MDEV-28315 Fix ASAN stack-buffer-overflow in String::copy_aligned

Starting since this commit 36cdd5c3cd there is an ASAN stack-buffer-overflow error because we append a NULL terminator beyond the length of memory allocated. Reviewed by: Monty and Nayuta Yanagisawa
2025-07-18 23:03:28 +03:00 · 2022-08-01 04:27:33 -07:00
parent 63478e72de
commit 84d26f98c7
4 changed files with 24 additions and 2 deletions
--- a/sql/sql_string.h
+++ b/sql/sql_string.h
@ -690,7 +690,7 @@ public:

      Note that if arg_length == Alloced_length then we don't allocate.
      This ensures we don't do any extra allocations in protocol and String:int,
-      but the string will not be atomically null terminated if c_ptr() is not
+      but the string will not be automatically null terminated if c_ptr() is not
      called.
    */
    if (arg_length <= Alloced_length && Alloced_length)