dbm_nextkey: Always return an error if we've reached the end of the database
ClosedPublic
Actions

Authored by bnovkov on Jul 30 2025, 2:57 PM.

Details

Reviewers

markj

Group Reviewers

Klara

Commits

rG3a686b851f8f: dbm_nextkey: Always return an error if we've reached the end of the database

Summary

POSIX.1 states that dbm_nextkey must return an invalid key
(i.e., key.dptr == NULL) after the end of the database was reached.
The current implementation of hash_seq will incorrectly restart
the key sequence after the end of the database is reached.

Fix this by checking the "current bucket" index when R_NEXT is passed.

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

bnovkov created this revision.Jul 30 2025, 2:57 PM

Herald added a subscriber: imp. · View Herald TranscriptJul 30 2025, 2:57 PM

bnovkov requested review of this revision.Jul 30 2025, 2:57 PM

Harbormaster completed remote builds in B65848: Diff 159445.Jul 30 2025, 2:57 PM

Remove stray newline.

markj added a subscriber: markj.Jul 31 2025, 2:03 PM

markj added inline comments.

lib/libc/db/hash/hash.c
718	Is it legal to call this routine with `flag == 0`? The check above suggests so, but within libc there are no such calls. Are consumers allowed to call `db->seq()` directly?

Address @markj 's comments.

lib/libc/db/hash/hash.c
718	Good catch, thanks. Consumers can call `db->seq()` directly, I've placed an additional check for `flag == 0`.

markj accepted this revision as: markj.Jul 31 2025, 3:09 PM

markj added inline comments.

lib/libc/db/hash/hash.c
707	The `!flag` test is redundant.

This revision is now accepted and ready to land.Jul 31 2025, 3:09 PM

Closed by commit rG3a686b851f8f: dbm_nextkey: Always return an error if we've reached the end of the database (authored by bnovkov). · Explain WhyJul 31 2025, 3:29 PM

This revision was automatically updated to reflect the committed changes.

bnovkov added a commit: rG3a686b851f8f: dbm_nextkey: Always return an error if we've reached the end of the database.

I think this commit breaks the case, when cursor is not yet set:

R_NEXT  Retrieve the key/data pair immediately after the cursor.
        If the cursor is not yet set, this is the same as the
        R_FIRST flag.

at least we found that now it is required to pass R_FIRST in the read loop:

+       flags = R_FIRST;
-       while ((ret = dbh->seq(dbh, &keycol, &valuecol, R_NEXT)) == 0) {
+       while ((ret = dbh->seq(dbh, &keycol, &valuecol, flags)) == 0) {
+               if (flags == R_FIRST)
+                       flags = R_NEXT;

otherwise the application didn't see any entries in db file.

lytboris_gmail.com added a subscriber: lytboris_gmail.com.Thu, Jun 4, 2:04 PM

In D51635#1315903, @ae wrote:
I think this commit breaks the case, when cursor is not yet set:
R_NEXT  Retrieve the key/data pair immediately after the cursor.
        If the cursor is not yet set, this is the same as the
        R_FIRST flag.
at least we found that now it is required to pass R_FIRST in the read loop:
+       flags = R_FIRST;
-       while ((ret = dbh->seq(dbh, &keycol, &valuecol, R_NEXT)) == 0) {
+       while ((ret = dbh->seq(dbh, &keycol, &valuecol, flags)) == 0) {
+               if (flags == R_FIRST)
+                       flags = R_NEXT;
otherwise the application didn't see any entries in db file.

Thank you for letting me know, I've created a fix for this in D57670.