Home > mailing lists

Re: BUG #19405: Assertion in eval_windowaggregates() fails due to integer overflow - Mailing list pgsql-bugs

From	Richard Guo
Subject	Re: BUG #19405: Assertion in eval_windowaggregates() fails due to integer overflow
Date	February 14 14:00:51
Msg-id	CAMbWs4_jYG-vjN579aLuE7pf9PaZaPL9KCjPRN0kn3T+obE7hw@mail.gmail.com Whole thread Raw
In response to	Re: BUG #19405: Assertion in eval_windowaggregates() fails due to integer overflow (Alexander Lakhin <exclusion@gmail.com>)
Responses	Re: BUG #19405: Assertion in eval_windowaggregates() fails due to integer overflow
List	pgsql-bugs

Tree view

On Sat, Feb 14, 2026 at 7:00 PM Alexander Lakhin <exclusion@gmail.com> wrote:
> The patch works for me, but I've just discovered one more similar anomaly:
> SELECT SUM(i) OVER (ROWS BETWEEN 0x7fffffffffffffff FOLLOWING AND 1 FOLLOWING), i FROM t;
>
> ERROR:  XX000: window frame head moved backward
> LOCATION:  eval_windowaggregates, nodeWindowAgg.c:782

Right, I noticed this one too.  Basically, nodeWindowAgg.c doesn't
check for overflow when adding startOffsetValue or endOffsetValue.
Since these values are provided by the user and can be arbitrarily
large, simple addition does not seem safe.  I think we may need to
switch to overflow-aware integer operations in all relevant code.

- Richard

pgsql-bugs by date:

From: Alexander Lakhin
Date: 14 February, 13:00:00
Subject: Re: BUG #19405: Assertion in eval_windowaggregates() fails due to integer overflow

From: Heikki Linnakangas
Date: 14 February, 14:42:02
Subject: Re: 17.8 standby crashes during WAL replay from 17.5 primary: "could not access status of transaction"

Re: BUG #19405: Assertion in eval_windowaggregates() fails due to integer overflow - Mailing list pgsql-bugs

Previous

Next