tidb_query: fix UB causing by from_raw_parts
#7635
Conversation
|
@breeswish PTAL |
| @@ -69,11 +71,11 @@ impl RowSlice<'_> { | |||
| if let Ok(idx) = non_null_ids.binary_search(&(id as u32)) { | |||
| let offset = offsets.get(idx).ok_or(Error::ColumnOffset(idx))?; | |||
| let start = if idx > 0 { | |||
| offsets[idx - 1] as usize | |||
| offsets.get_unchecked(idx - 1) as usize | |||
There was a problem hiding this comment.
There might not be sufficient elements in the offsets (if the data is corrupted). We'd better handle it.
Previously this case result in panic. Now it result in memory issue, which is worse. Better to change it to return error.
There was a problem hiding this comment.
I see this conversation marked as resolved, but what was the resolution? Why is this unchecked indexing ok?
There was a problem hiding this comment.
Doing an unsafe array access here isn't obviously important to performance. @zhongzc are you sure this needs to be unchecked?
There was a problem hiding this comment.
@brson Previous offsets.get(idx) indicates offsets.get_unchecked(idx - 1) is okay.
zhongzc
force-pushed
the
slice-unaligned
branch
from
2ff256f to
350d317
Compare
|
/run-all-tests |
breezewish
added
the
needs-cherry-pick-release-4.0
There was a problem hiding this comment.
Good job. @brson Would you like to take a look at the improved implementation?
| @@ -69,11 +71,11 @@ impl RowSlice<'_> { | |||
| if let Ok(idx) = non_null_ids.binary_search(&(id as u32)) { | |||
| let offset = offsets.get(idx).ok_or(Error::ColumnOffset(idx))?; | |||
| let start = if idx > 0 { | |||
| offsets[idx - 1] as usize | |||
| offsets.get_unchecked(idx - 1) as usize | |||
There was a problem hiding this comment.
I see this conversation marked as resolved, but what was the resolution? Why is this unchecked indexing ok?
| } | ||
|
|
||
| #[inline] | ||
| fn get_unchecked(&self, index: usize) -> T { |
There was a problem hiding this comment.
This function should be marked as unsafe since it allows the caller to do unsafe memory access.
| @@ -69,11 +71,11 @@ impl RowSlice<'_> { | |||
| if let Ok(idx) = non_null_ids.binary_search(&(id as u32)) { | |||
| let offset = offsets.get(idx).ok_or(Error::ColumnOffset(idx))?; | |||
| let start = if idx > 0 { | |||
| offsets[idx - 1] as usize | |||
| offsets.get_unchecked(idx - 1) as usize | |||
There was a problem hiding this comment.
Doing an unsafe array access here isn't obviously important to performance. @zhongzc are you sure this needs to be unchecked?
Signed-off-by: zhongzc <[email protected]>
Signed-off-by: zhongzc <[email protected]>
Signed-off-by: zhongzc <[email protected]>
Signed-off-by: zhongzc <[email protected]>
Signed-off-by: zhongzc <[email protected]>
zhongzc
force-pushed
the
slice-unaligned
branch
from
52355db to
c7f89f0
Compare
|
/merge |
sre-bot
added
the
status/can-merge
|
/run-all-tests |
|
@zhongzc merge failed. |
|
/merge |
|
/run-all-tests |
|
@zhongzc merge failed. |
|
/merge |
|
/run-all-tests |
|
@zhongzc merge failed. |
Signed-off-by: zhongzc <[email protected]>
|
cherry pick to release-4.0 in PR #7730 |
Signed-off-by: zhongzc <[email protected]>
Signed-off-by: zhongzc <[email protected]>
Signed-off-by: zhongzc [email protected]
What problem does this PR solve?
Issue Number: close #7613
Problem Summary:
From stdlib doc:
We didn't provide this promise.
What is changed and how it works?
What's Changed:
Introduce a new type
LEBytes. Implementbinary_searchfor this type by explicitly callingstd::ptr::read_unaligned.Check List
Tests