Home > mailing lists

Fix uninitialized PruneFreezeResult in pruneheap and vacuumlazy - Mailing list pgsql-hackers

From	Chao Li
Subject	Fix uninitialized PruneFreezeResult in pruneheap and vacuumlazy
Date	December 11 07:02:35
Msg-id	CAEoWx2=jiD1nqch4JQN+odAxZSD7mRvdoHUGJYN2r6tQG_66yQ@mail.gmail.com Whole thread Raw
Responses	Re: Fix uninitialized PruneFreezeResult in pruneheap and vacuumlazy Re: Fix uninitialized PruneFreezeResult in pruneheap and vacuumlazy
List	pgsql-hackers

Tree view

Hi Hackers,

While reviewing Melanie's patch [1], I found this bug where presult is not initialized. Let me explain the logic.

In the first place:

```

static int

lazy_scan_prune(LVRelState *vacrel,

Buffer buf,

BlockNumber blkno,

Page page,

Buffer vmbuffer,

bool all_visible_according_to_vm,

bool *has_lpdead_items,

bool *vm_page_frozen)

{

Relation rel = vacrel->rel;

PruneFreezeResult presult; <== here presult is not initialized

heap_page_prune_and_freeze(&params,

&presult, <== uninitialized presult is passed into heap_page_prune_and_freeze

&vacrel->offnum,

&vacrel->NewRelfrozenXid, &vacrel->NewRelminMxid);

```

Then in heap_page_prune_and_freeze():

```

void

heap_page_prune_and_freeze(PruneFreezeParams *params,

PruneFreezeResult *presult,

OffsetNumber *off_loc,

TransactionId *new_relfrozen_xid,

MultiXactId *new_relmin_mxid)

{

Buffer buffer = params->buffer;

Page page = BufferGetPage(buffer);

PruneState prstate;

bool do_freeze;

bool do_prune;

bool do_hint_prune;

bool did_tuple_hint_fpi;

int64 fpi_before = pgWalUsage.wal_fpi;

/* Initialize prstate */

prune_freeze_setup(params,

new_relfrozen_xid, new_relmin_mxid,

presult, &prstate); <== immediately pass uninitialized presult to prune_freeze_setup

```

Then in prune_freeze_setup():

```

static void

prune_freeze_setup(PruneFreezeParams *params,

TransactionId *new_relfrozen_xid,

MultiXactId *new_relmin_mxid,

const PruneFreezeResult *presult, <== presult is a const pointer, so prune_freeze_setup won’t update its content

PruneState *prstate)

{

prstate->deadoffsets = (OffsetNumber *) presult->deadoffsets; <== presult->deadoffsets could be a random value

}

```

Attached is a simple fix by just initializing presult in the first place with {0}.

[1] https://postgr.es/m/CAAKRu_bvQiesumRhgvbcym1T9Z9=ddGfUbi-dSNxLRc6JvL1-w@mail.gmail.com

Best regards,

--
Chao Li (Evan)
HighGo Software Co., Ltd.
https://www.highgo.com/

Attachment

v1-0001-Fix-uninitialized-PruneFreezeResult-in-pruneheap-.patch

pgsql-hackers by date:

From: Ioseph Kim
Date: 11 December, 07:02:24
Subject: Re: Propose: Adding a '--enable-failover' option to 'pg_createsubscriber'

From: Chao Li
Date: 11 December, 07:06:57
Subject: Re: eliminate xl_heap_visible to reduce WAL (and eventually set VM on-access)

Fix uninitialized PruneFreezeResult in pruneheap and vacuumlazy - Mailing list pgsql-hackers

Attachment

Previous

Next