 }
228 
229 /*
230  * Scan the pg_class table in the source database to identify the relations
231  * that need to be copied to the destination database.
232  *
233  * This is an exception to the usual rule that cross-database access is
234  * not possible. We can make it work here because we know that there are no
235  * connections to the source database and (since there can't be prepared
236  * transactions touching that database) no in-doubt tuples either. This
237  * means that we don't need to worry about pruning removing anything from
238  * under us, and we don't need to be too picky about our snapshot either.
239  * As long as it sees all previously-committed XIDs as committed and all
240  * aborted XIDs as aborted, we should be fine: nothing else is possible
241  * here.
242  *
243  * We can't rely on the relcache for anything here, because that only knows
244  * about the database to which we are connected, and can't handle access to
245  * other databases. That also means we can't rely on the heap scan
246  * infrastructure, which would be a bad idea anyway since it might try
247  * to do things like HOT pruning which we definitely can't do safely in
248  * a database to which we're not even connected.
249  */
250 static List *
251 ScanSourceDatabasePgClass(Oid tbid, Oid dbid, char *srcpath)
252 {
253  RelFileLocator rlocator;
254  BlockNumber nblocks;
255  BlockNumber blkno;
256  Buffer buf;
257  RelFileNumber relfilenumber;
258  Page page;
259  List *rlocatorlist = NIL;
260  LockRelId relid;
261  Snapshot snapshot;
262  SMgrRelation smgr;
263  BufferAccessStrategy bstrategy;
264 
265  /* Get pg_class relfilenumber. */
266  relfilenumber = RelationMapOidToFilenumberForDatabase(srcpath,
267  RelationRelationId);
268 
269  /* Don't read data into shared_buffers without holding a relation lock. */
270  relid.dbId = dbid;
271  relid.relId = RelationRelationId;
272  LockRelationId(&relid, AccessShareLock);
273 
274  /* Prepare a RelFileLocator for the pg_class relation. */
275  rlocator.spcOid = tbid;
276  rlocator.dbOid = dbid;
277  rlocator.relNumber = relfilenumber;
278 
279  smgr = smgropen(rlocator, InvalidBackendId);
280  nblocks = smgrnblocks(smgr, MAIN_FORKNUM);
281  smgrclose(smgr);
282 
283  /* Use a buffer access strategy since this is a bulk read operation. */
284  bstrategy = GetAccessStrategy(BAS_BULKREAD);
285 
286  /*
287  * As explained in the function header comments, we need a snapshot that
288  * will see all committed transactions as committed, and our transaction
289  * snapshot - or the active snapshot - might not be new enough for that,
290  * but the return value of GetLatestSnapshot() should work fine.
291  */
292  snapshot = GetLatestSnapshot();
293 
294  /* Process the relation block by block. */
295  for (blkno = 0; blkno < nblocks; blkno++)
296  {
297  CHECK_FOR_INTERRUPTS();
298 
299  buf = ReadBufferWithoutRelcache(rlocator, MAIN_FORKNUM, blkno,
300  RBM_NORMAL, bstrategy, false);
301 
302  LockBuffer(buf, BUFFER_LOCK_SHARE);
303  page = BufferGetPage(buf);
304  if (PageIsNew(page) || PageIsEmpty(page))
305  {
306  UnlockReleaseBuffer(buf);
307  continue;
308  }
309 
310  /* Append relevant pg_class tuples for current page to rlocatorlist. */
311  rlocatorlist = ScanSourceDatabasePgClassPage(page, buf, tbid, dbid,
312  srcpath, rlocatorlist,
313  snapshot);
314 
315  UnlockReleaseBuffer(buf);
316  }
317 
318  /* Release relation lock. */
319  UnlockRelationId(&relid, AccessShareLock);
320 
321  return rlocatorlist;
322 }
323 
324 /*
325  * Scan one page of the source database's pg_class relation and add relevant
326  * entries to rlocatorlist. The return value is the updated list.
327  */
328 static List *
329 ScanSourceDatabasePgClassPage(Page page, Buffer buf, Oid tbid, Oid dbid,
330  char *srcpath, List *rlocatorlist,
331  Snapshot snapshot)
332 {
333  BlockNumber blkno = BufferGetBlockNumber(buf);
334  OffsetNumber offnum;
335  OffsetNumber maxoff;
336  HeapTupleData tuple;
337 
338  maxoff = PageGetMaxOffsetNumber(page);
339 
340  /* Loop over offsets. */
341  for (offnum = FirstOffsetNumber;
342  offnum <= maxoff;
343  offnum = OffsetNumberNext(offnum))
344  {
345  ItemId itemid;
346 
347  itemid = PageGetItemId(page, offnum);
348 
349  /* Nothing to do if slot is empty or already dead. */
350  if (!ItemIdIsUsed(itemid) || ItemIdIsDead(itemid) ||
351  ItemIdIsRedirected(itemid))
352  continue;
353 
354  Assert(ItemIdIsNormal(itemid));
355  ItemPointerSet(&(tuple.t_self), blkno, offnum);
356 
357  /* Initialize a HeapTupleData structure. */
358  tuple.t_data = (HeapTupleHeader) PageGetItem(page, itemid);
359  tuple.t_len = ItemIdGetLength(itemid);
360  tuple.t_tableOid = RelationRelationId;
361 
362  /* Skip tuples that are not visible to this snapshot. */
363  if (HeapTupleSatisfiesVisibility(&tuple, snapshot, buf))
364  {
365  CreateDBRelInfo *relinfo;
366 
367  /*
368  * ScanSourceDatabasePgClassTuple is in charge of constructing a
369  * CreateDBRelInfo object for this tuple, but can also decide that
370  * this tuple isn't something we need to copy. If we do need to
371  * copy the relation, add it to the list.
372  */
373  relinfo = ScanSourceDatabasePgClassTuple(&tuple, tbid, dbid,
374  srcpath);
375  if (relinfo != NULL)
376  rlocatorlist = lappend(rlocatorlist, relinfo);
377  }
378  }
379 
380  return rlocatorlist;
381 }
382 
383 /*
384  * Decide whether a certain pg_class tuple represents something that
385  * needs to be copied from the source database to the destination database,
386  * and if so, construct a CreateDBRelInfo for it.
387  *
388  * Visibility checks are handled by the caller, so our job here is just
389  * to assess the data stored in the tuple.
390  */
391 CreateDBRelInfo *
392 ScanSourceDatabasePgClassTuple(HeapTupleData *tuple, Oid tbid, Oid dbid,
393  char *srcpath)
394 {
395  CreateDBRelInfo *relinfo;
396  Form_pg_class classForm;
397  RelFileNumber relfilenumber = InvalidRelFileNumber;
398 
399  classForm = (Form_pg_class) GETSTRUCT(tuple);
400 
401  /*
402  * Return NULL if this object does not need to be copied.
403  *
404  * Shared objects don't need to be copied, because they are shared.
405  * Objects without storage can't be copied, because there's nothing to
406  * copy. Temporary relations don't need to be copied either, because they
407  * are inaccessible outside of the session that created them, which must
408  * be gone already, and couldn't connect to a different database if it
409  * still existed. autovacuum will eventually remove the pg_class entries
410  * as well.
411  */
412  if (classForm->reltablespace == GLOBALTABLESPACE_OID ||
413  !RELKIND_HAS_STORAGE(classForm->relkind) ||
414  classForm->relpersistence == RELPERSISTENCE_TEMP)
415  return NULL;
416 
417  /*
418  * If relfilenumber is valid then directly use it. Otherwise, consult the
419  * relmap.
420  */
421  if (RelFileNumberIsValid(classForm->relfilenode))
422  relfilenumber = classForm->relfilenode;
423  else
424  relfilenumber = RelationMapOidToFilenumberForDatabase(srcpath,
425  classForm->oid);
426 
427  /* We must have a valid relfilenumber. */
428  if (!RelFileNumberIsValid(relfilenumber))
429  elog(ERROR, "relation with OID %u does not have a valid relfilenumber",
430  classForm->oid);
431 
432  /* Prepare a rel info element and add it to the list. */
433  relinfo = (CreateDBRelInfo *) palloc(sizeof(CreateDBRelInfo));
434  if (OidIsValid(classForm->reltablespace))
435  relinfo->rlocator.spcOid = classForm->reltablespace;
436  else
437  relinfo->rlocator.spcOid = tbid;
438 
439  relinfo->rlocator.dbOid = dbid;
440  relinfo->rlocator.relNumber = relfilenumber;
441  relinfo->reloid = classForm->oid;
442 
443  /* Temporary relations were rejected above. */
444  Assert(classForm->relpersistence != RELPERSISTENCE_TEMP);
445  relinfo->permanent =
446  (classForm->relpersistence == RELPERSISTENCE_PERMANENT) ? true : false;
447 
448  return relinfo;
449 }
450 
451 /*
452  * Create database directory and write out the PG_VERSION file in the database
453  * path. If isRedo is true, it's okay for the database directory to exist
454  * already.
455  */
456 static void
457 CreateDirAndVersionFile(char *dbpath, Oid dbid, Oid tsid, bool isRedo)
458 {
459  int fd;
460  int nbytes;
461  char versionfile[MAXPGPATH];
462  char buf[16];
463 
464  /*
465  * Prepare version data before starting a critical section.
466  *
467  * Note that we don't have to copy this from the source database; there's
468  * only one legal value.
469  */
470  sprintf(buf, "%s\n", PG_MAJORVERSION);
471  nbytes = strlen(PG_MAJORVERSION) + 1;
472 
473  /* If we are not in WAL replay then write the WAL. */
474  if (!isRedo)
475  {
476  xl_dbase_create_wal_log_rec xlrec;
477  XLogRecPtr lsn;
478 
479  START_CRIT_SECTION();
480 
481  xlrec.db_id = dbid;
482  xlrec.tablespace_id = tsid;
483 
484  XLogBeginInsert();
485  XLogRegisterData((char *) (&xlrec),
486  sizeof(xl_dbase_create_wal_log_rec));
487 
488  lsn = XLogInsert(RM_DBASE_ID, XLOG_DBASE_CREATE_WAL_LOG);
489 
490  /* As always, WAL must hit the disk before the data update does. */
491  XLogFlush(lsn);
492  }
493 
494  /* Create database directory. */
495  if (MakePGDirectory(dbpath) < 0)
496  {
497  /* Failure other than already exists or not in WAL replay? */
498  if (errno != EEXIST || !isRedo)
499  ereport(ERROR,
500  (errcode_for_file_access(),
501  errmsg("could not create directory \"%s\": %m", dbpath)));
502  }
503 
504  /*
505  * Create PG_VERSION file in the database path. If the file already
506  * exists and we are in WAL replay then try again to open it in write
507  * mode.
508  */
509  snprintf(versionfile, sizeof(versionfile), "%s/%s", dbpath, "PG_VERSION");
510 
511  fd = OpenTransientFile(versionfile, O_WRONLY | O_CREAT | O_EXCL | PG_BINARY);
512  if (fd < 0 && errno == EEXIST && isRedo)
513  fd = OpenTransientFile(versionfile, O_WRONLY | O_TRUNC | PG_BINARY);
514 
515  if (fd < 0)
516  ereport(ERROR,
517  (errcode_for_file_access(),
518  errmsg("could not create file \"%s\": %m", versionfile)));
519 
520  /* Write PG_MAJORVERSION in the PG_VERSION file. */
521  pgstat_report_wait_start(WAIT_EVENT_VERSION_FILE_WRITE);
522  errno = 0;
523  if ((int) write(fd, buf, nbytes) != nbytes)
524  {
525  /* If write didn't set errno, assume problem is no disk space. */
526  if (errno == 0)
527  errno = ENOSPC;
528  ereport(ERROR,
529  (errcode_for_file_access(),
530  errmsg("could not write to file \"%s\": %m", versionfile)));
531  }
532  pgstat_report_wait_end();
533 
534  /* Close the version file. */
535  CloseTransientFile(fd);
536 
537  /* Critical section done. */
538  if (!isRedo)
539  END_CRIT_SECTION();
540 }
541 
542 /*
543  * Create a new database using the FILE_COPY strategy.
544  *
545  * Copy each tablespace at the filesystem level, and log a single WAL record
546  * for each tablespace copied. This requires a checkpoint before and after the
547  * copy, which may be expensive, but it does greatly reduce WAL generation
548  * if the copied database is large.
549  */
550 static void
551 CreateDatabaseUsingFileCopy(Oid src_dboid, Oid dst_dboid, Oid src_tsid,
552  Oid dst_tsid)
553 {
554  TableScanDesc scan;
555  Relation rel;
556  HeapTuple tuple;
557 
558  /*
559  * Force a checkpoint before starting the copy. This will force all dirty
560  * buffers, including those of unlogged tables, out to disk, to ensure
561  * source database is up-to-date on disk for the copy.
562  * FlushDatabaseBuffers() would suffice for that, but we also want to
563  * process any pending unlink requests. Otherwise, if a checkpoint
564  * happened while we're copying files, a file might be deleted just when
565  * we're about to copy it, causing the lstat() call in copydir() to fail
566  * with ENOENT.
567  */
568  RequestCheckpoint(CHECKPOINT_IMMEDIATE | CHECKPOINT_FORCE |
569  CHECKPOINT_WAIT | CHECKPOINT_FLUSH_ALL);
570 
571  /*
572  * Iterate through all tablespaces of the template database, and copy each
573  * one to the new database.
574  */
575  rel = table_open(TableSpaceRelationId, AccessShareLock);
576  scan = table_beginscan_catalog(rel, 0, NULL);
577  while ((tuple = heap_getnext(scan, ForwardScanDirection)) != NULL)
578  {
579  Form_pg_tablespace spaceform = (Form_pg_tablespace) GETSTRUCT(tuple);
580  Oid srctablespace = spaceform->oid;
581  Oid dsttablespace;
582  char *srcpath;
583  char *dstpath;
584  struct stat st;
585 
586  /* No need to copy global tablespace */
587  if (srctablespace == GLOBALTABLESPACE_OID)
588  continue;
589 
590  srcpath = GetDatabasePath(src_dboid, srctablespace);
591 
592  if (stat(srcpath, &st) < 0 || !S_ISDIR(st.st_mode) ||
593  directory_is_empty(srcpath))
594  {
595  /* Assume we can ignore it */
596  pfree(srcpath);
597  continue;
598  }
599 
600  if (srctablespace == src_tsid)
601  dsttablespace = dst_tsid;
602  else
603  dsttablespace = srctablespace;
604 
605  dstpath = GetDatabasePath(dst_dboid, dsttablespace);
606 
607  /*
608  * Copy this subdirectory to the new location
609  *
610  * We don't need to copy subdirectories
611  */
612  copydir(srcpath, dstpath, false);
613 
614  /* Record the filesystem change in XLOG */
615  {
616  xl_dbase_create_file_copy_rec xlrec;
617 
618  xlrec.db_id = dst_dboid;
619  xlrec.tablespace_id = dsttablespace;
620  xlrec.src_db_id = src_dboid;
621  xlrec.src_tablespace_id = srctablespace;
622 
623  XLogBeginInsert();
624  XLogRegisterData((char *) &xlrec,
625  sizeof(xl_dbase_create_file_copy_rec));
626 
627  (void) XLogInsert(RM_DBASE_ID,
628  XLOG_DBASE_CREATE_FILE_COPY | XLR_SPECIAL_REL_UPDATE);
629  }
630  pfree(srcpath);
631  pfree(dstpath);
632  }
633  table_endscan(scan);
634  table_close(rel, AccessShareLock);
635 
636  /*
637  * We force a checkpoint before committing. This effectively means that
638  * committed XLOG_DBASE_CREATE_FILE_COPY operations will never need to be
639  * replayed (at least not in ordinary crash recovery; we still have to
640  * make the XLOG entry for the benefit of PITR operations). This avoids
641  * two nasty scenarios:
642  *
643  * #1: When PITR is off, we don't XLOG the contents of newly created
644  * indexes; therefore the drop-and-recreate-whole-directory behavior of
645  * DBASE_CREATE replay would lose such indexes.
646  *
647  * #2: Since we have to recopy the source database during DBASE_CREATE
648  * replay, we run the risk of copying changes in it that were committed
649  * after the original CREATE DATABASE command but before the system crash
650  * that led to the replay. This is at least unexpected and at worst could
651  * lead to inconsistencies, eg duplicate table names.
652  *
653  * (Both of these were real bugs in releases 8.0 through 8.0.3.)
654  *
655  * In PITR replay, the first of these isn't an issue, and the second is
656  * only a risk if the CREATE DATABASE and subsequent template database
657  * change both occur while a base backup is being taken. There doesn't
658  * seem to be much we can do about that except document it as a
659  * limitation.
660  *
661  * See CreateDatabaseUsingWalLog() for a less cheesy CREATE DATABASE
662  * strategy that avoids these problems.
663  */
664  RequestCheckpoint(CHECKPOINT_IMMEDIATE | CHECKPOINT_FORCE | CHECKPOINT_WAIT);
665 }
666 
667 /*
668  * CREATE DATABASE
669  */
670 Oid
671 createdb(ParseState *pstate, const CreatedbStmt *stmt)
672 {
673  Oid src_dboid;
674  Oid src_owner;
675  int src_encoding = -1;
676  char *src_collate = NULL;
677  char *src_ctype = NULL;
678  char *src_iculocale = NULL;
679  char src_locprovider = '\0';
680  char *src_collversion = NULL;
681  bool src_istemplate;
682  bool src_allowconn;
683  TransactionId src_frozenxid = InvalidTransactionId;
684  MultiXactId src_minmxid = InvalidMultiXactId;
685  Oid src_deftablespace;
686  volatile Oid dst_deftablespace;
687  Relation pg_database_rel;
688  HeapTuple tuple;
689  Datum new_record[Natts_pg_database] = {0};
690  bool new_record_nulls[Natts_pg_database] = {0};
691  Oid dboid = InvalidOid;
692  Oid datdba;
693  ListCell *option;
694  DefElem *dtablespacename = NULL;
695  DefElem *downer = NULL;
696  DefElem *dtemplate = NULL;
697  DefElem *dencoding = NULL;
698  DefElem *dlocale = NULL;
699  DefElem *dcollate = NULL;
700  DefElem *dctype = NULL;
701  DefElem *diculocale = NULL;
702  DefElem *dlocprovider = NULL;
703  DefElem *distemplate = NULL;
704  DefElem *dallowconnections = NULL;
705  DefElem *dconnlimit = NULL;
706  DefElem *dcollversion = NULL;
707  DefElem *dstrategy = NULL;
708  char *dbname = stmt->dbname;
709  char *dbowner = NULL;
710  const char *dbtemplate = NULL;
711  char *dbcollate = NULL;
712  char *dbctype = NULL;
713  char *dbiculocale = NULL;
714  char dblocprovider = '\0';
715  char *canonname;
716  int encoding = -1;
717  bool dbistemplate = false;
718  bool dballowconnections = true;
719  int dbconnlimit = -1;
720  char *dbcollversion = NULL;
721  int notherbackends;
722  int npreparedxacts;
723  CreateDBStrategy dbstrategy = CREATEDB_WAL_LOG;
724  createdb_failure_params fparms;
725 
726  /* Extract options from the statement node tree */
727  foreach(option, stmt->options)
728  {
729  DefElem *defel = (DefElem *) lfirst(option);
730 
731  if (strcmp(defel->defname, "tablespace") == 0)
732  {
733  if (dtablespacename)
734  errorConflictingDefElem(defel, pstate);
735  dtablespacename = defel;
736  }
737  else if (strcmp(defel->defname, "owner") == 0)
738  {
739  if (downer)
740  errorConflictingDefElem(defel, pstate);
741  downer = defel;
742  }
743  else if (strcmp(defel->defname, "template") == 0)
744  {
745  if (dtemplate)
746  errorConflictingDefElem(defel, pstate);
747  dtemplate = defel;
748  }
749  else if (strcmp(defel->defname, "encoding") == 0)
750  {
751  if (dencoding)
752  errorConflictingDefElem(defel, pstate);
753  dencoding = defel;
754  }
755  else if (strcmp(defel->defname, "locale") == 0)
756  {
757  if (dlocale)
758  errorConflictingDefElem(defel, pstate);
759  dlocale = defel;
760  }
761  else if (strcmp(defel->defname, "lc_collate") == 0)
762  {
763  if (dcollate)
764  errorConflictingDefElem(defel, pstate);
765  dcollate = defel;
766  }
767  else if (strcmp(defel->defname, "lc_ctype") == 0)
768  {
769  if (dctype)
770  errorConflictingDefElem(defel, pstate);
771  dctype = defel;
772  }
773  else if (strcmp(defel->defname, "icu_locale") == 0)
774  {
775  if (diculocale)
776  errorConflictingDefElem(defel, pstate);
777  diculocale = defel;
778  }
779  else if (strcmp(defel->defname, "locale_provider") == 0)
780  {
781  if (dlocprovider)
782  errorConflictingDefElem(defel, pstate);
783  dlocprovider = defel;
784  }
785  else if (strcmp(defel->defname, "is_template") == 0)
786  {
787  if (distemplate)
788  errorConflictingDefElem(defel, pstate);
789  distemplate = defel;
790  }
791  else if (strcmp(defel->defname, "allow_connections") == 0)
792  {
793  if (dallowconnections)
794  errorConflictingDefElem(defel, pstate);
795  dallowconnections = defel;
796  }
797  else if (strcmp(defel->defname, "connection_limit") == 0)
798  {
799  if (dconnlimit)
800  errorConflictingDefElem(defel, pstate);
801  dconnlimit = defel;
802  }
803  else if (strcmp(defel->defname, "collation_version") == 0)
804  {
805  if (dcollversion)
806  errorConflictingDefElem(defel, pstate);
807  dcollversion = defel;
808  }
809  else if (strcmp(defel->defname, "location") == 0)
810  {
811  ereport(WARNING,
812  (errcode(ERRCODE_FEATURE_NOT_SUPPORTED),
813  errmsg("LOCATION is not supported anymore"),
814  errhint("Consider using tablespaces instead."),
815  parser_errposition(pstate, defel->location)));
816  }
817  else if (strcmp(defel->defname, "oid") == 0)
818  {
819  dboid = defGetObjectId(defel);
820 
821  /*
822  * We don't normally permit new databases to be created with
823  * system-assigned OIDs. pg_upgrade tries to preserve database
824  * OIDs, so we can't allow any database to be created with an OID
825  * that might be in use in a freshly-initialized cluster created
826  * by some future version. We assume all such OIDs will be from
827  * the system-managed OID range.
828  *
829  * As an exception, however, we permit any OID to be assigned when
830  * allow_system_table_mods=on (so that initdb can assign system
831  * OIDs to template0 and postgres) or when performing a binary
832  * upgrade (so that pg_upgrade can preserve whatever OIDs it finds
833  * in the source cluster).
834  */
835  if (dboid < FirstNormalObjectId &&
836  !allowSystemTableMods && !IsBinaryUpgrade)
837  ereport(ERROR,
838  (errcode(ERRCODE_INVALID_PARAMETER_VALUE)),
839  errmsg("OIDs less than %u are reserved for system objects", FirstNormalObjectId));
840  }
841  else if (strcmp(defel->defname, "strategy") == 0)
842  {
843  if (dstrategy)
844  errorConflictingDefElem(defel, pstate);
845  dstrategy = defel;
846  }
847  else
848  ereport(ERROR,
849  (errcode(ERRCODE_SYNTAX_ERROR),
850  errmsg("option \"%s\" not recognized", defel->defname),
851  parser_errposition(pstate, defel->location)));
852  }
853 
854  if (downer && downer->arg)
855  dbowner = defGetString(downer);
856  if (dtemplate && dtemplate->arg)
857  dbtemplate = defGetString(dtemplate);
858  if (dencoding && dencoding->arg)
859  {
860  const char *encoding_name;
861 
862  if (IsA(dencoding->arg, Integer))
863  {
864  encoding = defGetInt32(dencoding);
865  encoding_name = pg_encoding_to_char(encoding);
866  if (strcmp(encoding_name, "") == 0 ||
867  pg_valid_server_encoding(encoding_name) < 0)
868  ereport(ERROR,
869  (errcode(ERRCODE_UNDEFINED_OBJECT),
870  errmsg("%d is not a valid encoding code",
871  encoding),
872  parser_errposition(pstate, dencoding->location)));
873  }
874  else
875  {
876  encoding_name = defGetString(dencoding);
877  encoding = pg_valid_server_encoding(encoding_name);
878  if (encoding < 0)
879  ereport(ERROR,
880  (errcode(ERRCODE_UNDEFINED_OBJECT),
881  errmsg("%s is not a valid encoding name",
882  encoding_name),
883  parser_errposition(pstate, dencoding->location)));
884  }
885  }
886  if (dlocale && dlocale->arg)
887  {
888  dbcollate = defGetString(dlocale);
889  dbctype = defGetString(dlocale);
890  }
891  if (dcollate && dcollate->arg)
892  dbcollate = defGetString(dcollate);
893  if (dctype && dctype->arg)
894  dbctype = defGetString(dctype);
895  if (diculocale && diculocale->arg)
896  dbiculocale = defGetString(diculocale);
897  if (dlocprovider && dlocprovider->arg)
898  {
899  char *locproviderstr = defGetString(dlocprovider);
900 
901  if (pg_strcasecmp(locproviderstr, "icu") == 0)
902  dblocprovider = COLLPROVIDER_ICU;
903  else if (pg_strcasecmp(locproviderstr, "libc") == 0)
904  dblocprovider = COLLPROVIDER_LIBC;
905  else
906  ereport(ERROR,
907  (errcode(ERRCODE_INVALID_OBJECT_DEFINITION),
908  errmsg("unrecognized locale provider: %s",
909  locproviderstr)));
910  }
911  if (distemplate && distemplate->arg)
912  dbistemplate = defGetBoolean(distemplate);
913  if (dallowconnections && dallowconnections->arg)
914  dballowconnections = defGetBoolean(dallowconnections);
915  if (dconnlimit && dconnlimit->arg)
916  {
917  dbconnlimit = defGetInt32(dconnlimit);
918  if (dbconnlimit < -1)
919  ereport(ERROR,
920  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
921  errmsg("invalid connection limit: %d", dbconnlimit)));
922  }
923  if (dcollversion)
924  dbcollversion = defGetString(dcollversion);
925 
926  /* obtain OID of proposed owner */
927  if (dbowner)
928  datdba = get_role_oid(dbowner, false);
929  else
930  datdba = GetUserId();
931 
932  /*
933  * To create a database, must have createdb privilege and must be able to
934  * become the target role (this does not imply that the target role itself
935  * must have createdb privilege). The latter provision guards against
936  * "giveaway" attacks. Note that a superuser will always have both of
937  * these privileges a fortiori.
938  */
939  if (!have_createdb_privilege())
940  ereport(ERROR,
941  (errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),
942  errmsg("permission denied to create database")));
943 
944  check_can_set_role(GetUserId(), datdba);
945 
946  /*
947  * Lookup database (template) to be cloned, and obtain share lock on it.
948  * ShareLock allows two CREATE DATABASEs to work from the same template
949  * concurrently, while ensuring no one is busy dropping it in parallel
950  * (which would be Very Bad since we'd likely get an incomplete copy
951  * without knowing it). This also prevents any new connections from being
952  * made to the source until we finish copying it, so we can be sure it
953  * won't change underneath us.
954  */
955  if (!dbtemplate)
956  dbtemplate = "template1"; /* Default template database name */
957 
958  if (!get_db_info(dbtemplate, ShareLock,
959  &src_dboid, &src_owner, &src_encoding,
960  &src_istemplate, &src_allowconn,
961  &src_frozenxid, &src_minmxid, &src_deftablespace,
962  &src_collate, &src_ctype, &src_iculocale, &src_locprovider,
963  &src_collversion))
964  ereport(ERROR,
965  (errcode(ERRCODE_UNDEFINED_DATABASE),
966  errmsg("template database \"%s\" does not exist",
967  dbtemplate)));
968 
969  /*
970  * Permission check: to copy a DB that's not marked datistemplate, you
971  * must be superuser or the owner thereof.
972  */
973  if (!src_istemplate)
974  {
975  if (!object_ownercheck(DatabaseRelationId, src_dboid, GetUserId()))
976  ereport(ERROR,
977  (errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),
978  errmsg("permission denied to copy database \"%s\"",
979  dbtemplate)));
980  }
981 
982  /* Validate the database creation strategy. */
983  if (dstrategy && dstrategy->arg)
984  {
985  char *strategy;
986 
987  strategy = defGetString(dstrategy);
988  if (strcmp(strategy, "wal_log") == 0)
989  dbstrategy = CREATEDB_WAL_LOG;
990  else if (strcmp(strategy, "file_copy") == 0)
991  dbstrategy = CREATEDB_FILE_COPY;
992  else
993  ereport(ERROR,
994  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
995  errmsg("invalid create database strategy \"%s\"", strategy),
996  errhint("Valid strategies are \"wal_log\", and \"file_copy\".")));
997  }
998 
999  /* If encoding or locales are defaulted, use source's setting */
1000  if (encoding < 0)
1001  encoding = src_encoding;
1002  if (dbcollate == NULL)
1003  dbcollate = src_collate;
1004  if (dbctype == NULL)
1005  dbctype = src_ctype;
1006  if (dblocprovider == '\0')
1007  dblocprovider = src_locprovider;
1008  if (dbiculocale == NULL && dblocprovider == COLLPROVIDER_ICU)
1009  dbiculocale = src_iculocale;
1010 
1011  /* Some encodings are client only */
1012  if (!PG_VALID_BE_ENCODING(encoding))
1013  ereport(ERROR,
1014  (errcode(ERRCODE_WRONG_OBJECT_TYPE),
1015  errmsg("invalid server encoding %d", encoding)));
1016 
1017  /* Check that the chosen locales are valid, and get canonical spellings */
1018  if (!check_locale(LC_COLLATE, dbcollate, &canonname))
1019  ereport(ERROR,
1020  (errcode(ERRCODE_WRONG_OBJECT_TYPE),
1021  errmsg("invalid locale name: \"%s\"", dbcollate)));
1022  dbcollate = canonname;
1023  if (!check_locale(LC_CTYPE, dbctype, &canonname))
1024  ereport(ERROR,
1025  (errcode(ERRCODE_WRONG_OBJECT_TYPE),
1026  errmsg("invalid locale name: \"%s\"", dbctype)));
1027  dbctype = canonname;
1028 
1029  check_encoding_locale_matches(encoding, dbcollate, dbctype);
1030 
1031  if (dblocprovider == COLLPROVIDER_ICU)
1032  {
1033  if (!(is_encoding_supported_by_icu(encoding)))
1034  ereport(ERROR,
1035  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1036  errmsg("encoding \"%s\" is not supported with ICU provider",
1037  pg_encoding_to_char(encoding))));
1038 
1039  /*
1040  * This would happen if template0 uses the libc provider but the new
1041  * database uses icu.
1042  */
1043  if (!dbiculocale)
1044  ereport(ERROR,
1045  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1046  errmsg("ICU locale must be specified")));
1047 
1048  check_icu_locale(dbiculocale);
1049  }
1050  else
1051  {
1052  if (dbiculocale)
1053  ereport(ERROR,
1054  (errcode(ERRCODE_INVALID_OBJECT_DEFINITION),
1055  errmsg("ICU locale cannot be specified unless locale provider is ICU")));
1056  }
1057 
1058  /*
1059  * Check that the new encoding and locale settings match the source
1060  * database. We insist on this because we simply copy the source data ---
1061  * any non-ASCII data would be wrongly encoded, and any indexes sorted
1062  * according to the source locale would be wrong.
1063  *
1064  * However, we assume that template0 doesn't contain any non-ASCII data
1065  * nor any indexes that depend on collation or ctype, so template0 can be
1066  * used as template for creating a database with any encoding or locale.
1067  */
1068  if (strcmp(dbtemplate, "template0") != 0)
1069  {
1070  if (encoding != src_encoding)
1071  ereport(ERROR,
1072  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1073  errmsg("new encoding (%s) is incompatible with the encoding of the template database (%s)",
1074  pg_encoding_to_char(encoding),
1075  pg_encoding_to_char(src_encoding)),
1076  errhint("Use the same encoding as in the template database, or use template0 as template.")));
1077 
1078  if (strcmp(dbcollate, src_collate) != 0)
1079  ereport(ERROR,
1080  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1081  errmsg("new collation (%s) is incompatible with the collation of the template database (%s)",
1082  dbcollate, src_collate),
1083  errhint("Use the same collation as in the template database, or use template0 as template.")));
1084 
1085  if (strcmp(dbctype, src_ctype) != 0)
1086  ereport(ERROR,
1087  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1088  errmsg("new LC_CTYPE (%s) is incompatible with the LC_CTYPE of the template database (%s)",
1089  dbctype, src_ctype),
1090  errhint("Use the same LC_CTYPE as in the template database, or use template0 as template.")));
1091 
1092  if (dblocprovider != src_locprovider)
1093  ereport(ERROR,
1094  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1095  errmsg("new locale provider (%s) does not match locale provider of the template database (%s)",
1096  collprovider_name(dblocprovider), collprovider_name(src_locprovider)),
1097  errhint("Use the same locale provider as in the template database, or use template0 as template.")));
1098 
1099  if (dblocprovider == COLLPROVIDER_ICU)
1100  {
1101  Assert(dbiculocale);
1102  Assert(src_iculocale);
1103  if (strcmp(dbiculocale, src_iculocale) != 0)
1104  ereport(ERROR,
1105  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1106  errmsg("new ICU locale (%s) is incompatible with the ICU locale of the template database (%s)",
1107  dbiculocale, src_iculocale),
1108  errhint("Use the same ICU locale as in the template database, or use template0 as template.")));
1109  }
1110  }
1111 
1112  /*
1113  * If we got a collation version for the template database, check that it
1114  * matches the actual OS collation version. Otherwise error; the user
1115  * needs to fix the template database first. Don't complain if a
1116  * collation version was specified explicitly as a statement option; that
1117  * is used by pg_upgrade to reproduce the old state exactly.
1118  *
1119  * (If the template database has no collation version, then either the
1120  * platform/provider does not support collation versioning, or it's
1121  * template0, for which we stipulate that it does not contain
1122  * collation-using objects.)
1123  */
1124  if (src_collversion && !dcollversion)
1125  {
1126  char *actual_versionstr;
1127 
1128  actual_versionstr = get_collation_actual_version(dblocprovider, dblocprovider == COLLPROVIDER_ICU ? dbiculocale : dbcollate);
1129  if (!actual_versionstr)
1130  ereport(ERROR,
1131  (errmsg("template database \"%s\" has a collation version, but no actual collation version could be determined",
1132  dbtemplate)));
1133 
1134  if (strcmp(actual_versionstr, src_collversion) != 0)
1135  ereport(ERROR,
1136  (errmsg("template database \"%s\" has a collation version mismatch",
1137  dbtemplate),
1138  errdetail("The template database was created using collation version %s, "
1139  "but the operating system provides version %s.",
1140  src_collversion, actual_versionstr),
1141  errhint("Rebuild all objects in the template database that use the default collation and run "
1142  "ALTER DATABASE %s REFRESH COLLATION VERSION, "
1143  "or build PostgreSQL with the right library version.",
1144  quote_identifier(dbtemplate))));
1145  }
1146 
1147  if (dbcollversion == NULL)
1148  dbcollversion = src_collversion;
1149 
1150  /*
1151  * Normally, we copy the collation version from the template database.
1152  * This last resort only applies if the template database does not have a
1153  * collation version, which is normally only the case for template0.
1154  */
1155  if (dbcollversion == NULL)
1156  dbcollversion = get_collation_actual_version(dblocprovider, dblocprovider == COLLPROVIDER_ICU ? dbiculocale : dbcollate);
1157 
1158  /* Resolve default tablespace for new database */
1159  if (dtablespacename && dtablespacename->arg)
1160  {
1161  char *tablespacename;
1162  AclResult aclresult;
1163 
1164  tablespacename = defGetString(dtablespacename);
1165  dst_deftablespace = get_tablespace_oid(tablespacename, false);
1166  /* check permissions */
1167  aclresult = object_aclcheck(TableSpaceRelationId, dst_deftablespace, GetUserId(),
1168  ACL_CREATE);
1169  if (aclresult != ACLCHECK_OK)
1170  aclcheck_error(aclresult, OBJECT_TABLESPACE,
1171  tablespacename);
1172 
1173  /* pg_global must never be the default tablespace */
1174  if (dst_deftablespace == GLOBALTABLESPACE_OID)
1175  ereport(ERROR,
1176  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1177  errmsg("pg_global cannot be used as default tablespace")));
1178 
1179  /*
1180  * If we are trying to change the default tablespace of the template,
1181  * we require that the template not have any files in the new default
1182  * tablespace. This is necessary because otherwise the copied
1183  * database would contain pg_class rows that refer to its default
1184  * tablespace both explicitly (by OID) and implicitly (as zero), which
1185  * would cause problems. For example another CREATE DATABASE using
1186  * the copied database as template, and trying to change its default
1187  * tablespace again, would yield outright incorrect results (it would
1188  * improperly move tables to the new default tablespace that should
1189  * stay in the same tablespace).
1190  */
1191  if (dst_deftablespace != src_deftablespace)
1192  {
1193  char *srcpath;
1194  struct stat st;
1195 
1196  srcpath = GetDatabasePath(src_dboid, dst_deftablespace);
1197 
1198  if (stat(srcpath, &st) == 0 &&
1199  S_ISDIR(st.st_mode) &&
1200  !directory_is_empty(srcpath))
1201  ereport(ERROR,
1202  (errcode(ERRCODE_FEATURE_NOT_SUPPORTED),
1203  errmsg("cannot assign new default tablespace \"%s\"",
1204  tablespacename),
1205  errdetail("There is a conflict because database \"%s\" already has some tables in this tablespace.",
1206  dbtemplate)));
1207  pfree(srcpath);
1208  }
1209  }
1210  else
1211  {
1212  /* Use template database's default tablespace */
1213  dst_deftablespace = src_deftablespace;
1214  /* Note there is no additional permission check in this path */
1215  }
1216 
1217  /*
1218  * If built with appropriate switch, whine when regression-testing
1219  * conventions for database names are violated. But don't complain during
1220  * initdb.
1221  */
1222 #ifdef ENFORCE_REGRESSION_TEST_NAME_RESTRICTIONS
1223  if (IsUnderPostmaster && strstr(dbname, "regression") == NULL)
1224  elog(WARNING, "databases created by regression test cases should have names including \"regression\"");
1225 #endif
1226 
1227  /*
1228  * Check for db name conflict. This is just to give a more friendly error
1229  * message than "unique index violation". There's a race condition but
1230  * we're willing to accept the less friendly message in that case.
1231  */
1232  if (OidIsValid(get_database_oid(dbname, true)))
1233  ereport(ERROR,
1234  (errcode(ERRCODE_DUPLICATE_DATABASE),
1235  errmsg("database \"%s\" already exists", dbname)));
1236 
1237  /*
1238  * The source DB can't have any active backends, except this one
1239  * (exception is to allow CREATE DB while connected to template1).
1240  * Otherwise we might copy inconsistent data.
1241  *
1242  * This should be last among the basic error checks, because it involves
1243  * potential waiting; we may as well throw an error first if we're gonna
1244  * throw one.
1245  */
1246  if (CountOtherDBBackends(src_dboid, &notherbackends, &npreparedxacts))
1247  ereport(ERROR,
1248  (errcode(ERRCODE_OBJECT_IN_USE),
1249  errmsg("source database \"%s\" is being accessed by other users",
1250  dbtemplate),
1251  errdetail_busy_db(notherbackends, npreparedxacts)));
1252 
1253  /*
1254  * Select an OID for the new database, checking that it doesn't have a
1255  * filename conflict with anything already existing in the tablespace
1256  * directories.
1257  */
1258  pg_database_rel = table_open(DatabaseRelationId, RowExclusiveLock);
1259 
1260  /*
1261  * If database OID is configured, check if the OID is already in use or
1262  * data directory already exists.
1263  */
1264  if (OidIsValid(dboid))
1265  {
1266  char *existing_dbname = get_database_name(dboid);
1267 
1268  if (existing_dbname != NULL)
1269  ereport(ERROR,
1270  (errcode(ERRCODE_INVALID_PARAMETER_VALUE)),
1271  errmsg("database OID %u is already in use by database \"%s\"",
1272  dboid, existing_dbname));
1273 
1274  if (check_db_file_conflict(dboid))
1275  ereport(ERROR,
1276  (errcode(ERRCODE_INVALID_PARAMETER_VALUE)),
1277  errmsg("data directory with the specified OID %u already exists", dboid));
1278  }
1279  else
1280  {
1281  /* Select an OID for the new database if is not explicitly configured. */
1282  do
1283  {
1284  dboid = GetNewOidWithIndex(pg_database_rel, DatabaseOidIndexId,
1285  Anum_pg_database_oid);
1286  } while (check_db_file_conflict(dboid));
1287  }
1288 
1289  /*
1290  * Insert a new tuple into pg_database. This establishes our ownership of
1291  * the new database name (anyone else trying to insert the same name will
1292  * block on the unique index, and fail after we commit).
1293  */
1294 
1295  Assert((dblocprovider == COLLPROVIDER_ICU && dbiculocale) ||
1296  (dblocprovider != COLLPROVIDER_ICU && !dbiculocale));
1297 
1298  /* Form tuple */
1299  new_record[Anum_pg_database_oid - 1] = ObjectIdGetDatum(dboid);
1300  new_record[Anum_pg_database_datname - 1] =
1301  DirectFunctionCall1(namein, CStringGetDatum(dbname));
1302  new_record[Anum_pg_database_datdba - 1] = ObjectIdGetDatum(datdba);
1303  new_record[Anum_pg_database_encoding - 1] = Int32GetDatum(encoding);
1304  new_record[Anum_pg_database_datlocprovider - 1] = CharGetDatum(dblocprovider);
1305  new_record[Anum_pg_database_datistemplate - 1] = BoolGetDatum(dbistemplate);
1306  new_record[Anum_pg_database_datallowconn - 1] = BoolGetDatum(dballowconnections);
1307  new_record[Anum_pg_database_datconnlimit - 1] = Int32GetDatum(dbconnlimit);
1308  new_record[Anum_pg_database_datfrozenxid - 1] = TransactionIdGetDatum(src_frozenxid);
1309  new_record[Anum_pg_database_datminmxid - 1] = TransactionIdGetDatum(src_minmxid);
1310  new_record[Anum_pg_database_dattablespace - 1] = ObjectIdGetDatum(dst_deftablespace);
1311  new_record[Anum_pg_database_datcollate - 1] = CStringGetTextDatum(dbcollate);
1312  new_record[Anum_pg_database_datctype - 1] = CStringGetTextDatum(dbctype);
1313  if (dbiculocale)
1314  new_record[Anum_pg_database_daticulocale - 1] = CStringGetTextDatum(dbiculocale);
1315  else
1316  new_record_nulls[Anum_pg_database_daticulocale - 1] = true;
1317  if (dbcollversion)
1318  new_record[Anum_pg_database_datcollversion - 1] = CStringGetTextDatum(dbcollversion);
1319  else
1320  new_record_nulls[Anum_pg_database_datcollversion - 1] = true;
1321 
1322  /*
1323  * We deliberately set datacl to default (NULL), rather than copying it
1324  * from the template database. Copying it would be a bad idea when the
1325  * owner is not the same as the template's owner.
1326  */
1327  new_record_nulls[Anum_pg_database_datacl - 1] = true;
1328 
1329  tuple = heap_form_tuple(RelationGetDescr(pg_database_rel),
1330  new_record, new_record_nulls);
1331 
1332  CatalogTupleInsert(pg_database_rel, tuple);
1333 
1334  /*
1335  * Now generate additional catalog entries associated with the new DB
1336  */
1337 
1338  /* Register owner dependency */
1339  recordDependencyOnOwner(DatabaseRelationId, dboid, datdba);
1340 
1341  /* Create pg_shdepend entries for objects within database */
1342  copyTemplateDependencies(src_dboid, dboid);
1343 
1344  /* Post creation hook for new database */
1345  InvokeObjectPostCreateHook(DatabaseRelationId, dboid, 0);
1346 
1347  /*
1348  * If we're going to be reading data for the to-be-created database into
1349  * shared_buffers, take a lock on it. Nobody should know that this
1350  * database exists yet, but it's good to maintain the invariant that an
1351  * AccessExclusiveLock on the database is sufficient to drop all
1352  * of its buffers without worrying about more being read later.
1353  *
1354  * Note that we need to do this before entering the
1355  * PG_ENSURE_ERROR_CLEANUP block below, because createdb_failure_callback
1356  * expects this lock to be held already.
1357  */
1358  if (dbstrategy == CREATEDB_WAL_LOG)
1359  LockSharedObject(DatabaseRelationId, dboid, 0, AccessShareLock);
1360 
1361  /*
1362  * Once we start copying subdirectories, we need to be able to clean 'em
1363  * up if we fail. Use an ENSURE block to make sure this happens. (This
1364  * is not a 100% solution, because of the possibility of failure during
1365  * transaction commit after we leave this routine, but it should handle
1366  * most scenarios.)
1367  */
1368  fparms.src_dboid = src_dboid;
1369  fparms.dest_dboid = dboid;
1370  fparms.strategy = dbstrategy;
1371 
1372  PG_ENSURE_ERROR_CLEANUP(createdb_failure_callback,
1373  PointerGetDatum(&fparms));
1374  {
1375  /*
1376  * If the user has asked to create a database with WAL_LOG strategy
1377  * then call CreateDatabaseUsingWalLog, which will copy the database
1378  * at the block level and it will WAL log each copied block.
1379  * Otherwise, call CreateDatabaseUsingFileCopy that will copy the
1380  * database file by file.
1381  */
1382  if (dbstrategy == CREATEDB_WAL_LOG)
1383  CreateDatabaseUsingWalLog(src_dboid, dboid, src_deftablespace,
1384  dst_deftablespace);
1385  else
1386  CreateDatabaseUsingFileCopy(src_dboid, dboid, src_deftablespace,
1387  dst_deftablespace);
1388 
1389  /*
1390  * Close pg_database, but keep lock till commit.
1391  */
1392  table_close(pg_database_rel, NoLock);
1393 
1394  /*
1395  * Force synchronous commit, thus minimizing the window between
1396  * creation of the database files and committal of the transaction. If
1397  * we crash before committing, we'll have a DB that's taking up disk
1398  * space but is not in pg_database, which is not good.
1399  */
1400  ForceSyncCommit();
1401  }
1402  PG_END_ENSURE_ERROR_CLEANUP(createdb_failure_callback,
1403  PointerGetDatum(&fparms));
1404 
1405  return dboid;
1406 }
1407 
1408 /*
1409  * Check whether chosen encoding matches chosen locale settings. This
1410  * restriction is necessary because libc's locale-specific code usually
1411  * fails when presented with data in an encoding it's not expecting. We
1412  * allow mismatch in four cases:
1413  *
1414  * 1. locale encoding = SQL_ASCII, which means that the locale is C/POSIX
1415  * which works with any encoding.
1416  *
1417  * 2. locale encoding = -1, which means that we couldn't determine the
1418  * locale's encoding and have to trust the user to get it right.
1419  *
1420  * 3. selected encoding is UTF8 and platform is win32. This is because
1421  * UTF8 is a pseudo codepage that is supported in all locales since it's
1422  * converted to UTF16 before being used.
1423  *
1424  * 4. selected encoding is SQL_ASCII, but only if you're a superuser. This
1425  * is risky but we have historically allowed it --- notably, the
1426  * regression tests require it.
1427  *
1428  * Note: if you change this policy, fix initdb to match.
1429  */
1430 void
1431 check_encoding_locale_matches(int encoding, const char *collate, const char *ctype)
1432 {
1433  int ctype_encoding = pg_get_encoding_from_locale(ctype, true);
1434  int collate_encoding = pg_get_encoding_from_locale(collate, true);
1435 
1436  if (!(ctype_encoding == encoding ||
1437  ctype_encoding == PG_SQL_ASCII ||
1438  ctype_encoding == -1 ||
1439 #ifdef WIN32
1440  encoding == PG_UTF8 ||
1441 #endif
1442  (encoding == PG_SQL_ASCII && superuser())))
1443  ereport(ERROR,
1444  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1445  errmsg("encoding \"%s\" does not match locale \"%s\"",
1446  pg_encoding_to_char(encoding),
1447  ctype),
1448  errdetail("The chosen LC_CTYPE setting requires encoding \"%s\".",
1449  pg_encoding_to_char(ctype_encoding))));
1450 
1451  if (!(collate_encoding == encoding ||
1452  collate_encoding == PG_SQL_ASCII ||
1453  collate_encoding == -1 ||
1454 #ifdef WIN32
1455  encoding == PG_UTF8 ||
1456 #endif
1457  (encoding == PG_SQL_ASCII && superuser())))
1458  ereport(ERROR,
1459  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1460  errmsg("encoding \"%s\" does not match locale \"%s\"",
1461  pg_encoding_to_char(encoding),
1462  collate),
1463  errdetail("The chosen LC_COLLATE setting requires encoding \"%s\".",
1464  pg_encoding_to_char(collate_encoding))));
1465 }
1466 
1467 /* Error cleanup callback for createdb */
1468 static void
1469 createdb_failure_callback(int code, Datum arg)
1470 {
1471  createdb_failure_params *fparms = (createdb_failure_params *) DatumGetPointer(arg);
1472 
1473  /*
1474  * If we were copying database at block levels then drop pages for the
1475  * destination database that are in the shared buffer cache. And tell
1476  * checkpointer to forget any pending fsync and unlink requests for files
1477  * in the database. The reasoning behind doing this is same as explained
1478  * in dropdb function. But unlike dropdb we don't need to call
1479  * pgstat_drop_database because this database is still not created so
1480  * there should not be any stat for this.
1481  */
1482  if (fparms->strategy == CREATEDB_WAL_LOG)
1483  {
1484  DropDatabaseBuffers(fparms->dest_dboid);
1485  ForgetDatabaseSyncRequests(fparms->dest_dboid);
1486 
1487  /* Release lock on the target database. */
1488  UnlockSharedObject(DatabaseRelationId, fparms->dest_dboid, 0,
1489  AccessShareLock);
1490  }
1491 
1492  /*
1493  * Release lock on source database before doing recursive remove. This is
1494  * not essential but it seems desirable to release the lock as soon as
1495  * possible.
1496  */
1497  UnlockSharedObject(DatabaseRelationId, fparms->src_dboid, 0, ShareLock);
1498 
1499  /* Throw away any successfully copied subdirectories */
1500  remove_dbtablespaces(fparms->dest_dboid);
1501 }
1502 
1503 
1504 /*
1505  * DROP DATABASE
1506  */
1507 void
1508 dropdb(const char *dbname, bool missing_ok, bool force)
1509 {
1510  Oid db_id;
1511  bool db_istemplate;
1512  Relation pgdbrel;
1513  HeapTuple tup;
1514  int notherbackends;
1515  int npreparedxacts;
1516  int nslots,
1517  nslots_active;
1518  int nsubscriptions;
1519 
1520  /*
1521  * Look up the target database's OID, and get exclusive lock on it. We
1522  * need this to ensure that no new backend starts up in the target
1523  * database while we are deleting it (see postinit.c), and that no one is
1524  * using it as a CREATE DATABASE template or trying to delete it for
1525  * themselves.
1526  */
1527  pgdbrel = table_open(DatabaseRelationId, RowExclusiveLock);
1528 
1529  if (!get_db_info(dbname, AccessExclusiveLock, &db_id, NULL, NULL,
1530  &db_istemplate, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL))
1531  {
1532  if (!missing_ok)
1533  {
1534  ereport(ERROR,
1535  (errcode(ERRCODE_UNDEFINED_DATABASE),
1536  errmsg("database \"%s\" does not exist", dbname)));
1537  }
1538  else
1539  {
1540  /* Close pg_database, release the lock, since we changed nothing */
1541  table_close(pgdbrel, RowExclusiveLock);
1542  ereport(NOTICE,
1543  (errmsg("database \"%s\" does not exist, skipping",
1544  dbname)));
1545  return;
1546  }
1547  }
1548 
1549  /*
1550  * Permission checks
1551  */
1552  if (!object_ownercheck(DatabaseRelationId, db_id, GetUserId()))
1553  aclcheck_error(ACLCHECK_NOT_OWNER, OBJECT_DATABASE,
1554  dbname);
1555 
1556  /* DROP hook for the database being removed */
1557  InvokeObjectDropHook(DatabaseRelationId, db_id, 0);
1558 
1559  /*
1560  * Disallow dropping a DB that is marked istemplate. This is just to
1561  * prevent people from accidentally dropping template0 or template1; they
1562  * can do so if they're really determined ...
1563  */
1564  if (db_istemplate)
1565  ereport(ERROR,
1566  (errcode(ERRCODE_WRONG_OBJECT_TYPE),
1567  errmsg("cannot drop a template database")));
1568 
1569  /* Obviously can't drop my own database */
1570  if (db_id == MyDatabaseId)
1571  ereport(ERROR,
1572  (errcode(ERRCODE_OBJECT_IN_USE),
1573  errmsg("cannot drop the currently open database")));
1574 
1575  /*
1576  * Check whether there are active logical slots that refer to the
1577  * to-be-dropped database. The database lock we are holding prevents the
1578  * creation of new slots using the database or existing slots becoming
1579  * active.
1580  */
1581  (void) ReplicationSlotsCountDBSlots(db_id, &nslots, &nslots_active);
1582  if (nslots_active)
1583  {
1584  ereport(ERROR,
1585  (errcode(ERRCODE_OBJECT_IN_USE),
1586  errmsg("database \"%s\" is used by an active logical replication slot",
1587  dbname),
1588  errdetail_plural("There is %d active slot.",
1589  "There are %d active slots.",
1590  nslots_active, nslots_active)));
1591  }
1592 
1593  /*
1594  * Check if there are subscriptions defined in the target database.
1595  *
1596  * We can't drop them automatically because they might be holding
1597  * resources in other databases/instances.
1598  */
1599  if ((nsubscriptions = CountDBSubscriptions(db_id)) > 0)
1600  ereport(ERROR,
1601  (errcode(ERRCODE_OBJECT_IN_USE),
1602  errmsg("database \"%s\" is being used by logical replication subscription",
1603  dbname),
1604  errdetail_plural("There is %d subscription.",
1605  "There are %d subscriptions.",
1606  nsubscriptions, nsubscriptions)));
1607 
1608 
1609  /*
1610  * Attempt to terminate all existing connections to the target database if
1611  * the user has requested to do so.
1612  */
1613  if (force)
1614  TerminateOtherDBBackends(db_id);
1615 
1616  /*
1617  * Check for other backends in the target database. (Because we hold the
1618  * database lock, no new ones can start after this.)
1619  *
1620  * As in CREATE DATABASE, check this after other error conditions.
1621  */
1622  if (CountOtherDBBackends(db_id, &notherbackends, &npreparedxacts))
1623  ereport(ERROR,
1624  (errcode(ERRCODE_OBJECT_IN_USE),
1625  errmsg("database \"%s\" is being accessed by other users",
1626  dbname),
1627  errdetail_busy_db(notherbackends, npreparedxacts)));
1628 
1629  /*
1630  * Remove the database's tuple from pg_database.
1631  */
1632  tup = SearchSysCache1(DATABASEOID, ObjectIdGetDatum(db_id));
1633  if (!HeapTupleIsValid(tup))
1634  elog(ERROR, "cache lookup failed for database %u", db_id);
1635 
1636  CatalogTupleDelete(pgdbrel, &tup->t_self);
1637 
1638  ReleaseSysCache(tup);
1639 
1640  /*
1641  * Delete any comments or security labels associated with the database.
1642  */
1643  DeleteSharedComments(db_id, DatabaseRelationId);
1644  DeleteSharedSecurityLabel(db_id, DatabaseRelationId);
1645 
1646  /*
1647  * Remove settings associated with this database
1648  */
1649  DropSetting(db_id, InvalidOid);
1650 
1651  /*
1652  * Remove shared dependency references for the database.
1653  */
1654  dropDatabaseDependencies(db_id);
1655 
1656  /*
1657  * Drop db-specific replication slots.
1658  */
1659  ReplicationSlotsDropDBSlots(db_id);
1660 
1661  /*
1662  * Drop pages for this database that are in the shared buffer cache. This
1663  * is important to ensure that no remaining backend tries to write out a
1664  * dirty buffer to the dead database later...
1665  */
1666  DropDatabaseBuffers(db_id);
1667 
1668  /*
1669  * Tell the cumulative stats system to forget it immediately, too.
1670  */
1671  pgstat_drop_database(db_id);
1672 
1673  /*
1674  * Tell checkpointer to forget any pending fsync and unlink requests for
1675  * files in the database; else the fsyncs will fail at next checkpoint, or
1676  * worse, it will delete files that belong to a newly created database
1677  * with the same OID.
1678  */
1679  ForgetDatabaseSyncRequests(db_id);
1680 
1681  /*
1682  * Force a checkpoint to make sure the checkpointer has received the
1683  * message sent by ForgetDatabaseSyncRequests.
1684  */
1685  RequestCheckpoint(CHECKPOINT_IMMEDIATE | CHECKPOINT_FORCE | CHECKPOINT_WAIT);
1686 
1687  /* Close all smgr fds in all backends. */
1688  WaitForProcSignalBarrier(EmitProcSignalBarrier(PROCSIGNAL_BARRIER_SMGRRELEASE));
1689 
1690  /*
1691  * Remove all tablespace subdirs belonging to the database.
1692  */
1693  remove_dbtablespaces(db_id);
1694 
1695  /*
1696  * Close pg_database, but keep lock till commit.
1697  */
1698  table_close(pgdbrel, NoLock);
1699 
1700  /*
1701  * Force synchronous commit, thus minimizing the window between removal of
1702  * the database files and committal of the transaction. If we crash before
1703  * committing, we'll have a DB that's gone on disk but still there
1704  * according to pg_database, which is not good.
1705  */
1706  ForceSyncCommit();
1707 }
1708 
1709 
1710 /*
1711  * Rename database
1712  */
1713 ObjectAddress
1714 RenameDatabase(const char *oldname, const char *newname)
1715 {
1716  Oid db_id;
1717  HeapTuple newtup;
1718  Relation rel;
1719  int notherbackends;
1720  int npreparedxacts;
1721  ObjectAddress address;
1722 
1723  /*
1724  * Look up the target database's OID, and get exclusive lock on it. We
1725  * need this for the same reasons as DROP DATABASE.
1726  */
1727  rel = table_open(DatabaseRelationId, RowExclusiveLock);
1728 
1729  if (!get_db_info(oldname, AccessExclusiveLock, &db_id, NULL, NULL,
1730  NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL))
1731  ereport(ERROR,
1732  (errcode(ERRCODE_UNDEFINED_DATABASE),
1733  errmsg("database \"%s\" does not exist", oldname)));
1734 
1735  /* must be owner */
1736  if (!object_ownercheck(DatabaseRelationId, db_id, GetUserId()))
1737  aclcheck_error(ACLCHECK_NOT_OWNER, OBJECT_DATABASE,
1738  oldname);
1739 
1740  /* must have createdb rights */
1741  if (!have_createdb_privilege())
1742  ereport(ERROR,
1743  (errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),
1744  errmsg("permission denied to rename database")));
1745 
1746  /*
1747  * If built with appropriate switch, whine when regression-testing
1748  * conventions for database names are violated.
1749  */
1750 #ifdef ENFORCE_REGRESSION_TEST_NAME_RESTRICTIONS
1751  if (strstr(newname, "regression") == NULL)
1752  elog(WARNING, "databases created by regression test cases should have names including \"regression\"");
1753 #endif
1754 
1755  /*
1756  * Make sure the new name doesn't exist. See notes for same error in
1757  * CREATE DATABASE.
1758  */
1759  if (OidIsValid(get_database_oid(newname, true)))
1760  ereport(ERROR,
1761  (errcode(ERRCODE_DUPLICATE_DATABASE),
1762  errmsg("database \"%s\" already exists", newname)));
1763 
1764  /*
1765  * XXX Client applications probably store the current database somewhere,
1766  * so renaming it could cause confusion. On the other hand, there may not
1767  * be an actual problem besides a little confusion, so think about this
1768  * and decide.
1769  */
1770  if (db_id == MyDatabaseId)
1771  ereport(ERROR,
1772  (errcode(ERRCODE_FEATURE_NOT_SUPPORTED),
1773  errmsg("current database cannot be renamed")));
1774 
1775  /*
1776  * Make sure the database does not have active sessions. This is the same
1777  * concern as above, but applied to other sessions.
1778  *
1779  * As in CREATE DATABASE, check this after other error conditions.
1780  */
1781  if (CountOtherDBBackends(db_id, &notherbackends, &npreparedxacts))
1782  ereport(ERROR,
1783  (errcode(ERRCODE_OBJECT_IN_USE),
1784  errmsg("database \"%s\" is being accessed by other users",
1785  oldname),
1786  errdetail_busy_db(notherbackends, npreparedxacts)));
1787 
1788  /* rename */
1789  newtup = SearchSysCacheCopy1(DATABASEOID, ObjectIdGetDatum(db_id));
1790  if (!HeapTupleIsValid(newtup))
1791  elog(ERROR, "cache lookup failed for database %u", db_id);
1792  namestrcpy(&(((Form_pg_database) GETSTRUCT(newtup))->datname), newname);
1793  CatalogTupleUpdate(rel, &newtup->t_self, newtup);
1794 
1795  InvokeObjectPostAlterHook(DatabaseRelationId, db_id, 0);
1796 
1797  ObjectAddressSet(address, DatabaseRelationId, db_id);
1798 
1799  /*
1800  * Close pg_database, but keep lock till commit.
1801  */
1802  table_close(rel, NoLock);
1803 
1804  return address;
1805 }
1806 
1807 
1808 /*
1809  * ALTER DATABASE SET TABLESPACE
1810  */
1811 static void
1812 movedb(const char *dbname, const char *tblspcname)
1813 {
1814  Oid db_id;
1815  Relation pgdbrel;
1816  int notherbackends;
1817  int npreparedxacts;
1818  HeapTuple oldtuple,
1819  newtuple;
1820  Oid src_tblspcoid,
1821  dst_tblspcoid;
1822  ScanKeyData scankey;
1823  SysScanDesc sysscan;
1824  AclResult aclresult;
1825  char *src_dbpath;
1826  char *dst_dbpath;
1827  DIR *dstdir;
1828  struct dirent *xlde;
1829  movedb_failure_params fparms;
1830 
1831  /*
1832  * Look up the target database's OID, and get exclusive lock on it. We
1833  * need this to ensure that no new backend starts up in the database while
1834  * we are moving it, and that no one is using it as a CREATE DATABASE
1835  * template or trying to delete it.
1836  */
1837  pgdbrel = table_open(DatabaseRelationId, RowExclusiveLock);
1838 
1839  if (!get_db_info(dbname, AccessExclusiveLock, &db_id, NULL, NULL,
1840  NULL, NULL, NULL, NULL, &src_tblspcoid, NULL, NULL, NULL, NULL, NULL))
1841  ereport(ERROR,
1842  (errcode(ERRCODE_UNDEFINED_DATABASE),
1843  errmsg("database \"%s\" does not exist", dbname)));
1844 
1845  /*
1846  * We actually need a session lock, so that the lock will persist across
1847  * the commit/restart below. (We could almost get away with letting the
1848  * lock be released at commit, except that someone could try to move
1849  * relations of the DB back into the old directory while we rmtree() it.)
1850  */
1851  LockSharedObjectForSession(DatabaseRelationId, db_id, 0,
1852  AccessExclusiveLock);
1853 
1854  /*
1855  * Permission checks
1856  */
1857  if (!object_ownercheck(DatabaseRelationId, db_id, GetUserId()))
1858  aclcheck_error(ACLCHECK_NOT_OWNER, OBJECT_DATABASE,
1859  dbname);
1860 
1861  /*
1862  * Obviously can't move the tables of my own database
1863  */
1864  if (db_id == MyDatabaseId)
1865  ereport(ERROR,
1866  (errcode(ERRCODE_OBJECT_IN_USE),
1867  errmsg("cannot change the tablespace of the currently open database")));
1868 
1869  /*
1870  * Get tablespace's oid
1871  */
1872  dst_tblspcoid = get_tablespace_oid(tblspcname, false);
1873 
1874  /*
1875  * Permission checks
1876  */
1877  aclresult = object_aclcheck(TableSpaceRelationId, dst_tblspcoid, GetUserId(),
1878  ACL_CREATE);
1879  if (aclresult != ACLCHECK_OK)
1880  aclcheck_error(aclresult, OBJECT_TABLESPACE,
1881  tblspcname);
1882 
1883  /*
1884  * pg_global must never be the default tablespace
1885  */
1886  if (dst_tblspcoid == GLOBALTABLESPACE_OID)
1887  ereport(ERROR,
1888  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
1889  errmsg("pg_global cannot be used as default tablespace")));
1890 
1891  /*
1892  * No-op if same tablespace
1893  */
1894  if (src_tblspcoid == dst_tblspcoid)
1895  {
1896  table_close(pgdbrel, NoLock);
1897  UnlockSharedObjectForSession(DatabaseRelationId, db_id, 0,
1898  AccessExclusiveLock);
1899  return;
1900  }
1901 
1902  /*
1903  * Check for other backends in the target database. (Because we hold the
1904  * database lock, no new ones can start after this.)
1905  *
1906  * As in CREATE DATABASE, check this after other error conditions.
1907  */
1908  if (CountOtherDBBackends(db_id, &notherbackends, &npreparedxacts))
1909  ereport(ERROR,
1910  (errcode(ERRCODE_OBJECT_IN_USE),
1911  errmsg("database \"%s\" is being accessed by other users",
1912  dbname),
1913  errdetail_busy_db(notherbackends, npreparedxacts)));
1914 
1915  /*
1916  * Get old and new database paths
1917  */
1918  src_dbpath = GetDatabasePath(db_id, src_tblspcoid);
1919  dst_dbpath = GetDatabasePath(db_id, dst_tblspcoid);
1920 
1921  /*
1922  * Force a checkpoint before proceeding. This will force all dirty
1923  * buffers, including those of unlogged tables, out to disk, to ensure
1924  * source database is up-to-date on disk for the copy.
1925  * FlushDatabaseBuffers() would suffice for that, but we also want to
1926  * process any pending unlink requests. Otherwise, the check for existing
1927  * files in the target directory might fail unnecessarily, not to mention
1928  * that the copy might fail due to source files getting deleted under it.
1929  * On Windows, this also ensures that background procs don't hold any open
1930  * files, which would cause rmdir() to fail.
1931  */
1932  RequestCheckpoint(CHECKPOINT_IMMEDIATE | CHECKPOINT_FORCE | CHECKPOINT_WAIT
1933  | CHECKPOINT_FLUSH_ALL);
1934 
1935  /* Close all smgr fds in all backends. */
1936  WaitForProcSignalBarrier(EmitProcSignalBarrier(PROCSIGNAL_BARRIER_SMGRRELEASE));
1937 
1938  /*
1939  * Now drop all buffers holding data of the target database; they should
1940  * no longer be dirty so DropDatabaseBuffers is safe.
1941  *
1942  * It might seem that we could just let these buffers age out of shared
1943  * buffers naturally, since they should not get referenced anymore. The
1944  * problem with that is that if the user later moves the database back to
1945  * its original tablespace, any still-surviving buffers would appear to
1946  * contain valid data again --- but they'd be missing any changes made in
1947  * the database while it was in the new tablespace. In any case, freeing
1948  * buffers that should never be used again seems worth the cycles.
1949  *
1950  * Note: it'd be sufficient to get rid of buffers matching db_id and
1951  * src_tblspcoid, but bufmgr.c presently provides no API for that.
1952  */
1953  DropDatabaseBuffers(db_id);
1954 
1955  /*
1956  * Check for existence of files in the target directory, i.e., objects of
1957  * this database that are already in the target tablespace. We can't
1958  * allow the move in such a case, because we would need to change those
1959  * relations' pg_class.reltablespace entries to zero, and we don't have
1960  * access to the DB's pg_class to do so.
1961  */
1962  dstdir = AllocateDir(dst_dbpath);
1963  if (dstdir != NULL)
1964  {
1965  while ((xlde = ReadDir(dstdir, dst_dbpath)) != NULL)
1966  {
1967  if (strcmp(xlde->d_name, ".") == 0 ||
1968  strcmp(xlde->d_name, "..") == 0)
1969  continue;
1970 
1971  ereport(ERROR,
1972  (errcode(ERRCODE_OBJECT_NOT_IN_PREREQUISITE_STATE),
1973  errmsg("some relations of database \"%s\" are already in tablespace \"%s\"",
1974  dbname, tblspcname),
1975  errhint("You must move them back to the database's default tablespace before using this command.")));
1976  }
1977 
1978  FreeDir(dstdir);
1979 
1980  /*
1981  * The directory exists but is empty. We must remove it before using
1982  * the copydir function.
1983  */
1984  if (rmdir(dst_dbpath) != 0)
1985  elog(ERROR, "could not remove directory \"%s\": %m",
1986  dst_dbpath);
1987  }
1988 
1989  /*
1990  * Use an ENSURE block to make sure we remove the debris if the copy fails
1991  * (eg, due to out-of-disk-space). This is not a 100% solution, because
1992  * of the possibility of failure during transaction commit, but it should
1993  * handle most scenarios.
1994  */
1995  fparms.dest_dboid = db_id;
1996  fparms.dest_tsoid = dst_tblspcoid;
1997  PG_ENSURE_ERROR_CLEANUP(movedb_failure_callback,
1998  PointerGetDatum(&fparms));
1999  {
2000  Datum new_record[Natts_pg_database] = {0};
2001  bool new_record_nulls[Natts_pg_database] = {0};
2002  bool new_record_repl[Natts_pg_database] = {0};
2003 
2004  /*
2005  * Copy files from the old tablespace to the new one
2006  */
2007  copydir(src_dbpath, dst_dbpath, false);
2008 
2009  /*
2010  * Record the filesystem change in XLOG
2011  */
2012  {
2013  xl_dbase_create_file_copy_rec xlrec;
2014 
2015  xlrec.db_id = db_id;
2016  xlrec.tablespace_id = dst_tblspcoid;
2017  xlrec.src_db_id = db_id;
2018  xlrec.src_tablespace_id = src_tblspcoid;
2019 
2020  XLogBeginInsert();
2021  XLogRegisterData((char *) &xlrec,
2022  sizeof(xl_dbase_create_file_copy_rec));
2023 
2024  (void) XLogInsert(RM_DBASE_ID,
2025  XLOG_DBASE_CREATE_FILE_COPY | XLR_SPECIAL_REL_UPDATE);
2026  }
2027 
2028  /*
2029  * Update the database's pg_database tuple
2030  */
2031  ScanKeyInit(&scankey,
2032  Anum_pg_database_datname,
2033  BTEqualStrategyNumber, F_NAMEEQ,
2034  CStringGetDatum(dbname));
2035  sysscan = systable_beginscan(pgdbrel, DatabaseNameIndexId, true,
2036  NULL, 1, &scankey);
2037  oldtuple = systable_getnext(sysscan);
2038  if (!HeapTupleIsValid(oldtuple)) /* shouldn't happen... */
2039  ereport(ERROR,
2040  (errcode(ERRCODE_UNDEFINED_DATABASE),
2041  errmsg("database \"%s\" does not exist", dbname)));
2042 
2043  new_record[Anum_pg_database_dattablespace - 1] = ObjectIdGetDatum(dst_tblspcoid);
2044  new_record_repl[Anum_pg_database_dattablespace - 1] = true;
2045 
2046  newtuple = heap_modify_tuple(oldtuple, RelationGetDescr(pgdbrel),
2047  new_record,
2048  new_record_nulls, new_record_repl);
2049  CatalogTupleUpdate(pgdbrel, &oldtuple->t_self, newtuple);
2050 
2051  InvokeObjectPostAlterHook(DatabaseRelationId, db_id, 0);
2052 
2053  systable_endscan(sysscan);
2054 
2055  /*
2056  * Force another checkpoint here. As in CREATE DATABASE, this is to
2057  * ensure that we don't have to replay a committed
2058  * XLOG_DBASE_CREATE_FILE_COPY operation, which would cause us to lose
2059  * any unlogged operations done in the new DB tablespace before the
2060  * next checkpoint.
2061  */
2062  RequestCheckpoint(CHECKPOINT_IMMEDIATE | CHECKPOINT_FORCE | CHECKPOINT_WAIT);
2063 
2064  /*
2065  * Force synchronous commit, thus minimizing the window between
2066  * copying the database files and committal of the transaction. If we
2067  * crash before committing, we'll leave an orphaned set of files on
2068  * disk, which is not fatal but not good either.
2069  */
2070  ForceSyncCommit();
2071 
2072  /*
2073  * Close pg_database, but keep lock till commit.
2074  */
2075  table_close(pgdbrel, NoLock);
2076  }
2077  PG_END_ENSURE_ERROR_CLEANUP(movedb_failure_callback,
2078  PointerGetDatum(&fparms));
2079 
2080  /*
2081  * Commit the transaction so that the pg_database update is committed. If
2082  * we crash while removing files, the database won't be corrupt, we'll
2083  * just leave some orphaned files in the old directory.
2084  *
2085  * (This is OK because we know we aren't inside a transaction block.)
2086  *
2087  * XXX would it be safe/better to do this inside the ensure block? Not
2088  * convinced it's a good idea; consider elog just after the transaction
2089  * really commits.
2090  */
2091  PopActiveSnapshot();
2092  CommitTransactionCommand();
2093 
2094  /* Start new transaction for the remaining work; don't need a snapshot */
2095  StartTransactionCommand();
2096 
2097  /*
2098  * Remove files from the old tablespace
2099  */
2100  if (!rmtree(src_dbpath, true))
2101  ereport(WARNING,
2102  (errmsg("some useless files may be left behind in old database directory \"%s\"",
2103  src_dbpath)));
2104 
2105  /*
2106  * Record the filesystem change in XLOG
2107  */
2108  {
2109  xl_dbase_drop_rec xlrec;
2110 
2111  xlrec.db_id = db_id;
2112  xlrec.ntablespaces = 1;
2113 
2114  XLogBeginInsert();
2115  XLogRegisterData((char *) &xlrec, sizeof(xl_dbase_drop_rec));
2116  XLogRegisterData((char *) &src_tblspcoid, sizeof(Oid));
2117 
2118  (void) XLogInsert(RM_DBASE_ID,
2119  XLOG_DBASE_DROP | XLR_SPECIAL_REL_UPDATE);
2120  }
2121 
2122  /* Now it's safe to release the database lock */
2123  UnlockSharedObjectForSession(DatabaseRelationId, db_id, 0,
2124  AccessExclusiveLock);
2125 
2126  pfree(src_dbpath);
2127  pfree(dst_dbpath);
2128 }
2129 
2130 /* Error cleanup callback for movedb */
2131 static void
2132 movedb_failure_callback(int code, Datum arg)
2133 {
2134  movedb_failure_params *fparms = (movedb_failure_params *) DatumGetPointer(arg);
2135  char *dstpath;
2136 
2137  /* Get rid of anything we managed to copy to the target directory */
2138  dstpath = GetDatabasePath(fparms->dest_dboid, fparms->dest_tsoid);
2139 
2140  (void) rmtree(dstpath, true);
2141 
2142  pfree(dstpath);
2143 }
2144 
2145 /*
2146  * Process options and call dropdb function.
2147  */
2148 void
2149 DropDatabase(ParseState *pstate, DropdbStmt *stmt)
2150 {
2151  bool force = false;
2152  ListCell *lc;
2153 
2154  foreach(lc, stmt->options)
2155  {
2156  DefElem *opt = (DefElem *) lfirst(lc);
2157 
2158  if (strcmp(opt->defname, "force") == 0)
2159  force = true;
2160  else
2161  ereport(ERROR,
2162  (errcode(ERRCODE_SYNTAX_ERROR),
2163  errmsg("unrecognized DROP DATABASE option \"%s\"", opt->defname),
2164  parser_errposition(pstate, opt->location)));
2165  }
2166 
2167  dropdb(stmt->dbname, stmt->missing_ok, force);
2168 }
2169 
2170 /*
2171  * ALTER DATABASE name ...
2172  */
2173 Oid
2174 AlterDatabase(ParseState *pstate, AlterDatabaseStmt *stmt, bool isTopLevel)
2175 {
2176  Relation rel;
2177  Oid dboid;
2178  HeapTuple tuple,
2179  newtuple;
2180  Form_pg_database datform;
2181  ScanKeyData scankey;
2182  SysScanDesc scan;
2183  ListCell *option;
2184  bool dbistemplate = false;
2185  bool dballowconnections = true;
2186  int dbconnlimit = -1;
2187  DefElem *distemplate = NULL;
2188  DefElem *dallowconnections = NULL;
2189  DefElem *dconnlimit = NULL;
2190  DefElem *dtablespace = NULL;
2191  Datum new_record[Natts_pg_database] = {0};
2192  bool new_record_nulls[Natts_pg_database] = {0};
2193  bool new_record_repl[Natts_pg_database] = {0};
2194 
2195  /* Extract options from the statement node tree */
2196  foreach(option, stmt->options)
2197  {
2198  DefElem *defel = (DefElem *) lfirst(option);
2199 
2200  if (strcmp(defel->defname, "is_template") == 0)
2201  {
2202  if (distemplate)
2203  errorConflictingDefElem(defel, pstate);
2204  distemplate = defel;
2205  }
2206  else if (strcmp(defel->defname, "allow_connections") == 0)
2207  {
2208  if (dallowconnections)
2209  errorConflictingDefElem(defel, pstate);
2210  dallowconnections = defel;
2211  }
2212  else if (strcmp(defel->defname, "connection_limit") == 0)
2213  {
2214  if (dconnlimit)
2215  errorConflictingDefElem(defel, pstate);
2216  dconnlimit = defel;
2217  }
2218  else if (strcmp(defel->defname, "tablespace") == 0)
2219  {
2220  if (dtablespace)
2221  errorConflictingDefElem(defel, pstate);
2222  dtablespace = defel;
2223  }
2224  else
2225  ereport(ERROR,
2226  (errcode(ERRCODE_SYNTAX_ERROR),
2227  errmsg("option \"%s\" not recognized", defel->defname),
2228  parser_errposition(pstate, defel->location)));
2229  }
2230 
2231  if (dtablespace)
2232  {
2233  /*
2234  * While the SET TABLESPACE syntax doesn't allow any other options,
2235  * somebody could write "WITH TABLESPACE ...". Forbid any other
2236  * options from being specified in that case.
2237  */
2238  if (list_length(stmt->options) != 1)
2239  ereport(ERROR,
2240  (errcode(ERRCODE_FEATURE_NOT_SUPPORTED),
2241  errmsg("option \"%s\" cannot be specified with other options",
2242  dtablespace->defname),
2243  parser_errposition(pstate, dtablespace->location)));
2244  /* this case isn't allowed within a transaction block */
2245  PreventInTransactionBlock(isTopLevel, "ALTER DATABASE SET TABLESPACE");
2246  movedb(stmt->dbname, defGetString(dtablespace));
2247  return InvalidOid;
2248  }
2249 
2250  if (distemplate && distemplate->arg)
2251  dbistemplate = defGetBoolean(distemplate);
2252  if (dallowconnections && dallowconnections->arg)
2253  dballowconnections = defGetBoolean(dallowconnections);
2254  if (dconnlimit && dconnlimit->arg)
2255  {
2256  dbconnlimit = defGetInt32(dconnlimit);
2257  if (dbconnlimit < -1)
2258  ereport(ERROR,
2259  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
2260  errmsg("invalid connection limit: %d", dbconnlimit)));
2261  }
2262 
2263  /*
2264  * Get the old tuple. We don't need a lock on the database per se,
2265  * because we're not going to do anything that would mess up incoming
2266  * connections.
2267  */
2268  rel = table_open(DatabaseRelationId, RowExclusiveLock);
2269  ScanKeyInit(&scankey,
2270  Anum_pg_database_datname,
2271  BTEqualStrategyNumber, F_NAMEEQ,
2272  CStringGetDatum(stmt->dbname));
2273  scan = systable_beginscan(rel, DatabaseNameIndexId, true,
2274  NULL, 1, &scankey);
2275  tuple = systable_getnext(scan);
2276  if (!HeapTupleIsValid(tuple))
2277  ereport(ERROR,
2278  (errcode(ERRCODE_UNDEFINED_DATABASE),
2279  errmsg("database \"%s\" does not exist", stmt->dbname)));
2280 
2281  datform = (Form_pg_database) GETSTRUCT(tuple);
2282  dboid = datform->oid;
2283 
2284  if (!object_ownercheck(DatabaseRelationId, dboid, GetUserId()))
2285  aclcheck_error(ACLCHECK_NOT_OWNER, OBJECT_DATABASE,
2286  stmt->dbname);
2287 
2288  /*
2289  * In order to avoid getting locked out and having to go through
2290  * standalone mode, we refuse to disallow connections to the database
2291  * we're currently connected to. Lockout can still happen with concurrent
2292  * sessions but the likeliness of that is not high enough to worry about.
2293  */
2294  if (!dballowconnections && dboid == MyDatabaseId)
2295  ereport(ERROR,
2296  (errcode(ERRCODE_INVALID_PARAMETER_VALUE),
2297  errmsg("cannot disallow connections for current database")));
2298 
2299  /*
2300  * Build an updated tuple, perusing the information just obtained
2301  */
2302  if (distemplate)
2303  {
2304  new_record[Anum_pg_database_datistemplate - 1] = BoolGetDatum(dbistemplate);
2305  new_record_repl[Anum_pg_database_datistemplate - 1] = true;
2306  }
2307  if (dallowconnections)
2308  {
2309  new_record[Anum_pg_database_datallowconn - 1] = BoolGetDatum(dballowconnections);
2310  new_record_repl[Anum_pg_database_datallowconn - 1] = true;
2311  }
2312  if (dconnlimit)
2313  {
2314  new_record[Anum_pg_database_datconnlimit - 1] = Int32GetDatum(dbconnlimit);
2315  new_record_repl[Anum_pg_database_datconnlimit - 1] = true;
2316  }
2317 
2318  newtuple = heap_modify_tuple(tuple, RelationGetDescr(rel), new_record,
2319  new_record_nulls, new_record_repl);
2320  CatalogTupleUpdate(rel, &tuple->t_self, newtuple);
2321 
2322  InvokeObjectPostAlterHook(DatabaseRelationId, dboid, 0);
2323 
2324  systable_endscan(scan);
2325 
2326  /* Close pg_database, but keep lock till commit */
2327  table_close(rel, NoLock);
2328 
2329  return dboid;
2330 }
2331 
2332 
2333 /*
2334  * ALTER DATABASE name REFRESH COLLATION VERSION
2335  */
2336 ObjectAddress
2337 AlterDatabaseRefreshColl(AlterDatabaseRefreshCollStmt *stmt)
2338 {
2339  Relation rel;
2340  ScanKeyData scankey;
2341  SysScanDesc scan;
2342  Oid db_id;
2343  HeapTuple tuple;
2344  Form_pg_database datForm;
2345  ObjectAddress address;
2346  Datum datum;
2347  bool isnull;
2348  char *oldversion;
2349  char *newversion;
2350 
2351  rel = table_open(DatabaseRelationId, RowExclusiveLock);
2352  ScanKeyInit(&scankey,
2353  Anum_pg_database_datname,
2354  BTEqualStrategyNumber, F_NAMEEQ,
2355  CStringGetDatum(stmt->dbname));
2356  scan = systable_beginscan(rel, DatabaseNameIndexId, true,
2357  NULL, 1, &scankey);
2358  tuple = systable_getnext(scan);
2359  if (!HeapTupleIsValid(tuple))
2360  ereport(ERROR,
2361  (errcode(ERRCODE_UNDEFINED_DATABASE),
2362  errmsg("database \"%s\" does not exist", stmt->dbname)));
2363 
2364  datForm = (Form_pg_database) GETSTRUCT(tuple);
2365  db_id = datForm->oid;
2366 
2367  if (!object_ownercheck(DatabaseRelationId, db_id, GetUserId()))
2368  aclcheck_error(ACLCHECK_NOT_OWNER, OBJECT_DATABASE,
2369  stmt->dbname);
2370 
2371  datum = heap_getattr(tuple, Anum_pg_database_datcollversion, RelationGetDescr(rel), &isnull);
2372  oldversion = isnull ? NULL : TextDatumGetCString(datum);
2373 
2374  datum = heap_getattr(tuple, datForm->datlocprovider == COLLPROVIDER_ICU ? Anum_pg_database_daticulocale : Anum_pg_database_datcollate, RelationGetDescr(rel), &isnull);
2375  if (isnull)
2376  elog(ERROR, "unexpected null in pg_database");
2377  newversion = get_collation_actual_version(datForm->datlocprovider, TextDatumGetCString(datum));
2378 
2379  /* cannot change from NULL to non-NULL or vice versa */
2380  if ((!oldversion && newversion) || (oldversion && !newversion))
2381  elog(ERROR, "invalid collation version change");
2382  else if (oldversion && newversion && strcmp(newversion, oldversion) != 0)
2383  {
2384  bool nulls[Natts_pg_database] = {0};
2385  bool replaces[Natts_pg_database] = {0};
2386  Datum values[Natts_pg_database] = {0};
2387 
2388  ereport(NOTICE,
2389  (errmsg("changing version from %s to %s",
2390  oldversion, newversion)));
2391 
2392  values[Anum_pg_database_datcollversion - 1] = CStringGetTextDatum(newversion);
2393  replaces[Anum_pg_database_datcollversion - 1] = true;
2394 
2395  tuple = heap_modify_tuple(tuple, RelationGetDescr(rel),
2396  values, nulls, replaces);
2397  CatalogTupleUpdate(rel, &tuple->t_self, tuple);
2398  heap_freetuple(tuple);
2399  }
2400  else
2401  ereport(NOTICE,
2402  (errmsg("version has not changed")));
2403 
2404  InvokeObjectPostAlterHook(DatabaseRelationId, db_id, 0);
2405 
2406  ObjectAddressSet(address, DatabaseRelationId, db_id);
2407 
2408  systable_endscan(scan);
2409 
2410  table_close(rel, NoLock);
2411 
2412  return address;
2413 }
2414 
2415 
2416 /*
2417  * ALTER DATABASE name SET ...
2418  */
2419 Oid
2420 AlterDatabaseSet(AlterDatabaseSetStmt *stmt)
2421 {
2422  Oid datid = get_database_oid(stmt->dbname, false);
2423 
2424  /*
2425  * Obtain a lock on the database and make sure it didn't go away in the
2426  * meantime.
2427  */
2428  shdepLockAndCheckObject(DatabaseRelationId, datid);
2429 
2430  if (!object_ownercheck(DatabaseRelationId, datid, GetUserId()))
2431  aclcheck_error(ACLCHECK_NOT_OWNER, OBJECT_DATABASE,
2432  stmt->dbname);
2433 
2434  AlterSetting(datid, InvalidOid, stmt->setstmt);
2435 
2436  UnlockSharedObject(DatabaseRelationId, datid, 0, AccessShareLock);
2437 
2438  return datid;
2439 }
2440 
2441 
2442 /*
2443  * ALTER DATABASE name OWNER TO newowner
2444  */
2445 ObjectAddress
2446 AlterDatabaseOwner(const char *dbname, Oid newOwnerId)
2447 {
2448  Oid db_id;
2449  HeapTuple tuple;
2450  Relation rel;
2451  ScanKeyData scankey;
2452  SysScanDesc scan;
2453  Form_pg_database datForm;
2454  ObjectAddress address;
2455 
2456  /*
2457  * Get the old tuple. We don't need a lock on the database per se,
2458  * because we're not going to do anything that would mess up incoming
2459  * connections.
2460  */
2461  rel = table_open(DatabaseRelationId, RowExclusiveLock);
2462  ScanKeyInit(&scankey,
2463  Anum_pg_database_datname,
2464  BTEqualStrategyNumber, F_NAMEEQ,
2465  CStringGetDatum(dbname));
2466  scan = systable_beginscan(rel, DatabaseNameIndexId, true,
2467  NULL, 1, &scankey);
2468  tuple = systable_getnext(scan);
2469  if (!HeapTupleIsValid(tuple))
2470  ereport(ERROR,
2471  (errcode(ERRCODE_UNDEFINED_DATABASE),
2472  errmsg("database \"%s\" does not exist", dbname)));
2473 
2474  datForm = (Form_pg_database) GETSTRUCT(tuple);
2475  db_id = datForm->oid;
2476 
2477  /*
2478  * If the new owner is the same as the existing owner, consider the
2479  * command to have succeeded. This is to be consistent with other
2480  * objects.
2481  */
2482  if (datForm->datdba != newOwnerId)
2483  {
2484  Datum repl_val[Natts_pg_database];
2485  bool repl_null[Natts_pg_database] = {0};
2486  bool repl_repl[Natts_pg_database] = {0};
2487  Acl *newAcl;
2488  Datum aclDatum;
2489  bool isNull;
2490  HeapTuple newtuple;
2491 
2492  /* Otherwise, must be owner of the existing object */
2493  if (!object_ownercheck(DatabaseRelationId, db_id, GetUserId()))
2494  aclcheck_error(ACLCHECK_NOT_OWNER, OBJECT_DATABASE,
2495  dbname);
2496 
2497  /* Must be able to become new owner */
2498  check_can_set_role(GetUserId(), newOwnerId);
2499 
2500  /*
2501  * must have createdb rights
2502  *
2503  * NOTE: This is different from other alter-owner checks in that the
2504  * current user is checked for createdb privileges instead of the
2505  * destination owner. This is consistent with the CREATE case for
2506  * databases. Because superusers will always have this right, we need
2507  * no special case for them.
2508  */
2509  if (!have_createdb_privilege())
2510  ereport(ERROR,
2511  (errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),
2512  errmsg("permission denied to change owner of database")));
2513 
2514  repl_repl[Anum_pg_database_datdba - 1] = true;
2515  repl_val[Anum_pg_database_datdba - 1] = ObjectIdGetDatum(newOwnerId);
2516 
2517  /*
2518  * Determine the modified ACL for the new owner. This is only
2519  * necessary when the ACL is non-null.
2520  */
2521  aclDatum = heap_getattr(tuple,
2522  Anum_pg_database_datacl,
2523  RelationGetDescr(rel),
2524  &isNull);
2525  if (!isNull)
2526  {
2527  newAcl = aclnewowner(DatumGetAclP(aclDatum),
2528  datForm->datdba, newOwnerId);
2529  repl_repl[Anum_pg_database_datacl - 1] = true;
2530  repl_val[Anum_pg_database_datacl - 1] = PointerGetDatum(newAcl);
2531  }
2532 
2533  newtuple = heap_modify_tuple(tuple, RelationGetDescr(rel), repl_val, repl_null, repl_repl);
2534  CatalogTupleUpdate(rel, &newtuple->t_self, newtuple);
2535 
2536  heap_freetuple(newtuple);
2537 
2538  /* Update owner dependency reference */
2539  changeDependencyOnOwner(DatabaseRelationId, db_id, newOwnerId);
2540  }
2541 
2542  InvokeObjectPostAlterHook(DatabaseRelationId, db_id, 0);
2543 
2544  ObjectAddressSet(address, DatabaseRelationId, db_id);
2545 
2546  systable_endscan(scan);
2547 
2548  /* Close pg_database, but keep lock till commit */
2549  table_close(rel, NoLock);
2550 
2551  return address;
2552 }
2553 
2554 
2555 Datum
2556 pg_database_collation_actual_version(PG_FUNCTION_ARGS)
2557 {
2558  Oid dbid = PG_GETARG_OID(0);
2559  HeapTuple tp;
2560  char datlocprovider;
2561  Datum datum;
2562  bool isnull;
2563  char *version;
2564 
2565  tp = SearchSysCache1(DATABASEOID, ObjectIdGetDatum(dbid));
2566  if (!HeapTupleIsValid(tp))
2567  ereport(ERROR,
2568  (errcode(ERRCODE_UNDEFINED_OBJECT),
2569  errmsg("database with OID %u does not exist", dbid)));
2570 
2571  datlocprovider = ((Form_pg_database) GETSTRUCT(tp))->datlocprovider;
2572 
2573  datum = SysCacheGetAttr(DATABASEOID, tp, datlocprovider == COLLPROVIDER_ICU ? Anum_pg_database_daticulocale : Anum_pg_database_datcollate, &isnull);
2574  if (isnull)
2575  elog(ERROR, "unexpected null in pg_database");
2576  version = get_collation_actual_version(datlocprovider, TextDatumGetCString(datum));
2577 
2578  ReleaseSysCache(tp);
2579 
2580  if (version)
2581  PG_RETURN_TEXT_P(cstring_to_text(version));
2582  else
2583  PG_RETURN_NULL();
2584 }
2585 
2586 
2587 /*
2588  * Helper functions
2589  */
2590 
2591 /*
2592  * Look up info about the database named "name". If the database exists,
2593  * obtain the specified lock type on it, fill in any of the remaining
2594  * parameters that aren't NULL, and return true. If no such database,
2595  * return false.
2596  */
2597 static bool
2598 get_db_info(const char *name, LOCKMODE lockmode,
2599  Oid *dbIdP, Oid *ownerIdP,
2600  int *encodingP, bool *dbIsTemplateP, bool *dbAllowConnP,
2601  TransactionId *dbFrozenXidP, MultiXactId *dbMinMultiP,
2602  Oid *dbTablespace, char **dbCollate, char **dbCtype, char **dbIculocale,
2603  char *dbLocProvider,
2604  char **dbCollversion)
2605 {
2606  bool result = false;
2607  Relation relation;
2608 
2609  Assert(name);
2610 
2611  /* Caller may wish to grab a better lock on pg_database beforehand... */
2612  relation = table_open(DatabaseRelationId, AccessShareLock);
2613 
2614  /*
2615  * Loop covers the rare case where the database is renamed before we can
2616  * lock it. We try again just in case we can find a new one of the same
2617  * name.
2618  */
2619  for (;;)
2620  {
2621  ScanKeyData scanKey;
2622  SysScanDesc scan;
2623  HeapTuple tuple;
2624  Oid dbOid;
2625 
2626  /*
2627  * there's no syscache for database-indexed-by-name, so must do it the
2628  * hard way
2629  */
2630  ScanKeyInit(&scanKey,
2631  Anum_pg_database_datname,
2632  BTEqualStrategyNumber, F_NAMEEQ,
2633  CStringGetDatum(name));
2634 
2635  scan = systable_beginscan(relation, DatabaseNameIndexId, true,
2636  NULL, 1, &scanKey);
2637 
2638  tuple = systable_getnext(scan);
2639 
2640  if (!HeapTupleIsValid(tuple))
2641  {
2642  /* definitely no database of that name */
2643  systable_endscan(scan);
2644  break;
2645  }
2646 
2647  dbOid = ((Form_pg_database) GETSTRUCT(tuple))->oid;
2648 
2649  systable_endscan(scan);
2650 
2651  /*
2652  * Now that we have a database OID, we can try to lock the DB.
2653  */
2654  if (lockmode != NoLock)
2655  LockSharedObject(DatabaseRelationId, dbOid, 0, lockmode);
2656 
2657  /*
2658  * And now, re-fetch the tuple by OID. If it's still there and still
2659  * the same name, we win; else, drop the lock and loop back to try
2660  * again.
2661  */
2662  tuple = SearchSysCache1(DATABASEOID, ObjectIdGetDatum(dbOid));
2663  if (HeapTupleIsValid(tuple))
2664  {
2665  Form_pg_database dbform = (Form_pg_database) GETSTRUCT(tuple);
2666 
2667  if (strcmp(name, NameStr(dbform->datname)) == 0)
2668  {
2669  Datum datum;
2670  bool isnull;
2671 
2672  /* oid of the database */
2673  if (dbIdP)
2674  *dbIdP = dbOid;
2675  /* oid of the owner */
2676  if (ownerIdP)
2677  *ownerIdP = dbform->datdba;
2678  /* character encoding */
2679  if (encodingP)
2680  *encodingP = dbform->encoding;
2681  /* allowed as template? */
2682  if (dbIsTemplateP)
2683  *dbIsTemplateP = dbform->datistemplate;
2684  /* allowing connections? */
2685  if (dbAllowConnP)
2686  *dbAllowConnP = dbform->datallowconn;
2687  /* limit of frozen XIDs */
2688  if (dbFrozenXidP)
2689  *dbFrozenXidP = dbform->datfrozenxid;
2690  /* minimum MultiXactId */
2691  if (dbMinMultiP)
2692  *dbMinMultiP = dbform->datminmxid;
2693  /* default tablespace for this database */
2694  if (dbTablespace)
2695  *dbTablespace = dbform->dattablespace;
2696  /* default locale settings for this database */
2697  if (dbLocProvider)
2698  *dbLocProvider = dbform->datlocprovider;
2699  if (dbCollate)
2700  {
2701  datum = SysCacheGetAttr(DATABASEOID, tuple, Anum_pg_database_datcollate, &isnull);
2702  Assert(!isnull);
2703  *dbCollate = TextDatumGetCString(datum);
2704  }
2705  if (dbCtype)
2706  {
2707  datum = SysCacheGetAttr(DATABASEOID, tuple, Anum_pg_database_datctype, &isnull);
2708  Assert(!isnull);
2709  *dbCtype = TextDatumGetCString(datum);
2710  }
2711  if (dbIculocale)
2712  {
2713  datum = SysCacheGetAttr(DATABASEOID, tuple, Anum_pg_database_daticulocale, &isnull);
2714  if (isnull)
2715  *dbIculocale = NULL;
2716  else
2717  *dbIculocale = TextDatumGetCString(datum);
2718  }
2719  if (dbCollversion)
2720  {
2721  datum = SysCacheGetAttr(DATABASEOID, tuple, Anum_pg_database_datcollversion, &isnull);
2722  if (isnull)
2723  *dbCollversion = NULL;
2724  else
2725  *dbCollversion = TextDatumGetCString(datum);
2726  }
2727  ReleaseSysCache(tuple);
2728  result = true;
2729  break;
2730  }
2731  /* can only get here if it was just renamed */
2732  ReleaseSysCache(tuple);
2733  }
2734 
2735  if (lockmode != NoLock)
2736  UnlockSharedObject(DatabaseRelationId, dbOid, 0, lockmode);
2737  }
2738 
2739  table_close(relation, AccessShareLock);
2740 
2741  return result;
2742 }
2743 
2744 /* Check if current user has createdb privileges */
2745 static bool
2746 have_createdb_privilege(void)
2747 {
2748  bool result = false;
2749  HeapTuple utup;
2750 
2751  /* Superusers can always do everything */
2752  if (superuser())
2753  return true;
2754 
2755  utup = SearchSysCache1(AUTHOID, ObjectIdGetDatum(GetUserId()));
2756  if (HeapTupleIsValid(utup))
2757  {
2758  result = ((Form_pg_authid) GETSTRUCT(utup))->rolcreatedb;
2759  ReleaseSysCache(utup);
2760  }
2761  return result;
2762 }
2763 
2764 /*
2765  * Remove tablespace directories
2766  *
2767  * We don't know what tablespaces db_id is using, so iterate through all
2768  * tablespaces removing <tablespace>/db_id
2769  */
2770 static void
2771 remove_dbtablespaces(Oid db_id)
2772 {
2773  Relation rel;
2774  TableScanDesc scan;
2775  HeapTuple tuple;
2776  List *ltblspc = NIL;
2777  ListCell *cell;
2778  int ntblspc;
2779  int i;
2780  Oid *tablespace_ids;
2781 
2782  rel = table_open(TableSpaceRelationId, AccessShareLock);
2783  scan = table_beginscan_catalog(rel, 0, NULL);
2784  while ((tuple = heap_getnext(scan, ForwardScanDirection)) != NULL)
2785  {
2786  Form_pg_tablespace spcform = (Form_pg_tablespace) GETSTRUCT(tuple);
2787  Oid dsttablespace = spcform->oid;
2788  char *dstpath;
2789  struct stat st;
2790 
2791  /* Don't mess with the global tablespace */
2792  if (dsttablespace == GLOBALTABLESPACE_OID)
2793  continue;
2794 
2795  dstpath = GetDatabasePath(db_id, dsttablespace);
2796 
2797  if (lstat(dstpath, &st) < 0 || !S_ISDIR(st.st_mode))
2798  {
2799  /* Assume we can ignore it */
2800  pfree(dstpath);
2801  continue;
2802  }
2803 
2804  if (!rmtree(dstpath, true))
2805  ereport(WARNING,
2806  (errmsg("some useless files may be left behind in old database directory \"%s\"",
2807  dstpath)));
2808 
2809  ltblspc = lappend_oid(ltblspc, dsttablespace);
2810  pfree(dstpath);
2811  }
2812 
2813  ntblspc = list_length(ltblspc);
2814  if (ntblspc == 0)
2815  {
2816  table_endscan(scan);
2817  table_close(rel, AccessShareLock);
2818  return;
2819  }
2820 
2821  tablespace_ids = (Oid *) palloc(ntblspc * sizeof(Oid));
2822  i = 0;
2823  foreach(cell, ltblspc)
2824  tablespace_ids[i++] = lfirst_oid(cell);
2825 
2826  /* Record the filesystem change in XLOG */
2827  {
2828  xl_dbase_drop_rec xlrec;
2829 
2830  xlrec.db_id = db_id;
2831  xlrec.ntablespaces = ntblspc;
2832 
2833  XLogBeginInsert();
2834  XLogRegisterData((char *) &xlrec, MinSizeOfDbaseDropRec);
2835  XLogRegisterData((char *) tablespace_ids, ntblspc * sizeof(Oid));
2836 
2837  (void) XLogInsert(RM_DBASE_ID,
2838  XLOG_DBASE_DROP | XLR_SPECIAL_REL_UPDATE);
2839  }
2840 
2841  list_free(ltblspc);
2842  pfree(tablespace_ids);
2843 
2844  table_endscan(scan);
2845  table_close(rel, AccessShareLock);
2846 }
2847 
2848 /*
2849  * Check for existing files that conflict with a proposed new DB OID;
2850  * return true if there are any
2851  *
2852  * If there were a subdirectory in any tablespace matching the proposed new
2853  * OID, we'd get a create failure due to the duplicate name ... and then we'd
2854  * try to remove that already-existing subdirectory during the cleanup in
2855  * remove_dbtablespaces. Nuking existing files seems like a bad idea, so
2856  * instead we make this extra check before settling on the OID of the new
2857  * database. This exactly parallels what GetNewRelFileNumber() does for table
2858  * relfilenumber values.
2859  */
2860 static bool
2861 check_db_file_conflict(Oid db_id)
2862 {
2863  bool result = false;
2864  Relation rel;
2865  TableScanDesc scan;
2866  HeapTuple tuple;
2867 
2868  rel = table_open(TableSpaceRelationId, AccessShareLock);
2869  scan = table_beginscan_catalog(rel, 0, NULL);
2870  while ((tuple = heap_getnext(scan, ForwardScanDirection)) != NULL)
2871  {
2872  Form_pg_tablespace spcform = (Form_pg_tablespace) GETSTRUCT(tuple);
2873  Oid dsttablespace = spcform->oid;
2874  char *dstpath;
2875  struct stat st;
2876 
2877  /* Don't mess with the global tablespace */
2878  if (dsttablespace == GLOBALTABLESPACE_OID)
2879  continue;
2880 
2881  dstpath = GetDatabasePath(db_id, dsttablespace);
2882 
2883  if (lstat(dstpath, &st) == 0)
2884  {
2885  /* Found a conflicting file (or directory, whatever) */
2886  pfree(dstpath);
2887  result = true;
2888  break;
2889  }
2890 
2891  pfree(dstpath);
2892  }
2893 
2894  table_endscan(scan);
2895  table_close(rel, AccessShareLock);
2896 
2897  return result;
2898 }
2899 
2900 /*
2901  * Issue a suitable errdetail message for a busy database
2902  */
2903 static int
2904 errdetail_busy_db(int notherbackends, int npreparedxacts)
2905 {
2906  if (notherbackends > 0 && npreparedxacts > 0)
2907 
2908  /*
2909  * We don't deal with singular versus plural here, since gettext
2910  * doesn't support multiple plurals in one string.
2911  */
2912  errdetail("There are %d other session(s) and %d prepared transaction(s) using the database.",
2913  notherbackends, npreparedxacts);
2914  else if (notherbackends > 0)
2915  errdetail_plural("There is %d other session using the database.",
2916  "There are %d other sessions using the database.",
2917  notherbackends,
2918  notherbackends);
2919  else
2920  errdetail_plural("There is %d prepared transaction using the database.",
2921  "There are %d prepared transactions using the database.",
2922  npreparedxacts,
2923  npreparedxacts);
2924  return 0; /* just to keep ereport macro happy */
2925 }
2926 
2927 /*
2928  * get_database_oid - given a database name, look up the OID
2929  *
2930  * If missing_ok is false, throw an error if database name not found. If
2931  * true, just return InvalidOid.
2932  */
2933 Oid
2934 get_database_oid(const char *dbname, bool missing_ok)
2935 {
2936  Relation pg_database;
2937  ScanKeyData entry[1];
2938  SysScanDesc scan;
2939  HeapTuple dbtuple;
2940  Oid oid;
2941 
2942  /*
2943  * There's no syscache for pg_database indexed by name, so we must look
2944  * the hard way.
2945  */
2946  pg_database = table_open(DatabaseRelationId, AccessShareLock);
2947  ScanKeyInit(&entry[0],
2948  Anum_pg_database_datname,
2949  BTEqualStrategyNumber, F_NAMEEQ,
2950  CStringGetDatum(dbname));
2951  scan = systable_beginscan(pg_database, DatabaseNameIndexId, true,
2952  NULL, 1, entry);
2953 
2954  dbtuple = systable_getnext(scan);
2955 
2956  /* We assume that there can be at most one matching tuple */
2957  if (HeapTupleIsValid(dbtuple))
2958  oid = ((Form_pg_database) GETSTRUCT(dbtuple))->oid;
2959  else
2960  oid = InvalidOid;
2961 
2962  systable_endscan(scan);
2963  table_close(pg_database, AccessShareLock);
2964 
2965  if (!OidIsValid(oid) && !missing_ok)
2966  ereport(ERROR,
2967  (errcode(ERRCODE_UNDEFINED_DATABASE),
2968  errmsg("database \"%s\" does not exist",
2969  dbname)));
2970 
2971  return oid;
2972 }
2973 
2974 
2975 /*
2976  * get_database_name - given a database OID, look up the name
2977  *
2978  * Returns a palloc'd string, or NULL if no such database.
2979  */
2980 char *
2981 get_database_name(Oid dbid)
2982 {
2983  HeapTuple dbtuple;
2984  char *result;
2985 
2986  dbtuple = SearchSysCache1(DATABASEOID, ObjectIdGetDatum(dbid));
2987  if (HeapTupleIsValid(dbtuple))
2988  {
2989  result = pstrdup(NameStr(((Form_pg_database) GETSTRUCT(dbtuple))->datname));
2990  ReleaseSysCache(dbtuple);
2991  }
2992  else
2993  result = NULL;
2994 
2995  return result;
2996 }
2997 
2998 /*
2999  * recovery_create_dbdir()
3000  *
3001  * During recovery, there's a case where we validly need to recover a missing
3002  * tablespace directory so that recovery can continue. This happens when
3003  * recovery wants to create a database but the holding tablespace has been
3004  * removed before the server stopped. Since we expect that the directory will
3005  * be gone before reaching recovery consistency, and we have no knowledge about
3006  * the tablespace other than its OID here, we create a real directory under
3007  * pg_tblspc here instead of restoring the symlink.
3008  *
3009  * If only_tblspc is true, then the requested directory must be in pg_tblspc/
3010  */
3011 static void
3012 recovery_create_dbdir(char *path, bool only_tblspc)
3013 {
3014  struct stat st;
3015 
3016  Assert(RecoveryInProgress());
3017 
3018  if (stat(path, &st) == 0)
3019  return;
3020 
3021  if (only_tblspc && strstr(path, "pg_tblspc/") == NULL)
3022  elog(PANIC, "requested to created invalid directory: %s", path);
3023 
3024  if (reachedConsistency && !allow_in_place_tablespaces)
3025  ereport(PANIC,
3026  errmsg("missing directory \"%s\"", path));
3027 
3028  elog(reachedConsistency ? WARNING : DEBUG1,
3029  "creating missing directory: %s", path);
3030 
3031  if (pg_mkdir_p(path, pg_dir_create_mode) != 0)
3032  ereport(PANIC,
3033  errmsg("could not create missing directory \"%s\": %m", path));
3034 }
3035 
3036 
3037 /*
3038  * DATABASE resource manager's routines
3039  */
3040 void
3041 dbase_redo(XLogReaderState *record)
3042 {
3043  uint8 info = XLogRecGetInfo(record) & ~XLR_INFO_MASK;
3044 
3045  /* Backup blocks are not used in dbase records */
3046  Assert(!XLogRecHasAnyBlockRefs(record));
3047 
3048  if (info == XLOG_DBASE_CREATE_FILE_COPY)
3049  {
3050  xl_dbase_create_file_copy_rec *xlrec =
3051  (xl_dbase_create_file_copy_rec *) XLogRecGetData(record);
3052  char *src_path;
3053  char *dst_path;
3054  char *parent_path;
3055  struct stat st;
3056 
3057  src_path = GetDatabasePath(xlrec->src_db_id, xlrec->src_tablespace_id);
3058  dst_path = GetDatabasePath(xlrec->db_id, xlrec->tablespace_id);
3059 
3060  /*
3061  * Our theory for replaying a CREATE is to forcibly drop the target
3062  * subdirectory if present, then re-copy the source data. This may be
3063  * more work than needed, but it is simple to implement.
3064  */
3065  if (stat(dst_path, &st) == 0 && S_ISDIR(st.st_mode))
3066  {
3067  if (!rmtree(dst_path, true))
3068  /* If this failed, copydir() below is going to error. */
3069  ereport(WARNING,
3070  (errmsg("some useless files may be left behind in old database directory \"%s\"",
3071  dst_path)));
3072  }
3073 
3074  /*
3075  * If the parent of the target path doesn't exist, create it now. This
3076  * enables us to create the target underneath later.
3077  */
3078  parent_path = pstrdup(dst_path);
3079  get_parent_directory(parent_path);
3080  if (stat(parent_path, &st) < 0)
3081  {
3082  if (errno != ENOENT)
3083  ereport(FATAL,
3084  errmsg("could not stat directory \"%s\": %m",
3085  dst_path));
3086 
3087  /* create the parent directory if needed and valid */
3088  recovery_create_dbdir(parent_path, true);
3089  }
3090  pfree(parent_path);
3091 
3092  /*
3093  * There's a case where the copy source directory is missing for the
3094  * same reason above. Create the emtpy source directory so that
3095  * copydir below doesn't fail. The directory will be dropped soon by
3096  * recovery.
3097  */
3098  if (stat(src_path, &st) < 0 && errno == ENOENT)
3099  recovery_create_dbdir(src_path, false);
3100 
3101  /*
3102  * Force dirty buffers out to disk, to ensure source database is
3103  * up-to-date for the copy.
3104  */
3105  FlushDatabaseBuffers(xlrec->src_db_id);
3106 
3107  /* Close all sgmr fds in all backends. */
3108  WaitForProcSignalBarrier(EmitProcSignalBarrier(PROCSIGNAL_BARRIER_SMGRRELEASE));
3109 
3110  /*
3111  * Copy this subdirectory to the new location
3112  *
3113  * We don't need to copy subdirectories
3114  */
3115  copydir(src_path, dst_path, false);
3116 
3117  pfree(src_path);
3118  pfree(dst_path);
3119  }
3120  else if (info == XLOG_DBASE_CREATE_WAL_LOG)
3121  {
3122  xl_dbase_create_wal_log_rec *xlrec =
3123  (xl_dbase_create_wal_log_rec *) XLogRecGetData(record);
3124  char *dbpath;
3125  char *parent_path;
3126 
3127  dbpath = GetDatabasePath(xlrec->db_id, xlrec->tablespace_id);
3128 
3129  /* create the parent directory if needed and valid */
3130  parent_path = pstrdup(dbpath);
3131  get_parent_directory(parent_path);
3132  recovery_create_dbdir(parent_path, true);
3133 
3134  /* Create the database directory with the version file. */
3135  CreateDirAndVersionFile(dbpath, xlrec->db_id, xlrec->tablespace_id,
3136  true);
3137  pfree(dbpath);
3138  }
3139  else if (info == XLOG_DBASE_DROP)
3140  {
3141  xl_dbase_drop_rec *xlrec = (xl_dbase_drop_rec *) XLogRecGetData(record);
3142  char *dst_path;
3143  int i;
3144 
3145  if (InHotStandby)
3146  {
3147  /*
3148  * Lock database while we resolve conflicts to ensure that
3149  * InitPostgres() cannot fully re-execute concurrently. This
3150  * avoids backends re-connecting automatically to same database,
3151  * which can happen in some cases.
3152  *
3153  * This will lock out walsenders trying to connect to db-specific
3154  * slots for logical decoding too, so it's safe for us to drop
3155  * slots.
3156  */
3157  LockSharedObjectForSession(DatabaseRelationId, xlrec->db_id, 0, AccessExclusiveLock);
3158  ResolveRecoveryConflictWithDatabase(xlrec->db_id);
3159  }
3160 
3161  /* Drop any database-specific replication slots */
3162  ReplicationSlotsDropDBSlots(xlrec->db_id);
3163 
3164  /* Drop pages for this database that are in the shared buffer cache */
3165  DropDatabaseBuffers(xlrec->db_id);
3166 
3167  /* Also, clean out any fsync requests that might be pending in md.c */
3168  ForgetDatabaseSyncRequests(xlrec->db_id);
3169 
3170  /* Clean out the xlog relcache too */
3171  XLogDropDatabase(xlrec->db_id);
3172 
3173  /* Close all sgmr fds in all backends. */
3174  WaitForProcSignalBarrier(EmitProcSignalBarrier(PROCSIGNAL_BARRIER_SMGRRELEASE));
3175 
3176  for (i = 0; i < xlrec->ntablespaces; i++)
3177  {
3178  dst_path = GetDatabasePath(xlrec->db_id, xlrec->tablespace_ids[i]);
3179 
3180  /* And remove the physical files */
3181  if (!rmtree(dst_path, true))
3182  ereport(WARNING,
3183  (errmsg("some useless files may be left behind in old database directory \"%s\"",
3184  dst_path)));
3185  pfree(dst_path);
3186  }
3187 
3188  if (InHotStandby)
3189  {
3190  /*
3191  * Release locks prior to commit. XXX There is a race condition
3192  * here that may allow backends to reconnect, but the window for
3193  * this is small because the gap between here and commit is mostly
3194  * fairly small and it is unlikely that people will be dropping
3195  * databases that we are trying to connect to anyway.
3196  */
3197  UnlockSharedObjectForSession(DatabaseRelationId, xlrec->db_id, 0, AccessExclusiveLock);
3198  }
3199  }
3200  else
3201  elog(PANIC, "dbase_redo: unknown op code %u", info);
3202 }
aclnewowner
Acl * aclnewowner(const Acl *old_acl, Oid oldOwnerId, Oid newOwnerId)
Definition: acl.c:1065
get_role_oid
Oid get_role_oid(const char *rolname, bool missing_ok)
Definition: acl.c:5235
check_can_set_role
void check_can_set_role(Oid member, Oid role)
Definition: acl.c:5006
AclResult
AclResult
Definition: acl.h:183
ACLCHECK_OK
@ ACLCHECK_OK
Definition: acl.h:184
ACLCHECK_NOT_OWNER
@ ACLCHECK_NOT_OWNER
Definition: acl.h:186
DatumGetAclP
#define DatumGetAclP(X)
Definition: acl.h:120
aclcheck_error
void aclcheck_error(AclResult aclerr, ObjectType objtype, const char *objectname)
Definition: aclchk.c:3485
object_aclcheck
AclResult object_aclcheck(Oid classid, Oid objectid, Oid roleid, AclMode mode)
Definition: aclchk.c:4598
object_ownercheck
bool object_ownercheck(Oid classid, Oid objectid, Oid roleid)
Definition: aclchk.c:4799
directory_is_empty
bool directory_is_empty(const char *path)
Definition: tablespace.c:859
get_tablespace_oid
Oid get_tablespace_oid(const char *tablespacename, bool missing_ok)
Definition: tablespace.c:1432
allow_in_place_tablespaces
bool allow_in_place_tablespaces
Definition: tablespace.c:91
InvalidBackendId
#define InvalidBackendId
Definition: backendid.h:23
BlockNumber
uint32 BlockNumber
Definition: block.h:31
values
static Datum values[MAXATTR]
Definition: bootstrap.c:156
Buffer
int Buffer
Definition: buf.h:23
DropDatabaseBuffers
void DropDatabaseBuffers(Oid dbid)
Definition: bufmgr.c:3413
BufferGetBlockNumber
BlockNumber BufferGetBlockNumber(Buffer buffer)
Definition: bufmgr.c:2763
CreateAndCopyRelationData
void CreateAndCopyRelationData(RelFileLocator src_rlocator, RelFileLocator dst_rlocator, bool permanent)
Definition: bufmgr.c:3799
UnlockReleaseBuffer
void UnlockReleaseBuffer(Buffer buffer)
Definition: bufmgr.c:3954
LockBuffer
void LockBuffer(Buffer buffer, int mode)
Definition: bufmgr.c:4172
ReadBufferWithoutRelcache
Buffer ReadBufferWithoutRelcache(RelFileLocator rlocator, ForkNumber forkNum, BlockNumber blockNum, ReadBufferMode mode, BufferAccessStrategy strategy, bool permanent)
Definition: bufmgr.c:799
FlushDatabaseBuffers
void FlushDatabaseBuffers(Oid dbid)
Definition: bufmgr.c:3868
BAS_BULKREAD
@ BAS_BULKREAD
Definition: bufmgr.h:30
BUFFER_LOCK_SHARE
#define BUFFER_LOCK_SHARE
Definition: bufmgr.h:106
BufferGetPage
static Page BufferGetPage(Buffer buffer)
Definition: bufmgr.h:280
RBM_NORMAL
@ RBM_NORMAL
Definition: bufmgr.h:39
PageIsEmpty
static bool PageIsEmpty(Page page)
Definition: bufpage.h:220
Page
Pointer Page
Definition: bufpage.h:78
PageGetItem
static Item PageGetItem(Page page, ItemId itemId)
Definition: bufpage.h:351
PageGetItemId
static ItemId PageGetItemId(Page page, OffsetNumber offsetNumber)
Definition: bufpage.h:240
PageIsNew
static bool PageIsNew(Page page)
Definition: bufpage.h:230
PageGetMaxOffsetNumber
static OffsetNumber PageGetMaxOffsetNumber(Page page)
Definition: bufpage.h:369
CStringGetTextDatum
#define CStringGetTextDatum(s)
Definition: builtins.h:88
TextDatumGetCString
#define TextDatumGetCString(d)
Definition: builtins.h:89
NameStr
#define NameStr(name)
Definition: c.h:682
PG_BINARY
#define PG_BINARY
Definition: c.h:1209
MultiXactId
TransactionId MultiXactId
Definition: c.h:598
uint8
unsigned char uint8
Definition: c.h:440
TransactionId
uint32 TransactionId
Definition: c.h:588
OidIsValid
#define OidIsValid(objectId)
Definition: c.h:711
GetNewOidWithIndex
Oid GetNewOidWithIndex(Relation relation, Oid indexId, AttrNumber oidcolumn)
Definition: catalog.c:393
RequestCheckpoint
void RequestCheckpoint(int flags)
Definition: checkpointer.c:931
DeleteSharedComments
void DeleteSharedComments(Oid oid, Oid classoid)
Definition: comment.c:374
copydir
void copydir(char *fromdir, char *todir, bool recurse)
Definition: copydir.c:37
get_db_info
static bool get_db_info(const char *name, LOCKMODE lockmode, Oid *dbIdP, Oid *ownerIdP, int *encodingP, bool *dbIsTemplateP, bool *dbAllowConnP, TransactionId *dbFrozenXidP, MultiXactId *dbMinMultiP, Oid *dbTablespace, char **dbCollate, char **dbCtype, char **dbIculocale, char *dbLocProvider, char **dbCollversion)
Definition: dbcommands.c:2598
remove_dbtablespaces
static void remove_dbtablespaces(Oid db_id)
Definition: dbcommands.c:2771
CreateDirAndVersionFile
static void CreateDirAndVersionFile(char *dbpath, Oid dbid, Oid tsid, bool isRedo)
Definition: dbcommands.c:457
AlterDatabaseRefreshColl
ObjectAddress AlterDatabaseRefreshColl(AlterDatabaseRefreshCollStmt *stmt)
Definition: dbcommands.c:2337
RenameDatabase
ObjectAddress RenameDatabase(const char *oldname, const char *newname)
Definition: dbcommands.c:1714
get_database_name
char * get_database_name(Oid dbid)
Definition: dbcommands.c:2981
get_database_oid
Oid get_database_oid(const char *dbname, bool missing_ok)
Definition: dbcommands.c:2934
CreateDBStrategy
CreateDBStrategy
Definition: dbcommands.c:84
CREATEDB_FILE_COPY
@ CREATEDB_FILE_COPY
Definition: dbcommands.c:86
CREATEDB_WAL_LOG
@ CREATEDB_WAL_LOG
Definition: dbcommands.c:85
movedb_failure_callback
static void movedb_failure_callback(int code, Datum arg)
Definition: dbcommands.c:2132
CreateDatabaseUsingWalLog
static void CreateDatabaseUsingWalLog(Oid src_dboid, Oid dst_dboid, Oid src_tsid, Oid dst_tsid)
Definition: dbcommands.c:149
ScanSourceDatabasePgClass
static List * ScanSourceDatabasePgClass(Oid tbid, Oid dbid, char *srcpath)
Definition: dbcommands.c:251
recovery_create_dbdir
static void recovery_create_dbdir(char *path, bool only_tblspc)
Definition: dbcommands.c:3012
AlterDatabaseOwner
ObjectAddress AlterDatabaseOwner(const char *dbname, Oid newOwnerId)
Definition: dbcommands.c:2446
pg_database_collation_actual_version
Datum pg_database_collation_actual_version(PG_FUNCTION_ARGS)
Definition: dbcommands.c:2556
movedb
static void movedb(const char *dbname, const char *tblspcname)
Definition: dbcommands.c:1812
ScanSourceDatabasePgClassPage
static List * ScanSourceDatabasePgClassPage(Page page, Buffer buf, Oid tbid, Oid dbid, char *srcpath, List *rlocatorlist, Snapshot snapshot)
Definition: dbcommands.c:329
check_encoding_locale_matches
void check_encoding_locale_matches(int encoding, const char *collate, const char *ctype)
Definition: dbcommands.c:1431
createdb
Oid createdb(ParseState *pstate, const CreatedbStmt *stmt)
Definition: dbcommands.c:671
AlterDatabase
Oid AlterDatabase(ParseState *pstate, AlterDatabaseStmt *stmt, bool isTopLevel)
Definition: dbcommands.c:2174
errdetail_busy_db
static int errdetail_busy_db(int notherbackends, int npreparedxacts)
Definition: dbcommands.c:2904
ScanSourceDatabasePgClassTuple
static CreateDBRelInfo * ScanSourceDatabasePgClassTuple(HeapTupleData *tuple, Oid tbid, Oid dbid, char *srcpath)
Definition: dbcommands.c:392
check_db_file_conflict
static bool check_db_file_conflict(Oid db_id)
Definition: dbcommands.c:2861
CreateDBRelInfo
struct CreateDBRelInfo CreateDBRelInfo
have_createdb_privilege
static bool have_createdb_privilege(void)
Definition: dbcommands.c:2746
dbase_redo
void dbase_redo(XLogReaderState *record)
Definition: dbcommands.c:3041
CreateDatabaseUsingFileCopy
static void CreateDatabaseUsingFileCopy(Oid src_dboid, Oid dst_dboid, Oid src_tsid, Oid dst_tsid)
Definition: dbcommands.c:551
DropDatabase
void DropDatabase(ParseState *pstate, DropdbStmt *stmt)
Definition: dbcommands.c:2149
dropdb
void dropdb(const char *dbname, bool missing_ok, bool force)
Definition: dbcommands.c:1508
AlterDatabaseSet
Oid AlterDatabaseSet(AlterDatabaseSetStmt *stmt)
Definition: dbcommands.c:2420
createdb_failure_callback
static void createdb_failure_callback(int code, Datum arg)
Definition: dbcommands.c:1469
dbcommands_xlog.h
XLOG_DBASE_CREATE_WAL_LOG
#define XLOG_DBASE_CREATE_WAL_LOG
Definition: dbcommands_xlog.h:22
XLOG_DBASE_DROP
#define XLOG_DBASE_DROP
Definition: dbcommands_xlog.h:23
MinSizeOfDbaseDropRec
#define MinSizeOfDbaseDropRec
Definition: dbcommands_xlog.h:54
XLOG_DBASE_CREATE_FILE_COPY
#define XLOG_DBASE_CREATE_FILE_COPY
Definition: dbcommands_xlog.h:21
defGetInt32
int32 defGetInt32(DefElem *def)
Definition: define.c:163
defGetBoolean
bool defGetBoolean(DefElem *def)
Definition: define.c:108
defGetString
char * defGetString(DefElem *def)
Definition: define.c:49
errorConflictingDefElem
void errorConflictingDefElem(DefElem *defel, ParseState *pstate)
Definition: define.c:385
defGetObjectId
Oid defGetObjectId(DefElem *def)
Definition: define.c:220
errcode_for_file_access
int errcode_for_file_access(void)
Definition: elog.c:881
errdetail
int errdetail(const char *fmt,...)
Definition: elog.c:1202
errdetail_plural
int errdetail_plural(const char *fmt_singular, const char *fmt_plural, unsigned long n,...)
Definition: elog.c:1294
errhint
int errhint(const char *fmt,...)
Definition: elog.c:1316
errcode
int errcode(int sqlerrcode)
Definition: elog.c:858
errmsg
int errmsg(const char *fmt,...)
Definition: elog.c:1069
FATAL
#define FATAL
Definition: elog.h:41
WARNING
#define WARNING
Definition: elog.h:36
PANIC
#define PANIC
Definition: elog.h:42
DEBUG1
#define DEBUG1
Definition: elog.h:30
ERROR
#define ERROR
Definition: elog.h:39
NOTICE
#define NOTICE
Definition: elog.h:35
ereport
#define ereport(elevel,...)
Definition: elog.h:149
pg_valid_server_encoding
int pg_valid_server_encoding(const char *name)
Definition: encnames.c:500
is_encoding_supported_by_icu
bool is_encoding_supported_by_icu(int encoding)
Definition: encnames.c:459
pg_encoding_to_char
const char * pg_encoding_to_char(int encoding)
Definition: encnames.c:588
name
const char * name
Definition: encode.c:561
ReadDir
struct dirent * ReadDir(DIR *dir, const char *dirname)
Definition: fd.c:2709
MakePGDirectory
int MakePGDirectory(const char *directoryName)
Definition: fd.c:3713
FreeDir
int FreeDir(DIR *dir)
Definition: fd.c:2761
CloseTransientFile
int CloseTransientFile(int fd)
Definition: fd.c:2609
OpenTransientFile
int OpenTransientFile(const char *fileName, int fileFlags)
Definition: fd.c:2433
AllocateDir
DIR * AllocateDir(const char *dirname)
Definition: fd.c:2643
dstpath
static char dstpath[MAXPGPATH]
Definition: file_ops.c:32
pg_dir_create_mode
int pg_dir_create_mode
Definition: file_perm.c:18
file_perm.h
PG_GETARG_OID
#define PG_GETARG_OID(n)
Definition: fmgr.h:275
DirectFunctionCall1
#define DirectFunctionCall1(func, arg1)
Definition: fmgr.h:642
PG_RETURN_NULL
#define PG_RETURN_NULL()
Definition: fmgr.h:345
PG_RETURN_TEXT_P
#define PG_RETURN_TEXT_P(x)
Definition: fmgr.h:372
PG_FUNCTION_ARGS
#define PG_FUNCTION_ARGS
Definition: fmgr.h:193
GetAccessStrategy
BufferAccessStrategy GetAccessStrategy(BufferAccessStrategyType btype)
Definition: freelist.c:541
systable_endscan
void systable_endscan(SysScanDesc sysscan)
Definition: genam.c:599
systable_getnext
HeapTuple systable_getnext(SysScanDesc sysscan)
Definition: genam.c:506
systable_beginscan
SysScanDesc systable_beginscan(Relation heapRelation, Oid indexId, bool indexOK, Snapshot snapshot, int nkeys, ScanKey key)
Definition: genam.c:387
IsBinaryUpgrade
bool IsBinaryUpgrade
Definition: globals.c:114
IsUnderPostmaster
bool IsUnderPostmaster
Definition: globals.c:113
allowSystemTableMods
bool allowSystemTableMods
Definition: globals.c:124
MyDatabaseId
Oid MyDatabaseId
Definition: globals.c:89
heap_getnext
HeapTuple heap_getnext(TableScanDesc sscan, ScanDirection direction)
Definition: heapam.c:1299
HeapTupleSatisfiesVisibility
bool HeapTupleSatisfiesVisibility(HeapTuple htup, Snapshot snapshot, Buffer buffer)
Definition: heapam_visibility.c:1766
heap_form_tuple
HeapTuple heap_form_tuple(TupleDesc tupleDescriptor, Datum *values, bool *isnull)
Definition: heaptuple.c:1020
heap_modify_tuple
HeapTuple heap_modify_tuple(HeapTuple tuple, TupleDesc tupleDesc, Datum *replValues, bool *replIsnull, bool *doReplace)
Definition: heaptuple.c:1113
heap_freetuple
void heap_freetuple(HeapTuple htup)
Definition: heaptuple.c:1338
HeapTupleHeader
HeapTupleHeaderData * HeapTupleHeader
Definition: htup.h:23
HeapTupleIsValid
#define HeapTupleIsValid(tuple)
Definition: htup.h:78
htup_details.h
heap_getattr
static Datum heap_getattr(HeapTuple tup, int attnum, TupleDesc tupleDesc, bool *isnull)
Definition: htup_details.h:788
GETSTRUCT
#define GETSTRUCT(TUP)
Definition: htup_details.h:649
CatalogTupleUpdate
void CatalogTupleUpdate(Relation heapRel, ItemPointer otid, HeapTuple tup)
Definition: indexing.c:301
CatalogTupleInsert
void CatalogTupleInsert(Relation heapRel, HeapTuple tup)
Definition: indexing.c:221
CatalogTupleDelete
void CatalogTupleDelete(Relation heapRel, ItemPointer tid)
Definition: indexing.c:350
write
#define write(a, b, c)
Definition: win32.h:14
PG_ENSURE_ERROR_CLEANUP
#define PG_ENSURE_ERROR_CLEANUP(cleanup_function, arg)
Definition: ipc.h:47
PG_END_ENSURE_ERROR_CLEANUP
#define PG_END_ENSURE_ERROR_CLEANUP(cleanup_function, arg)
Definition: ipc.h:52
i
int i
Definition: isn.c:73
ItemIdGetLength
#define ItemIdGetLength(itemId)
Definition: itemid.h:59
ItemIdIsNormal
#define ItemIdIsNormal(itemId)
Definition: itemid.h:99
ItemIdIsDead
#define ItemIdIsDead(itemId)
Definition: itemid.h:113
ItemIdIsUsed
#define ItemIdIsUsed(itemId)
Definition: itemid.h:92
ItemIdIsRedirected
#define ItemIdIsRedirected(itemId)
Definition: itemid.h:106
ItemPointerSet
static void ItemPointerSet(ItemPointerData *pointer, BlockNumber blockNumber, OffsetNumber offNum)
Definition: itemptr.h:135
Assert
Assert(fmt[strlen(fmt) - 1] !='\n')
lappend
List * lappend(List *list, void *datum)
Definition: list.c:338
lappend_oid
List * lappend_oid(List *list, Oid datum)
Definition: list.c:374
list_free
void list_free(List *list)
Definition: list.c:1545
list_free_deep
void list_free_deep(List *list)
Definition: list.c:1559
LockSharedObject
void LockSharedObject(Oid classid, Oid objid, uint16 objsubid, LOCKMODE lockmode)
Definition: lmgr.c:1046
UnlockSharedObjectForSession
void UnlockSharedObjectForSession(Oid classid, Oid objid, uint16 objsubid, LOCKMODE lockmode)
Definition: lmgr.c:1106
UnlockRelationId
void UnlockRelationId(LockRelId *relid, LOCKMODE lockmode)
Definition: lmgr.c:213
UnlockSharedObject
void UnlockSharedObject(Oid classid, Oid objid, uint16 objsubid, LOCKMODE lockmode)
Definition: lmgr.c:1067
LockSharedObjectForSession
void LockSharedObjectForSession(Oid classid, Oid objid, uint16 objsubid, LOCKMODE lockmode)
Definition: lmgr.c:1088
LockRelationId
void LockRelationId(LockRelId *relid, LOCKMODE lockmode)
Definition: lmgr.c:185
LOCKMODE
int LOCKMODE
Definition: lockdefs.h:26
NoLock
#define NoLock
Definition: lockdefs.h:34
AccessExclusiveLock
#define AccessExclusiveLock
Definition: lockdefs.h:43
AccessShareLock
#define AccessShareLock
Definition: lockdefs.h:36
ShareLock
#define ShareLock
Definition: lockdefs.h:40
RowExclusiveLock
#define RowExclusiveLock
Definition: lockdefs.h:38
pstrdup
char * pstrdup(const char *in)
Definition: mcxt.c:1483
pfree
void pfree(void *pointer)
Definition: mcxt.c:1306
palloc
void * palloc(Size size)
Definition: mcxt.c:1199
ForgetDatabaseSyncRequests
void ForgetDatabaseSyncRequests(Oid dbid)
Definition: md.c:1070
START_CRIT_SECTION
#define START_CRIT_SECTION()
Definition: miscadmin.h:148
CHECK_FOR_INTERRUPTS
#define CHECK_FOR_INTERRUPTS()
Definition: miscadmin.h:121
END_CRIT_SECTION
#define END_CRIT_SECTION()
Definition: miscadmin.h:150
GetUserId
Oid GetUserId(void)
Definition: miscinit.c:497
InvalidMultiXactId
#define InvalidMultiXactId
Definition: multixact.h:24
namestrcpy
void namestrcpy(Name name, const char *str)
Definition: name.c:233
namein
Datum namein(PG_FUNCTION_ARGS)
Definition: name.c:48
IsA
#define IsA(nodeptr, _type_)
Definition: nodes.h:168
InvokeObjectPostCreateHook
#define InvokeObjectPostCreateHook(classId, objectId, subId)
Definition: objectaccess.h:173
InvokeObjectPostAlterHook
#define InvokeObjectPostAlterHook(classId, objectId, subId)
Definition: objectaccess.h:197
InvokeObjectDropHook
#define InvokeObjectDropHook(classId, objectId, subId)
Definition: objectaccess.h:182
ObjectAddressSet
#define ObjectAddressSet(addr, class_id, object_id)
Definition: objectaddress.h:40
OffsetNumberNext
#define OffsetNumberNext(offsetNumber)
Definition: off.h:52
OffsetNumber
uint16 OffsetNumber
Definition: off.h:24
FirstOffsetNumber
#define FirstOffsetNumber
Definition: off.h:27
parser_errposition
int parser_errposition(ParseState *pstate, int location)
Definition: parse_node.c:110
OBJECT_TABLESPACE
@ OBJECT_TABLESPACE
Definition: parsenodes.h:1930
OBJECT_DATABASE
@ OBJECT_DATABASE
Definition: parsenodes.h:1897
ACL_CREATE
#define ACL_CREATE
Definition: parsenodes.h:92
pg_authid.h
Form_pg_authid
FormData_pg_authid * Form_pg_authid
Definition: pg_authid.h:56
rolcreatedb
bool rolcreatedb
Definition: pg_authid.h:38
arg
void * arg
Definition: pg_backup_utils.c:27
Form_pg_class
FormData_pg_class * Form_pg_class
Definition: pg_class.h:153
pg_collation.h
MAXPGPATH
#define MAXPGPATH
Definition: pg_config_manual.h:115
pg_database.h
datlocprovider
char datlocprovider
Definition: pg_database.h:44
Form_pg_database
FormData_pg_database * Form_pg_database
Definition: pg_database.h:87
datname
NameData datname
Definition: pg_database.h:35
encoding
int32 encoding
Definition: pg_database.h:41
DropSetting
void DropSetting(Oid databaseid, Oid roleid)
Definition: pg_db_role_setting.c:197
AlterSetting
void AlterSetting(Oid databaseid, Oid roleid, VariableSetStmt *setstmt)
Definition: pg_db_role_setting.c:24
pg_db_role_setting.h
lfirst
#define lfirst(lc)
Definition: pg_list.h:170
list_length
static int list_length(const List *l)
Definition: pg_list.h:150
NIL
#define NIL
Definition: pg_list.h:66
lfirst_oid
#define lfirst_oid(lc)
Definition: pg_list.h:172
get_collation_actual_version
char * get_collation_actual_version(char collprovider, const char *collcollate)
Definition: pg_locale.c:1647
check_icu_locale
void check_icu_locale(const char *icu_locale)
Definition: pg_locale.c:1954
check_locale
bool check_locale(int category, const char *locale, char **canonname)
Definition: pg_locale.c:247
pg_locale.h
dropDatabaseDependencies
void dropDatabaseDependencies(Oid databaseId)
Definition: pg_shdepend.c:954
changeDependencyOnOwner
void changeDependencyOnOwner(Oid classId, Oid objectId, Oid newOwnerId)
Definition: pg_shdepend.c:313
copyTemplateDependencies
void copyTemplateDependencies(Oid templateDbId, Oid newDbId)
Definition: pg_shdepend.c:850
recordDependencyOnOwner
void recordDependencyOnOwner(Oid classId, Oid objectId, Oid owner)
Definition: pg_shdepend.c:165
shdepLockAndCheckObject
void shdepLockAndCheckObject(Oid classId, Oid objectId)
Definition: pg_shdepend.c:1166
CountDBSubscriptions
int CountDBSubscriptions(Oid dbid)
Definition: pg_subscription.c:127
pg_subscription.h
pg_tablespace.h
Form_pg_tablespace
FormData_pg_tablespace * Form_pg_tablespace
Definition: pg_tablespace.h:48
buf
static char * buf
Definition: pg_test_fsync.c:67
pg_wchar.h
PG_SQL_ASCII
@ PG_SQL_ASCII
Definition: pg_wchar.h:226
PG_UTF8
@ PG_UTF8
Definition: pg_wchar.h:232
PG_VALID_BE_ENCODING
#define PG_VALID_BE_ENCODING(_enc)
Definition: pg_wchar.h:281
pgstat_drop_database
void pgstat_drop_database(Oid databaseid)
Definition: pgstat_database.c:44
pg_mkdir_p
int pg_mkdir_p(char *path, int omode)
Definition: pgmkdirp.c:57
pg_strcasecmp
int pg_strcasecmp(const char *s1, const char *s2)
Definition: pgstrcasecmp.c:36
sprintf
#define sprintf
Definition: port.h:240
get_parent_directory
void get_parent_directory(char *path)
Definition: path.c:977
snprintf
#define snprintf
Definition: port.h:238
pg_get_encoding_from_locale
int pg_get_encoding_from_locale(const char *ctype, bool write_message)
Definition: chklocale.c:428
PointerGetDatum
static Datum PointerGetDatum(const void *X)
Definition: postgres.h:670
TransactionIdGetDatum
static Datum TransactionIdGetDatum(TransactionId X)
Definition: postgres.h:620
Datum
uintptr_t Datum
Definition: postgres.h:412
BoolGetDatum
static Datum BoolGetDatum(bool X)
Definition: postgres.h:450
ObjectIdGetDatum
static Datum ObjectIdGetDatum(Oid X)
Definition: postgres.h:600
DatumGetPointer
static Pointer DatumGetPointer(Datum X)
Definition: postgres.h:660
CStringGetDatum
static Datum CStringGetDatum(const char *X)
Definition: postgres.h:698
Int32GetDatum
static Datum Int32GetDatum(int32 X)
Definition: postgres.h:560
CharGetDatum
static Datum CharGetDatum(char X)
Definition: postgres.h:470
InvalidOid
#define InvalidOid
Definition: postgres_ext.h:36
Oid
unsigned int Oid
Definition: postgres_ext.h:31
fd
static int fd(const char *x, int i)
Definition: preproc-init.c:105
TerminateOtherDBBackends
void TerminateOtherDBBackends(Oid databaseId)
Definition: procarray.c:3794
CountOtherDBBackends
bool CountOtherDBBackends(Oid databaseId, int *nbackends, int *nprepared)
Definition: procarray.c:3716
WaitForProcSignalBarrier
void WaitForProcSignalBarrier(uint64 generation)
Definition: procsignal.c:392
EmitProcSignalBarrier
uint64 EmitProcSignalBarrier(ProcSignalBarrierType type)
Definition: procsignal.c:332
PROCSIGNAL_BARRIER_SMGRRELEASE
@ PROCSIGNAL_BARRIER_SMGRRELEASE
Definition: procsignal.h:52
RelationGetDescr
#define RelationGetDescr(relation)
Definition: rel.h:527
RelationMapOidToFilenumberForDatabase
RelFileNumber RelationMapOidToFilenumberForDatabase(char *dbpath, Oid relationId)
Definition: relmapper.c:266
RelationMapCopy
void RelationMapCopy(Oid dbid, Oid tsid, char *srcdbpath, char *dstdbpath)
Definition: relmapper.c:293
GetDatabasePath
char * GetDatabasePath(Oid dbOid, Oid spcOid)
Definition: relpath.c:110
RelFileNumber
Oid RelFileNumber
Definition: relpath.h:25
MAIN_FORKNUM
@ MAIN_FORKNUM
Definition: relpath.h:50
InvalidRelFileNumber
#define InvalidRelFileNumber
Definition: relpath.h:26
RelFileNumberIsValid
#define RelFileNumberIsValid(relnumber)
Definition: relpath.h:27
rmtree
bool rmtree(const char *path, bool rmtopdir)
Definition: rmtree.c:42
quote_identifier
const char * quote_identifier(const char *ident)
Definition: ruleutils.c:11529
ScanKeyInit
void ScanKeyInit(ScanKey entry, AttrNumber attributeNumber, StrategyNumber strategy, RegProcedure procedure, Datum argument)
Definition: scankey.c:76
ForwardScanDirection
@ ForwardScanDirection
Definition: sdir.h:26
DeleteSharedSecurityLabel
void DeleteSharedSecurityLabel(Oid objectId, Oid classId)
Definition: seclabel.c:491
ReplicationSlotsCountDBSlots
bool ReplicationSlotsCountDBSlots(Oid dboid, int *nslots, int *nactive)
Definition: slot.c:987
ReplicationSlotsDropDBSlots
void ReplicationSlotsDropDBSlots(Oid dboid)
Definition: slot.c:1043
smgrnblocks
BlockNumber smgrnblocks(SMgrRelation reln, ForkNumber forknum)
Definition: smgr.c:579
smgrclose
void smgrclose(SMgrRelation reln)
Definition: smgr.c:256
smgropen
SMgrRelation smgropen(RelFileLocator rlocator, BackendId backend)
Definition: smgr.c:146
GetLatestSnapshot
Snapshot GetLatestSnapshot(void)
Definition: snapmgr.c:326
PopActiveSnapshot
void PopActiveSnapshot(void)
Definition: snapmgr.c:778
ResolveRecoveryConflictWithDatabase
void ResolveRecoveryConflictWithDatabase(Oid dbid)
Definition: standby.c:563
BTEqualStrategyNumber
#define BTEqualStrategyNumber
Definition: stratnum.h:31
dbname
char * dbname
Definition: streamutil.c:51
AlterDatabaseSetStmt::setstmt
VariableSetStmt * setstmt
Definition: parsenodes.h:3428
CreateDBRelInfo::rlocator
RelFileLocator rlocator
Definition: dbcommands.c:107
CreatedbStmt::options
List * options
Definition: parsenodes.h:3404
CreatedbStmt::dbname
char * dbname
Definition: parsenodes.h:3403
DIR
Definition: dirent.c:26
DefElem::defname
char * defname
Definition: parsenodes.h:779
DefElem::location
int location
Definition: parsenodes.h:783
DefElem::arg
Node * arg
Definition: parsenodes.h:780
DropdbStmt::options
List * options
Definition: parsenodes.h:3440
DropdbStmt::dbname
char * dbname
Definition: parsenodes.h:3438
DropdbStmt::missing_ok
bool missing_ok
Definition: parsenodes.h:3439
HeapTupleData::t_self
ItemPointerData t_self
Definition: htup.h:65
HeapTupleData::t_len
uint32 t_len
Definition: htup.h:64
HeapTupleData::t_data
HeapTupleHeader t_data
Definition: htup.h:68
HeapTupleData::t_tableOid
Oid t_tableOid
Definition: htup.h:66
Integer
Definition: value.h:29
List
Definition: pg_list.h:52
LockRelId
Definition: rel.h:38
LockRelId::relId
Oid relId
Definition: rel.h:39
LockRelId::dbId
Oid dbId
Definition: rel.h:40
RelFileLocator::relNumber
RelFileNumber relNumber
Definition: relfilelocator.h:61
createdb_failure_params
Definition: dbcommands.c:90
createdb_failure_params::src_dboid
Oid src_dboid
Definition: dbcommands.c:91
createdb_failure_params::dest_dboid
Oid dest_dboid
Definition: dbcommands.c:92
createdb_failure_params::strategy
CreateDBStrategy strategy
Definition: dbcommands.c:93
dirent
Definition: dirent.h:10
dirent::d_name
char d_name[MAX_PATH]
Definition: dirent.h:15
movedb_failure_params
Definition: dbcommands.c:97
movedb_failure_params::dest_tsoid
Oid dest_tsoid
Definition: dbcommands.c:99
movedb_failure_params::dest_dboid
Oid dest_dboid
Definition: dbcommands.c:98
stat::st_mode
unsigned short st_mode
Definition: win32_port.h:270
xl_dbase_create_file_copy_rec
Definition: dbcommands_xlog.h:30
xl_dbase_create_file_copy_rec::src_db_id
Oid src_db_id
Definition: dbcommands_xlog.h:33
xl_dbase_create_file_copy_rec::src_tablespace_id
Oid src_tablespace_id
Definition: dbcommands_xlog.h:34
xl_dbase_create_file_copy_rec::tablespace_id
Oid tablespace_id
Definition: dbcommands_xlog.h:32
xl_dbase_create_file_copy_rec::db_id
Oid db_id
Definition: dbcommands_xlog.h:31
xl_dbase_create_wal_log_rec
Definition: dbcommands_xlog.h:43
xl_dbase_create_wal_log_rec::tablespace_id
Oid tablespace_id
Definition: dbcommands_xlog.h:45
xl_dbase_create_wal_log_rec::db_id
Oid db_id
Definition: dbcommands_xlog.h:44
xl_dbase_drop_rec
Definition: dbcommands_xlog.h:49
xl_dbase_drop_rec::tablespace_ids
Oid tablespace_ids[FLEXIBLE_ARRAY_MEMBER]
Definition: dbcommands_xlog.h:52
xl_dbase_drop_rec::db_id
Oid db_id
Definition: dbcommands_xlog.h:50
xl_dbase_drop_rec::ntablespaces
int ntablespaces
Definition: dbcommands_xlog.h:51
superuser
bool superuser(void)
Definition: superuser.c:46
ReleaseSysCache
void ReleaseSysCache(HeapTuple tuple)
Definition: syscache.c:1221
SearchSysCache1
HeapTuple SearchSysCache1(int cacheId, Datum key1)
Definition: syscache.c:1173
SysCacheGetAttr
Datum SysCacheGetAttr(int cacheId, HeapTuple tup, AttrNumber attributeNumber, bool *isNull)
Definition: syscache.c:1434
SearchSysCacheCopy1
#define SearchSysCacheCopy1(cacheId, key1)
Definition: syscache.h:179
AUTHOID
@ AUTHOID
Definition: syscache.h:45
DATABASEOID
@ DATABASEOID
Definition: syscache.h:55
table_close
void table_close(Relation relation, LOCKMODE lockmode)
Definition: table.c:126
table_open
Relation table_open(Oid relationId, LOCKMODE lockmode)
Definition: table.c:40
table_beginscan_catalog
TableScanDesc table_beginscan_catalog(Relation relation, int nkeys, struct ScanKeyData *key)
Definition: tableam.c:112
table_endscan
static void table_endscan(TableScanDesc scan)
Definition: tableam.h:993
InvalidTransactionId
#define InvalidTransactionId
Definition: transam.h:31
FirstNormalObjectId
#define FirstNormalObjectId
Definition: transam.h:197
cstring_to_text
text * cstring_to_text(const char *s)
Definition: varlena.c:189
WAIT_EVENT_VERSION_FILE_WRITE
@ WAIT_EVENT_VERSION_FILE_WRITE
Definition: wait_event.h:222
pgstat_report_wait_start
static void pgstat_report_wait_start(uint32 wait_event_info)
Definition: wait_event.h:268
pgstat_report_wait_end
static void pgstat_report_wait_end(void)
Definition: wait_event.h:284
stat
#define stat
Definition: win32_port.h:286
lstat
#define lstat(path, sb)
Definition: win32_port.h:287
S_ISDIR
#define S_ISDIR(m)
Definition: win32_port.h:327
PreventInTransactionBlock
void PreventInTransactionBlock(bool isTopLevel, const char *stmtType)
Definition: xact.c:3469
StartTransactionCommand
void StartTransactionCommand(void)
Definition: xact.c:2925
ForceSyncCommit
void ForceSyncCommit(void)
Definition: xact.c:1127
CommitTransactionCommand
void CommitTransactionCommand(void)
Definition: xact.c:3022
RecoveryInProgress
bool RecoveryInProgress(void)
Definition: xlog.c:5912
XLogFlush
void XLogFlush(XLogRecPtr record)
Definition: xlog.c:2512
CHECKPOINT_FLUSH_ALL
#define CHECKPOINT_FLUSH_ALL
Definition: xlog.h:138
CHECKPOINT_FORCE
#define CHECKPOINT_FORCE
Definition: xlog.h:137
CHECKPOINT_WAIT
#define CHECKPOINT_WAIT
Definition: xlog.h:140
CHECKPOINT_IMMEDIATE
#define CHECKPOINT_IMMEDIATE
Definition: xlog.h:136
XLogRecPtr
uint64 XLogRecPtr
Definition: xlogdefs.h:21
XLogRegisterData
void XLogRegisterData(char *data, uint32 len)
Definition: xloginsert.c:351
XLogInsert
XLogRecPtr XLogInsert(RmgrId rmid, uint8 info)
Definition: xloginsert.c:451
XLogBeginInsert
void XLogBeginInsert(void)
Definition: xloginsert.c:150
XLogRecGetInfo
#define XLogRecGetInfo(decoder)
Definition: xlogreader.h:411
XLogRecGetData
#define XLogRecGetData(decoder)
Definition: xlogreader.h:416
XLogRecHasAnyBlockRefs
#define XLogRecHasAnyBlockRefs(decoder)
Definition: xlogreader.h:418
XLR_INFO_MASK
#define XLR_INFO_MASK
Definition: xlogrecord.h:62
XLR_SPECIAL_REL_UPDATE
#define XLR_SPECIAL_REL_UPDATE
Definition: xlogrecord.h:71
reachedConsistency
bool reachedConsistency
Definition: xlogrecovery.c:294
XLogDropDatabase
void XLogDropDatabase(Oid dbid)
Definition: xlogutils.c:669
InHotStandby
#define InHotStandby
Definition: xlogutils.h:57