NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commitc846f7c

committed

Fix several datatype input functions that were allowing unused bytes in their

results to contain uninitialized, unpredictable values. While this was okayas far as the datatypes themselves were concerned, it's a problem for theparser because occurrences of the "same" literal might not be recognized asequal by datumIsEqual (and hence not by equal()). It seems sufficient to fixthis in the input functions since the only critical use of equal() is in theparser's comparisons of ORDER BY and DISTINCT expressions.Per a trouble report from Marc Cousin.Patch all the way back. Interestingly, array_in did not have the bug before8.2, which may explain why the issue went unnoticed for so long.

1 parent00b1827 commitc846f7cCopy full SHA for c846f7c

File tree

4 files changed

+15

-16

lines changed

contrib/ltree
- ltree_io.c
src/backend/utils/adt

4 files changed

+15

-16

lines changed

`‎contrib/ltree/ltree_io.c`

Lines changed: 6 additions & 9 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`/*`
`2`	`2`	`* in/out function for ltree and lquery`
`3`	`3`	`* Teodor Sigaev <teodor@stack.net>`
`4`		`- * $PostgreSQL: pgsql/contrib/ltree/ltree_io.c,v 1.14 2007/02/28 22:44:38 tgl Exp $`
	`4`	`+ * $PostgreSQL: pgsql/contrib/ltree/ltree_io.c,v 1.15 2008/04/11 22:52:05 tgl Exp $`
`5`	`5`	`*/`
`6`	`6`
`7`	`7`	`#include"ltree.h"`
`@@ -118,7 +118,7 @@ ltree_in(PG_FUNCTION_ARGS)`
`118`	`118`	`errmsg("syntax error"),`
`119`	`119`	`errdetail("Unexpected end of line.")));`
`120`	`120`
`121`		`-result= (ltree*)palloc(LTREE_HDRSIZE+totallen);`
	`121`	`+result= (ltree*)palloc0(LTREE_HDRSIZE+totallen);`
`122`	`122`	`SET_VARSIZE(result,LTREE_HDRSIZE+totallen);`
`123`	`123`	`result->numlevel=lptr-list;`
`124`	`124`	`curlevel=LTREE_FIRST(result);`
`@@ -208,25 +208,22 @@ lquery_in(PG_FUNCTION_ARGS)`
`208`	`208`	`}`
`209`	`209`
`210`	`210`	`num++;`
`211`		`-curqlevel=tmpql= (lquery_level)palloc(ITEMSIZEnum);`
`212`		`-memset((void)tmpql,0,ITEMSIZEnum);`
	`211`	`+curqlevel=tmpql= (lquery_level)palloc0(ITEMSIZEnum);`
`213`	`212`	`ptr=buf;`
`214`	`213`	`while (*ptr)`
`215`	`214`	`{`
`216`	`215`	`if (state==LQPRS_WAITLEVEL)`
`217`	`216`	`{`
`218`	`217`	`if (ISALNUM(*ptr))`
`219`	`218`	`{`
`220`		`-GETVAR(curqlevel)=lptr= (nodeitem)palloc(sizeof(nodeitem) (numOR+1));`
`221`		`-memset((void)GETVAR(curqlevel),0,sizeof(nodeitem) (numOR+1));`
	`219`	`+GETVAR(curqlevel)=lptr= (nodeitem)palloc0(sizeof(nodeitem) (numOR+1));`
`222`	`220`	`lptr->start=ptr;`
`223`	`221`	`state=LQPRS_WAITDELIM;`
`224`	`222`	`curqlevel->numvar=1;`
`225`	`223`	`}`
`226`	`224`	`elseif (*ptr=='!')`
`227`	`225`	`{`
`228`		`-GETVAR(curqlevel)=lptr= (nodeitem)palloc(sizeof(nodeitem) (numOR+1));`
`229`		`-memset((void)GETVAR(curqlevel),0,sizeof(nodeitem) (numOR+1));`
	`226`	`+GETVAR(curqlevel)=lptr= (nodeitem)palloc0(sizeof(nodeitem) (numOR+1));`
`230`	`227`	`lptr->start=ptr+1;`
`231`	`228`	`state=LQPRS_WAITDELIM;`
`232`	`229`	`curqlevel->numvar=1;`
`@@ -448,7 +445,7 @@ lquery_in(PG_FUNCTION_ARGS)`
`448`	`445`	`curqlevel=NEXTLEV(curqlevel);`
`449`	`446`	`}`
`450`	`447`
`451`		`-result= (lquery*)palloc(totallen);`
	`448`	`+result= (lquery*)palloc0(totallen);`
`452`	`449`	`SET_VARSIZE(result,totallen);`
`453`	`450`	`result->numlevel=num;`
`454`	`451`	`result->firstgood=0;`

`‎src/backend/utils/adt/arrayfuncs.c`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@`
`8`	`8`	`*`
`9`	`9`	`*`
`10`	`10`	`* IDENTIFICATION`
`11`		`- * $PostgreSQL: pgsql/src/backend/utils/adt/arrayfuncs.c,v 1.142 2008/03/25 22:42:43 tgl Exp $`
	`11`	`+ * $PostgreSQL: pgsql/src/backend/utils/adt/arrayfuncs.c,v 1.143 2008/04/11 22:52:05 tgl Exp $`
`12`	`12`	`*`
`13`	`13`	`*-------------------------------------------------------------------------`
`14`	`14`	`*/`
`@@ -319,7 +319,7 @@ array_in(PG_FUNCTION_ARGS)`
`319`	`319`	`dataoffset=0;/* marker for no null bitmap */`
`320`	`320`	`nbytes+=ARR_OVERHEAD_NONULLS(ndim);`
`321`	`321`	`}`
`322`		`-retval= (ArrayType*)palloc(nbytes);`
	`322`	`+retval= (ArrayType*)palloc0(nbytes);`
`323`	`323`	`SET_VARSIZE(retval,nbytes);`
`324`	`324`	`retval->ndim=ndim;`
`325`	`325`	`retval->dataoffset=dataoffset;`

`‎src/backend/utils/adt/geo_ops.c`

Lines changed: 3 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@`
`8`	`8`	`*`
`9`	`9`	`*`
`10`	`10`	`* IDENTIFICATION`
`11`		`- * $PostgreSQL: pgsql/src/backend/utils/adt/geo_ops.c,v 1.99 2008/01/01 19:45:52 momjian Exp $`
	`11`	`+ * $PostgreSQL: pgsql/src/backend/utils/adt/geo_ops.c,v 1.100 2008/04/11 22:52:05 tgl Exp $`
`12`	`12`	`*`
`13`	`13`	`*-------------------------------------------------------------------------`
`14`	`14`	`*/`
`@@ -1425,6 +1425,8 @@ path_in(PG_FUNCTION_ARGS)`
`1425`	`1425`	`errmsg("invalid input syntax for type path: \"%s\"",str)));`
`1426`	`1426`
`1427`	`1427`	`path->closed= (!isopen);`
	`1428`	`+/* prevent instability in unused pad bytes */`
	`1429`	`+path->dummy=0;`
`1428`	`1430`
`1429`	`1431`	`PG_RETURN_PATH_P(path);`
`1430`	`1432`	`}`

`‎src/backend/utils/adt/tsquery.c`

Lines changed: 4 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,7 @@`
`7`	`7`	`*`
`8`	`8`	`*`
`9`	`9`	`* IDENTIFICATION`
`10`		`- * $PostgreSQL: pgsql/src/backend/utils/adt/tsquery.c,v 1.16 2008/03/25 22:42:44 tgl Exp $`
	`10`	`+ * $PostgreSQL: pgsql/src/backend/utils/adt/tsquery.c,v 1.17 2008/04/11 22:52:05 tgl Exp $`
`11`	`11`	`*`
`12`	`12`	`*-------------------------------------------------------------------------`
`13`	`13`	`*/`
`@@ -223,7 +223,7 @@ pushOperator(TSQueryParserState state, int8 oper)`
`223`	`223`
`224`	`224`	`Assert(oper==OP_NOT\|\|oper==OP_AND\|\|oper==OP_OR);`
`225`	`225`
`226`		`-tmp= (QueryOperator*)palloc(sizeof(QueryOperator));`
	`226`	`+tmp= (QueryOperator*)palloc0(sizeof(QueryOperator));`
`227`	`227`	`tmp->type=QI_OPR;`
`228`	`228`	`tmp->oper=oper;`
`229`	`229`	`/* left is filled in later with findoprnd */`
`@@ -247,7 +247,7 @@ pushValue_internal(TSQueryParserState state, pg_crc32 valcrc, int distance, int`
`247`	`247`	`errmsg("operand is too long in tsquery: \"%s\"",`
`248`	`248`	`state->buffer)));`
`249`	`249`
`250`		`-tmp= (QueryOperand*)palloc(sizeof(QueryOperand));`
	`250`	`+tmp= (QueryOperand*)palloc0(sizeof(QueryOperand));`
`251`	`251`	`tmp->type=QI_VAL;`
`252`	`252`	`tmp->weight=weight;`
`253`	`253`	`tmp->valcrc= (int32)valcrc;`
`@@ -304,7 +304,7 @@ pushStop(TSQueryParserState state)`
`304`	`304`	`{`
`305`	`305`	`QueryOperand*tmp;`
`306`	`306`
`307`		`-tmp= (QueryOperand*)palloc(sizeof(QueryOperand));`
	`307`	`+tmp= (QueryOperand*)palloc0(sizeof(QueryOperand));`
`308`	`308`	`tmp->type=QI_VALSTOP;`
`309`	`309`
`310`	`310`	`state->polstr=lcons(tmp,state->polstr);`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitc846f7c

File tree

4 files changed

4 files changed

`‎contrib/ltree/ltree_io.c`

`‎src/backend/utils/adt/arrayfuncs.c`

`‎src/backend/utils/adt/geo_ops.c`

`‎src/backend/utils/adt/tsquery.c`

0 commit comments