Skip to content

Commit 478e006

Browse files
michaelpqmichaelpq
committed
Fix use of dangling pointer in heap_delete() when logging replica identity
When logging the replica identity of a deleted tuple, XLOG_HEAP_DELETE records include references of the old tuple. Its data is stored in an intermediate variable used to register this information for the WAL record, but this variable gets away from the stack when the record gets actually inserted. Spotted by clang's AddressSanitizer. Author: Stas Kelvish Discussion: https://postgr.es/m/085C8825-AD86-4E93-AF80-E26CDF03D1EA@postgrespro.ru Backpatch-through: 9.4
1 parent 2bac1d8 commit 478e006

File tree

1 file changed

+1
-2
lines changed

1 file changed

+1
-2
lines changed

src/backend/access/heap/heapam.c

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -3290,6 +3290,7 @@ heap_delete(Relation relation, ItemPointer tid,
32903290
if (RelationNeedsWAL(relation))
32913291
{
32923292
xl_heap_delete xlrec;
3293+
xl_heap_header xlhdr;
32933294
XLogRecPtr recptr;
32943295

32953296
/* For logical decode we need combocids to properly decode the catalog */
@@ -3320,8 +3321,6 @@ heap_delete(Relation relation, ItemPointer tid,
33203321
*/
33213322
if (old_key_tuple != NULL)
33223323
{
3323-
xl_heap_header xlhdr;
3324-
33253324
xlhdr.t_infomask2 = old_key_tuple->t_data->t_infomask2;
33263325
xlhdr.t_infomask = old_key_tuple->t_data->t_infomask;
33273326
xlhdr.t_hoff = old_key_tuple->t_data->t_hoff;

0 commit comments

Comments
 (0)