From ed8169fdea3be87f26f0781caec2dac336340796 Mon Sep 17 00:00:00 2001 From: Kristian Lejao Date: Wed, 4 Oct 2023 19:31:05 +0000 Subject: [PATCH] Improved memory management in the following BBF functions pltsql_post_expand_star TdsSendTypeNumeric pre_transform_target_entry get_original_login_name Task: BABEL-4455, BABEL-4445, BABEL-4448, BABEL-4454 Signed-off-by: Kristian Lejao --- contrib/babelfishpg_tds/src/backend/tds/tdstypeio.c | 7 +++++-- contrib/babelfishpg_tsql/src/hooks.c | 2 +- contrib/babelfishpg_tsql/src/pl_comp.c | 7 ++----- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/contrib/babelfishpg_tds/src/backend/tds/tdstypeio.c b/contrib/babelfishpg_tds/src/backend/tds/tdstypeio.c index 04bb4f374d..ab8f04e68e 100644 --- a/contrib/babelfishpg_tds/src/backend/tds/tdstypeio.c +++ b/contrib/babelfishpg_tds/src/backend/tds/tdstypeio.c @@ -3034,7 +3034,8 @@ TdsSendTypeNumeric(FmgrInfo *finfo, Datum value, void *vMetaData) { int rc = EOF, precision = 0, - scale = -1; + scale = -1, + outlen = 0; uint8 sign = 1, length = 0; char *out, @@ -3057,7 +3058,8 @@ TdsSendTypeNumeric(FmgrInfo *finfo, Datum value, void *vMetaData) * response string is formatted to obtain string representation of TDS * unsigned integer along with its precision and scale */ - decString = (char *) palloc(sizeof(char) * (strlen(out) + 1)); + outlen = strlen(out) + max_scale; + decString = (char *) palloc(sizeof(char) * (outlen + 1)); /* While there is still digit in out and we haven't reached max_scale */ while (*out && scale < max_scale) { @@ -3090,6 +3092,7 @@ TdsSendTypeNumeric(FmgrInfo *finfo, Datum value, void *vMetaData) decString[precision++] = '0'; } decString[precision] = '\0'; + Assert(precision <= outlen); if (precision > TDS_MAX_NUM_PRECISION || precision > max_precision) diff --git a/contrib/babelfishpg_tsql/src/hooks.c b/contrib/babelfishpg_tsql/src/hooks.c index cb92677134..73f0e1a811 100644 --- a/contrib/babelfishpg_tsql/src/hooks.c +++ b/contrib/babelfishpg_tsql/src/hooks.c @@ -1409,7 +1409,7 @@ pre_transform_target_entry(ResTarget *res, ParseState *pstate, /* Identifier is not truncated. */ else { - memcpy(alias, original_name, alias_len); + memcpy(alias, original_name, actual_alias_len); } res->name = alias; diff --git a/contrib/babelfishpg_tsql/src/pl_comp.c b/contrib/babelfishpg_tsql/src/pl_comp.c index 081b95f37b..78fd303354 100644 --- a/contrib/babelfishpg_tsql/src/pl_comp.c +++ b/contrib/babelfishpg_tsql/src/pl_comp.c @@ -1551,8 +1551,7 @@ pltsql_post_expand_star(ParseState *pstate, ColumnRef *cref, List *l) Datum *optiondatums; int noptions, i; - char *optstr, - *bbf_original_name; + char *optstr; foreach(li, l) { @@ -1605,9 +1604,7 @@ pltsql_post_expand_star(ParseState *pstate, ColumnRef *cref, List *l) /* * We found the original name; rewrite it as bbf_original_name */ - bbf_original_name = &optstr[18]; - bbf_original_name[strlen(te->resname)] = '\0'; - te->resname = pstrdup(bbf_original_name); + te->resname = pnstrdup((char *) &optstr[18], strlen(te->resname)); break; } }