Making --error-on-invalid-index the default behavior #422
Comments
What do exactly mean by safety feature? It's right that invalid indexes could corrupted after repacking a table, but invalid indexes are not used unless they are reindexed. |
|
Postgres continues to update indexes if indisready set to true, even if index is invalid, ie indisvalid is false. On a corrupted index, checks made during index insertion could cause transactions to rollback, eg this check could fail. Until users realize this and drop/reindex the indexes they won't be able to unblock the transaction doing the insertion. Instead of taking the hit while running regular workload, it should be preferable to take the hit during maintenance work, ie while running pg_repack and make users aware that they need to reindex or drop before completing the repack. |
|
I think that transaction rollbacks caused by inserting indexes tuples to invalid indexes can happen immediately since indexes becoming invalid, regardless of pg_repack. That is, if we make the Also, I'm concerned that this change would break the compatibility of tools that use Another idea would be to have pg_repack use command options via an environment variable, say |
|
Invalid indexes does not mean a corrupted index most of the time. However, repacking a table without reindexing the invalid indexes definitely creates corrupted(index with stale entries) invalid indexes. This increases the likelihood of causing an unavailability. Failing the maintenance work should be more preferable over potentially causing unavailability. For backward compatibility, we can keep We could potentially let users to determine the behavior when an invalid index is detected, eg reindex, drop or error. |
Understood. It would be better to have pg_repack stop if it detects invalid indexes to prevent such a situation. Could you provide test scenario for the corruption on invalid indexes with pg_repack? Also, it might be worth considering to have pg_repack stop only if there is an invalid but ready indexes.
I agree not to remove --error-no-indvalid-index. Perhaps we can add --no-error-on-invalid-index option to keep the current behavior (raising a warning). Specifying both options raises an error for conflict options. Feedback is very welcome |
yeah, I will try to come up with a minimalist test scenario that will show the issue.
I think this makes sense. I did not take a close look at the code, but I am guessing having an index not indisready and not indisvalid is a possibility. And those indexes will not cause any threads to availability.
Can we drop the invalid indexes to unblock pg_repack, print a warning and continue? Anyways, users will not be able to use those indexes without reindexing. |
Thanks!
I'm concerned it might be too aggressive for the default behavior. I'm fine if it's an optional behavior. |
Hello, currently the default behavior in pg_repack is to repack tables even if tables have invalid indexes on them. Users can force pg_repack to error when there are invalid indexes on tables before they are repacked by providing
-error-on-invalid-indexparameter on pg_repack 1.5.0 and later versions.However, repacking tables with invalid indexes would cause the index to be corrupted, because repack will skip repacking the invalid index and old heap tuple id in the index now be pointing to incorrect tuples on the relation. As a safety feature it would make sense to make
--error-on-invalid-indexthe default behavior and there could be an option like--warn-on-invalid-indexor--no-error-on-invalid-indexfor users who want to keep the old behavior.The text was updated successfully, but these errors were encountered: