On Mon, 16 Mar 2026 at 13:21, Alvaro Herrera <[email protected]> wrote: > > On 2026-Mar-16, Antonin Houska wrote: > > > One more problem related to the replication slot is that, due to the call of > > CheckSlotPermissions() in setup_logical_decoding(), REPLICATION privilege is > > required for REPACK (CONCURRENTLY) to run. That's not too user-friendly. > > > > I think the reason to require the REPLICATION privilege is that, in generic > > case, the output plugin can access data of any table in the database. > > However > > REPACK uses one particular plugin and that plugin only decodes changes of > > one > > particular table. Thus I think we don't really need to call > > CheckSlotPermissions(). Do I seem to miss something? > > Yeah, I don't think it makes sense to require REPLICATION privilege to > run REPACK.
I don't think it makes sense to allow just any table owner to modify the effective_wal_level GUC; which is what the effect would be of removing the REPLICATION requirement from roles that want to REPACK CONCURRENTLY -- and in doing so create logical slots, which increase effective_wal_level to logical. Creating a replication slot requires REPLICATION privilege, because it consumes a (possibly very) limited server resource that can't be increased without restart and because it impacts other backends' WAL performance through effective_wal_level. Allowing users to consume said resource without first having the appropriate permissions makes this flag practically meaningless. Note that most of my argument hinges on the impact on other, unrelated databases/tables/sessions. Replication slots have a hard cap defined at startup, and effective_wal_level increases the WAL generated by practically all backends. If replication slot counts were SIGHUP, and RelationIsLogicallyLogged() returned true only in databases with LR slots, and only for the tables actually present in publications, I'd consider this much less problematic. However, we don't live in that world, so I am opposed to allowing table owners without REPLICATION to take any/all replication slots. Matthias van de Meent Databricks (https://www.databricks.com)
