NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commitb87037b

committed

Fix contrib/seg to be more wary of long input numbers.

seg stores the number of significant digits in an input numberin a "char" field. If char is signed, and the input is more than127 digits long, the count can read out as negative causingseg_out() to print garbage (or, if you're really unlucky,even crash).To fix, clamp the digit count to be not more than FLT_DIG.(In theory this loses some information about what the originalinput was, but it doesn't seem like useful information; it wouldnot survive dump/restore in any case.)Also, in case there are stored values of the seg type containingbad data, add a clamp in seg_out's restore() subroutine.Per bug #17725 from Robins Tharakan. It's been like thisforever, so back-patch to all supported branches.Discussion:https://postgr.es/m/17725-0a09313b67fbe86e@postgresql.org

1 parentae98deb commitb87037bCopy full SHA for b87037b

File tree

4 files changed

+33

-7

lines changed

contrib/seg
- expected
  - seg.out
- seg.c
- segparse.y
- sql
  - seg.sql

4 files changed

+33

-7

lines changed

`‎contrib/seg/expected/seg.out`

Lines changed: 7 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -256,6 +256,13 @@ SELECT '12.34567890123456'::seg AS seg;`
`256`	`256`	`12.3457`
`257`	`257`	`(1 row)`
`258`	`258`
	`259`	`+-- Same, with a very long input`
	`260`	`+SELECT '12.3456789012345600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000'::seg AS seg;`
	`261`	`+ seg`
	`262`	`+---------`
	`263`	`+ 12.3457`
	`264`	`+(1 row)`
	`265`	`+`
`259`	`266`	`-- Numbers with certainty indicators`
`260`	`267`	`SELECT '~6.5'::seg AS seg;`
`261`	`268`	`seg`

`‎contrib/seg/seg.c`

Lines changed: 6 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -927,9 +927,13 @@ restore(char *result, float val, int n)`
`927`	`927`
`928`	`928`	`/*`
`929`	`929`	`* Put a cap on the number of significant digits to avoid garbage in the`
`930`		`- * output and ensure we don't overrun the result buffer.`
	`930`	`+ * output and ensure we don't overrun the result buffer. (n should not be`
	`931`	`+ * negative, but check to protect ourselves against corrupted data.)`
`931`	`932`	`*/`
`932`		`-n=Min(n,FLT_DIG);`
	`933`	`+if (n <=0)`
	`934`	`+n=FLT_DIG;`
	`935`	`+else`
	`936`	`+n=Min(n,FLT_DIG);`
`933`	`937`
`934`	`938`	`/* remember the sign */`
`935`	`939`	`sign= (val<0 ?1 :0);`

`‎contrib/seg/segparse.y`

Lines changed: 17 additions & 5 deletions

Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,7 @@`
`3`	`3`
`4`	`4`	`#include"postgres.h"`
`5`	`5`
	`6`	`+#include<float.h>`
`6`	`7`	`#include<math.h>`
`7`	`8`
`8`	`9`	`#include"fmgr.h"`
`@@ -23,6 +24,8 @@`
`23`	`24`
`24`	`25`	`staticfloatseg_atof(constchar *value);`
`25`	`26`
	`27`	`+staticintsig_digits(constchar *value);`
	`28`	`+`
`26`	`29`	`staticchar strbuf[25] = {`
`27`	`30`	`'0','0','0','0','0',`
`28`	`31`	`'0','0','0','0','0',`
`@@ -65,9 +68,9 @@ range: boundary PLUMIN deviation`
`65`	`68`	`result->lower =$1.val -$3.val;`
`66`	`69`	`result->upper =$1.val +$3.val;`
`67`	`70`	`sprintf(strbuf,"%g", result->lower);`
`68`		`-result->l_sigd = Max(Min(6, significant_digits(strbuf)), Max($1.sigd,$3.sigd));`
	`71`	`+result->l_sigd = Max(sig_digits(strbuf), Max($1.sigd,$3.sigd));`
`69`	`72`	`sprintf(strbuf,"%g", result->upper);`
`70`		`-result->u_sigd = Max(Min(6, significant_digits(strbuf)), Max($1.sigd,$3.sigd));`
	`73`	`+result->u_sigd = Max(sig_digits(strbuf), Max($1.sigd,$3.sigd));`
`71`	`74`	`result->l_ext ='\0';`
`72`	`75`	`result->u_ext ='\0';`
`73`	`76`	`}`
`@@ -124,7 +127,7 @@ boundary: SEGFLOAT`
`124`	`127`	`floatval = seg_atof($1);`
`125`	`128`
`126`	`129`	`$$.ext ='\0';`
`127`		`-$$.sigd =significant_digits($1);`
	`130`	`+$$.sigd =sig_digits($1);`
`128`	`131`	`$$.val = val;`
`129`	`132`	`}`
`130`	`133`	`\|EXTENSIONSEGFLOAT`
`@@ -133,7 +136,7 @@ boundary: SEGFLOAT`
`133`	`136`	`floatval = seg_atof($2);`
`134`	`137`
`135`	`138`	`$$.ext =$1[0];`
`136`		`-$$.sigd =significant_digits($2);`
	`139`	`+$$.sigd =sig_digits($2);`
`137`	`140`	`$$.val = val;`
`138`	`141`	`}`
`139`	`142`	`;`
`@@ -144,7 +147,7 @@ deviation: SEGFLOAT`
`144`	`147`	`floatval = seg_atof($1);`
`145`	`148`
`146`	`149`	`$$.ext ='\0';`
`147`		`-$$.sigd =significant_digits($1);`
	`150`	`+$$.sigd =sig_digits($1);`
`148`	`151`	`$$.val = val;`
`149`	`152`	`}`
`150`	`153`	`;`
`@@ -161,5 +164,14 @@ seg_atof(const char *value)`
`161`	`164`	`returnDatumGetFloat4(datum);`
`162`	`165`	`}`
`163`	`166`
	`167`	`+staticint`
	`168`	`+sig_digits(constchar *value)`
	`169`	`+{`
	`170`	`+intn =significant_digits(value);`
	`171`	`+`
	`172`	`+/* Clamp, to ensure value will fit in sigd fields*/`
	`173`	`+returnMin(n, FLT_DIG);`
	`174`	`+}`
	`175`	`+`
`164`	`176`
`165`	`177`	`#include"segscan.c"`

`‎contrib/seg/sql/seg.sql`

Lines changed: 3 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -60,6 +60,9 @@ SELECT '3.400e5'::seg AS seg;`
`60`	`60`	`-- Digits truncated`
`61`	`61`	`SELECT'12.34567890123456'::segAS seg;`
`62`	`62`
	`63`	`+-- Same, with a very long input`
	`64`	`+SELECT'12.3456789012345600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000'::segAS seg;`
	`65`	`+`
`63`	`66`	`-- Numbers with certainty indicators`
`64`	`67`	`SELECT'~6.5'::segAS seg;`
`65`	`68`	`SELECT'<6.5'::segAS seg;`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitb87037b

File tree

4 files changed

4 files changed

`‎contrib/seg/expected/seg.out`

`‎contrib/seg/seg.c`

`‎contrib/seg/segparse.y`

`‎contrib/seg/sql/seg.sql`

0 commit comments