Fix unsafe usage of strerror(errno) within ereport().

tglsfdc · tglsfdc · commit 81256cd05f07 · 2018-05-21T00:32:28.000-04:00
This is the converse of the unsafe-usage-of-%m problem: the reason
ereport/elog provide that format code is mainly to dodge the hazard
of errno getting changed before control reaches functions within the
arguments of the macro.  I only found one instance of this hazard,
but it's been there since 9.4 :-(.
diff --git a/src/backend/libpq/auth.c b/src/backend/libpq/auth.c
@@ -2041,10 +2041,12 @@ auth_peer(hbaPort *port)
 	pw = getpwuid(uid);
 	if (!pw)
 	{
+		int			save_errno = errno;
+
 		ereport(LOG,
 				(errmsg("could not look up local user ID %ld: %s",
 						(long) uid,
-						errno ? strerror(errno) : _("user does not exist"))));
+						save_errno ? strerror(save_errno) : _("user does not exist"))));
 		return STATUS_ERROR;
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -2041,10 +2041,12 @@ auth_peer(hbaPort *port)`
`2041`	`2041`	`pw = getpwuid(uid);`
`2042`	`2042`	`if (!pw)`
`2043`	`2043`	`{`
	`2044`	`+ int save_errno = errno;`
	`2045`	`+`
`2044`	`2046`	`ereport(LOG,`
`2045`	`2047`	`(errmsg("could not look up local user ID %ld: %s",`
`2046`	`2048`	`(long) uid,`
`2047`		`- errno ? strerror(errno) : _("user does not exist"))));`
	`2049`	`+ save_errno ? strerror(save_errno) : _("user does not exist"))));`
`2048`	`2050`	`return STATUS_ERROR;`
`2049`	`2051`	`}`
`2050`	`2052`