[MCOL-4728] Query with unusual use of aggregate functions on ColumnStore table crashes MariaDB Server - Jira

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 5.5.1
Fix Version/s: 6.2.1, 6.2.2
Component/s: None
Labels:
- crash

Sprint:
2021-10, 2021-11

Description

A query was discovered that can kill the MariaDB process:

MariaDB [nn]> alter table t engine='innodb';

Query OK, 0 rows affected (0.118 sec)

Records: 0  Duplicates: 0  Warnings: 0

MariaDB [nn]> SELECT sum(0+0)-sum(0+0) from t;

+-------------------+

| sum(0+0)-sum(0+0) |

+-------------------+

|              NULL |

+-------------------+

1 row in set (0.000 sec)

MariaDB [nn]> alter table t engine='columnstore';

Query OK, 0 rows affected (0.094 sec)

Records: 0  Duplicates: 0  Warnings: 0

MariaDB [nn]> SELECT sum(0+0)-sum(0+0) from t;

ERROR 2013 (HY000): Lost connection to MySQL server during query

MariaDB [nn]>

Here are some variations on the same query:

MariaDB [nn]> select sum(null) from t;

+-----------+

| sum(null) |

+-----------+

|      NULL |

+-----------+

1 row in set (0.042 sec)

MariaDB [nn]> select sum(null)-sum(null) from t;

ERROR 2013 (HY000): Lost connection to MySQL server during query

MariaDB [nn]> select avg(null)-avg(null) from t;

ERROR 2013 (HY000): Lost connection to MySQL server during query

Looking in the mariadb.err file:

210518 12:38:21 [ERROR] mysqld got signal 11 ;

This could be because you hit a bug. It is also possible that this binary

...

Attachments

Activity

Ascending order - Click to sort in descending order

Edward Stoever created issue - 2021-05-18 16:49

Edward Stoever made changes - 2021-05-18 16:52

Field	Original Value	New Value
Description	A query was discovered that can kill the MariaDB process: {{monospaced text}} MariaDB [nn]> alter table t engine='innodb'; Query OK, 0 rows affected (0.118 sec) Records: 0 Duplicates: 0 Warnings: 0 MariaDB [nn]> SELECT sum(0+0)-sum(0+0) from t; +-------------------+ \| sum(0+0)-sum(0+0) \| +-------------------+ \| NULL \| +-------------------+ 1 row in set (0.000 sec) MariaDB [nn]> alter table t engine='columnstore'; Query OK, 0 rows affected (0.094 sec) Records: 0 Duplicates: 0 Warnings: 0 MariaDB [nn]> SELECT sum(0+0)-sum(0+0) from t; ERROR 2013 (HY000): Lost connection to MySQL server during query MariaDB [nn]> Here are some variations on the same query: MariaDB [nn]> select sum(null) from t; +-----------+ \| sum(null) \| +-----------+ \| NULL \| +-----------+ 1 row in set (0.042 sec) MariaDB [nn]> select sum(null)-sum(null) from t; ERROR 2013 (HY000): Lost connection to MySQL server during query MariaDB [nn]> select avg(null)-avg(null) from t; ERROR 2013 (HY000): Lost connection to MySQL server during query {{monospaced text}} Looking in the mariadb.err file: {{monospaced text}} 210518 12:38:21 [ERROR] mysqld got signal 11 ; This could be because you hit a bug. It is also possible that this binary ... {{monospaced text}}	A query was discovered that can kill the MariaDB process: {noformat} MariaDB [nn]> alter table t engine='innodb'; Query OK, 0 rows affected (0.118 sec) Records: 0 Duplicates: 0 Warnings: 0 MariaDB [nn]> SELECT sum(0+0)-sum(0+0) from t; +-------------------+ \| sum(0+0)-sum(0+0) \| +-------------------+ \| NULL \| +-------------------+ 1 row in set (0.000 sec) MariaDB [nn]> alter table t engine='columnstore'; Query OK, 0 rows affected (0.094 sec) Records: 0 Duplicates: 0 Warnings: 0 MariaDB [nn]> SELECT sum(0+0)-sum(0+0) from t; ERROR 2013 (HY000): Lost connection to MySQL server during query MariaDB [nn]> Here are some variations on the same query: MariaDB [nn]> select sum(null) from t; +-----------+ \| sum(null) \| +-----------+ \| NULL \| +-----------+ 1 row in set (0.042 sec) MariaDB [nn]> select sum(null)-sum(null) from t; ERROR 2013 (HY000): Lost connection to MySQL server during query MariaDB [nn]> select avg(null)-avg(null) from t; ERROR 2013 (HY000): Lost connection to MySQL server during query {noformat} Looking in the mariadb.err file: {noformat} 210518 12:38:21 [ERROR] mysqld got signal 11 ; This could be because you hit a bug. It is also possible that this binary ... {noformat}

Todd Stoffel (Inactive) made changes - 2021-06-10 18:43

Fix Version/s

Icebox [ 22302 ]

Todd Stoffel (Inactive) made changes - 2021-06-10 18:44

Rank

Ranked higher

Todd Stoffel (Inactive) made changes - 2021-06-23 16:10

Status

Open [ 1 ]

Confirmed [ 10101 ]

Todd Stoffel (Inactive) made changes - 2021-06-23 16:10

Fix Version/s		6.1.2 [ 26035 ]
Fix Version/s	Icebox [ 22302 ]

Todd Stoffel (Inactive) made changes - 2021-07-08 23:37

Rank

Ranked higher

Chris Calender (Inactive) made changes - 2021-07-29 18:12

Assignee

Gregory Dorman [ gdorman ]

Chris Calender (Inactive) made changes - 2021-08-12 17:56

Assignee

Gregory Dorman [ gdorman ]

Alexander Barkov [ bar ]

Alexander Barkov added a comment - 2021-09-03 01:18

Reproducible with this script:

SET columnstore_select_handler=ON;

DROP TABLE IF EXISTS t1;

CREATE TABLE t1 (a INT) ENGINE=ColumnStore;

SELECT SUM(0+0)-SUM(0+0) FROM t1;

It also crashes with the following queries:

SELECT SUM(0) FROM t1;

SELECT COUNT(0) FROM t1;

SELECT MAX(0) FROM t1;

Alexander Barkov added a comment - 2021-09-03 01:18 Reproducible with this script: SET columnstore_select_handler= ON ; DROP TABLE IF EXISTS t1; CREATE TABLE t1 (a INT ) ENGINE=ColumnStore; SELECT SUM (0+0)- SUM (0+0) FROM t1; It also crashes with the following queries: SELECT SUM (0) FROM t1; SELECT COUNT (0) FROM t1; SELECT MAX (0) FROM t1;

Alexander Barkov made changes - 2021-09-16 03:42

Status

Confirmed [ 10101 ]

In Progress [ 3 ]

Alexander Barkov added a comment - 2021-09-16 06:15

More observations:

This query works fine:

SELECT SUM(1)+1 FROM t1;

This query crashes:

SELECT SUM(COALESCE(1))+1 FROM t1;

Alexander Barkov added a comment - 2021-09-16 06:15 More observations: This query works fine: SELECT SUM (1)+1 FROM t1; This query crashes: SELECT SUM ( COALESCE (1))+1 FROM t1;

Alexander Barkov added a comment - 2021-09-16 08:29

Also crashes with this query:

SELECT sum(rand(0))+1 FROM t1;

Alexander Barkov added a comment - 2021-09-16 08:29 Also crashes with this query: SELECT sum (rand(0))+1 FROM t1;

Alexander Barkov made changes - 2021-09-17 13:40

Assignee	Alexander Barkov [ bar ]	Denis Khalikov [ JIRAUSER48434 ]
Status	In Progress [ 3 ]	In Review [ 10002 ]

Gregory Dorman (Inactive) made changes - 2021-09-20 14:53

Sprint

2021-10 [ 549 ]

Gregory Dorman (Inactive) made changes - 2021-09-20 14:53

Rank

Ranked higher

Denis Khalikov (Inactive) made changes - 2021-09-20 15:14

Status

In Review [ 10002 ]

In Testing [ 10301 ]

Denis Khalikov (Inactive) made changes - 2021-09-20 15:14

Assignee

Denis Khalikov [ JIRAUSER48434 ]

Daniel Lee [ dleeyh ]

Gregory Dorman (Inactive) made changes - 2021-09-20 16:34

Sprint

2021-10 [ 549 ]

2021-10, 2021-11 [ 549, 567 ]

Daniel Lee (Inactive) added a comment - 2021-09-21 19:32

Build verified: 6.2.1-1 (#3120)

Verified test cases in the ticket.

Daniel Lee (Inactive) added a comment - 2021-09-21 19:32 Build verified: 6.2.1-1 (#3120) Verified test cases in the ticket.

Daniel Lee (Inactive) made changes - 2021-09-21 19:32

Resolution		Fixed [ 1 ]
Status	In Testing [ 10301 ]	Closed [ 6 ]

David Hall (Inactive) made changes - 2021-12-10 22:51

Fix Version/s

6.2.2 [ 27000 ]

Jira Automation (IT) made changes - 2024-07-04 13:05

Zendesk Related Tickets

115526

People

Assignee:: Daniel Lee (Inactive)

Reporter:: Edward Stoever

Votes:: 1 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 2021-05-18 16:49

Updated:: 2024-07-08 01:37

Resolved:: 2021-09-21 19:32

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.

MariaDB ColumnStore

Details

Description

Attachments

Activity

People

Dates

Git Integration