| From: | Joseph Koshakow <koshy44(at)gmail(dot)com> |
|---|---|
| To: | David Rowley <dgrowleyml(at)gmail(dot)com> |
| Cc: | PostgreSQL Hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: Fix overflow in pg_size_pretty |
| Date: | 2024-07-27 23:06:30 |
| Message-ID: | CAAvxfHce9wPU7w-SKTmBQ0EYTCsFwUNVxCRTYaCY2SftSq5EyQ@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Sat, Jul 27, 2024 at 6:28 PM David Rowley <dgrowleyml(at)gmail(dot)com> wrote:
>
> On Sun, 28 Jul 2024 at 07:18, Joseph Koshakow <koshy44(at)gmail(dot)com> wrote:
>> Attached is a patch that resolves an overflow in pg_size_pretty() that
>> resulted in unexpected behavior when PG_INT64_MIN was passed in as an
>> argument.
>
> Could we just fix this more simply by assigning the absolute value of
> the signed variable into an unsigned type?
I might be misunderstanding, but my previous patch does assign the
absolute value of the signed variable into an unsigned type.
> It's a bit less code and
> gets rid of the explicit test for PG_INT64_MIN.
> + uint64 usize = size < 0 ? (uint64) (-size) : (uint64) size;
I think that the explicit test for PG_INT64_MIN is still required. If
`size` is equal to PG_INT64_MIN then `-size` will overflow. You end up
with the correct behavior if `size` wraps around, but that's only
guaranteed on platforms that support the `-fwrapv` flag.
Thanks,
Joseph Koshakow
| From | Date | Subject | |
|---|---|---|---|
| Next Message | David Rowley | 2024-07-28 00:00:21 | Re: Fix overflow in pg_size_pretty |
| Previous Message | Tatsuo Ishii | 2024-07-27 23:06:00 | Re: Protocol question regarding Portal vs Cursor |