Unchecked strdup leading to segfault in pg_dump

Started by Daniel Gustafssonover 2 years ago3 messageshackers

daniel@yesql.se

over 2 years ago

While looking at something else I noticed that pg_dump performs strdup without
checking the returned pointer, which will segfault in hasSuffix() in case of
OOM. The attached, which should be backpatched to 16, changes to using
pg_strdup instead which handles it.

--
Daniel Gustafsson

Tristan Partin

tristan@neon.tech

over 2 years ago

In reply to: Daniel Gustafsson (#1)

Re: Unchecked strdup leading to segfault in pg_dump

On Wed Dec 20, 2023 at 8:52 AM CST, Daniel Gustafsson wrote:

While looking at something else I noticed that pg_dump performs strdup without
checking the returned pointer, which will segfault in hasSuffix() in case of
OOM. The attached, which should be backpatched to 16, changes to using
pg_strdup instead which handles it.

Looks good to me.

--
Tristan Partin
Neon (https://neon.tech)

Nathan Bossart

nathandbossart@gmail.com

over 2 years ago

In reply to: Tristan Partin (#2)

Re: Unchecked strdup leading to segfault in pg_dump

On Wed, Dec 20, 2023 at 09:39:55AM -0600, Tristan Partin wrote:

On Wed Dec 20, 2023 at 8:52 AM CST, Daniel Gustafsson wrote:

While looking at something else I noticed that pg_dump performs strdup without
checking the returned pointer, which will segfault in hasSuffix() in case of
OOM. The attached, which should be backpatched to 16, changes to using
pg_strdup instead which handles it.

Looks good to me.

--
Nathan Bossart
Amazon Web Services: https://aws.amazon.com

Unchecked strdup leading to segfault in pg_dump

Attachments: