Participants
Maxim Orlov
Maxim Orlov
Karina Litskevich
Karina Litskevich
Tom Lane
Tom Lane
Attachments
Download Latest Patchset
+5-4
Show all attachments
Thread Outline
#1Karina LitskevichKarina Litskevich
Dec 05, 2024
#2Tom LaneTom Laneto Karina Litskevich (#1)
Dec 05, 2024
#3Maxim OrlovMaxim Orlovto Tom Lane (#2)
Dec 06, 2024
#4Maxim OrlovMaxim Orlovto Maxim Orlov (#3)
Jan 10, 2025

Potential null pointer dereference in postgres.c

Started by Karina Litskevichover 1 year ago4 messageshackers
Jump to latest
#1Karina Litskevich
Karina Litskevich
litskevichkarina@gmail.com

Hi hackers,

When backporting 66e94448 to older versions it was forgotten to check
malloc() result. In 16+ versions guc_malloc() is used to allocate
memory and it checks if the result pointer is NULL, so there is no
need to check it after guc_malloc(). Versions before 16 have no
guc_malloc(), and malloc() is used instead, but we have to check if
return value is NULL.

Please find attached patch for REL_15_STABLE. This should be fixed in
older versions too.

Best regards,
Karina Litskevich
Postgres Professional: http://postgrespro.com/

Attachments:

v1-0001-Check-if-malloc-returned-NULL.patchtext/x-patch; charset=US-ASCII; name=v1-0001-Check-if-malloc-returned-NULL.patchDownload+6-1
#2Tom Lane
Tom Lane
tgl@sss.pgh.pa.us
In reply to: Karina Litskevich (#1)
Re: Potential null pointer dereference in postgres.c

Karina Litskevich <litskevichkarina@gmail.com> writes:

When backporting 66e94448 to older versions it was forgotten to check
malloc() result. In 16+ versions guc_malloc() is used to allocate
memory and it checks if the result pointer is NULL, so there is no
need to check it after guc_malloc(). Versions before 16 have no
guc_malloc(), and malloc() is used instead, but we have to check if
return value is NULL.

Yup, you're right. Thanks for the report!

regards, tom lane

#3Maxim Orlov
Maxim Orlov
orlovmg@gmail.com
In reply to: Tom Lane (#2)
Re: Potential null pointer dereference in postgres.c

I'm glad you are bringing up this issue. By the way, there are two more
annoying places in postmaster.c for pg16 and older. See, strdup() also may
fail if insufficient memory available.

PFA patch for a REL_16_STABLE. It also applies to older versions.

--
Best regards,
Maxim Orlov.

Attachments:

v2-0001-Use-pstrdup-for-remote_host-and-remote_port-save-.patchapplication/octet-stream; name=v2-0001-Use-pstrdup-for-remote_host-and-remote_port-save-.patchDownload+2-3
#4Maxim Orlov
Maxim Orlov
orlovmg@gmail.com
In reply to: Maxim Orlov (#3)
Re: Potential null pointer dereference in postgres.c

I have to admit I was wrong with previous v2 patch. Sorry.
Apparently, the chances of committing this very low, but here is the
correct one.

--
Best regards,
Maxim Orlov.

Attachments:

v3-0001-Use-pstrdup-for-remote_host-and-remote_port-save-.patchapplication/octet-stream; name=v3-0001-Use-pstrdup-for-remote_host-and-remote_port-save-.patchDownload+5-4
← Back to Topics