| From: | Daniel Gustafsson <daniel(at)yesql(dot)se> |
|---|---|
| To: | Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> |
| Cc: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, PostgreSQL Developers <pgsql-hackers(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: jsonapi: scary new warnings with LTO enabled |
| Date: | 2025-04-21 18:46:01 |
| Message-ID: | 102E1997-FB99-4091-926C-9A8BB3EA168E@yesql.se |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
> On 21 Apr 2025, at 20:28, Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> wrote:
>
> On Mon, Apr 21, 2025 at 11:20 AM Daniel Gustafsson <daniel(at)yesql(dot)se> wrote:
>> Sure, but I fear we'll get an endless stream of static analysis reports for the
>> allocation leaking if we don't free it.
>
> But we do free it, in freeJsonLexContext(). That usage of the API goes
> back to 2023, with 1c99cde2f344. Or am I misunderstanding?
We do, but with the current coding we call setJsonLexContextOwnsTokens
immediately after creation which derefences the pointer without checkinf for
allocation failure. This means we dereference the pointer before we can check
for an OOM return from pg_parse_json which even if safe seems to violate code
readability no?
--
Daniel Gustafsson
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Devrim Gündüz | 2025-04-21 18:49:53 | Re: [PoC] Federated Authn/z with OAUTHBEARER |
| Previous Message | Jacob Champion | 2025-04-21 18:28:43 | Re: jsonapi: scary new warnings with LTO enabled |