Bug#686060: marked as done (postgresql-common: Critical data-loss bug in pg_wrapper init scripts)

Debian Bug Tracking System Fri, 21 Sep 2012 12:51:20 -0700

Your message dated Fri, 21 Sep 2012 19:47:04 +0000
with message-id <[email protected]>
and subject line Bug#686060: fixed in postgresql-common 113+squeeze1
has caused the Debian Bug report #686060,
regarding postgresql-common: Critical data-loss bug in pg_wrapper init scripts
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
686060: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686060
Debian Bug Tracking System
Contact [email protected] with problems

--- Begin Message ---

Package: postgresql-common
Version: 114
Severity: critical
Justification: causes serious data loss

The Debian packages for PostgreSQL are subject to a potentially critical data 
loss
bug because of an unsafe procedure for restarting PostgreSQL.

It is VITAL that pg_wrapper NEVER unlink the postmaster.pid file. The postmaster
will do that its self if it finds the pid to be stale, but only after performing
some checks to make sure there are no backends still running and to ensure that
there's no other postmaster running against the database.

This is a critical data loss bug and should be back patched to older versions.

I quote Tom Lane (key PostgreSQL dev):

        [The] forced unlink on the postmaster.pid file [...] (a) is entirely
        unnecessary, and (b) defeats the safety interlock against starting a
        new postmaster before all the old backends have flushed out.

See:

    http://archives.postgresql.org/pgsql-general/2012-07/msg00475.php

and the context:

    http://archives.postgresql.org/pgsql-general/2012-07/msg00350.php
    
http://dba.stackexchange.com/questions/20959/recover-postgresql-database-from-wal-errors-on-startup/20961#comment34356_20961




-- System Information:
Debian Release: squeeze/sid
  APT prefers natty-updates
  APT policy: (500, 'natty-updates'), (500, 'natty-security'), (500, 'natty')
Architecture: i386 (i686)

Kernel: Linux 2.6.38-13-generic (SMP w/2 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages postgresql-common depends on:
ii  adduser                3.112+nmu1ubuntu5 add and remove users and groups
ii  debconf [debconf-2.0]  1.5.36ubuntu4     Debian configuration management sy
ii  lsb-base               4.0-0ubuntu11     Linux Standard Base 4.0 init scrip
ii  postgresql-client-comm 114               manager for multiple PostgreSQL cl
ii  procps                 1:3.2.8-10ubuntu3 /proc file system utilities
ii  ssl-cert               1.0.28            simple debconf wrapper for OpenSSL

postgresql-common recommends no packages.

postgresql-common suggests no packages.

-- debconf information:
  postgresql-common/obsolete-major:

--- End Message ---

--- Begin Message ---

Source: postgresql-common
Source-Version: 113+squeeze1

We believe that the bug you reported is fixed in the latest version of
postgresql-common, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Christoph Berg <[email protected]> (supplier of updated postgresql-common package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 21 Sep 2012 17:13:33 +0200
Source: postgresql-common
Binary: postgresql-common postgresql-client-common postgresql-server-dev-all
Architecture: source all
Version: 113+squeeze1
Distribution: stable
Urgency: high
Maintainer: Debian PostgreSQL Maintainers 
<[email protected]>
Changed-By: Christoph Berg <[email protected]>
Description: 
 postgresql-client-common - manager for multiple PostgreSQL client versions
 postgresql-common - PostgreSQL database-cluster manager
 postgresql-server-dev-all - extension build tool for multiple PostgreSQL 
versions
Closes: 686060
Changes: 
 postgresql-common (113+squeeze1) stable; urgency=high
 .
   [ Martin Pitt ]
   * pg_ctlcluster: Do not remove the PID file after SIGKILLing the
     postmaster in the "last-ditch effort to shut down" in --force mode. This
     is a potentially dangerous thing to do when trying to start a second
     postmaster in parallel while the first one is still being shut down.
     (see http://archives.postgresql.org/pgsql-general/2012-07/msg00475.php)
     Cherry-picked from version 133 (bzr r1181). (Closes: #686060)
 .
   [ Christoph Berg ]
   * Update Vcs URLs and Maintainer fields for group maintenance.
Checksums-Sha1: 
 fd0ff1b1b6eeb9046b715c1d82b53ddba588f7d7 1808 
postgresql-common_113+squeeze1.dsc
 503cf4b9f8c523f398edf9600575dc01bf4f6606 128196 
postgresql-common_113+squeeze1.tar.gz
 160d3da22f105a5f4099163198746de75f507862 126462 
postgresql-common_113+squeeze1_all.deb
 97e6e8901fea67969839a2dc6e9d3d382063de5a 55216 
postgresql-client-common_113+squeeze1_all.deb
 5607855fe83742be18226a7efb8d756d8a6474d5 40780 
postgresql-server-dev-all_113+squeeze1_all.deb
Checksums-Sha256: 
 a95f1a19330852eb175d7845470fc7b98ac446d377284e2680c34055f3071fa7 1808 
postgresql-common_113+squeeze1.dsc
 5e5a7337cd63d8c93c5e01c4864d2498a514309ca537b1e0d5c2b37a9f80ec89 128196 
postgresql-common_113+squeeze1.tar.gz
 33a642720b7578f11cc52ff15702fbe5d54de5a2619d162858a8e15061c0678a 126462 
postgresql-common_113+squeeze1_all.deb
 37976390a364b85aa06f2fa42ce8c5578e8b594715cbeaf7fe1c9fc60fb1d5f6 55216 
postgresql-client-common_113+squeeze1_all.deb
 27980fd7f0eabf0bb9e2d54f303620d49c3466cafc5f8bf03625c089d1e30969 40780 
postgresql-server-dev-all_113+squeeze1_all.deb
Files: 
 e802cca32d486abcd541f6c41593294e 1808 database optional 
postgresql-common_113+squeeze1.dsc
 b05e15c86360f93f4052bef2a4be081e 128196 database optional 
postgresql-common_113+squeeze1.tar.gz
 93a225c5baf658225445d83450e2a25b 126462 database optional 
postgresql-common_113+squeeze1_all.deb
 0ab3258a60a0370a8f8df7537d38e845 55216 database optional 
postgresql-client-common_113+squeeze1_all.deb
 0b0505a2810b1e179058813986cba705 40780 database optional 
postgresql-server-dev-all_113+squeeze1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
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=LcMe
-----END PGP SIGNATURE-----

--- End Message ---

Bug#686060: marked as done (postgresql-common: Critical data-loss bug in pg_wrapper init scripts)

Reply via email to