From ba9b9a6e6220b47b92a477e9dc663456ef04cd24 Mon Sep 17 00:00:00 2001 From: Tom Lane Date: Tue, 17 Aug 2004 23:16:07 +0000 Subject: [PATCH] Fix bug introduced into _bt_getstackbuf() on 2003-Feb-21: the initial value of 'start' could be past the end of the page, if the page was split by some concurrent inserting process since we visited it. In this situation the code could look at bogus entries and possibly find a match (since after all those entries still contain what they had before the split). This would lead to 'specified item offset is too large' followed by 'PANIC: failed to add item to the page', as reported by Joe Conway for scenarios involving heavy concurrent insertion activity. --- src/backend/access/nbtree/nbtinsert.c | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/src/backend/access/nbtree/nbtinsert.c b/src/backend/access/nbtree/nbtinsert.c index 27c833408d6..d2644b25dde 100644 --- a/src/backend/access/nbtree/nbtinsert.c +++ b/src/backend/access/nbtree/nbtinsert.c @@ -8,7 +8,7 @@ * * * IDENTIFICATION - * $Header: /cvsroot/pgsql/src/backend/access/nbtree/nbtinsert.c,v 1.106 2003/09/25 06:57:57 petere Exp $ + * $Header: /cvsroot/pgsql/src/backend/access/nbtree/nbtinsert.c,v 1.106.2.1 2004/08/17 23:16:07 tgl Exp $ * *------------------------------------------------------------------------- */ @@ -1315,6 +1315,13 @@ _bt_getstackbuf(Relation rel, BTStack stack, int access) if (start < minoff) start = minoff; + /* + * Need this check too, to guard against possibility that page + * split since we visited it originally. + */ + if (start > maxoff) + start = OffsetNumberNext(maxoff); + /* * These loops will check every item on the page --- but in an * order that's attuned to the probability of where it