[MDEV-36479] Passing null pointer to low level character set functions result in undefined behaviour - Jira

XML

Word

Printable

Details

Type: Task
Status: Open (View Workflow)
Priority: Major
Resolution: Unresolved
Fix Version/s: 10.11
Component/s: Server
Labels:
- ASAN
- UBSAN
- foundation

Sprint:
Sprint 7 (07.04.2025), Sprint 8 (21.04.2025), Sprint 9 (05.05.2025)

Description

Using https://github.com/MariaDB/server/pull/3946 and applying a bunch of nonnull attributes on include/m_ctype.h allows us to find callers that pass down null values in the expectation of some character set dependent results.

The behaviour of null pointers should be determined higher in the stack.

testing with -DWITH_ASAN=ON -DWITH_UBSAN=ON -DWITH_ASAN_SCOPE=ON -DPLUGIN_PERFSCHEMA=NO -DPLUGIN_MROONGA=NO -DCMAKE_BUILD_TYPE=Debug -DWITH_DBUG_TRACE=OFF and the non-debug, using clang-19+.

Attachments

Issue Links

includes

MDEV-36467 UBSAN: _ma_unique_hash on NULL BLOB results in strings/ctype-uca-scanner_next.inl:84:23: runtime error: applying non-zero offset 1 to null pointer (main.type_blob)

Open

MDEV-36468 UBSAN: null blob in Field_blob::cmp resuting in my_uca_scanner_next_utf8mb4 overflow

Open

MDEV-36469 UBSAN nonzero-offset testing empty is_infoschema_db

Closed

MDEV-36480 USAN: checking identifier names for 0 length names

Closed

MDEV-36529 Item_func_eq::val_bool is doing a string comparison

Closed

is part of

MDEV-25454 Make MariaDB server UBSAN safe

Confirmed

(1 is part of)

Activity

People

Assignee:: Daniel Black

Reporter:: Daniel Black

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2025-04-04 02:08

Updated:: 2025-05-05 13:26

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.