Several memory related issues fixed

Author: marcobambini

src/cloudsync.c

@@ -2232,6 +2232,7 @@ int cloudsync_payload_apply (cloudsync_context *data, const char *payload, int b
 
         uint32_t rc = LZ4_decompress_safe(buffer, clone, blen, header.expanded_size);
         if (rc <= 0 || rc != header.expanded_size) {
+            if (clone) cloudsync_memory_free(clone);
             return cloudsync_set_error(data, "Error on cloudsync_payload_apply: unable to decompress BLOB", DBRES_MISUSE);
         }
 

src/cloudsync.h

@@ -17,7 +17,7 @@
 extern "C" {
 #endif
 
-#define CLOUDSYNC_VERSION                       "0.9.4"
+#define CLOUDSYNC_VERSION                       "0.9.5"
 #define CLOUDSYNC_MAX_TABLENAME_LEN             512
 
 #define CLOUDSYNC_VALUE_NOTSET                  -1

src/postgresql/cloudsync_postgresql.c

@@ -1265,10 +1265,9 @@ Datum cloudsync_update_transfn (PG_FUNCTION_ARGS) {
     } else {
         payload = (cloudsync_update_payload *)PG_GETARG_POINTER(0);
         if (payload->mcxt == NULL || payload->mcxt != allocContext) {
-            elog(DEBUG1, "cloudsync_update_transfn repairing payload context payload=%p old_mcxt=%p new_mcxt=%p",
-           payload, payload->mcxt, allocContext);
-        payload->mcxt = allocContext;
-    }
+            elog(DEBUG1, "cloudsync_update_transfn repairing payload context payload=%p old_mcxt=%p new_mcxt=%p", payload, payload->mcxt, allocContext);
+            payload->mcxt = allocContext;
+        }
   }
 
     if (!payload) {
@@ -1583,6 +1582,7 @@ static pgvalue_t *cloudsync_decode_bytea_to_pgvalue (bytea *encoded, Oid target_
     Oid argt[1] = {TEXTOID};
     Datum argv[1];
     char argn[1] = {' '};
+    bool argv_is_pointer = false;  // Track if argv[0] needs pfree on error
 
     switch (dv.dbtype) {
         case DBTYPE_INTEGER:
@@ -1596,13 +1596,15 @@ static pgvalue_t *cloudsync_decode_bytea_to_pgvalue (bytea *encoded, Oid target_
         case DBTYPE_TEXT:
             argt[0] = TEXTOID;
             argv[0] = PointerGetDatum(cstring_to_text_with_len(dv.pval ? dv.pval : "", (int)(dv.len)));
+            argv_is_pointer = true;
             break;
         case DBTYPE_BLOB: {
             argt[0] = BYTEAOID;
             bytea *ba = (bytea *)palloc(VARHDRSZ + dv.len);
             SET_VARSIZE(ba, VARHDRSZ + dv.len);
             if (dv.len > 0) memcpy(VARDATA(ba), dv.pval, (size_t)dv.len);
             argv[0] = PointerGetDatum(ba);
+            argv_is_pointer = true;
         } break;
         case DBTYPE_NULL:
             if (out_isnull) *out_isnull = true;
@@ -1617,26 +1619,31 @@ static pgvalue_t *cloudsync_decode_bytea_to_pgvalue (bytea *encoded, Oid target_
 
     // Cast to the target column type from the table schema.
     if (argt[0] == target_typoid) {
-        return pgvalue_create(argv[0], target_typoid, -1, InvalidOid, false);
+        pgvalue_t *result = pgvalue_create(argv[0], target_typoid, -1, InvalidOid, false);
+        if (!result && argv_is_pointer) {
+            pfree(DatumGetPointer(argv[0]));
+        }
+        return result;
     }
 
     StringInfoData castq;
     initStringInfo(&castq);
     appendStringInfo(&castq, "SELECT $1::%s", target_typname);
 
     int rc = SPI_execute_with_args(castq.data, 1, argt, argv, argn, true, 1);
-    if (rc != SPI_OK_SELECT || SPI_processed != 1) {
-        if (SPI_tuptable) {
-            SPI_freetuptable(SPI_tuptable);
-        }
+    if (rc != SPI_OK_SELECT || SPI_processed != 1 || !SPI_tuptable) {
+        if (SPI_tuptable) SPI_freetuptable(SPI_tuptable);
+        pfree(castq.data);
+        if (argv_is_pointer) pfree(DatumGetPointer(argv[0]));
         ereport(ERROR, (errmsg("cloudsync: failed to cast value to %s", target_typname)));
     }
     pfree(castq.data);
 
     bool typed_isnull = false;
+    // SPI_getbinval uses 1-based column indexing, but TupleDescAttr uses 0-based indexing
     Datum typed_value = SPI_getbinval(SPI_tuptable->vals[0], SPI_tuptable->tupdesc, 1, &typed_isnull);
-    int32 typmod = TupleDescAttr(SPI_tuptable->tupdesc, 1)->atttypmod;
-    Oid collation = TupleDescAttr(SPI_tuptable->tupdesc, 1)->attcollation;
+    int32 typmod = TupleDescAttr(SPI_tuptable->tupdesc, 0)->atttypmod;
+    Oid collation = TupleDescAttr(SPI_tuptable->tupdesc, 0)->attcollation;
     if (!typed_isnull) {
         Form_pg_attribute att = TupleDescAttr(SPI_tuptable->tupdesc, 0);
         typed_value = datumCopy(typed_value, att->attbyval, att->attlen);
@@ -1769,7 +1776,7 @@ static char * build_union_sql (void) {
         "ORDER BY n.nspname, c.relname";
 
         int rc = SPI_execute(sql, true, 0);
-        if (rc != SPI_OK_SELECT) {
+        if (rc != SPI_OK_SELECT || !SPI_tuptable) {
             ereport(ERROR, (errmsg("cloudsync: SPI_execute failed while listing *_cloudsync")));
         }
 
@@ -1855,7 +1862,8 @@ static char * build_union_sql (void) {
                              );
             int pkrc = SPI_execute(pkq.data, true, 0);
             pfree(pkq.data);
-            if (pkrc != SPI_OK_SELECT || SPI_processed == 0) {
+            if (pkrc != SPI_OK_SELECT || (SPI_processed == 0) || (!SPI_tuptable)) {
+                if (SPI_tuptable) SPI_freetuptable(SPI_tuptable);
                 ereport(ERROR, (errmsg("cloudsync: unable to resolve primary key for %s.%s", nsp, base)));
             }
             uint64 npk = SPI_processed;
@@ -1867,7 +1875,13 @@ static char * build_union_sql (void) {
                 TupleDesc pkd = SPI_tuptable->tupdesc;
                 char *pkname = SPI_getvalue(pkt, pkd, 1);
                 char *pktype = SPI_getvalue(pkt, pkd, 2);
-                if (!pkname || !pktype) ereport(ERROR, (errmsg("cloudsync: invalid pk metadata for %s.%s", nsp, base)));
+                if (!pkname || !pktype) {
+                    if (pkname) pfree(pkname);
+                    if (pktype) pfree(pktype);
+                    pfree(joincond.data);
+                    SPI_freetuptable(SPI_tuptable);
+                    ereport(ERROR, (errmsg("cloudsync: invalid pk metadata for %s.%s", nsp, base)));
+                }
 
                 if (k > 0) appendStringInfoString(&joincond, " AND ");
                 appendStringInfo(&joincond,
@@ -1896,7 +1910,8 @@ static char * build_union_sql (void) {
                              );
             int colrc = SPI_execute(colq.data, true, 0);
             pfree(colq.data);
-            if (colrc != SPI_OK_SELECT) {
+            if (colrc != SPI_OK_SELECT || !SPI_tuptable) {
+                if (SPI_tuptable) SPI_freetuptable(SPI_tuptable);
                 ereport(ERROR, (errmsg("cloudsync: unable to resolve columns for %s.%s", nsp, base)));
             }
             uint64 ncols = SPI_processed;

src/postgresql/database_postgresql.c

@@ -572,11 +572,11 @@ int database_exec (cloudsync_context *data, const char *sql) {
 int database_exec_callback (cloudsync_context *data, const char *sql, int (*callback)(void *xdata, int argc, char **values, char **names), void *xdata) {
     if (!sql) return cloudsync_set_error(data, "SQL statement is NULL", DBRES_ERROR);
     cloudsync_reset_error(data);
-    
+
     int rc;
     bool is_error = false;
     PG_TRY();
-    { 
+    {
         rc = SPI_execute(sql, true, 0);
     }
     PG_CATCH();
@@ -595,21 +595,33 @@ int database_exec_callback (cloudsync_context *data, const char *sql, int (*call
     // Call callback for each row if provided
     if (callback && SPI_tuptable) {
         TupleDesc tupdesc = SPI_tuptable->tupdesc;
-        if (!tupdesc) return cloudsync_set_error(data, "Invalid tuple descriptor", DBRES_ERROR);
-        
+        if (!tupdesc) {
+            SPI_freetuptable(SPI_tuptable);
+            return cloudsync_set_error(data, "Invalid tuple descriptor", DBRES_ERROR);
+        }
+
         int ncols = tupdesc->natts;
-        if (ncols <= 0) return DBRES_OK;
+        if (ncols <= 0) {
+            SPI_freetuptable(SPI_tuptable);
+            return DBRES_OK;
+        }
+
+        // IMPORTANT: Save SPI state before any callback can modify it.
+        // Callbacks may execute SPI queries which overwrite global SPI_tuptable.
+        // We must copy all data we need BEFORE calling any callbacks.
+        uint64 nrows = SPI_processed;
+        SPITupleTable *saved_tuptable = SPI_tuptable;
+
+        // No rows to process - free tuptable and return success
+        if (nrows == 0) {
+            SPI_freetuptable(saved_tuptable);
+            return DBRES_OK;
+        }
 
-        // Allocate arrays for column names and values
+        // Allocate array for column names (shared across all rows)
         char **names = cloudsync_memory_alloc(ncols * sizeof(char*));
         if (!names) {
-            if (SPI_tuptable) SPI_freetuptable(SPI_tuptable);
-            return DBRES_NOMEM;
-        }
-        char **values = cloudsync_memory_alloc(ncols * sizeof(char*));
-        if (!values) {
-            cloudsync_memory_free(names);
-            if (SPI_tuptable) SPI_freetuptable(SPI_tuptable);
+            SPI_freetuptable(saved_tuptable);
             return DBRES_NOMEM;
         }
 
@@ -623,50 +635,84 @@ int database_exec_callback (cloudsync_context *data, const char *sql, int (*call
             }
         }
 
-        // Process each row
-        for (uint64 row = 0; row < SPI_processed; row++) {
-            HeapTuple tuple = SPI_tuptable->vals[row];
-            if (!tuple) continue;
-
-            // Get values for this row
+        // Pre-extract ALL row values before calling any callbacks.
+        // This prevents SPI state corruption when callbacks run queries.
+        char ***all_values = cloudsync_memory_alloc(nrows * sizeof(char**));
+        if (!all_values) {
             for (int i = 0; i < ncols; i++) {
-                bool isnull;
-                SPI_getbinval(tuple, tupdesc, i + 1, &isnull);
-                values[i] = (isnull) ? NULL : SPI_getvalue(tuple, tupdesc, i + 1);
+                if (names[i]) cloudsync_memory_free(names[i]);
             }
+            cloudsync_memory_free(names);
+            SPI_freetuptable(saved_tuptable);
+            return DBRES_NOMEM;
+        }
 
-            // Call user callback
-            int cb_rc = callback(xdata, ncols, values, names);
-
-            // Cleanup values (SPI_getvalue uses palloc)
-            for (int i = 0; i < ncols; i++) {
-                if (values[i]) {
-                    pfree(values[i]);
-                    values[i] = NULL;
+        // Extract values from all tuples
+        for (uint64 row = 0; row < nrows; row++) {
+            HeapTuple tuple = saved_tuptable->vals[row];
+            all_values[row] = cloudsync_memory_alloc(ncols * sizeof(char*));
+            if (!all_values[row]) {
+                // Cleanup already allocated rows
+                for (uint64 r = 0; r < row; r++) {
+                    for (int c = 0; c < ncols; c++) {
+                        if (all_values[r][c]) pfree(all_values[r][c]);
+                    }
+                    cloudsync_memory_free(all_values[r]);
                 }
-            }
-            
-            if (cb_rc != 0) {
-                // Free our name copies
+                cloudsync_memory_free(all_values);
                 for (int i = 0; i < ncols; i++) {
                     if (names[i]) cloudsync_memory_free(names[i]);
                 }
                 cloudsync_memory_free(names);
-                cloudsync_memory_free(values);
+                SPI_freetuptable(saved_tuptable);
+                return DBRES_NOMEM;
+            }
+
+            if (!tuple) {
+                for (int i = 0; i < ncols; i++) all_values[row][i] = NULL;
+                continue;
+            }
+
+            for (int i = 0; i < ncols; i++) {
+                bool isnull;
+                SPI_getbinval(tuple, tupdesc, i + 1, &isnull);
+                all_values[row][i] = (isnull) ? NULL : SPI_getvalue(tuple, tupdesc, i + 1);
+            }
+        }
+
+        // Free SPI_tuptable BEFORE calling callbacks - we have all data we need
+        SPI_freetuptable(saved_tuptable);
+        SPI_tuptable = NULL;
+
+        // Now process each row - callbacks can safely run SPI queries
+        int result = DBRES_OK;
+        for (uint64 row = 0; row < nrows; row++) {
+            int cb_rc = callback(xdata, ncols, all_values[row], names);
+
+            if (cb_rc != 0) {
                 char errmsg[1024];
                 snprintf(errmsg, sizeof(errmsg), "database_exec_callback aborted %d", cb_rc);
-                rc = cloudsync_set_error(data, errmsg, DBRES_ABORT);
-                if (SPI_tuptable) SPI_freetuptable(SPI_tuptable);
-                return rc;
+                result = cloudsync_set_error(data, errmsg, DBRES_ABORT);
+                break;
             }
         }
 
-        // Free our name copies
+        // Cleanup all extracted values
+        for (uint64 row = 0; row < nrows; row++) {
+            for (int i = 0; i < ncols; i++) {
+                if (all_values[row][i]) pfree(all_values[row][i]);
+            }
+            cloudsync_memory_free(all_values[row]);
+        }
+        cloudsync_memory_free(all_values);
+
+        // Free column names
         for (int i = 0; i < ncols; i++) {
             if (names[i]) cloudsync_memory_free(names[i]);
         }
         cloudsync_memory_free(names);
-        cloudsync_memory_free(values);
+
+        return result;
     }
 
     if (SPI_tuptable) SPI_freetuptable(SPI_tuptable);
@@ -772,7 +818,7 @@ static int64_t database_count_bind (cloudsync_context *data, const char *sql, co
 
     int64_t count = 0;
     int rc = SPI_execute_with_args(sql, 1, argtypes, values, nulls, true, 0);
-    if (rc >= 0 && SPI_processed > 0) {
+    if (rc >= 0 && SPI_processed > 0 && SPI_tuptable) {
         bool isnull;
         Datum d = SPI_getbinval(SPI_tuptable->vals[0], SPI_tuptable->tupdesc, 1, &isnull);
         if (!isnull) count = DatumGetInt64(d);
@@ -1334,7 +1380,7 @@ int database_pk_names (cloudsync_context *data, const char *table_name, char ***
     char **pk_names = cloudsync_memory_zeroalloc(n * sizeof(char*));
     if (!pk_names) return DBRES_NOMEM;
 
-    for (int i = 0; i < n; i++) {
+    for (uint64_t i = 0; i < n; i++) {
         HeapTuple tuple = SPI_tuptable->vals[i];
         bool isnull;
         Datum datum = SPI_getbinval(tuple, SPI_tuptable->tupdesc, 1, &isnull);
@@ -1351,6 +1397,7 @@ int database_pk_names (cloudsync_context *data, const char *table_name, char ***
                 if (pk_names[j]) cloudsync_memory_free(pk_names[j]);
             }
             cloudsync_memory_free(pk_names);
+            if (SPI_tuptable) SPI_freetuptable(SPI_tuptable);
             return DBRES_NOMEM;
         }
     }
@@ -1843,14 +1890,14 @@ const void *database_column_blob (dbvm_t *vm, int index) {
         return NULL;
     }
 
-    int len = VARSIZE(ba) - VARHDRSZ;
+    Size len = VARSIZE(ba) - VARHDRSZ;
     void *out = palloc(len);
     if (!out) {
         MemoryContextSwitchTo(old);
         return NULL;
     }
 
-    memcpy(out, VARDATA(ba), len);
+    memcpy(out, VARDATA(ba), (size_t)len);
     MemoryContextSwitchTo(old);
 
     return out;