Commit 0da3a9be authored by Tom Lane's avatar Tom Lane

Fix failure to consider failure cases in GetComboCommandId().

Failure to initially palloc the comboCids array, or to realloc it bigger
when needed, left combocid's data structures in an inconsistent state that
would cause trouble if the top transaction continues to execute.  Noted
while examining a user complaint about the amount of memory used for this.
(There's not much we can do about that, but it does point up that repalloc
failure has a non-negligible chance of occurring here.)

In HEAD/9.5, also avoid possible invocation of memcpy() with a null pointer
in SerializeComboCIDState; cf commit 13bba022.
parent c5ef8ce5
...@@ -217,6 +217,13 @@ GetComboCommandId(CommandId cmin, CommandId cmax) ...@@ -217,6 +217,13 @@ GetComboCommandId(CommandId cmin, CommandId cmax)
{ {
HASHCTL hash_ctl; HASHCTL hash_ctl;
/* Make array first; existence of hash table asserts array exists */
comboCids = (ComboCidKeyData *)
MemoryContextAlloc(TopTransactionContext,
sizeof(ComboCidKeyData) * CCID_ARRAY_SIZE);
sizeComboCids = CCID_ARRAY_SIZE;
usedComboCids = 0;
memset(&hash_ctl, 0, sizeof(hash_ctl)); memset(&hash_ctl, 0, sizeof(hash_ctl));
hash_ctl.keysize = sizeof(ComboCidKeyData); hash_ctl.keysize = sizeof(ComboCidKeyData);
hash_ctl.entrysize = sizeof(ComboCidEntryData); hash_ctl.entrysize = sizeof(ComboCidEntryData);
...@@ -226,12 +233,20 @@ GetComboCommandId(CommandId cmin, CommandId cmax) ...@@ -226,12 +233,20 @@ GetComboCommandId(CommandId cmin, CommandId cmax)
CCID_HASH_SIZE, CCID_HASH_SIZE,
&hash_ctl, &hash_ctl,
HASH_ELEM | HASH_BLOBS | HASH_CONTEXT); HASH_ELEM | HASH_BLOBS | HASH_CONTEXT);
}
/*
* Grow the array if there's not at least one free slot. We must do this
* before possibly entering a new hashtable entry, else failure to
* repalloc would leave a corrupt hashtable entry behind.
*/
if (usedComboCids >= sizeComboCids)
{
int newsize = sizeComboCids * 2;
comboCids = (ComboCidKeyData *) comboCids = (ComboCidKeyData *)
MemoryContextAlloc(TopTransactionContext, repalloc(comboCids, sizeof(ComboCidKeyData) * newsize);
sizeof(ComboCidKeyData) * CCID_ARRAY_SIZE); sizeComboCids = newsize;
sizeComboCids = CCID_ARRAY_SIZE;
usedComboCids = 0;
} }
/* Lookup or create a hash entry with the desired cmin/cmax */ /* Lookup or create a hash entry with the desired cmin/cmax */
...@@ -250,20 +265,7 @@ GetComboCommandId(CommandId cmin, CommandId cmax) ...@@ -250,20 +265,7 @@ GetComboCommandId(CommandId cmin, CommandId cmax)
return entry->combocid; return entry->combocid;
} }
/* /* We have to create a new combo cid; we already made room in the array */
* We have to create a new combo cid. Check that there's room for it in
* the array, and grow it if there isn't.
*/
if (usedComboCids >= sizeComboCids)
{
/* We need to grow the array */
int newsize = sizeComboCids * 2;
comboCids = (ComboCidKeyData *)
repalloc(comboCids, sizeof(ComboCidKeyData) * newsize);
sizeComboCids = newsize;
}
combocid = usedComboCids; combocid = usedComboCids;
comboCids[combocid].cmin = cmin; comboCids[combocid].cmin = cmin;
...@@ -327,8 +329,9 @@ SerializeComboCIDState(Size maxsize, char *start_address) ...@@ -327,8 +329,9 @@ SerializeComboCIDState(Size maxsize, char *start_address)
elog(ERROR, "not enough space to serialize ComboCID state"); elog(ERROR, "not enough space to serialize ComboCID state");
/* Now, copy the actual cmin/cmax pairs. */ /* Now, copy the actual cmin/cmax pairs. */
memcpy(start_address + sizeof(int), comboCids, if (usedComboCids > 0)
(sizeof(ComboCidKeyData) * usedComboCids)); memcpy(start_address + sizeof(int), comboCids,
(sizeof(ComboCidKeyData) * usedComboCids));
} }
/* /*
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment