postgres
diff --git a/‎src/backend/access/heap/README.tuplock‎
Lines changed: 32 additions & 0 deletions b/‎src/backend/access/heap/README.tuplock‎
Lines changed: 32 additions & 0 deletions
diff --git a/‎src/backend/access/heap/heapam.c‎
Lines changed: 39 additions & 7 deletions b/‎src/backend/access/heap/heapam.c‎
Lines changed: 39 additions & 7 deletions
diff --git a/‎src/backend/access/transam/xact.c‎
Lines changed: 18 additions & 8 deletions b/‎src/backend/access/transam/xact.c‎
Lines changed: 18 additions & 8 deletions
diff --git a/‎src/backend/catalog/index.c‎
Lines changed: 9 additions & 2 deletions b/‎src/backend/catalog/index.c‎
Lines changed: 9 additions & 2 deletions
diff --git a/‎src/backend/replication/logical/decode.c‎
Lines changed: 2 additions & 9 deletions b/‎src/backend/replication/logical/decode.c‎
Lines changed: 2 additions & 9 deletions
diff --git a/‎src/backend/utils/cache/catcache.c‎
Lines changed: 4 additions & 3 deletions b/‎src/backend/utils/cache/catcache.c‎
Lines changed: 4 additions & 3 deletions
@@ -201,3 +201,35 @@ wider than four bytes, and current readers don't need consistency across
 fields.  Hence, they get by with just fetching each field once.  XXX such a
 caller may also read a value that has not reached WAL; see
 systable_inplace_update_finish().
+
+During logical decoding, caches reflect an inplace update no later than the
+next XLOG_XACT_INVALIDATIONS.  That record witnesses the end of a command.
+Tuples of its cmin are then visible to decoding, as are inplace updates of any
+lower LSN.  Inplace updates of a higher LSN may also be visible, even if those
+updates would have been invisible to a non-historic snapshot matching
+decoding's historic snapshot.  (In other words, decoding may see inplace
+updates that were not visible to a similar snapshot taken during original
+transaction processing.)  That's a consequence of inplace update violating
+MVCC: there are no snapshot-specific versions of inplace-updated values.  This
+all makes it hard to reason about inplace-updated column reads during logical
+decoding, but the behavior does suffice for relhasindex.  A relhasindex=t in
+CREATE INDEX becomes visible no later than the new pg_index row.  While it may
+be visible earlier, that's harmless.  Finding zero indexes despite
+relhasindex=t is normal in more cases than this, e.g. after DROP INDEX.
+Example of a case that meaningfully reacts to the inplace inval:
+
+CREATE TABLE cat (c int) WITH (user_catalog_table = true);
+CREATE TABLE normal (d int);
+...
+CREATE INDEX ON cat (c)\; INSERT INTO normal VALUES (1);
+
+If the output plugin reads "cat" during decoding of the INSERT, it's fair to
+want that read to see relhasindex=t and use the new index.
+
+An alternative would be to have decoding of XLOG_HEAP_INPLACE immediately
+execute its invals.  That would behave more like invals during original
+transaction processing.  It would remove the decoding-specific delay in e.g. a
+decoding plugin witnessing a relfrozenxid change.  However, a good use case
+for that is unlikely, since the plugin would still witness relfrozenxid
+changes prematurely.  Hence, inplace update takes the trivial approach of
+delegating to XLOG_XACT_INVALIDATIONS.
@@ -6158,6 +6158,19 @@ heap_inplace_lock(Relation relation,
 
 	Assert(BufferIsValid(buffer));
 
+	/*
+	 * Register shared cache invals if necessary.  Other sessions may finish
+	 * inplace updates of this tuple between this step and LockTuple().  Since
+	 * inplace updates don't change cache keys, that's harmless.
+	 *
+	 * While it's tempting to register invals only after confirming we can
+	 * return true, the following obstacle precludes reordering steps that
+	 * way.  Registering invals might reach a CatalogCacheInitializeCache()
+	 * that locks "buffer".  That would hang indefinitely if running after our
+	 * own LockBuffer().  Hence, we must register invals before LockBuffer().
+	 */
+	CacheInvalidateHeapTupleInplace(relation, oldtup_ptr);
+
 	LockTuple(relation, &oldtup.t_self, InplaceUpdateTupleLock);
 	LockBuffer(buffer, BUFFER_LOCK_EXCLUSIVE);
 
@@ -6253,6 +6266,7 @@ heap_inplace_lock(Relation relation,
 	if (!ret)
 	{
 		UnlockTuple(relation, &oldtup.t_self, InplaceUpdateTupleLock);
+		ForgetInplace_Inval();
 		InvalidateCatalogSnapshot();
 	}
 	return ret;
@@ -6281,6 +6295,16 @@ heap_inplace_update_and_unlock(Relation relation,
 	if (oldlen != newlen || htup->t_hoff != tuple->t_data->t_hoff)
 		elog(ERROR, "wrong tuple length");
 
+	/*
+	 * Unlink relcache init files as needed.  If unlinking, acquire
+	 * RelCacheInitLock until after associated invalidations.  By doing this
+	 * in advance, if we checkpoint and then crash between inplace
+	 * XLogInsert() and inval, we don't rely on StartupXLOG() ->
+	 * RelationCacheInitFileRemove().  That uses elevel==LOG, so replay would
+	 * neglect to PANIC on EIO.
+	 */
+	PreInplace_Inval();
+
 	/* NO EREPORT(ERROR) from here till changes are logged */
 	START_CRIT_SECTION();
 
@@ -6324,17 +6348,24 @@ heap_inplace_update_and_unlock(Relation relation,
 		PageSetLSN(BufferGetPage(buffer), recptr);
 	}
 
+	LockBuffer(buffer, BUFFER_LOCK_UNLOCK);
+
+	/*
+	 * Send invalidations to shared queue.  SearchSysCacheLocked1() assumes we
+	 * do this before UnlockTuple().
+	 */
+	AtInplace_Inval();
+
 	END_CRIT_SECTION();
+	UnlockTuple(relation, &tuple->t_self, InplaceUpdateTupleLock);
 
-	heap_inplace_unlock(relation, oldtup, buffer);
+	AcceptInvalidationMessages();	/* local processing of just-sent inval */
 
 	/*
-	 * Send out shared cache inval if necessary.  Note that because we only
-	 * pass the new version of the tuple, this mustn't be used for any
-	 * operations that could change catcache lookup keys.  But we aren't
-	 * bothering with index updates either, so that's true a fortiori.
-	 *
-	 * XXX ROLLBACK discards the invalidation.  See test inplace-inval.spec.
+	 * Queue a transactional inval, for logical decoding and for third-party
+	 * code that might have been relying on it since long before inplace
+	 * update adopted immediate invalidation.  See README.tuplock section
+	 * "Reading inplace-updated columns" for logical decoding details.
 	 */
 	if (!IsBootstrapProcessingMode())
 		CacheInvalidateHeapTuple(relation, tuple, NULL);
@@ -6349,6 +6380,7 @@ heap_inplace_unlock(Relation relation,
 {
 	LockBuffer(buffer, BUFFER_LOCK_UNLOCK);
 	UnlockTuple(relation, &oldtup->t_self, InplaceUpdateTupleLock);
+	ForgetInplace_Inval();
 }
 
 /*
 
@@ -1337,14 +1337,24 @@ RecordTransactionCommit(void)
 
 		/*
 		 * Transactions without an assigned xid can contain invalidation
-		 * messages (e.g. explicit relcache invalidations or catcache
-		 * invalidations for inplace updates); standbys need to process those.
-		 * We can't emit a commit record without an xid, and we don't want to
-		 * force assigning an xid, because that'd be problematic for e.g.
-		 * vacuum.  Hence we emit a bespoke record for the invalidations. We
-		 * don't want to use that in case a commit record is emitted, so they
-		 * happen synchronously with commits (besides not wanting to emit more
-		 * WAL records).
+		 * messages.  While inplace updates do this, this is not known to be
+		 * necessary; see comment at inplace CacheInvalidateHeapTuple().
+		 * Extensions might still rely on this capability, and standbys may
+		 * need to process those invals.  We can't emit a commit record
+		 * without an xid, and we don't want to force assigning an xid,
+		 * because that'd be problematic for e.g. vacuum.  Hence we emit a
+		 * bespoke record for the invalidations. We don't want to use that in
+		 * case a commit record is emitted, so they happen synchronously with
+		 * commits (besides not wanting to emit more WAL records).
+		 *
+		 * XXX Every known use of this capability is a defect.  Since an XID
+		 * isn't controlling visibility of the change that prompted invals,
+		 * other sessions need the inval even if this transactions aborts.
+		 *
+		 * ON COMMIT DELETE ROWS does a nontransactional index_build(), which
+		 * queues a relcache inval, including in transactions without an xid
+		 * that had read the (empty) table.  Standbys don't need any ON COMMIT
+		 * DELETE ROWS invals, but we've not done the work to withhold them.
 		 */
 		if (nmsgs != 0)
 		{
 
@@ -2931,12 +2931,19 @@ index_update_stats(Relation rel,
 	if (dirty)
 	{
 		systable_inplace_update_finish(state, tuple);
-		/* the above sends a cache inval message */
+		/* the above sends transactional and immediate cache inval messages */
 	}
 	else
 	{
 		systable_inplace_update_cancel(state);
-		/* no need to change tuple, but force relcache inval anyway */
+
+		/*
+		 * While we didn't change relhasindex, CREATE INDEX needs a
+		 * transactional inval for when the new index's catalog rows become
+		 * visible.  Other CREATE INDEX and REINDEX code happens to also queue
+		 * this inval, but keep this in case rare callers rely on this part of
+		 * our API contract.
+		 */
 		CacheInvalidateRelcacheByTuple(tuple);
 	}
 
 
@@ -523,20 +523,13 @@ heap_decode(LogicalDecodingContext *ctx, XLogRecordBuffer *buf)
 			/*
 			 * Inplace updates are only ever performed on catalog tuples and
 			 * can, per definition, not change tuple visibility.  Since we
-			 * don't decode catalog tuples, we're not interested in the
+			 * also don't decode catalog tuples, we're not interested in the
 			 * record's contents.
-			 *
-			 * In-place updates can be used either by XID-bearing transactions
-			 * (e.g.  in CREATE INDEX CONCURRENTLY) or by XID-less
-			 * transactions (e.g.  VACUUM).  In the former case, the commit
-			 * record will include cache invalidations, so we mark the
-			 * transaction as catalog modifying here. Currently that's
-			 * redundant because the commit will do that as well, but once we
-			 * support decoding in-progress relations, this will be important.
 			 */
 			if (!TransactionIdIsValid(xid))
 				break;
 
+			/* PostgreSQL 13 was the last to need these actions. */
 			(void) SnapBuildProcessChange(builder, xid, buf->origptr);
 			ReorderBufferXidSetCatalogChanges(ctx->reorder, xid, buf->origptr);
 			break;
 
@@ -2278,7 +2278,8 @@ void
 PrepareToInvalidateCacheTuple(Relation relation,
 							  HeapTuple tuple,
 							  HeapTuple newtuple,
-							  void (*function) (int, uint32, Oid))
+							  void (*function) (int, uint32, Oid, void *),
+							  void *context)
 {
 	slist_iter	iter;
 	Oid			reloid;
@@ -2319,7 +2320,7 @@ PrepareToInvalidateCacheTuple(Relation relation,
 		hashvalue = CatalogCacheComputeTupleHashValue(ccp, ccp->cc_nkeys, tuple);
 		dbid = ccp->cc_relisshared ? (Oid) 0 : MyDatabaseId;
 
-		(*function) (ccp->id, hashvalue, dbid);
+		(*function) (ccp->id, hashvalue, dbid, context);
 
 		if (newtuple)
 		{
@@ -2328,7 +2329,7 @@ PrepareToInvalidateCacheTuple(Relation relation,
 			newhashvalue = CatalogCacheComputeTupleHashValue(ccp, ccp->cc_nkeys, newtuple);
 
 			if (newhashvalue != hashvalue)
-				(*function) (ccp->id, newhashvalue, dbid);
+				(*function) (ccp->id, newhashvalue, dbid, context);
 		}
 	}
 }
Original file line number	Diff line number	Diff line change
`@@ -2931,12 +2931,19 @@ index_update_stats(Relation rel,`
`2931`	`2931`	`if (dirty)`
`2932`	`2932`	`{`
`2933`	`2933`	`systable_inplace_update_finish(state, tuple);`
`2934`		`- /* the above sends a cache inval message */`
	`2934`	`+ /* the above sends transactional and immediate cache inval messages */`
`2935`	`2935`	`}`
`2936`	`2936`	`else`
`2937`	`2937`	`{`
`2938`	`2938`	`systable_inplace_update_cancel(state);`
`2939`		`- /* no need to change tuple, but force relcache inval anyway */`
	`2939`	`+`
	`2940`	`+ /*`
	`2941`	`+ * While we didn't change relhasindex, CREATE INDEX needs a`
	`2942`	`+ * transactional inval for when the new index's catalog rows become`
	`2943`	`+ * visible. Other CREATE INDEX and REINDEX code happens to also queue`
	`2944`	`+ * this inval, but keep this in case rare callers rely on this part of`
	`2945`	`+ * our API contract.`
	`2946`	`+ */`
`2940`	`2947`	`CacheInvalidateRelcacheByTuple(tuple);`
`2941`	`2948`	`}`
`2942`	`2949`
Original file line number	Diff line number	Diff line change
`@@ -2278,7 +2278,8 @@ void`
`2278`	`2278`	`PrepareToInvalidateCacheTuple(Relation relation,`
`2279`	`2279`	`HeapTuple tuple,`
`2280`	`2280`	`HeapTuple newtuple,`
`2281`		`- void (*function) (int, uint32, Oid))`
	`2281`	`+ void (function) (int, uint32, Oid, void ),`
	`2282`	`+ void *context)`
`2282`	`2283`	`{`
`2283`	`2284`	`slist_iter iter;`
`2284`	`2285`	`Oid reloid;`
`@@ -2319,7 +2320,7 @@ PrepareToInvalidateCacheTuple(Relation relation,`
`2319`	`2320`	`hashvalue = CatalogCacheComputeTupleHashValue(ccp, ccp->cc_nkeys, tuple);`
`2320`	`2321`	`dbid = ccp->cc_relisshared ? (Oid) 0 : MyDatabaseId;`
`2321`	`2322`
`2322`		`- (*function) (ccp->id, hashvalue, dbid);`
	`2323`	`+ (*function) (ccp->id, hashvalue, dbid, context);`
`2323`	`2324`
`2324`	`2325`	`if (newtuple)`
`2325`	`2326`	`{`
`@@ -2328,7 +2329,7 @@ PrepareToInvalidateCacheTuple(Relation relation,`
`2328`	`2329`	`newhashvalue = CatalogCacheComputeTupleHashValue(ccp, ccp->cc_nkeys, newtuple);`
`2329`	`2330`
`2330`	`2331`	`if (newhashvalue != hashvalue)`
`2331`		`- (*function) (ccp->id, newhashvalue, dbid);`
	`2332`	`+ (*function) (ccp->id, newhashvalue, dbid, context);`
`2332`	`2333`	`}`
`2333`	`2334`	`}`
`2334`	`2335`	`}`