NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commitd02d4a6

committed

Avoid premature free of pass-by-reference CALL arguments.

Prematurely freeing the EState used to evaluate CALL arguments led, in somecases, to passing dangling pointers to the procedure. This was masked intrivial cases because the argument pointers would point to Const nodes inthe original expression tree, and in some other cases because the resultvalue would end up in the standalone ExprContext rather than in memorybelonging to the EState --- but that wasn't exactly high qualityprogramming either, because the standalone ExprContext was neverexplicitly freed, breaking assorted API contracts.In addition, using a separate EState for each argument was just silly.So let's use just one EState, and one ExprContext, and make the latterbelong to the former rather than be standalone, and clean up the EState(and hence the ExprContext) post-call.While at it, improve the function's commentary a bit.Discussion:https://postgr.es/m/29173.1518282748@sss.pgh.pa.us

1 parent65b1d76 commitd02d4a6Copy full SHA for d02d4a6

File tree

3 files changed

+33

-11

lines changed

src
- backend/commands
  - functioncmds.c
- test/regress
  - expected
    - create_procedure.out
  - sql
    - create_procedure.sql

3 files changed

+33

-11

lines changed

`‎src/backend/commands/functioncmds.c`

Lines changed: 22 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -2204,6 +2204,12 @@ ExecuteDoStmt(DoStmt *stmt, bool atomic)`
`2204`	`2204`	`* transaction commands based on that information, e.g., call`
`2205`	`2205`	`* SPI_connect_ext(SPI_OPT_NONATOMIC). The language should also pass on the`
`2206`	`2206`	`* atomic flag to any nested invocations to CALL.`
	`2207`	`+ *`
	`2208`	`+ * The expression data structures and execution context that we create`
	`2209`	`+ * within this function are children of the portalContext of the Portal`
	`2210`	`+ * that the CALL utility statement runs in. Therefore, any pass-by-ref`
	`2211`	`+ * values that we're passing to the procedure will survive transaction`
	`2212`	`+ * commits that might occur inside the procedure.`
`2207`	`2213`	`*/`
`2208`	`2214`	`void`
`2209`	`2215`	`ExecuteCallStmt(ParseStatepstate,CallStmtstmt,boolatomic)`
`@@ -2218,8 +2224,11 @@ ExecuteCallStmt(ParseState pstate, CallStmt stmt, bool atomic)`
`2218`	`2224`	`FmgrInfoflinfo;`
`2219`	`2225`	`FunctionCallInfoDatafcinfo;`
`2220`	`2226`	`CallContext*callcontext;`
	`2227`	`+EState*estate;`
	`2228`	`+ExprContext*econtext;`
`2221`	`2229`	`HeapTupletp;`
`2222`	`2230`
	`2231`	`+/* We need to do parse analysis on the procedure call and its arguments */`
`2223`	`2232`	`targs=NIL;`
`2224`	`2233`	`foreach(lc,stmt->funccall->args)`
`2225`	`2234`	`{`
`@@ -2241,7 +2250,6 @@ ExecuteCallStmt(ParseState pstate, CallStmt stmt, bool atomic)`
`2241`	`2250`	`aclresult=pg_proc_aclcheck(fexpr->funcid,GetUserId(),ACL_EXECUTE);`
`2242`	`2251`	`if (aclresult!=ACLCHECK_OK)`
`2243`	`2252`	`aclcheck_error(aclresult,OBJECT_PROCEDURE,get_func_name(fexpr->funcid));`
`2244`		`-InvokeFunctionExecuteHook(fexpr->funcid);`
`2245`	`2253`
`2246`	`2254`	`nargs=list_length(fexpr->args);`
`2247`	`2255`
`@@ -2254,6 +2262,7 @@ ExecuteCallStmt(ParseState pstate, CallStmt stmt, bool atomic)`
`2254`	`2262`	`FUNC_MAX_ARGS,`
`2255`	`2263`	`FUNC_MAX_ARGS)));`
`2256`	`2264`
	`2265`	`+/* Prep the context object we'll pass to the procedure */`
`2257`	`2266`	`callcontext=makeNode(CallContext);`
`2258`	`2267`	`callcontext->atomic=atomic;`
`2259`	`2268`
`@@ -2270,23 +2279,28 @@ ExecuteCallStmt(ParseState pstate, CallStmt stmt, bool atomic)`
`2270`	`2279`	`callcontext->atomic= true;`
`2271`	`2280`	`ReleaseSysCache(tp);`
`2272`	`2281`
	`2282`	`+/* Initialize function call structure */`
	`2283`	`+InvokeFunctionExecuteHook(fexpr->funcid);`
`2273`	`2284`	`fmgr_info(fexpr->funcid,&flinfo);`
`2274`	`2285`	`InitFunctionCallInfoData(fcinfo,&flinfo,nargs,fexpr->inputcollid, (Node*)callcontext,NULL);`
`2275`	`2286`
	`2287`	`+/*`
	`2288`	`+ * Evaluate procedure arguments inside a suitable execution context. Note`
	`2289`	`+ * we can't free this context till the procedure returns.`
	`2290`	`+ */`
	`2291`	`+estate=CreateExecutorState();`
	`2292`	`+econtext=CreateExprContext(estate);`
	`2293`	`+`
`2276`	`2294`	`i=0;`
`2277`	`2295`	`foreach(lc,fexpr->args)`
`2278`	`2296`	`{`
`2279`		`-EState*estate;`
`2280`	`2297`	`ExprState*exprstate;`
`2281`		`-ExprContext*econtext;`
`2282`	`2298`	`Datumval;`
`2283`	`2299`	`boolisnull;`
`2284`	`2300`
`2285`		`-estate=CreateExecutorState();`
`2286`	`2301`	`exprstate=ExecPrepareExpr(lfirst(lc),estate);`
`2287`		`-econtext=CreateStandaloneExprContext();`
	`2302`	`+`
`2288`	`2303`	`val=ExecEvalExprSwitchContext(exprstate,econtext,&isnull);`
`2289`		`-FreeExecutorState(estate);`
`2290`	`2304`
`2291`	`2305`	`fcinfo.arg[i]=val;`
`2292`	`2306`	`fcinfo.argnull[i]=isnull;`
`@@ -2295,4 +2309,6 @@ ExecuteCallStmt(ParseState pstate, CallStmt stmt, bool atomic)`
`2295`	`2309`	`}`
`2296`	`2310`
`2297`	`2311`	`FunctionCallInvoke(&fcinfo);`
	`2312`	`+`
	`2313`	`+FreeExecutorState(estate);`
`2298`	`2314`	`}`

`‎src/test/regress/expected/create_procedure.out`

Lines changed: 8 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -21,18 +21,22 @@ LINE 1: SELECT ptest1('x');`
`21`	`21`	`^`
`22`	`22`	`HINT: To call a procedure, use CALL.`
`23`	`23`	`CALL ptest1('a'); -- ok`
	`24`	`+CALL ptest1('xy' \|\| 'zzy'); -- ok, constant-folded arg`
	`25`	`+CALL ptest1(substring(random()::text, 1, 1)); -- ok, volatile arg`
`24`	`26`	`\df ptest1`
`25`	`27`	`List of functions`
`26`	`28`	`Schema \| Name \| Result data type \| Argument data types \| Type`
`27`	`29`	`--------+--------+------------------+---------------------+------`
`28`	`30`	`public \| ptest1 \| \| x text \| proc`
`29`	`31`	`(1 row)`
`30`	`32`
`31`		`-SELECT * FROM cp_test ORDER BY a;`
`32`		`- a \| b`
`33`		`----+---`
	`33`	`+SELECT * FROM cp_test ORDER BY b COLLATE "C";`
	`34`	`+ a \| b`
	`35`	`+---+-------`
	`36`	`+ 1 \| 0`
`34`	`37`	`1 \| a`
`35`		`-(1 row)`
	`38`	`+ 1 \| xyzzy`
	`39`	`+(3 rows)`
`36`	`40`
`37`	`41`	`CREATE PROCEDURE ptest2()`
`38`	`42`	`LANGUAGE SQL`

`‎src/test/regress/sql/create_procedure.sql`

Lines changed: 3 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -13,10 +13,12 @@ $$;`
`13`	`13`
`14`	`14`	`SELECT ptest1('x');-- error`
`15`	`15`	`CALL ptest1('a');-- ok`
	`16`	`+CALL ptest1('xy'\|\|'zzy');-- ok, constant-folded arg`
	`17`	`+CALL ptest1(substring(random()::text,1,1));-- ok, volatile arg`
`16`	`18`
`17`	`19`	`\df ptest1`
`18`	`20`
`19`		`-SELECT*FROM cp_testORDER BYa;`
	`21`	`+SELECT*FROM cp_testORDER BYb COLLATE"C";`
`20`	`22`
`21`	`23`
`22`	`24`	`CREATE PROCEDURE ptest2()`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitd02d4a6

File tree

3 files changed

3 files changed

`‎src/backend/commands/functioncmds.c`

`‎src/test/regress/expected/create_procedure.out`

`‎src/test/regress/sql/create_procedure.sql`

0 commit comments