From 43b6af42a90d96919a22c035d897cba2fbe46561 Mon Sep 17 00:00:00 2001 From: Daniel Farina Date: Wed, 28 Mar 2012 23:54:50 -0700 Subject: [PATCH] Extend same-role backend management to pg_terminate_backend This makes it more similar to pg_cancel_backend, except it gives users the ability to close runaway connections entirely. Signed-off-by: Daniel Farina --- doc/src/sgml/func.sgml | 10 +++++----- doc/src/sgml/high-availability.sgml | 16 +++++++++------- src/backend/utils/adt/misc.c | 12 +++++++----- 3 files changed, 21 insertions(+), 17 deletions(-) diff --git a/doc/src/sgml/func.sgml b/doc/src/sgml/func.sgml index 34fea16..1a7b8ec 100644 *** a/doc/src/sgml/func.sgml --- b/doc/src/sgml/func.sgml *************** *** 14403,14409 **** SELECT set_config('log_statement_stats', 'off', false); pg_terminate_backend(pid int) boolean ! Terminate a backend --- 14403,14413 ---- pg_terminate_backend(pid int) boolean ! Terminate a backend. You can execute this against ! another backend that has exactly the same role as the user ! calling the function. In all other cases, you must be a ! superuser. ! *************** *** 14424,14433 **** SELECT set_config('log_statement_stats', 'off', false); postgres processes on the server (using ps on Unix or the Task Manager on Windows). - For the less restrictive pg_cancel_backend, the role of an - active backend can be found from - the usename column of the - pg_stat_activity view. --- 14428,14433 ---- *** a/doc/src/sgml/high-availability.sgml --- b/doc/src/sgml/high-availability.sgml *************** *** 1969,1981 **** LOG: database system is ready to accept read only connections ! pg_cancel_backend() will work on user backends, but not the ! Startup process, which performs recovery. pg_stat_activity does not ! show an entry for the Startup process, nor do recovering transactions ! show as active. As a result, pg_prepared_xacts is always empty during ! recovery. If you wish to resolve in-doubt prepared transactions, ! view pg_prepared_xacts on the primary and issue commands to ! resolve transactions there. --- 1969,1983 ---- ! pg_cancel_backend() ! and pg_terminate_backend() will work on user backends, ! but not the Startup process, which performs ! recovery. pg_stat_activity does not show an ! entry for the Startup process, nor do recovering transactions show ! as active. As a result, pg_prepared_xacts ! is always empty during recovery. If you wish to resolve in-doubt ! prepared transactions, view pg_prepared_xacts on the ! primary and issue commands to resolve transactions there. *** a/src/backend/utils/adt/misc.c --- b/src/backend/utils/adt/misc.c *************** *** 162,179 **** pg_cancel_backend(PG_FUNCTION_ARGS) } /* ! * Signal to terminate a backend process. Only allowed by superuser. */ Datum pg_terminate_backend(PG_FUNCTION_ARGS) { ! if (!superuser()) ereport(ERROR, (errcode(ERRCODE_INSUFFICIENT_PRIVILEGE), ! errmsg("must be superuser to terminate other server processes"), ! errhint("You can cancel your own processes with pg_cancel_backend()."))); ! PG_RETURN_BOOL(pg_signal_backend(PG_GETARG_INT32(0), SIGTERM) == SIGNAL_BACKEND_SUCCESS); } /* --- 162,181 ---- } /* ! * Signal to terminate a backend process. This is allowed if you are superuser ! * or have the same role as the process being terminated. */ Datum pg_terminate_backend(PG_FUNCTION_ARGS) { ! int r = pg_signal_backend(PG_GETARG_INT32(0), SIGTERM); ! ! if (r == SIGNAL_BACKEND_NOPERMISSION) ereport(ERROR, (errcode(ERRCODE_INSUFFICIENT_PRIVILEGE), ! (errmsg("must be superuser or have the same role to terminate backends running in other server processes")))); ! PG_RETURN_BOOL(r == SIGNAL_BACKEND_SUCCESS); } /*