Re: Optimizing nbtree ScalarArrayOp execution, allowing multi-column ordered scans, skip scan
Peter Geoghegan <pg@bowt.ie>
Commits
GET /api/v1/messages/:b64id/commits
the thread's linked commits as JSON, with link sources.
API reference →
-
Move nbtree preprocessing into new .c file.
- 597b1ffbf123 18.0 landed
-
Fix nbtree lookahead overflow bug.
- 09a8407dbfd8 18.0 landed
- 6749d4aabe74 17.0 landed
-
Remove unneeded nbtree array preprocessing assert.
- 480bc6e3ed3a 17.0 landed
-
Don't try to fix eliminated nbtree array scan keys.
- f22e17f76cf5 17.0 landed
-
Remove redundant nbtree preprocessing assertions.
- 3b08133cd13c 17.0 landed
-
Avoid extra lookups with nbtree array inequalities.
- 473411fc5115 17.0 landed
-
Enhance nbtree ScalarArrayOp execution.
- 5bf748b86bc6 17.0 landed
-
Improvements and fixes for e0b1ee17dc
- 7e6fb5da41d8 17.0 cited
-
Skip checking of scan keys required for directional scan in B-tree
- e0b1ee17dc3a 17.0 cited
-
Fix btmarkpos/btrestrpos array key wraparound bug.
- 714780dcddf0 17.0 cited
-
Add nbtree high key "continuescan" optimization.
- 29b64d1de7c7 12.0 cited
-
Consider secondary factors during nbtree splits.
- fab250243387 12.0 cited
-
Make heap TID a tiebreaker nbtree index column.
- dd299df8189b 12.0 cited
-
Fix planning of btree index scans using ScalarArrayOpExpr quals.
- 807a40c551dd 9.3.0 cited
-
Fix btree stop-at-nulls logic properly.
- 882368e854b6 9.2.0 cited
-
Teach btree to handle ScalarArrayOpExpr quals natively.
- 9e8da0f75731 9.2.0 cited
On Sun, Apr 7, 2024 at 8:48 PM Tom Lane <tgl@sss.pgh.pa.us> wrote: > > Coverity pointed out something that looks like a potentially live > problem in 5bf748b86: > > /srv/coverity/git/pgsql-git/postgresql/src/backend/access/nbtree/nbtutils.c: 2950 in _bt_preprocess_keys() > 2944 * need to make sure that we don't throw away an array > 2945 * scan key. _bt_compare_scankey_args expects us to > 2946 * always keep arrays (and discard non-arrays). > 2947 */ > 2948 Assert(j == (BTEqualStrategyNumber - 1)); > 2949 Assert(xform[j].skey->sk_flags & SK_SEARCHARRAY); > >>> CID 1596256: Null pointer dereferences (FORWARD_NULL) > >>> Dereferencing null pointer "array". > 2950 Assert(xform[j].ikey == array->scan_key); > 2951 Assert(!(cur->sk_flags & SK_SEARCHARRAY)); > 2952 } > 2953 } > 2954 else if (j == (BTEqualStrategyNumber - 1)) > > Above this there is an assertion > > Assert(!array || array->num_elems > 0); > > which certainly makes it look like array->scan_key could be > a null-pointer dereference. But the "Assert(xform[j].ikey == array->scan_key)" assertion is located in a block where it's been established that the scan key (the one stored in xform[j] at this point in execution) must have an array. It has been marked SK_SEARCHARRAY, and uses the equality strategy, so it had better have one or we're in big trouble either way. This is probably very hard for tools like Coverity to understand. We also rely on the fact that only one of the two scan keys (only one of the pair of scan keys that were passed to _bt_compare_scankey_args) can have an array at the point of the assertion that Coverity finds suspicious. It's possible that both of those scan keys actually did have arrays, but _bt_compare_scankey_args just treats that as a case of being unable to prove which scan key was redundant/contradictory due to a lack of suitable cross-type support -- so the assertion won't be reached. Would Coverity stop complaining if I just removed the assertion? I could just do that, I suppose, but that seems backwards to me. -- Peter Geoghegan