Home > mailing lists

Re: [PATCH] bms_prev_member() can read beyond the end of the array of allocated words - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: [PATCH] bms_prev_member() can read beyond the end of the array of allocated words
Date	August 14 18:52:49
Msg-id	189026.1755186769@sss.pgh.pa.us Whole thread Raw
In response to	Re: [PATCH] bms_prev_member() can read beyond the end of the array of allocated words (Greg Burd <greg@burd.me>)
List	pgsql-hackers

Tree view

Greg Burd <greg@burd.me> writes:
> Well, that was rushed.  Apologies.

I was thinking something more like

     /* transform -1 to the highest possible bit we could have set */
     if (prevbit == -1)
         prevbit = a->nwords * BITS_PER_BITMAPWORD - 1;
     else
+    {
+        Assert(prevbit > 0 && prevbit < a->nwords * BITS_PER_BITMAPWORD);
         prevbit--;
+    }

Admittedly, this doesn't bother to check sanity of prevbit when
a == NULL, but I don't think doing so is useful enough to contort
the logic for it.

            regards, tom lane

pgsql-hackers by date:

From: Álvaro Herrera
Date: 14 August, 18:52:07
Subject: Re: don't include tableam.h in nbtree.h

From: Tom Lane
Date: 14 August, 18:53:56
Subject: Re: [Feature request] Add a way to get the length of a PQerrorMessage in libpq

Re: [PATCH] bms_prev_member() can read beyond the end of the array of allocated words - Mailing list pgsql-hackers

Previous

Next