Commitfests
2022-07Committed
Make XLogRecGetBlockTag API more error-proof
Committer
  • Tom Lane (tgl)
Participants
Tom Lane
Tom Lane
Robert Haas
Robert Haas
Thomas Munro
Thomas Munro
Attachments
Download Latest Patchset
+36-23
Show all attachments
Thread Outline
#1Tom LaneTom Lane
Apr 11, 2022
#2Robert HaasRobert Haasto Tom Lane (#1)
Apr 11, 2022
#3Thomas MunroThomas Munroto Robert Haas (#2)
Apr 11, 2022
#4Tom LaneTom Laneto Thomas Munro (#3)
Apr 11, 2022

Fixing code that ignores failure of XLogRecGetBlockTag

Started by Tom Laneabout 4 years ago4 messageshackers
Jump to latest
#1Tom Lane
Tom Lane
tgl@sss.pgh.pa.us

Currently, XLogRecGetBlockTag has 41 callers, of which only four
bother to check the function's result. The remainder take it on
faith that they got valid data back, and many of them will
misbehave in seriously nasty ways if they didn't. (This point
was drawn to my attention by a Coverity complaint.)

I think we should make this a little less fragile. Since we
already have XLogRecGetBlockTagExtended, I propose that callers
that need to handle the case of no-such-block must use that,
while XLogRecGetBlockTag throws an error. The attached patch
fixes that up, and also cleans up some random inconsistency
about use of XLogRecHasBlockRef().

regards, tom lane

Attachments:

make-XLogRecGetBlockTag-throw-error.patchtext/x-diff; charset=us-ascii; name=make-XLogRecGetBlockTag-throw-error.patchDownload+36-23
#2Robert Haas
Robert Haas
robertmhaas@gmail.com
In reply to: Tom Lane (#1)
Re: Fixing code that ignores failure of XLogRecGetBlockTag

On Mon, Apr 11, 2022 at 2:20 PM Tom Lane <tgl@sss.pgh.pa.us> wrote:

Currently, XLogRecGetBlockTag has 41 callers, of which only four
bother to check the function's result. The remainder take it on
faith that they got valid data back, and many of them will
misbehave in seriously nasty ways if they didn't. (This point
was drawn to my attention by a Coverity complaint.)

I think we should make this a little less fragile. Since we
already have XLogRecGetBlockTagExtended, I propose that callers
that need to handle the case of no-such-block must use that,
while XLogRecGetBlockTag throws an error. The attached patch
fixes that up, and also cleans up some random inconsistency
about use of XLogRecHasBlockRef().

Looks reasonable.

--
Robert Haas
EDB: http://www.enterprisedb.com

#3Thomas Munro
Thomas Munro
thomas.munro@gmail.com
In reply to: Robert Haas (#2)
Re: Fixing code that ignores failure of XLogRecGetBlockTag

On Tue, Apr 12, 2022 at 8:58 AM Robert Haas <robertmhaas@gmail.com> wrote:

On Mon, Apr 11, 2022 at 2:20 PM Tom Lane <tgl@sss.pgh.pa.us> wrote:

Currently, XLogRecGetBlockTag has 41 callers, of which only four
bother to check the function's result. The remainder take it on
faith that they got valid data back, and many of them will
misbehave in seriously nasty ways if they didn't. (This point
was drawn to my attention by a Coverity complaint.)

I think we should make this a little less fragile. Since we
already have XLogRecGetBlockTagExtended, I propose that callers
that need to handle the case of no-such-block must use that,
while XLogRecGetBlockTag throws an error. The attached patch
fixes that up, and also cleans up some random inconsistency
about use of XLogRecHasBlockRef().

Looks reasonable.

+1

#4Tom Lane
Tom Lane
tgl@sss.pgh.pa.us
In reply to: Thomas Munro (#3)
Re: Fixing code that ignores failure of XLogRecGetBlockTag

Thomas Munro <thomas.munro@gmail.com> writes:

On Tue, Apr 12, 2022 at 8:58 AM Robert Haas <robertmhaas@gmail.com> wrote:

On Mon, Apr 11, 2022 at 2:20 PM Tom Lane <tgl@sss.pgh.pa.us> wrote:

I think we should make this a little less fragile. Since we
already have XLogRecGetBlockTagExtended, I propose that callers
that need to handle the case of no-such-block must use that,
while XLogRecGetBlockTag throws an error. The attached patch
fixes that up, and also cleans up some random inconsistency
about use of XLogRecHasBlockRef().

Looks reasonable.

+1

Pushed, thanks for looking.

regards, tom lane

← Back to Topics