Home > mailing lists

Re: BUG #14929: Unchecked AllocateDir() return value inrestoreTwoPhaseData() - Mailing list pgsql-bugs

From	Amit Langote
Subject	Re: BUG #14929: Unchecked AllocateDir() return value inrestoreTwoPhaseData()
Date	November 27, 2017 17:09:12
Msg-id	9ac0d6ec-4ef7-4864-b141-985bb84fdc1a@lab.ntt.co.jp Whole thread Raw
In response to	Re: BUG #14929: Unchecked AllocateDir() return value in restoreTwoPhaseData() (Michael Paquier <michael.paquier@gmail.com>)
Responses	Re: BUG #14929: Unchecked AllocateDir() return value in restoreTwoPhaseData() (Michael Paquier <michael.paquier@gmail.com>)
List	pgsql-bugs

Tree view

On 2017/11/27 19:53, Michael Paquier wrote:
> On Mon, Nov 27, 2017 at 6:31 PM,  <bianpan2016@163.com> wrote:
>> AllocateDir() will return a NULL pointer if it fails to open the specified
>> directory. However, in function restoreTwoPhaseData(), its return value is
>> not checked. This may result in a NULL pointer dereference when trying to
>> free it (see line 1759).
> 
> You are missing the fact that ReadDir goes through ReadDirExtended,
> which drops an ERROR log if the folder allocated is NULL.

I noticed that too, but isn't possible that elevel might be such that we
end up returning to restoreTwoPhaseData() after all and hit the line in it
that will then dereference the NULL cldir?  Maybe, that never happens
because, elevel is never less than ERROR in that code path?

Thanks,
Amit

pgsql-bugs by date:

From: Michael Paquier
Date: 27 November 2017, 16:57:41
Subject: Re: BUG #14929: Unchecked AllocateDir() return value in restoreTwoPhaseData()

From: Michael Paquier
Date: 27 November 2017, 17:20:30
Subject: Re: BUG #14929: Unchecked AllocateDir() return value in restoreTwoPhaseData()

Re: BUG #14929: Unchecked AllocateDir() return value inrestoreTwoPhaseData() - Mailing list pgsql-bugs

Previous

Next