Participants
Ranier Vilela
Ranier Vilela
Tom Lane
Tom Lane
Attachments
Download Latest Patchset
+2-4
Show all attachments
Thread Outline
#1Ranier VilelaRanier Vilela
May 13, 2021
#2Tom LaneTom Laneto Ranier Vilela (#1)
May 13, 2021

Explicit NULL dereference (src/backend/commands/tablecmds.c)

Started by Ranier Vilelaalmost 5 years ago2 messageshackers
Jump to latest
#1Ranier Vilela
Ranier Vilela
ranier.vf@gmail.com

Hi,

Per Coverity.
CID 1453114 (#1 of 1): Explicit null dereferenced (FORWARD_NULL)
53. var_deref_model: Passing null pointer child_expr to strcmp, which
dereferences it.

It is agreed that asserts should be used for error conditions that can
never occur in the release.
But with errors that can occur, using assert does not make sense.

Better to make sure that strcmp can be called without risk.
Meanwhile, fix the strcmp call signature (const char).

#include <stdio.h>
#include <string.h>

int main()
{
const char * s1="";
const char * s2="0";

if (strstr(s1, s2) != 0) {
printf("found");
} else {
printf("not found");
}
}
not found!

regards,
Ranier Vilela

Attachments:

fix_null_dereference_tablecmds.patchapplication/octet-stream; name=fix_null_dereference_tablecmds.patchDownload+2-4
#2Tom Lane
Tom Lane
tgl@sss.pgh.pa.us
In reply to: Ranier Vilela (#1)
Re: Explicit NULL dereference (src/backend/commands/tablecmds.c)

Ranier Vilela <ranier.vf@gmail.com> writes:

It is agreed that asserts should be used for error conditions that can
never occur in the release.
But with errors that can occur, using assert does not make sense.

On what grounds do you claim that those asserts are wrong?

Coverity's opinion counts for just about nothing these days.
A test case causing a crash would count, of course.

regards, tom lane

← Back to Topics