Skip to content

M
MariaDB
Commit 443b9a41 authored by Sergey Vojtovich's avatar Sergey Vojtovich
Browse files
Options

MDEV-14929 - AddressSanitizer: memcpy-param-overlap in Field_longstr::compress 

Handle overlaping "from" and Field_blob_compressed::value for compressed
blobs similarily to regular blobs.
parent 69efa134
Hide whitespace changes
Inline Side-by-side
Showing with 35 additions and 5 deletions
mysql-test/main/column_compression.result
View file @ 443b9a41
...@@ -1360,3 +1360,16 @@ SELECT a, LENGTH(a) FROM t1; ...@@ -1360,3 +1360,16 @@ SELECT a, LENGTH(a) FROM t1;
a LENGTH(a) a LENGTH(a)
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa 255 aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa 255
DROP TABLE t1; DROP TABLE t1;
#
# MDEV-14929 - AddressSanitizer: memcpy-param-overlap in
# Field_longstr::compress
#
CREATE TABLE t1(b BLOB COMPRESSED);
INSERT INTO t1 VALUES('foo'),('bar');
SET SESSION optimizer_switch = 'derived_merge=off';
SELECT * FROM ( SELECT * FROM t1 ) AS sq ORDER BY b;
b
bar
foo
SET SESSION optimizer_switch=DEFAULT;
DROP TABLE t1;
mysql-test/main/column_compression.test
View file @ 443b9a41
...@@ -79,3 +79,15 @@ INSERT INTO t1 VALUES(REPEAT('a', 255)); ...@@ -79,3 +79,15 @@ INSERT INTO t1 VALUES(REPEAT('a', 255));
SET column_compression_threshold=DEFAULT; SET column_compression_threshold=DEFAULT;
SELECT a, LENGTH(a) FROM t1; SELECT a, LENGTH(a) FROM t1;
DROP TABLE t1; DROP TABLE t1;
--echo #
--echo # MDEV-14929 - AddressSanitizer: memcpy-param-overlap in
--echo # Field_longstr::compress
--echo #
CREATE TABLE t1(b BLOB COMPRESSED);
INSERT INTO t1 VALUES('foo'),('bar');
SET SESSION optimizer_switch = 'derived_merge=off';
SELECT * FROM ( SELECT * FROM t1 ) AS sq ORDER BY b;
SET SESSION optimizer_switch=DEFAULT;
DROP TABLE t1;
sql/field.cc
View file @ 443b9a41
...@@ -8699,17 +8699,22 @@ int Field_blob_compressed::store(const char *from, size_t length, ...@@ -8699,17 +8699,22 @@ int Field_blob_compressed::store(const char *from, size_t length,
{ {
ASSERT_COLUMN_MARKED_FOR_WRITE_OR_COMPUTED; ASSERT_COLUMN_MARKED_FOR_WRITE_OR_COMPUTED;
uint to_length= (uint)MY_MIN(max_data_length(), field_charset->mbmaxlen * length + 1); uint to_length= (uint)MY_MIN(max_data_length(), field_charset->mbmaxlen * length + 1);
String tmp(from, length, cs);
int rc; int rc;
if (from >= value.ptr() && from <= value.end() && tmp.copy(from, length, cs))
goto oom;
if (value.alloc(to_length)) if (value.alloc(to_length))
{ goto oom;
set_ptr((uint32) 0, NULL);
return -1;
}
rc= compress((char*) value.ptr(), &to_length, from, (uint)length, cs); rc= compress((char*) value.ptr(), &to_length, tmp.ptr(), (uint) length, cs);
set_ptr(to_length, (uchar*) value.ptr()); set_ptr(to_length, (uchar*) value.ptr());
return rc; return rc;
oom:
set_ptr((uint32) 0, NULL);
return -1;
} }
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7