Fix aggregate function processing to correctly deal with OOMs inside of

sqlite3ParserAddCleanup(). (dbsqlfuzz b2d11ca70e55ee8bde48ae0b53fa3e9355812f95). Also add improved testing support by causing sqlite3FaultSim(300) to simulate an OOM inside of sqlite3ParserAddCleanup() and by adding improved fault-sim support to the CLI. FossilOrigin-Name: c6fd70b3c23fa00eaac9286d4a67e5c8ac76f926c11c220250c34032647bedc1
author: drh <> 2024-05-10 18:24:15 +0000
committer: drh <> 2024-05-10 18:24:15 +0000
commit: 5d783d5c8490d1f115732e803152cf00b4ee4e15 (patch)
tree: 1955c55aefcb7f714c22620d5ced2705bcba5e93 /src/expr.c
parent: 8292aa7a18da4d4f5b927bf396479f460ff6d041 (diff)
parent: e09e451a48f0e1ef74e15b3469f2dd78dee349a8 (diff)
download: sqlite-5d783d5c8490d1f115732e803152cf00b4ee4e15.tar.gz
sqlite-5d783d5c8490d1f115732e803152cf00b4ee4e15.zip
1 files changed, 6 insertions, 8 deletions
diff --git a/src/expr.c b/src/expr.c
index a5272df7c..27f89d659 100644
--- a/src/expr.c
+++ b/src/expr.c
@@ -1443,11 +1443,11 @@ void sqlite3ClearOnOrUsing(sqlite3 *db, OnOrUsing *p){
 **
 ** The pExpr might be deleted immediately on an OOM error.
 **
-** The deferred delete is (currently) implemented by adding the
-** pExpr to the pParse->pConstExpr list with a register number of 0.
+** Return 0 if the delete was successfully deferred.  Return non-zero
+** if the delete happened immediately because of an OOM.
 */
-void sqlite3ExprDeferredDelete(Parse *pParse, Expr *pExpr){
-  sqlite3ParserAddCleanup(pParse, sqlite3ExprDeleteGeneric, pExpr);
+int sqlite3ExprDeferredDelete(Parse *pParse, Expr *pExpr){
+  return 0==sqlite3ParserAddCleanup(pParse, sqlite3ExprDeleteGeneric, pExpr);
 }
 
 /* Invoke sqlite3RenameExprUnmap() and sqlite3ExprDelete() on the
@@ -6681,9 +6681,8 @@ static int agginfoPersistExprCb(Walker *pWalker, Expr *pExpr){
        && pAggInfo->aCol[iAgg].pCExpr==pExpr
       ){
         pExpr = sqlite3ExprDup(db, pExpr, 0);
-        if( pExpr ){
+        if( pExpr && !sqlite3ExprDeferredDelete(pParse, pExpr) ){
           pAggInfo->aCol[iAgg].pCExpr = pExpr;
-          sqlite3ExprDeferredDelete(pParse, pExpr);
         }
       }
     }else{
@@ -6692,9 +6691,8 @@ static int agginfoPersistExprCb(Walker *pWalker, Expr *pExpr){
        && pAggInfo->aFunc[iAgg].pFExpr==pExpr
       ){
         pExpr = sqlite3ExprDup(db, pExpr, 0);
-        if( pExpr ){
+        if( pExpr && !sqlite3ExprDeferredDelete(pParse, pExpr) ){
           pAggInfo->aFunc[iAgg].pFExpr = pExpr;
-          sqlite3ExprDeferredDelete(pParse, pExpr);
         }
       }
     }
author	drh <>	2024-05-10 18:24:15 +0000
committer	drh <>	2024-05-10 18:24:15 +0000
commit	5d783d5c8490d1f115732e803152cf00b4ee4e15 (patch)
tree	1955c55aefcb7f714c22620d5ced2705bcba5e93 /src/expr.c
parent	8292aa7a18da4d4f5b927bf396479f460ff6d041 (diff)
parent	e09e451a48f0e1ef74e15b3469f2dd78dee349a8 (diff)
download	sqlite-5d783d5c8490d1f115732e803152cf00b4ee4e15.tar.gz sqlite-5d783d5c8490d1f115732e803152cf00b4ee4e15.zip