pgstef’s blog

pgBackRest preview - simplifying manual expiration of oldest backups

2025-12-17T11:35:00+01:00

A useful new feature was introduced on 11 December 2025: Allow expiration of the oldest full backup regardless of current retention. Details are available in commit bf2b276.

Before this change, it was awkward to expire only the oldest full backup while leaving the existing retention settings untouched. Users had to temporarily adjust retention (or write a script) to achieve the same result. Expiring the oldest full backup is particularly helpful when your backup repository is running low on disk space.

Let’s see how this works in practice with a simple example.

Example of expiring the oldest full backup

Let’s use a very basic demo setup.

$ pgbackrest info
...
wal archive min/max (18): 000000010000000000000056/000000010000000300000038

full backup: 20251217-095505F
    wal start/stop: 000000010000000000000056 / 000000010000000000000056

incr backup: 20251217-095505F_20251217-095807I
    wal start/stop: 00000001000000010000001B / 00000001000000010000001B
    backup reference total: 1 full

full backup: 20251217-095902F
    wal start/stop: 000000010000000100000090 / 000000010000000100000090

incr backup: 20251217-095902F_20251217-100124I
    wal start/stop: 000000010000000200000013 / 000000010000000200000013
    backup reference total: 1 full

This gives us two full backups, each of them with a linked incremental backup. Note that I have deliberately reduced the output of the info command to the information relevant to our test case.

$ pgbackrest expire --stanza=demo --dry-run
P00   INFO: [DRY-RUN] expire command begin 2.57.0: ...
P00   INFO: [DRY-RUN] repo1: 18-1 no archive to remove
P00   INFO: [DRY-RUN] expire command end: completed successfully

If we run the expire command, nothing is expired, as I have set repo1-retention-full=2, meaning that two full backups should be kept.

Let’s now imagine that your backup repository is running out of disk space and you want to remove the oldest backup to free up some space. How would you do that?

Once you have identified the backup set name to expire (20251217-095505F in this case), you can run:

$ pgbackrest expire --stanza=demo --set=20251217-095505F --dry-run
P00   INFO: [DRY-RUN] expire command begin 2.57.0: ...
P00   INFO: [DRY-RUN] repo1: expire adhoc backup set 20251217-095505F, 20251217-095505F_20251217-095807I
P00   INFO: [DRY-RUN] repo1: remove expired backup 20251217-095505F_20251217-095807I
P00   INFO: [DRY-RUN] repo1: remove expired backup 20251217-095505F
P00   INFO: [DRY-RUN] expire command end: completed successfully

The expire --set option allows you to remove a backup set and all dependent backups (in this case, the incremental one), but the WAL archives are not expired. Indeed, WAL archives older than the oldest backup are not expired until the retention policy has been met. This is done to ensure that streaming replicas still have access to older WAL segments that they may need to catch up.

Until this new feature was introduced, the only available option was to adjust the retention settings. In this case, you would count the number of full backups (two), subtract one, and then adjust --repo1-retention-full=1.

$ pgbackrest expire --stanza=demo --repo1-retention-full=1 --dry-run
P00   INFO: [DRY-RUN] expire command begin 2.57.0: ...
P00   INFO: [DRY-RUN] repo1: expire full backup set 20251217-095505F, 20251217-095505F_20251217-095807I
P00   INFO: [DRY-RUN] repo1: remove expired backup 20251217-095505F_20251217-095807I
P00   INFO: [DRY-RUN] repo1: remove expired backup 20251217-095505F
P00   INFO: [DRY-RUN] repo1: 18-1 remove archive, start = 0000000100000000, stop = 00000001000000010000008F
P00   INFO: [DRY-RUN] expire command end: completed successfully

If you compare both outputs, you will see that the WAL archives would now be expired. This is a perfectly valid approach, but let’s be honest: it is not very user-friendly, as it requires knowing the current retention settings and adjusting them manually.

$ pgbackrest version
pgBackRest 2.58.0dev

The new feature introduces a --oldest option for the expire command, which expires the oldest full backup set that can be removed (that is, as long as at least one newer full backup remains). This is equivalent to manually decrementing the retention by one, but it is computed automatically. All backups related to the expired full backup set (both differential and incremental) are also expired. When this option is used, archive retention is also temporarily adjusted so that WAL archives associated with the expired backups can be removed in the same run.

$ pgbackrest expire --stanza=demo --oldest
P00   INFO: expire command begin 2.58.0dev: ...
P00   INFO: repo1: expire full backup set 20251217-095505F, 20251217-095505F_20251217-095807I
P00   INFO: repo1: remove expired backup 20251217-095505F_20251217-095807I
P00   INFO: repo1: remove expired backup 20251217-095505F
P00   INFO: repo1: 18-1 remove archive, start = 0000000100000000, stop = 00000001000000010000008F
P00   INFO: expire command end: completed successfully

This option should be particularly useful for users who want to expire the earliest backup in order to free up space. Since, in this scenario, users will almost always want the corresponding WAL archives to be expired as well, the option internally adjusts archive retention to remove WAL archives that precede the oldest retained full backup.

This option only works if at least one full backup would remain:

$ pgbackrest info
...
wal archive min/max (18): 000000010000000100000090/000000010000000300000038

full backup: 20251217-095902F
    wal start/stop: 000000010000000100000090 / 000000010000000100000090

incr backup: 20251217-095902F_20251217-100124I
    wal start/stop: 000000010000000200000013 / 000000010000000200000013
    backup reference total: 1 full

$ pgbackrest expire --stanza=demo --oldest
P00   WARN: repo1: expire oldest requested but no eligible full backup to expire

Conclusion

The --oldest option addresses a long-standing usability gap by making it trivial to expire the oldest full backup when disk space is tight, without modifying retention settings. This change comes from a feature request in GitHub issue #2666 and should make a previously awkward operation simpler and safer.

pgBackRest TLS server mode for a primary-standby setup with a repository host

2025-11-17T00:00:00+01:00

The TLS server provides an alternative to using SSH for protocol connections to remote hosts.

In this demo setup, the repository host is named backup-srv, and the two PostgreSQL nodes participating in Streaming Replication are pg1-srv and pg2-srv. All nodes run on AlmaLinux 10.

If you’re familiar with Vagrant, here is a simple Vagrantfile that provisions three virtual machines using these names:

# Vagrantfile
Vagrant.configure(2) do |config|
    config.vm.box = 'almalinux/10'
    config.vm.provider 'libvirt' do |lv|
        lv.cpus = 1
        lv.memory = 1024
    end

    # share the default vagrant folder
    config.vm.synced_folder ".", "/vagrant", type: "nfs", nfs_udp: false

    nodes  = 'backup-srv', 'pg1-srv', 'pg2-srv'
    nodes.each do |node|
        config.vm.define node do |conf|
            conf.vm.hostname = node
        end
    end
end

Installation

On all servers, begin by configuring the PGDG repositories:

sudo dnf install -y https://download.postgresql.org/pub/repos/yum/reporpms/EL-10-x86_64/pgdg-redhat-repo-latest.noarch.rpm

Then install PostgreSQL on pg1-srv and pg2-srv:

sudo dnf install -y postgresql18-server

Create a basic PostgreSQL instance on pg1-srv:

sudo /usr/pgsql-18/bin/postgresql-18-setup initdb
sudo systemctl enable postgresql-18
sudo systemctl start postgresql-18

Install pgBackRest on every host and confirm the version:

sudo dnf install -y epel-release
sudo dnf config-manager --enable crb
sudo dnf install -y pgbackrest

$ pgbackrest version
pgBackRest 2.57.0

Create a dedicated user on the repository host

The pgbackrest user will own the backups and WAL archive repository. Although any user can own the repository, it’s best not to use postgres to avoid confusion.

Create the user and repository directory on backup-srv:

sudo mkdir -p /backup_space
sudo mkdir -p /var/log/pgbackrest

sudo groupadd pgbackrest
sudo useradd -d /backup_space -M -g pgbackrest pgbackrest

sudo chown -R pgbackrest: /backup_space
sudo chown -R pgbackrest: /var/log/pgbackrest

For the purpose of this demo, we’ve created /backup_space to store our backups and archives locally. The repository can be located on the various supported storage types described in the official configuration documentation.

Certificate generation

The TLS server requires certificates.

A good practical example of generating certificates for PostgreSQL authentication can be found here.

Following that approach, generate the certificates in the shared folder used by the Vagrant hosts:

sudo dnf install -y openssl
cd /vagrant
mkdir certs && cd certs
openssl req -new -x509 -days 365 -nodes -out ca.crt -keyout ca.key -subj "/CN=root-ca"
openssl req -new -nodes -out backup-srv.csr -keyout backup-srv.key -subj "/CN=backup-srv"
openssl req -new -nodes -out pg1-srv.csr -keyout pg1-srv.key -subj "/CN=pg1-srv"
openssl req -new -nodes -out pg2-srv.csr -keyout pg2-srv.key -subj "/CN=pg2-srv"
openssl x509 -req -in backup-srv.csr -days 365 -CA ca.crt -CAkey ca.key -CAcreateserial -out backup-srv.crt
openssl x509 -req -in pg1-srv.csr -days 365 -CA ca.crt -CAkey ca.key -CAcreateserial -out pg1-srv.crt
openssl x509 -req -in pg2-srv.csr -days 365 -CA ca.crt -CAkey ca.key -CAcreateserial -out pg2-srv.crt
rm -f *.csr

Deploy the certificates to each server (ca.crt, server_name.crt, and server_name.key):

# on backup-srv
cd /vagrant/certs
sudo mkdir -p /etc/pgbackrest/certs
sudo cp `hostname`.* /etc/pgbackrest/certs
sudo cp ca.crt /etc/pgbackrest/certs
sudo chown -R pgbackrest: /etc/pgbackrest/certs
sudo chmod -R og-rwx /etc/pgbackrest/certs

# on pg1-srv and pg2-srv
cd /vagrant/certs
sudo mkdir -p /etc/pgbackrest/certs
sudo cp `hostname`.* /etc/pgbackrest/certs
sudo cp ca.crt /etc/pgbackrest/certs
sudo chown -R postgres: /etc/pgbackrest/certs
sudo chmod -R og-rwx /etc/pgbackrest/certs

Configuration

We will now configure our stanza, named demo.

Repository server configuration (backup-srv)

[global]
# repo details
repo1-path=/backup_space
repo1-retention-full=2
repo1-bundle=y
repo1-block=y

# general options
process-max=2
log-level-console=info
log-level-file=detail
compress-type=zst
start-fast=y
delta=y

# tls server options
tls-server-address=*
tls-server-cert-file=/etc/pgbackrest/certs/backup-srv.crt
tls-server-key-file=/etc/pgbackrest/certs/backup-srv.key
tls-server-ca-file=/etc/pgbackrest/certs/ca.crt
tls-server-auth=pg1-srv=demo
tls-server-auth=pg2-srv=demo

[demo]
pg1-host=pg1-srv
pg1-path=/var/lib/pgsql/18/data
pg1-host-type=tls
pg1-host-cert-file=/etc/pgbackrest/certs/backup-srv.crt
pg1-host-key-file=/etc/pgbackrest/certs/backup-srv.key
pg1-host-ca-file=/etc/pgbackrest/certs/ca.crt

PostgreSQL servers (pg1-srv and pg2-srv)

[global]
repo1-host=backup-srv
repo1-host-user=pgbackrest
repo1-host-type=tls
repo1-host-cert-file=/etc/pgbackrest/certs/pg1-srv.crt
repo1-host-key-file=/etc/pgbackrest/certs/pg1-srv.key
repo1-host-ca-file=/etc/pgbackrest/certs/ca.crt

# general options
compress-type=zst
process-max=2
log-level-console=info
log-level-file=detail

# tls server options
tls-server-address=*
tls-server-cert-file=/etc/pgbackrest/certs/pg1-srv.crt
tls-server-key-file=/etc/pgbackrest/certs/pg1-srv.key
tls-server-ca-file=/etc/pgbackrest/certs/ca.crt
tls-server-auth=backup-srv=demo

[demo]
pg1-path=/var/lib/pgsql/18/data

(Adjust pg1-srv to pg2-srv on pg2-srv.)

The idea is that each host runs a TLS server to handle requests from the others. For example:

The backup command on the repository host acts as a TLS client to the PostgreSQL node.
The archive-push command on the PostgreSQL node acts as a TLS client to the repository host.

The PGDG packages provide a pgbackrest.service systemd unit to start and stop the TLS server.

Override the service on backup-srv

Create a drop-in override using:

sudo systemctl edit pgbackrest

Add:

[Service]
User=pgbackrest
Group=pgbackrest

Reload systemd:

sudo systemctl daemon-reload

Start the TLS server on all hosts:

sudo systemctl enable pgbackrest
sudo systemctl start pgbackrest
pgbackrest server-ping

The server-ping command checks the server’s availability (no authentication is performed).

Configure PostgreSQL archiving on pg1-srv

In postgresql.conf:

listen_addresses = '*'
archive_mode = on
archive_command = 'pgbackrest --stanza=demo archive-push %p'

Restart PostgreSQL:

sudo systemctl restart postgresql-18.service

Create the stanza and validate configuration

On backup-srv:

sudo -iu pgbackrest pgbackrest --stanza=demo stanza-create
sudo -iu pgbackrest pgbackrest --stanza=demo check

Perform a backup

You can now take your first backup:

$ sudo -iu pgbackrest pgbackrest --stanza=demo --type=full backup
P00   INFO: backup command begin 2.57.0: ...
P00   INFO: execute non-exclusive backup start:
            backup begins after the requested immediate checkpoint completes
P00   INFO: backup start archive = 000000010000000000000003, lsn = 0/3000028
P00   INFO: check archive for prior segment 000000010000000000000002
P00   INFO: execute non-exclusive backup stop and wait for all WAL segments to archive
P00   INFO: backup stop archive = 000000010000000000000003, lsn = 0/3000120
P00   INFO: check archive for segment(s) 000000010000000000000003:000000010000000000000003
P00   INFO: new backup label = 20251117-134141F
P00   INFO: full backup size = 22.7MB, file total = 970
P00   INFO: backup command end: completed successfully

You can run the info command from any server correctly configured with pgBackRest.

# From the PostgreSQL node
$ sudo -iu postgres pgbackrest --stanza=demo info
stanza: demo
    status: ok
    cipher: none

    db (current)
        wal archive min/max (18): 000000010000000000000003/000000010000000000000003

        full backup: 20251117-134141F
            timestamp start/stop: 2025-11-17 13:41:41+00 / 2025-11-17 13:41:43+00
            wal start/stop: 000000010000000000000003 / 000000010000000000000003
            database size: 22.7MB, database backup size: 22.7MB
            repo1: backup size: 2.7MB

# From the backup server
$ sudo -iu pgbackrest pgbackrest --stanza=demo info
stanza: demo
    status: ok
    cipher: none

    db (current)
        wal archive min/max (18): 000000010000000000000003/000000010000000000000003

        full backup: 20251117-134141F
            timestamp start/stop: 2025-11-17 13:41:41+00 / 2025-11-17 13:41:43+00
            wal start/stop: 000000010000000000000003 / 000000010000000000000003
            database size: 22.7MB, database backup size: 22.7MB
            repo1: backup size: 2.7MB

Prepare the servers for Streaming Replication

On pg1-srv, create a replication user:

$ sudo -iu postgres psql
postgres=# CREATE ROLE replic_user WITH LOGIN REPLICATION PASSWORD 'mypwd';

Edit pg_hba.conf:

host   replication   replic_user   pg2-srv   scram-sha-256

Reload:

sudo systemctl reload postgresql-18.service

Configure .pgpass on pg2-srv:

sudo sh -c "echo '*:*:replication:replic_user:mypwd' >> ~postgres/.pgpass"
sudo chown postgres: ~postgres/.pgpass
sudo chmod 0600 ~postgres/.pgpass

Set up the standby server

Modify /etc/pgbackrest.conf on pg2-srv to include:

recovery-option=primary_conninfo=host=pg1-srv user=replic_user

Then verify the configuration by running the info command. It should print the same output as above.

Restore the backup:

$ sudo -iu postgres pgbackrest --stanza=demo --type=standby restore
P00   INFO: restore command begin 2.57.0: ...
P00   INFO: repo1: restore backup set 20251117-134141F, recovery will start at ...
P00   INFO: write updated /var/lib/pgsql/18/data/postgresql.auto.conf
P00   INFO: restore global/pg_control
            (performed last to ensure aborted restores cannot be started)
P00   INFO: restore size = 22.7MB, file total = 970
P00   INFO: restore command end: completed successfully

This adds the required recovery settings to postgresql.auto.conf:

# Recovery settings generated by pgBackRest restore
primary_conninfo = 'host=pg1-srv user=replic_user'
restore_command = 'pgbackrest --stanza=demo archive-get %f "%p"'

The --type=standby option creates the standby.signal needed for PostgreSQL to start in standby mode. All we have to do now is start PostgreSQL:

sudo systemctl enable postgresql-18
sudo systemctl start postgresql-18

If replication is configured correctly, you should see a walsender process on pg1-srv:

$ sudo -iu postgres ps -o pid,cmd fx
    PID CMD
ps -o pid,cmd fx
/usr/pgsql-18/bin/postgres -D /var/lib/pgsql/18/data/
\_ postgres: logger
\_ postgres: io worker 0
\_ postgres: io worker 1
\_ postgres: io worker 2
\_ postgres: checkpointer
\_ postgres: background writer
\_ postgres: walwriter
\_ postgres: autovacuum launcher
\_ postgres: archiver last was 000000010000000000000003.00000028.backup
\_ postgres: logical replication launcher
\_ postgres: walsender replic_user 192.168.121.28(48720) streaming 0/4001A40
/usr/bin/pgbackrest server

We now have a two-node cluster using Streaming Replication with WAL archiving as a fallback.

Take backups from the standby server

Extend the configuration on backup-srv:

pg2-host=pg2-srv
pg2-path=/var/lib/pgsql/18/data
pg2-host-type=tls
pg2-host-cert-file=/etc/pgbackrest/certs/backup-srv.crt
pg2-host-key-file=/etc/pgbackrest/certs/backup-srv.key
pg2-host-ca-file=/etc/pgbackrest/certs/ca.crt
backup-standby=y

Now take a new backup, where the data files will come from the standby:

$ sudo -iu pgbackrest pgbackrest --stanza=demo --type=full backup
P00   INFO: backup command begin 2.57.0: ...
P00   INFO: execute non-exclusive backup start:
            backup begins after the requested immediate checkpoint completes
P00   INFO: backup start archive = 000000010000000000000005, lsn = 0/5000028
P00   INFO: wait for replay on the standby to reach 0/5000028
P00   INFO: replay on the standby reached 0/5000028
P00   INFO: check archive for prior segment 000000010000000000000004
P00   INFO: execute non-exclusive backup stop and wait for all WAL segments to archive
P00   INFO: backup stop archive = 000000010000000000000005, lsn = 0/5000120
P00   INFO: check archive for segment(s) 000000010000000000000005:000000010000000000000005
P00   INFO: new backup label = 20251117-135549F
P00   INFO: full backup size = 22.7MB, file total = 970

Conclusion

The TLS server offers a highly performant alternative to SSH for remote operations. It fits perfectly in containerized environments, where it can significantly improve the user experience.

Combining cloud storage and dedicated backup host with pgBackRest

2024-11-28T08:30:00+01:00

pgBackRest is a popular backup and restore tool for PostgreSQL, known for easily handling even the largest databases and workloads. It’s packed with powerful features, but all that flexibility can sometimes feel a bit overwhelming.

In my earlier posts, I showed how to take backups from a standby server and how to set up a dedicated backup host. But there’s another great feature we haven’t explored yet: pgBackRest can store backups in cloud storage like S3, Azure, or Google Cloud.

Most people choose one option: either a backup host or cloud storage. But did you know you can use both at the same time? This gives you even more flexibility in your backup strategy.

Let’s pick up where we left off. We’ve got a PostgreSQL cluster with a primary server (pg1), a standby server (pg2), and a backup server (repo1) storing backups and WAL archives on an NFS mount. Today, we’ll take it a step further by adding an S3 bucket to the setup :-)

Example setup: S3 bucket with a repository host

Initial situation

As a reminder, here’s the initial situation and configuration.

pg1 is our primary:

[postgres@pg1 ~]$ ps -o pid,cmd fx
    PID CMD
/usr/pgsql-16/bin/postgres -D /var/lib/pgsql/16/data/
\_ postgres: logger 
\_ postgres: checkpointer 
\_ postgres: background writer 
\_ postgres: walwriter 
\_ postgres: autovacuum launcher 
\_ postgres: archiver last was 000000010000000000000060
\_ postgres: logical replication launcher 
\_ postgres: walsender replicator 192.168.121.66(38334) streaming 0/610001C0

pg2 is our standby server:

[postgres@pg2 ~]$ ps -o pid,cmd fx
    PID CMD
/usr/pgsql-16/bin/postgres -D /var/lib/pgsql/16/data/
\_ postgres: logger 
\_ postgres: checkpointer 
\_ postgres: background writer 
\_ postgres: startup recovering 000000010000000000000061
\_ postgres: walreceiver streaming 0/610001C0

The /etc/pgbackrest.conf configuration is exactly the same on both nodes:

[global]
repo1-host=repo1
repo1-host-user=pgbackrest
log-level-console=info
log-level-file=detail
compress-type=zst

[mycluster]
pg1-path=/var/lib/pgsql/16/data

repo1 is our dedicated backup host and there’s one full backup in the repository:

[pgbackrest@repo1 ~]$ pgbackrest info
stanza: mycluster
    status: ok
    cipher: none

    db (current)
        wal archive min/max (16): 000000010000000000000062/000000010000000000000062

        full backup: 20241127-125209F
            timestamp start/stop: 2024-11-27 12:52:09+00 / 2024-11-27 12:52:13+00
            wal start/stop: 000000010000000000000062 / 000000010000000000000062
            database size: 1.5GB, database backup size: 1.5GB
            repo1: backup size: 70.3MB

Here’s the /etc/pgbackrest.conf configuration for this node:

[global]
repo1-path=/shared/pgbackrest
repo1-retention-full=4
repo1-bundle=y
repo1-block=y
start-fast=y
log-level-console=info
log-level-file=detail
delta=y
process-max=2
compress-type=zst
backup-standby=y

[mycluster]
pg1-path=/var/lib/pgsql/16/data
pg1-host=pg1
pg1-host-user=postgres
pg2-path=/var/lib/pgsql/16/data
pg2-host=pg2
pg2-host-user=postgres

The repository repo1-path=/shared/pgbackrest is currently an NFS mount point. Let’s adjust this setting to point to an S3 bucket named myversionedbucket with the following configuration:

repo1-path=/demo-repo
repo1-type=s3
repo1-s3-bucket=myversionedbucket
repo1-s3-key=accessKey1
repo1-s3-key-secret=verySecretKey1
repo1-s3-region=us-east-1
repo1-s3-endpoint=s3.us-east-1.amazonaws.com

As the new repository is empty, we need to initialize it and use the stanza-create command:

[pgbackrest@repo1 ~]$ pgbackrest --stanza=mycluster stanza-create
INFO: stanza-create for stanza 'mycluster' on repo1
INFO: stanza-create command end: completed successfully

Then, check that the archiving process is still functioning correctly. WAL archives should now be pushed from the primary to the S3 bucket. Remember, the archives are still routed through our dedicated backup host, as we haven’t changed the PostgreSQL node configurations!

[pgbackrest@repo1 ~]$ pgbackrest --stanza=mycluster check
INFO: check repo1 configuration (primary)
INFO: check repo1 archive for WAL (primary)
INFO: WAL segment 000000010000000000000063 successfully archived to '...' on repo1
INFO: check command end: completed successfully

Let’s take a backup now:

[pgbackrest@repo1 ~]$ pgbackrest --stanza=mycluster backup --type=full
INFO: backup command begin ...
INFO: execute non-exclusive backup start:
	backup begins after the requested immediate checkpoint completes
INFO: backup start archive = 000000010000000000000065, lsn = 0/65000028
INFO: wait for replay on the standby to reach 0/65000028
INFO: replay on the standby reached 0/65000028
INFO: check archive for prior segment 000000010000000000000064
INFO: execute non-exclusive backup stop and wait for all WAL segments to archive
INFO: backup stop archive = 000000010000000000000065, lsn = 0/65000100
INFO: check archive for segment(s) 000000010000000000000065:000000010000000000000065
INFO: new backup label = 20241127-135531F
INFO: full backup size = 1.5GB, file total = 1283
INFO: backup command end: completed successfully

Finally, here’s what our current setup looks like:

What happens if the repository host is down?

With repo1 down, the PostgreSQL nodes can’t reach the backup storage anymore…

[postgres@pg1 ~]$ pgbackrest info
stanza: [invalid]
    status: error (other)
            [UnknownError] remote-0 process on 'repo1' terminated unexpectedly
            [255]: ssh: connect to host repo1 port 22: No route to host

It also means that the WAL archiver process is blocked:

[postgres@pg1 ~]$ psql -x -c "select * from pg_stat_archiver;"
-[ RECORD 1 ]------+-----------------------------------------
failed_count       | 12
last_failed_wal    | 000000010000000000000066
last_failed_time   | 2024-11-27 13:58:16.547647+00

Obviously, you’re not triggering backups every 5 minutes, so having the repository host down for a while might not seem like a big issue at first. However, the magic of PostgreSQL’s Point-In-Time Recovery relies on continuous WAL archiving. If the archiver process gets blocked, PostgreSQL will start storing all the WAL files locally in its pg_wal directory until the issue is resolved. This can quickly lead to disk space problems and, in the worst-case scenario, bring your cluster down.

Thankfully, pgBackRest offers the archive-push-queue-max setting to help manage this situation. But why stop there? We can get creative and take advantage of pgBackRest’s flexibility by attaching the S3 bucket directly to the PostgreSQL nodes…

Attaching the S3 bucket directly to PostgreSQL nodes

As a reminder, on pg1 and pg2, the repository is currently defined as:

repo1-host=repo1
repo1-host-user=pgbackrest

We’ll replace these settings with the S3 bucket configuration:

repo1-path=/demo-repo
repo1-type=s3
repo1-s3-bucket=myversionedbucket
repo1-s3-key=accessKey1
repo1-s3-key-secret=verySecretKey1
repo1-s3-region=us-east-1
repo1-s3-endpoint=s3.us-east-1.amazonaws.com

This change allows us to view the repository content and unblock the archiver process:

[postgres@pg1 ~]$ pgbackrest info
stanza: mycluster
    status: ok
    cipher: none

    db (current)
        wal archive min/max (16): 000000010000000000000063/000000010000000000000065

        full backup: 20241127-135531F
            timestamp start/stop: 2024-11-27 13:55:31+00 / 2024-11-27 13:55:35+00
            wal start/stop: 000000010000000000000065 / 000000010000000000000065
            database size: 1.5GB, database backup size: 1.5GB
            repo1: backup size: 70.3MB

[postgres@pg1 ~]$ pgbackrest --stanza=mycluster check
INFO: check repo1 configuration (primary)
INFO: check repo1 archive for WAL (primary)
INFO: WAL segment 000000010000000000000067 successfully archived to '...' on repo1
INFO: check command end: completed successfully

Now that we’ve connected the PostgreSQL nodes to the S3 bucket, we can trigger a backup from any node. On the primary server (pg1), let’s first add the pgBackRest backup configuration (as defined earlier on the repository host, repo1):

repo1-retention-full=4
repo1-bundle=y
repo1-block=y
start-fast=y
delta=y
process-max=2

Finally, trigger an incremental backup:

[postgres@pg1 ~]$ pgbackrest --stanza=mycluster backup --type=incr
INFO: backup command begin ...
INFO: last backup label = 20241127-135531F
...
INFO: backup command end: completed successfully

Here’s what our updated setup looks like:

What happens when the repository host is back online?

Once the repository host is back online, it will regain access to the PostgreSQL nodes and can resume taking backups as usual. Since all nodes, including the repository host, point to the same repository location (the S3 bucket), pgBackRest will seamlessly pick up where it left off, ensuring smooth and uninterrupted operation.

Conclusion

Routing archiving directly to S3 helped avoid potential disk space issues on the PostgreSQL nodes caused by accumulating WAL files. It also introduced the flexibility to trigger backups from any node, ensuring the cluster remains operational even if one node fails.

However, from a security perspective, this setup exposes your S3 bucket’s content to all nodes, requiring careful management of access credentials. It also adds the responsibility of keeping configuration files synchronized when making changes, such as updating retention settings.

Additionally, if encryption is used, the key must be present on all nodes, further increasing the risk of exposure.

Ultimately, finding the right balance between security and availability is the key challenge, and pgBackRest’s flexibility helps you deal with it ;-)

pgBackRest dedicated backup host

2024-09-25T10:00:00+02:00

As I mentioned in my last blog post, as your cluster grows with multiple standby servers and potentially automated failover (using tools like Patroni), it becomes more practical to set up a dedicated repository host, also known as a dedicated backup server. This backup server can then trigger backups and automatically select the appropriate node in case of failover, eliminating the need for manual intervention.

In this post, I’ll show you how easy it is to add a repository host to an existing cluster. I’ll also give you a sneak peek at a new feature expected to be included in the next pgBackRest release 😉

Example setup for repository host

Initial situation

In this example, we pick up from where we left off last time: a primary server (pg1) with a standby (pg2), both already configured to use pgBackRest (with an NFS mount) for backups taken from the standby. Now, we will add a new node, repo1, to take over pgBackRest backups.

The pgBackRest user guide provides a comprehensive overview of how to set up a repository host. Since pgBackRest needs to interact with local processes on each node, we must enable communication between the hosts, either through passwordless SSH or TLS with client certificates. While SSH is generally easier to set up, TLS offers better performance. If you’re interested in an example of the TLS setup, I wrote this blog post when the feature was first introduced.

Installation

Let’s return to our repository host setup. The first step, of course, is to install pgBackRest:

$ sudo dnf install pgbackrest -y

Any user can own the repository, but it’s best to avoid using the postgres user (if it exists) to prevent confusion. Instead, let’s create a dedicated system user for this purpose:

$ sudo groupadd pgbackrest
$ sudo adduser -g pgbackrest -n pgbackrest
$ sudo chown -R pgbackrest: /var/log/pgbackrest/

The SSH setup is up to you, but usually it is as simple as creating SSH keys and authorize them on the other nodes. Example:

# From repo1
[pgbackrest@repo1 ~]$ ssh-keygen -f /home/pgbackrest/.ssh/id_rsa -t rsa -b 4096 -N ""
[pgbackrest@repo1 ~]$ ssh-copy-id postgres@pg1
[pgbackrest@repo1 ~]$ ssh postgres@pg1 hostname
[pgbackrest@repo1 ~]$ ssh-copy-id postgres@pg2
[pgbackrest@repo1 ~]$ ssh postgres@pg2 hostname

# From pg1
[postgres@pg1 ~]$ ssh-copy-id pgbackrest@repo1
[postgres@pg1 ~]$ ssh pgbackrest@repo1 hostname

# From pg2
[postgres@pg2 ~]$ ssh-copy-id pgbackrest@repo1
[postgres@pg2 ~]$ ssh pgbackrest@repo1 hostname

The repository can be stored on any supported repository type. In this example, we’ll create a local directory on the backup server (also known as the repository host, repo1):

$ sudo -u pgbackrest mkdir /shared/repo1

Remark: You can reuse the previous repository (where you already have archives and backups) if you don’t want to start from scratch. Just ensure it’s accessible from the repo1 host and that the pgbackrest user has full access to it.

Configuration

Now, let’s move on to configuring pgBackRest on repo1:

[global]
repo1-path=/shared/repo1
repo1-retention-full=4
repo1-bundle=y
repo1-block=y
start-fast=y
log-level-console=info
log-level-file=detail
delta=y
process-max=2
compress-type=zst
backup-standby=y

[mycluster]
pg1-path=/var/lib/pgsql/16/data
pg1-host=pg1
pg1-host-user=postgres
pg2-path=/var/lib/pgsql/16/data
pg2-host=pg2
pg2-host-user=postgres

The global section here includes options primarily used to control the behavior of the backup command and specify where to store the backups and archives. The [mycluster] stanza section, on the other hand, defines the locations of all the PostgreSQL nodes within the cluster.

Speaking about the PostgreSQL nodes, let’s now update the pgBackRest configuration on pg1 and pg2:

[global]
repo1-host=repo1
repo1-host-user=pgbackrest
log-level-console=info
log-level-file=detail
compress-type=zst

[mycluster]
pg1-path=/var/lib/pgsql/16/data

Since the backup command will be executed on repo1, the key point is to define the location of the locally running database in the [mycluster] stanza section and configure how to reach the repository host in the global section. Additionally, options for controlling archiving (archive-push/archive-get) and restore commands should also be specified here.

Next, initialize the backup repository by running the stanza-create command on the repository host (repo1). After that, run the check command to ensure that the archiving process is working correctly and that WAL archives are successfully being pushed to the new repository:

$ sudo -iu pgbackrest pgbackrest --stanza=mycluster stanza-create
INFO: stanza-create command begin 2.53.1: ...
INFO: stanza-create for stanza 'mycluster' on repo1
INFO: stanza-create command end: completed successfully

$ sudo -iu pgbackrest pgbackrest --stanza=mycluster check
INFO: check command begin 2.53.1: ...
INFO: check repo1 (standby)
INFO: switch wal not performed because this is a standby
INFO: check repo1 configuration (primary)
INFO: check repo1 archive for WAL (primary)
INFO: WAL segment 000000010000000000000057 successfully archived to '...' on repo1
INFO: check command end: completed successfully

You can also run the check command on the primary (it won’t have any effect on the standby server):

$ sudo -iu postgres pgbackrest --stanza=mycluster check

Remark: If you chose to reuse the existing repository, there’s no need to re-run the stanza-create command, as the repository is already initialized. However, you can still run it, and the stanza-create command will simply verify that everything is fine:

$ sudo -iu pgbackrest pgbackrest --stanza=mycluster stanza-create
INFO: stanza-create command begin 2.53.1: ...
INFO: stanza-create for stanza 'mycluster' on repo1
INFO: stanza 'mycluster' already exists on repo1 and is valid
INFO: stanza-create command end: completed successfully

Backups

Let’s now take a backup from the repository host (repo1):

$ sudo -iu pgbackrest pgbackrest backup --stanza=mycluster --type=full
INFO: backup command begin 2.53.1: ...
INFO: execute non-exclusive backup start: backup begins after the requested immediate checkpoint completes
INFO: backup start archive = 000000010000000000000059, lsn = 0/59000028
INFO: wait for replay on the standby to reach 0/59000028
INFO: replay on the standby reached 0/59000028
INFO: check archive for prior segment 000000010000000000000058
INFO: execute non-exclusive backup stop and wait for all WAL segments to archive
INFO: backup stop archive = 000000010000000000000059, lsn = 0/59000138
INFO: check archive for segment(s) 000000010000000000000059:000000010000000000000059
INFO: new backup label = 20240923-142704F
INFO: full backup size = 1.5GB, file total = 1281
INFO: backup command end: completed successfully

What happens if the standby server is down?

$ sudo -iu pgbackrest pgbackrest backup --stanza=mycluster --type=full
INFO: backup command begin 2.53.1: ...
WARN: unable to check pg2: [DbConnectError] raised from remote-0 ssh protocol on 'pg2':
    unable to connect to 'dbname='postgres' port=5432':
        connection to server on socket "/run/postgresql/.s.PGSQL.5432" failed: No such file or directory
    Is the server running locally and accepting connections on that socket?
ERROR: [056]: unable to find standby cluster - cannot proceed
INFO: backup command end: aborted with exception [056]

If the standby server is down and the configuration is set to take backups from the standby (backup-standby=y), the backup command will fail. In such cases, you can trigger a backup from the primary by using the --no-backup-standby option in the command line:

$ sudo -iu pgbackrest pgbackrest backup --stanza=mycluster --type=full --no-backup-standby
INFO: backup command begin 2.53.1: ...
WARN: unable to check pg2: [DbConnectError] raised from remote-0 ssh protocol on 'pg2':
    unable to connect to 'dbname='postgres' port=5432':
        connection to server on socket "/run/postgresql/.s.PGSQL.5432" failed: No such file or directory
    Is the server running locally and accepting connections on that socket?
INFO: execute non-exclusive backup start: backup begins after the requested immediate checkpoint completes
INFO: backup start archive = 00000001000000000000005C, lsn = 0/5C000028
INFO: check archive for prior segment 00000001000000000000005B
INFO: execute non-exclusive backup stop and wait for all WAL segments to archive
INFO: backup stop archive = 00000001000000000000005C, lsn = 0/5C000100
INFO: check archive for segment(s) 00000001000000000000005C:00000001000000000000005C
INFO: new backup label = 20240923-143128F
INFO: full backup size = 1.5GB, file total = 1281
INFO: backup command end: completed successfully

New option preview

To avoid adjusting the configuration or manually triggering backups, an upcoming pgBackRest release will introduce a new option: backup-standby=prefer. This option will allow backups to be taken from the standby if available, or automatically fall back to the primary if the standby is down.

To test this new feature, I’ve installed the development version of pgBackRest on all nodes:

$ pgbackrest version
pgBackRest 2.54dev

What would happen if I only upgraded the pgBackRest version on the repository host (repo1) but not on the PostgreSQL nodes (pg1 and pg2)?

$ sudo -u pgbackrest pgbackrest backup --stanza=mycluster --type=full --no-backup-standby
INFO: backup command begin 2.54dev: ...
WARN: unable to check pg1: [ProtocolError] expected value '2.54dev' for greeting key 'version' but got '2.53.1'
      HINT: is the same version of pgBackRest installed on the local and remote host?
WARN: unable to check pg2: [ProtocolError] expected value '2.54dev' for greeting key 'version' but got '2.53.1'
      HINT: is the same version of pgBackRest installed on the local and remote host?
ERROR: [056]: unable to find primary cluster - cannot proceed
      HINT: are all available clusters in recovery?
INFO: backup command end: aborted with exception [056]

That’s probably the main drawback about using repository hosts: the pgBackRest version installed on the repository host must exactly match the version installed on the PostgreSQL hosts.

Finally, let’s test the new option:

$ sudo -u pgbackrest pgbackrest backup --stanza=mycluster --type=full --backup-standby=prefer
INFO: backup command begin 2.54dev: ...
WARN: unable to check pg2: [DbConnectError] raised from remote-0 ssh protocol on 'pg2':
    unable to connect to 'dbname='postgres' port=5432':
        connection to server on socket "/run/postgresql/.s.PGSQL.5432" failed: No such file or directory
    Is the server running locally and accepting connections on that socket?
WARN: unable to find a standby to perform the backup, using primary instead
INFO: execute non-exclusive backup start: backup begins after the requested immediate checkpoint completes
INFO: backup start archive = 00000001000000000000005E, lsn = 0/5E000028
INFO: check archive for prior segment 00000001000000000000005D
INFO: execute non-exclusive backup stop and wait for all WAL segments to archive
INFO: backup stop archive = 00000001000000000000005E, lsn = 0/5E000138
INFO: check archive for segment(s) 00000001000000000000005E:00000001000000000000005E
INFO: new backup label = 20240923-144946F
INFO: full backup size = 1.5GB, file total = 1281
INFO: backup command end: completed successfully

Conclusion

Setting up a dedicated pgBackRest repository host makes managing backups easier and reduces the load on your PostgreSQL nodes, especially as your cluster grows and you add more standby servers or automated failover tools.

Whether you’re reusing an existing repository or starting fresh, the setup process is really straightforward. Plus, with features like backup-standby=prefer coming in the next release, backups will be more flexible, allowing for automatic fallback to the primary when the standby is down. PgBackRest keeps getting better with each new version, so keep an eye on the release radar (and release notes) to stay updated on the latest features and improvements!

pgBackRest backups from the standby server

2024-09-23T10:15:00+02:00

Recently, we’ve received many questions about how to take backups from a standby server using pgBackRest. In this post, I’d like to clarify one of the most frequently asked questions and address a common misconception for new users.

First of all, it’s important to understand that taking a backup exclusively from the standby server is not currently possible. When you trigger a backup from the standby, pgBackRest creates a standby backup that is identical to a backup performed on the primary. It does this by starting/stopping the backup on the primary, copying only files that are replicated from the standby, then copying the remaining few files from the primary.

For this setup to work, both the primary and standby servers must share a common backup repository. This can be any supported repository type.

Let’s take an example, using an NFS mount point.

Example setup for backups from the standby server

Initial situation

Both the primary (pg1) and the standby (pg2) are seeing the same content of the mentioned NFS mount:

[postgres@pg1 ~]$ ls /shared/
[postgres@pg1 ~]$ touch /shared/test_write_from the primary
[postgres@pg1 ~]$ mkdir /shared/pgbackrest

[postgres@pg2 ~]$ ls /shared
pgbackrest  test_write_from

And we’ve got a working replication connection:

postgres=# SELECT * FROM pg_stat_replication;
-[ RECORD 1 ]----+------------------------------
pid              | 27773
usename          | replicator
application_name | pg2
state            | streaming
sent_lsn         | 0/500AD6C8
write_lsn        | 0/500AD6C8
flush_lsn        | 0/500AD6C8
replay_lsn       | 0/500AD6C8
sync_state       | async

WAL archiving

Let’s configure pgBackRest on pg1 and pg2:

$ pgbackrest version
pgBackRest 2.53.1

$ cat<<EOF | sudo tee "/etc/pgbackrest.conf"
[global]
repo1-path=/shared/pgbackrest
repo1-retention-full=4
repo1-bundle=y
repo1-block=y
start-fast=y
log-level-console=info
log-level-file=detail
delta=y
process-max=2
compress-type=zst

[mycluster]
pg1-path=/var/lib/pgsql/16/data
EOF

Enable archiving on the primary (pg1):

$ cat<<EOF | sudo tee -a "/var/lib/pgsql/16/data/postgresql.auto.conf"
archive_mode = on
archive_command = 'pgbackrest --stanza=mycluster archive-push %p'
EOF

$ sudo systemctl restart postgresql-16

Initialize the backup repository content running the stanza-create command on the primary (pg1):

$ sudo -iu postgres pgbackrest --stanza=mycluster stanza-create
INFO: stanza-create command begin 2.53.1: ...
INFO: stanza-create for stanza 'mycluster' on repo1
INFO: stanza-create command end: completed successfully

Since both the primary and the standby are sharing a common backup repository, you just need to run the above command only once!

Now, let’s check that the archiving system works correctly by running the check command:

$ sudo -iu postgres pgbackrest --stanza=mycluster check
INFO: check command begin 2.53.1: ...
INFO: check repo1 configuration (primary)
INFO: check repo1 archive for WAL (primary)
INFO: WAL segment 000000010000000000000050 successfully archived to '...' on repo1
INFO: check command end: completed successfully

This will trigger a new archive on the primary and then check if pgBackRest, running from the server where the command is executed, can locate that archived file in the backup repository. It’s helpful to run this check command on both the primary and the standby servers to confirm that the archiving system is functioning correctly and that both servers can access the same backup repository. But we’ll do that later on the standby since we still need to adjust the pgBackRest configuration.

When using Streaming Replication, it’s generally recommended to set up replication slots. This ensures that the primary doesn’t remove WAL files needed by the standby, or rows that could cause a recovery conflict, even when the standby is disconnected. Since the primary archives those WAL segments before recycling them, and both nodes share a common backup repository, you can rely on those archives to help the standby (pg2) catch up. To do this, set the restore_command on the standby:

$ cat<<EOF | sudo tee -a "/var/lib/pgsql/16/data/postgresql.auto.conf"
restore_command = 'pgbackrest --stanza=mycluster archive-get %f "%p"'
EOF

$ sudo systemctl reload postgresql-16

To verify that replication and WAL archiving are working, you can rely on pg_stat_replication and pg_stat_archiver:

postgres=# SELECT * FROM pg_stat_replication;
-[ RECORD 1 ]----+------------------------------
pid              | 28865
usename          | replicator
application_name | pg2
state            | streaming
sent_lsn         | 0/520000D8
write_lsn        | 0/520000D8
flush_lsn        | 0/520000D8
replay_lsn       | 0/520000D8
sync_state       | async
...

postgres=# SELECT
            pg_walfile_name(pg_current_wal_lsn()),
            last_archived_wal FROM pg_stat_archiver;
-[ RECORD 1 ]------+------------------------------
pg_walfile_name    | 000000010000000000000052
last_archived_wal  | 000000010000000000000051

You can also use the pgBackRest info command to look at what’s inside the repository:

$ sudo -iu postgres pgbackrest info --stanza=mycluster
...
db (current)
    wal archive min/max (16): 000000010000000000000050/000000010000000000000051

SSH access

Now that replication and WAL archiving are working, and we’ve successfully verified that the standby server can access the shared backup repository, we can prepare the servers to allow backups to be taken from the standby. To achieve this, the pgBackRest process on the standby will need to trigger a local process on the primary server to establish a database connection via Unix sockets. This ensures that pgBackRest can interact with the primary for certain operations, even when the backup is initiated from the standby. For the communication between the servers, pgBackRest can be configured to use passwordless SSH.

The SSH setup is up to you, but usually it is as simple as creating SSH keys and authorize them on the other node. Example:

$ sudo -u postgres ssh-keygen -f /var/lib/pgsql/.ssh/id_rsa -t rsa -b 4096 -N ""

Then, copy the generated public keys to the other node:

# From pg1
[postgres@pg1 ~]$ ssh-copy-id postgres@pg2
[postgres@pg1 ~]$ ssh postgres@pg2 hostname

# From pg2
[postgres@pg2 ~]$ ssh-copy-id postgres@pg1
[postgres@pg2 ~]$ ssh postgres@pg1 hostname

Finally now, we’ll need to adjust the pgBackRest configuration to add a connection to the primary (pg2-path, pg2-host, pg2-host-user) and specify that we want to take a backup from the standby server (backup-standby=y). The configuration on the standby should then look like this:

[global]
repo1-path=/shared/pgbackrest
repo1-retention-full=4
repo1-bundle=y
repo1-block=y
start-fast=y
log-level-console=info
log-level-file=detail
delta=y
process-max=2
compress-type=zst
backup-standby=y

[mycluster]
pg1-path=/var/lib/pgsql/16/data
pg2-path=/var/lib/pgsql/16/data
pg2-host=pg1
pg2-host-user=postgres

As I mentioned above, it is helpful to run the check command on the standby server once we’ve adjusted the configuration before taking a backup:

$ sudo -iu postgres pgbackrest --stanza=mycluster check
INFO: check command begin 2.53.1: ...
INFO: check repo1 (standby)
INFO: switch wal not performed because this is a standby
INFO: check repo1 configuration (primary)
INFO: check repo1 archive for WAL (primary)
INFO: WAL segment 000000010000000000000053 successfully archived to '...' on repo1
INFO: check command end: completed successfully

Backups

Now, take a full backup:

$ sudo -iu postgres pgbackrest backup --stanza=mycluster --type=full
INFO: backup command begin 2.53.1: ...
INFO: execute non-exclusive backup start:
        backup begins after the requested immediate checkpoint completes
INFO: backup start archive = 000000010000000000000055, lsn = 0/55000028
INFO: wait for replay on the standby to reach 0/55000028
INFO: replay on the standby reached 0/55000028
INFO: check archive for prior segment 000000010000000000000054
INFO: execute non-exclusive backup stop and wait for all WAL segments to archive
INFO: backup stop archive = 000000010000000000000055, lsn = 0/55000138
INFO: check archive for segment(s) 000000010000000000000055:000000010000000000000055
INFO: new backup label = 20240920-144928F
2INFO: full backup size = 1.5GB, file total = 1280
INFO: backup command end: completed successfully

wait for replay on the standby to reach 0/55000028: pgBackRest ensures that the standby server has fully caught up with the primary before allowing the backup to proceed. This prevents backing up a lagging standby.
check archive for prior segment 000000010000000000000054: pgBackRest checks if the previous WAL archive has been successfully pushed to the repository by the primary within the archive-timeout period. If this check fails, it could indicate that the standby server lacks access to the shared repository, or that the archiving process on the primary is too slow.

If the archiving process on the primary is too slow, you might consider enabling asynchronous archiving. The pgBackRest user guide highlights several performance tuning settings that can help resolve this issue: archive-async, process-max, and compress-type=zst are the recommended options to improve archiving speed.

Finally, look at the info command to know what’s inside the repository:

$ sudo -iu postgres pgbackrest info --stanza=mycluster
stanza: mycluster
    status: ok
    cipher: none

    db (current)
        wal archive min/max (16): 000000010000000000000050/000000010000000000000055

        full backup: 20240920-144928F
            timestamp start/stop: 2024-09-20 14:49:28+00 / 2024-09-20 14:49:32+00
            wal start/stop: 000000010000000000000055 / 000000010000000000000055
            database size: 1.5GB, database backup size: 1.5GB
            repo1: backup size: 67.9MB

Conclusion

Setting up backups from a standby server is an effective way to reduce the load on the primary server. While pgBackRest still relies on the primary server for certain tasks, using the standby for most of the backup process can greatly improve performance in a replicated environment. However, while the technical setup is relatively straightforward, the more challenging part of this architecture lies in deciding where, when, and how to trigger the backups.

In most cases, you would configure pgBackRest identically on both nodes and use a cron job to schedule the backups. To avoid complications (and manual operations) when switching roles between the primary and standby, the easiest solution is to check the result of pg_is_in_recovery() in the cron job. This way, backups are automatically triggered on the correct node, regardless of which server is currently acting as the standby.

However, this approach is most efficient when you only have a single standby server. As your cluster grows, with multiple standbys and possibly automated failover (using tools like Patroni), it becomes more practical to set up a dedicated repository host (also known as a dedicated backup server). This backup server can then trigger the backups and automatically select the appropriate node.

In-memory disk for PostgreSQL temporary files

2024-05-20T09:30:00+02:00

Recently, while debugging a performance issue of a CREATE INDEX operation, I was reminded that PostgreSQL might produce temporary files when executing a parallel query, including parallel index creation, because each worker process has its own memory and might need to use disk space for sorting or hash tables.

Thanks to Peter Geoghegan answering this pgsql-admin email thread.

So, in order to try to speed up that index creation, I thought it would be beneficial to move those temporary files directly into memory using a tmpfs and wanted to test that theory, writing this blog post :-)

Example

Let’s first enable logging of the temporary files to evaluate the change we’re planning to make:

ALTER SYSTEM SET log_temp_files TO 0;
ALTER SYSTEM SET log_min_duration_statement TO 0;
SELECT pg_reload_conf();

Create a test database using pgbench and an index on the pgbench_accounts table:

$ createdb bench
$ /usr/pgsql-16/bin/pgbench -i -s 100 bench
$ psql bench -c "CREATE INDEX ON pgbench_accounts (aid, filler);"

We can see from the logs the time it took to build the index (~5.9s) with temporary files involved:

LOG:  temporary file: path "base/pgsql_tmp/pgsql_tmp28501.0.fileset/0.0", size 541376512
STATEMENT:  CREATE INDEX ON pgbench_accounts (aid, filler);
LOG:  temporary file: path "base/pgsql_tmp/pgsql_tmp28501.0.fileset/1.0", size 541024256
STATEMENT:  CREATE INDEX ON pgbench_accounts (aid, filler);
LOG:  duration: 5936.468 ms  statement: CREATE INDEX ON pgbench_accounts (aid, filler);

Let’s try to re-create the index with a higher maintenance_work_mem to get rid of the temporary files:

DROP INDEX pgbench_accounts_aid_filler_idx;
SET maintenance_work_mem TO '2GB';
CREATE INDEX ON pgbench_accounts (aid, filler);

But the temporary files are not gone, as we expected given the comment on the pgsql-admin thread mentioned above.

LOG:  temporary file: path "base/pgsql_tmp/pgsql_tmp28501.10.fileset/0.0", size 365936640
STATEMENT:  CREATE INDEX ON pgbench_accounts (aid, filler);
LOG:  temporary file: path "base/pgsql_tmp/pgsql_tmp28501.10.fileset/2.0", size 354754560
STATEMENT:  CREATE INDEX ON pgbench_accounts (aid, filler);
LOG:  temporary file: path "base/pgsql_tmp/pgsql_tmp28501.10.fileset/1.0", size 361439232
STATEMENT:  CREATE INDEX ON pgbench_accounts (aid, filler);
LOG:  duration: 4541.701 ms  statement: CREATE INDEX ON pgbench_accounts (aid, filler);

So, let’s disable parallel query execution to check:

DROP INDEX pgbench_accounts_aid_filler_idx;
SET maintenance_work_mem TO '2GB';
SET max_parallel_workers TO 0;
CREATE INDEX ON pgbench_accounts (aid, filler);

And voilà! The temporary files are gone:

LOG:  duration: 4348.098 ms  statement: CREATE INDEX ON pgbench_accounts (aid, filler);

We got approximately the same creation time ~4.5s vs ~4.3s. But what could we do to use both memory and parallel execution? Moving those temporary files into memory with tmpfs directories!

Configure PostgreSQL to use tmpfs directory

To move temporary files to memory, we’ll need to use the temp_tablespaces setting which requires to create a tablespace. So, we’ll first create that tablespace and then move it to a tmpfs location.

Let’s start by creating a root directory for our tablespace:

sudo mkdir /var/pgsql_tmp

Now, we have to create a tablespace for those PostgreSQL temporary files:

CREATE TABLESPACE tbstmp location '/var/pgsql_tmp';

PostgreSQL will create a sub-directory in /var/pgsql_tmp and we’ll need to make that one permanent if we don’t want to re-create the tablespace after each and every reboot:

$ ls /var/pgsql_tmp/
PG_16_202307071

Finally, to make the tmpfs mount persistent, add it to /etc/fstab:

tmpfs   /var/pgsql_tmp/PG_16_202307071  tmpfs   rw,size=2G,uid=postgres,gid=postgres    0 0

In this example, size=2G configures the tmpfs instance to use up to 2GB of RAM.

After configuring /etc/fstab, reload systemd and mount the tmpfs instance:

sudo systemctl daemon-reload
sudo mount /var/pgsql_tmp/PG_16_202307071

Back to our initial example, let’s now try to set temp_tablespaces and create the index again:

DROP INDEX pgbench_accounts_aid_filler_idx;
SET maintenance_work_mem TO '2GB';
RESET max_parallel_workers;
SET temp_tablespaces TO 'tbstmp';
CREATE INDEX ON pgbench_accounts (aid, filler);

The temporary files are using the in-memory tmpfs directory, which indeed speeds up the index creation (to ~3.9s):

LOG:  temporary file: path "pg_tblspc/16448/PG_16_202307071/pgsql_tmp/pgsql_tmp28501.11.fileset/1.0", size 361865216
STATEMENT:  CREATE INDEX ON pgbench_accounts (aid, filler);
LOG:  temporary file: path "pg_tblspc/16448/PG_16_202307071/pgsql_tmp/pgsql_tmp28501.11.fileset/0.0", size 364134400
STATEMENT:  CREATE INDEX ON pgbench_accounts (aid, filler);
LOG:  temporary file: path "pg_tblspc/16448/PG_16_202307071/pgsql_tmp/pgsql_tmp28501.11.fileset/2.0", size 356122624
STATEMENT:  CREATE INDEX ON pgbench_accounts (aid, filler);
LOG:  duration: 3977.606 ms  statement: CREATE INDEX ON pgbench_accounts (aid, filler);

To make that change permanent for all the temporary files, change the temp_tablespaces setting system-wide:

ALTER SYSTEM SET temp_tablespaces TO 'tbstmp';

Finally, reload the PostgreSQL configuration for the changes to take effect:

postgres=# SELECT pg_reload_conf();
 pg_reload_conf
----------------
 t
(1 row)

postgres=# SELECT * FROM pg_settings WHERE name = 'temp_tablespaces';
-[ RECORD 1 ]---+-------------------------------------------------------------------
name            | temp_tablespaces
setting         | tbstmp
unit            |
category        | Client Connection Defaults / Statement Behavior
short_desc      | Sets the tablespace(s) to use for temporary tables and sort files.
extra_desc      |
context         | user
vartype         | string
source          | session
min_val         |
max_val         |
enumvals        |
boot_val        |
reset_val       | "tbstmp"
sourcefile      |
sourceline      |
pending_restart | f

Conclusion

By following these steps, you can configure a tmpfs in-memory directory for PostgreSQL temporary files, potentially improving performance for certain operations! Obviously, you’ll need to adjust the tmpfs size according to your system’s capacity and requirements…

So, what do you think about this move?

pgBackRest differential vs incremental backup

2023-07-03T10:25:00+02:00

One of the most frequent questions I get is to actually explain the difference between differential and incremental backups in pgBackRest.

As everyone might easily imagine, an incremental backup will only copy the database files (to keep it simple) that have been modified since the last successful backup. If you have a full backup every Sunday, and then an incremental every other day, the backup from Wednesday will be based on the one from Tuesday. That also means that if the backup from Monday or Tuesday is broken/corrupted (for any reason), you might not be able to recover from your Wednesday backup.

Now, what is a differential backup then? It is an incremental backup but it will be based on the last successful full backup. So if you have a full backup every Sunday, and then a differential every other day, the backup from Wednesday will be based on the one from Sunday! It would then doesn’t matter if the other differential backups get broken/corrupted, but since you’ll always compare what has been modified since Sunday, the size of the differential backups will be bigger over time.

Let’s have a concrete example.

Example

As you probably have understood now, incremental or differential changes the backup it refers to.

Let’s set up a database and take some incremental and differential backups:

# Initialization
$ /usr/pgsql-16/bin/pgbench -i -s 65

# Incremental backups
$ pgbackrest --stanza=demo backup --type=full
$ /usr/pgsql-16/bin/pgbench -n -b simple-update -t 100
$ pgbackrest --stanza=demo backup --type=incr
$ /usr/pgsql-16/bin/pgbench -n -b simple-update -t 100
$ pgbackrest --stanza=demo backup --type=incr

# Differential backups
$ pgbackrest --stanza=demo backup --type=full
$ /usr/pgsql-16/bin/pgbench -n -b simple-update -t 100
$ pgbackrest --stanza=demo backup --type=diff
$ /usr/pgsql-16/bin/pgbench -n -b simple-update -t 100
$ pgbackrest --stanza=demo backup --type=diff

Now, look at the repository content using the info command:

$ pgbackrest --stanza=demo info

# Incremental
full backup: 20230702-142534F
incr backup: 20230702-142534F_20230702-142548I
    backup reference list: 20230702-142534F
incr backup: 20230702-142534F_20230702-142601I
    backup reference list: 20230702-142534F, 20230702-142534F_20230702-142548I

# Differential
full backup: 20230702-142626F
diff backup: 20230702-142626F_20230702-142639D
    backup reference list: 20230702-142626F
diff backup: 20230702-142626F_20230702-142652D
    backup reference list: 20230702-142626F

As I mentioned before, the second incremental backup 20230702-142534F_20230702-142601I will contain the files that have been modified since the previous one. To be able to restore it, we’d need to restore all the files that haven’t changed from the initial full backup 20230702-142534F and also all the files modified before the first incremental 20230702-142534F_20230702-142548I that haven’t changed since then. That’s actually the information you get in the backup reference list section.

Let’s have a look at the backup manifest content:

# First incremental
$ cat 20230702-142534F_20230702-142548I/backup.manifest |grep '"reference":"20230702-142534F"' |wc -l
969

# Second incremental
$ cat 20230702-142534F_20230702-142601I/backup.manifest |grep '"reference":"20230702-142534F"' |wc -l
969
$ cat 20230702-142534F_20230702-142601I/backup.manifest |grep '"reference":"20230702-142534F_20230702-142548I"' |wc -l
3

So, in this case, to be able to restore the second incremental backup, we’d need 3 files from the first incremental. If for any reason, one of those 3 files gets corrupted, we might not be able to successfully recover.

And that’s the reason why there are differential backups. As you’ve seen in the backup reference list section, the differential backups only need the files from the full backup.

Conclusion

I hope this short post will now give you a better understanding of what incremental and differential backups mean for pgBackRest.

It is also important to remember that WAL archives are a key part of the backups. They are needed for consistency and let you perform Point-In-Time Recovery. But also, as long as you have all the WAL archives needed, in case your latest backup gets corrupted, you should be able to recover from a previous backup: the recovery would only be slower given it would have more WAL entries to replay.

pgBackRest SFTP support

2023-05-26T12:55:00+02:00

SFTP support has been added in the 2.46 release on 22 May 2022.

In this demo setup, the SFTP host will be called sftp-srv and the PostgreSQL node pg-srv. Both nodes will be running on Rocky Linux 8.

If you’re familiar with Vagrant, here’s a simple Vagrantfile to initiate 3 virtual machines using those names:

# Vagrantfile
Vagrant.configure(2) do |config|
    config.vm.box = 'rockylinux/8'
    config.vm.provider 'libvirt' do |lv|
        lv.cpus = 1
        lv.memory = 1024
    end
    config.vm.synced_folder ".", "/vagrant", disabled: true

    nodes  = 'sftp-srv', 'pg-srv'
    nodes.each do |node|
        config.vm.define node do |conf|
            conf.vm.hostname = node
        end
    end
end

When using Vagrant boxes, it might be needed to enable the SSH password authentication to proceed with SSH key exchange:

$ sudo -i
root# sed -i 's/PasswordAuthentication no/PasswordAuthentication yes/g' /etc/ssh/sshd_config    
root# systemctl restart sshd.service
root# passwd

Installation

On the database node, first configure the PGDG repositories and install PostgreSQL:

$ sudo dnf install -y https://download.postgresql.org/pub/repos/yum/reporpms/EL-8-x86_64/pgdg-redhat-repo-latest.noarch.rpm
$ sudo dnf -qy module disable postgresql
$ sudo dnf install -y postgresql15-server postgresql15-contrib

Create a basic PostgreSQL instance:

$ sudo PGSETUP_INITDB_OPTIONS="--data-checksums" /usr/pgsql-15/bin/postgresql-15-setup initdb
$ sudo systemctl enable postgresql-15
$ sudo systemctl start postgresql-15

Install pgBackRest and check its version:

$ sudo dnf install -y epel-release
$ sudo dnf install -y pgbackrest
$ pgbackrest version
pgBackRest 2.46

Create a dedicated user and location on the SFTP server

The pgbackrest user is created to own the backups and archives repository on the SFTP server:

$ sudo groupadd pgbackrest
$ sudo adduser -g pgbackrest -n pgbackrest
$ sudo mkdir -m 750 -p /backup_space
$ sudo chown pgbackrest: /backup_space
$ sudo -u pgbackrest mkdir -m 750 -p /home/pgbackrest/.ssh

Setup SSH communication between the PostgreSQL node and SFTP server

The idea is to generate a dedicated SSH key pair for the SFTP connection and use a secured passphrase with it.

First of all, generate the SSH key pair on the PostgreSQL node:

$ sudo -u postgres ssh-keygen -f /var/lib/pgsql/.ssh/id_rsa_sftp -t rsa -b 4096 -N "BeSureToGenerateAndUseASecurePassphrase"

Then, copy the generated public keys to the SFTP server to authorize it:

# From sftp-srv
$ ssh root@pg-srv cat /var/lib/pgsql/.ssh/id_rsa_sftp.pub| \
    sudo -u pgbackrest tee -a /home/pgbackrest/.ssh/authorized_keys

The connection from the PostgreSQL node should now prompt for the passphrase:

$ sudo -u postgres ssh pgbackrest@sftp-srv -i /var/lib/pgsql/.ssh/id_rsa_sftp

Configuration

We’ll now prepare the configuration for our stanza called demo.

Update the pg-srv pgBackRest configuration file:

# /etc/pgbackrest.conf
[global]
repo1-bundle=y
repo1-type=sftp
repo1-path=/backup_space
repo1-sftp-host=sftp-srv
repo1-sftp-host-key-hash-type=sha1
repo1-sftp-host-user=pgbackrest
repo1-sftp-private-key-file=/var/lib/pgsql/.ssh/id_rsa_sftp
repo1-sftp-private-key-passphrase=BeSureToGenerateAndUseASecurePassphrase

repo1-retention-full=2
start-fast=y
log-level-console=info
log-level-file=debug
delta=y
process-max=2

[demo]
pg1-path=/var/lib/pgsql/15/data

Configure archiving in the postgresql.conf file:

listen_addresses = '*'
archive_mode = on
archive_command = 'pgbackrest --stanza=demo archive-push %p'

The PostgreSQL instance must be restarted after making these changes.

$ sudo systemctl restart postgresql-15.service

When using SFTP, pgBackRest commands are run like with other repository types (NFS, S3,…). Let’s then now create the stanza and check the configuration on the pg-srv:

$ sudo -iu postgres pgbackrest --stanza=demo stanza-create
...
P00   INFO: stanza-create command end: completed successfully

$ sudo -iu postgres pgbackrest --stanza=demo check
...
P00   INFO: check command end: completed successfully

We can now take our first backup from pg-srv:

$ sudo -iu postgres pgbackrest --stanza=demo --type=full backup
P00   INFO: backup command begin 2.46: ...
P00   INFO: execute non-exclusive backup start: backup begins after the requested immediate checkpoint completes
P00   INFO: backup start archive = 000000010000000000000003, lsn = 0/3000028
P00   INFO: check archive for prior segment 000000010000000000000002
P00   INFO: execute non-exclusive backup stop and wait for all WAL segments to archive
P00   INFO: backup stop archive = 000000010000000000000003, lsn = 0/3000138
P00   INFO: check archive for segment(s) 000000010000000000000003:000000010000000000000003
P00   INFO: new backup label = 20230525-140532F
P00   INFO: full backup size = 22MB, file total = 966
P00   INFO: backup command end: completed successfully

Finally, look at the repository content using the info command:

$ sudo -iu postgres pgbackrest --stanza=demo info
stanza: demo
    status: ok
    cipher: none

    db (current)
        wal archive min/max (15): 000000010000000000000001/000000010000000000000003

        full backup: 20230525-140532F
            timestamp start/stop: 2023-05-25 14:05:32 / 2023-05-25 14:05:44
            wal start/stop: 000000010000000000000003 / 000000010000000000000003
            database size: 22MB, database backup size: 22MB
            repo1: backup set size: 2.9MB, backup size: 2.9MB

Conclusion

The SFTP repository type is pretty easy to setup but as mentioned in the official documentation, the SFTP file transfer is relatively slow. Increasing process-max to parallelize file transfer and using file bundling will help but it would probably be better to use the other supported repository types if you can.

Edit: pgBackRest 2.47 brought a significant performance improvement of the SFTP storage driver. So it becomes a good option if you really need to use it.

pgBackRest 2.41 released

2022-09-20T18:00:00+02:00

With pgBackRest 2.41 just released, a new feature called backup annotations is now available. Let’s see in this blog post what this is about.

Backup annotations

This new feature adds an --annotation option to the backup command. We can now attach informative key/value pairs to the backup and the option may be used multiple times to attach multiple annotations.

Example:

$ pgbackrest backup --stanza=X --type=full \
  --annotation=comment="this is our initial backup" \
  --annotation=some-other-key="any text you'd like"

Internally, the initial annotation is stored in the shared backup information:

$ pgbackrest repo-get backup/X/backup.info |grep annotation
..."backup-annotation":{"comment":"this is our initial backup","some-other-key":"any text you'd like"}...

That allows to show those annotations in the info command.

First, in the text output, for a specific backup --set:

$ pgbackrest info --stanza=X --set=20220920-140720F
...
full backup: 20220920-140720F
    timestamp start/stop: 2022-09-20 14:07:20 / 2022-09-20 14:07:24
    wal start/stop: 00000002000000000000002F / 00000002000000000000002F
    lsn start/stop: 0/2F000028 / 0/2F000100
    database size: 185.3MB, database backup size: 185.3MB
    repo1: backup set size: 13.7MB, backup size: 13.7MB
    database list: bench (16394), postgres (13631)
    annotation(s)
        comment: this is our initial backup
        some-other-key: any text you'd like

$ pgbackrest info --stanza=X --set=20220920-140740F
...
full backup: 20220920-140740F
    timestamp start/stop: 2022-09-20 14:07:40 / 2022-09-20 14:07:46
    wal start/stop: 000000020000000000000031 / 000000020000000000000031
    lsn start/stop: 0/31000028 / 0/31000138
    database size: 185.3MB, database backup size: 185.3MB
    repo1: backup set size: 13.7MB, backup size: 13.7MB
    database list: bench (16394), postgres (13631)
    annotation(s)
        comment: just another backup

Then also in the global json output:

$ pgbackrest info --stanza=X --output=json
...{"annotation":{"comment":"this is our initial backup","some-other-key":"any text you'd like"}...
...{"annotation":{"comment":"just another backup"}...

pgBackRest 2.41 also adds support for the --set option for the json output of the info command!

$ pgbackrest info --stanza=X --set=20220920-140720F --output=json
...{"annotation":{"comment":"this is our initial backup","some-other-key":"any text you'd like"}...

$ pgbackrest info --stanza=X --set=20220920-140740F --output=json
...{"annotation":{"comment":"just another backup"}...

Finally, there’s a new annotate command to add, modify and remove annotations.

Example:

$ pgbackrest annotate --stanza=X --set=20220920-140740F \
  --annotation=comment="another brick in the wall"
$ pgbackrest info --stanza=X --set=20220920-140740F
...
    annotation(s)
        comment: another brick in the wall

The keys may also be modified or removed:

$ pgbackrest annotate --stanza=X --set=20220920-140740F \
  --annotation=comment= --annotation=new-comment="just a backup"
$ pgbackrest info --stanza=X --set=20220920-140740F
...
annotation(s)
    new-comment: just a backup

Conclusion

It is now your turn to update your pgBackRest version and try this new feature :-)

Patroni and pgBackRest combined

2022-07-12T09:00:00+02:00

I see more and more questions about pgBackRest in a Patroni cluster on community channels. So, following yesterday’s post about Patroni on pure Raft, we’ll see in this post an example about how to setup pgBackRest in such cases.

To prepare this post, I followed most of the instructions given by Federico Campoli at PGDAY RUSSIA 2021 about Protecting your data with Patroni and pgbackrest. The video recording might even be found here.

pgBackRest repository location

The first decision you’ll have to take is to know where to store your pgBackRest repository. It can be any supported repo-type with or without a dedicated backup server (aka. repo-host). The most important thing to remember is that the repository should be equally reachable from all your PostgreSQL/Patroni nodes.

Based on that decision, you’ll have to think about how to schedule the backup command. With a repo-host that’s easy, because pgBackRest will be able to determine which PostgreSQL node is the primary (or a standby if you want to take the backup from a standby node). If you’re using a directly attached storage (i.e. NFS mount point or S3 bucket), the easiest solution might be to test the return of pg_is_in_recovery() in the cron job.

For the purpose of this demo setup, I’ll use a MinIO docker container with self-signed certificates and a bucket named pgbackrest already created.

Installation

pgBackRest installation and configuration

Install pgBackRest on all the PostgreSQL nodes:

$ sudo dnf install -y epel-release
$ sudo dnf install -y pgbackrest
$ pgbackrest version
pgBackRest 2.39

Then, configure /etc/pgbackrest.conf:

$ cat <<EOF | sudo tee /etc/pgbackrest.conf
[global]
repo1-type=s3
repo1-storage-verify-tls=n
repo1-s3-endpoint=192.168.121.1
repo1-s3-uri-style=path
repo1-s3-bucket=pgbackrest
repo1-s3-key=minioadmin
repo1-s3-key-secret=minioadmin
repo1-s3-region=eu-west-3

repo1-path=/repo1
repo1-retention-full=2
start-fast=y
log-level-console=info
log-level-file=debug
delta=y
process-max=2

[demo-cluster-1]
pg1-path=/var/lib/pgsql/14/data
pg1-port=5432
pg1-user=postgres
EOF

In the previous post, we defined the cluster name to use in the scope configuration of Patroni. We’ll reuse the same name for the stanza name.

Let’s initialize the stanza:

$ sudo -iu postgres pgbackrest --stanza=demo-cluster-1 stanza-create
INFO: stanza-create command begin 2.39: ...
INFO: stanza-create for stanza 'demo-cluster-1' on repo1
INFO: stanza-create command end: completed successfully (684ms)

Configure Patroni to use pgBackRest

Let’s adjust the archive_command in Patroni configuration:

$ sudo -iu postgres patronictl -c /etc/patroni.yml edit-config
## adjust the following lines
postgresql:
  parameters:
    archive_command: pgbackrest --stanza=demo-cluster-1 archive-push "%p"
    archive_mode: "on"

$ sudo -iu postgres patronictl -c /etc/patroni.yml reload demo-cluster-1

Check that the archiving system is working:

$ sudo -iu postgres pgbackrest --stanza=demo-cluster-1 check
INFO: check command begin 2.39: ...
INFO: check repo1 configuration (primary)
INFO: check repo1 archive for WAL (primary)
INFO: WAL segment 000000010000000000000004 successfully archived to '...' on repo1
INFO: check command end: completed successfully (1083ms)

Take a first backup

Let’s not take our first full backup:

$ sudo -iu postgres pgbackrest --stanza=demo-cluster-1 backup --type=full
P00   INFO: backup command begin 2.39: ...
P00   INFO: execute non-exclusive pg_start_backup():
  backup begins after the requested immediate checkpoint completes
P00   INFO: backup start archive = 000000010000000000000006, lsn = 0/6000028
P00   INFO: check archive for prior segment 000000010000000000000005
P00   INFO: execute non-exclusive pg_stop_backup() and wait for all WAL segments to archive
P00   INFO: backup stop archive = 000000010000000000000006, lsn = 0/6000100
P00   INFO: check archive for segment(s) 000000010000000000000006:000000010000000000000006
P00   INFO: new backup label = 20220711-075256F
P00   INFO: full backup size = 25.2MB, file total = 957
P00   INFO: backup command end: completed successfully

All Patroni nodes should now be able to see the content of the pgBackRest repository:

$ pgbackrest info
stanza: demo-cluster-1
    status: ok
    cipher: none

    db (current)
        wal archive min/max (14): 000000010000000000000006/000000010000000000000006

        full backup: 20220711-075256F
            timestamp start/stop: 2022-07-11 07:52:56 / 2022-07-11 07:53:02
            wal start/stop: 000000010000000000000006 / 000000010000000000000006
            database size: 25.2MB, database backup size: 25.2MB
            repo1: backup set size: 3.2MB, backup size: 3.2MB

The “restore” part

Now that the archiving system is working, we can configure the restore_command. Possibly, we could disable replication slots for Patroni too since we now have the archives as safety net for the replication.

Let’s edit the bootstrap configuration part:

$ sudo -iu postgres patronictl -c /etc/patroni.yml edit-config
## adjust the following lines
loop_wait: 10
maximum_lag_on_failover: 1048576
postgresql:
  parameters:
    archive_command: pgbackrest --stanza=demo-cluster-1 archive-push "%p"
    archive_mode: 'on'
  recovery_conf:
    recovery_target_timeline: latest
    restore_command: pgbackrest --stanza=demo-cluster-1 archive-get %f "%p"
  use_pg_rewind: false
  use_slots: true
retry_timeout: 10
ttl: 30

$ sudo -iu postgres patronictl -c /etc/patroni.yml reload demo-cluster-1

To use pgBackRest for creating (or re-initializing) replicas, we need to adjust the Patroni configuration file.

On all your nodes, in /etc/patroni.yml, find the following part:

postgresql:
  listen: "0.0.0.0:5432"
  connect_address: "$MY_IP:5432"
  data_dir: /var/lib/pgsql/14/data
  bin_dir: /usr/pgsql-14/bin
  pgpass: /tmp/pgpass0
  authentication:
    replication:
      username: replicator
      password: confidential
    superuser:
      username: postgres
      password: my-super-password
    rewind:
      username: rewind_user
      password: rewind_password
  parameters:
    unix_socket_directories: '/var/run/postgresql,/tmp'

and add:

  create_replica_methods:
    - pgbackrest
    - basebackup
  pgbackrest:
    command: pgbackrest --stanza=demo-cluster-1 restore --type=none
    keep_data: True
    no_params: True
  basebackup:
    checkpoint: 'fast'

Don’t forget to reload the configuration:

$ sudo systemctl reload patroni

Create a replica using pgBackRest

Here is our current situation:

$ sudo -iu postgres patronictl -c /etc/patroni.yml list
+--------+-----------------+---------+---------+----+-----------+
| Member | Host            | Role    | State   | TL | Lag in MB |
+ Cluster: demo-cluster-1 (7119014497759128647) ----+-----------+
| srv1   | 192.168.121.2   | Replica | running |  1 |         0 |
| srv2   | 192.168.121.254 | Leader  | running |  1 |           |
| srv3   | 192.168.121.89  | Replica | running |  1 |         0 |
+--------+-----------------+---------+---------+----+-----------+

We already have 2 running replicas. So we’ll need to stop Patroni on one node and remove its data directory to trigger a new replica creation:

$ sudo systemctl stop patroni
$ sudo rm -rf /var/lib/pgsql/14/data
$ sudo systemctl start patroni
$ sudo journalctl -u patroni.service -f
...
INFO: trying to bootstrap from leader 'srv2'
...
INFO: replica has been created using pgbackrest
INFO: bootstrapped from leader 'srv2'
...
INFO: no action. I am (srv3), a secondary, and following a leader (srv2)

As we can see from the logs above, the replica has successfully been created using pgBackRest:

$ sudo -iu postgres patronictl -c /etc/patroni.yml list
+--------+-----------------+---------+---------+----+-----------+
| Member | Host            | Role    | State   | TL | Lag in MB |
+ Cluster: demo-cluster-1 (7119014497759128647) ----+-----------+
| srv1   | 192.168.121.2   | Replica | running |  1 |         0 |
| srv2   | 192.168.121.254 | Leader  | running |  1 |           |
| srv3   | 192.168.121.89  | Replica | running |  1 |         0 |
+--------+-----------------+---------+---------+----+-----------+

Now, let’s insert some data on srv2 and simulate an incident by suspending the VM network interface for a few seconds.

A failover will happen and the old primary will be completely out-of-sync and the replication will be lagging when adding new data on the primary:

$ sudo -iu postgres patronictl -c /etc/patroni.yml list
+--------+-----------------+---------+---------+----+-----------+
| Member | Host            | Role    | State   | TL | Lag in MB |
+ Cluster: demo-cluster-1 (7119014497759128647) ----+-----------+
| srv1   | 192.168.121.2   | Leader  | running |  2 |           |
| srv2   | 192.168.121.254 | Replica | running |  1 |       188 |
| srv3   | 192.168.121.89  | Replica | running |  2 |         0 |
+--------+-----------------+---------+---------+----+-----------+

Since we didn’t configure pg_rewind, we’ll need to re-initialize the failing node manually:

$ sudo -iu postgres patronictl -c /etc/patroni.yml reinit demo-cluster-1 srv2
+--------+-----------------+---------+---------+----+-----------+
| Member | Host            | Role    | State   | TL | Lag in MB |
+ Cluster: demo-cluster-1 (7119014497759128647) ----+-----------+
| srv1   | 192.168.121.2   | Leader  | running |  2 |           |
| srv2   | 192.168.121.254 | Replica | running |  1 |       188 |
| srv3   | 192.168.121.89  | Replica | running |  2 |         0 |
+--------+-----------------+---------+---------+----+-----------+
Are you sure you want to reinitialize members srv2? [y/N]: y
Success: reinitialize for member srv2

$ sudo -iu postgres patronictl -c /etc/patroni.yml list
+--------+-----------------+---------+---------+----+-----------+
| Member | Host            | Role    | State   | TL | Lag in MB |
+ Cluster: demo-cluster-1 (7119014497759128647) ----+-----------+
| srv1   | 192.168.121.2   | Leader  | running |  2 |           |
| srv2   | 192.168.121.254 | Replica | running |  2 |         0 |
| srv3   | 192.168.121.89  | Replica | running |  2 |         0 |
+--------+-----------------+---------+---------+----+-----------+

The following trace shows that pgBackRest has successfully been used to re-initialize the old primary:

INFO: replica has been created using pgbackrest
INFO: bootstrapped from leader 'srv1'
...
INFO: Lock owner: srv1; I am srv2
INFO: establishing a new patroni connection to the postgres cluster
INFO: no action. I am (srv2), a secondary, and following a leader (srv1)

Conclusion

It is very easy and convenient to configure Patroni to use pgBackRest. Obviously, having backups is a good thing but being able to use those backups as source for the replica creation or re-initialization is even better.

As usual, the hardest part is to clearly define where to store the pgBackRest repository.