Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-16660

Possibly inadequate stack overflow checks in the PL/SQL parser

    Details

    • Type: Bug
    • Status: Open (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 10.3
    • Fix Version/s: 10.3, 10.4
    • Component/s: Parser
    • Labels:

      Description

      When the code is compiled with Clang 6.0.3 and cmake -DCMAKE_BUILD_TYPE=Debug -DWITH_ASAN:BOOL=ON, 3 of these 4 tests will cause a server crash instead of reporting a stack overflow error. If -O1 is added to CMAKE_C_FLAGS and CMAKE_CXX_FLAGS, then these tests will pass:

      ASAN_OPTIONS=abort_on_error=1,disable_coredump=0,detect_leaks=0 ./mtr --parallel=auto --force --retry=0 --max-test-fail=0 compat/oracle.parser compat/oracle.sp-package compat/oracle.sp-package-mysqldump compat/oracle.sp-package-security
      

      10.3 71144afa966a85d08053eb616a1021fd339102d1

      CURRENT_TEST: compat/oracle.sp-package-mysqldump
      mysqltest: At line 42: query 'CALL p1' failed: 2013: Lost connection to MySQL server during query
      CURRENT_TEST: compat/oracle.sp-package
      mysqltest: At line 1470: query 'CALL pack.p1('p2 pack.p3')' failed: 2013: Lost connection to MySQL server during query
      CURRENT_TEST: compat/oracle.parser
      mysqltest: At line 73: query 'CALL p2('date')' failed: 1436: Thread stack overrun:  240640 bytes used of a 299008 byte stack, and 81920 bytes needed.  Use 'mysqld --thread_stack=#' to specify a bigger stack
      CURRENT_TEST: compat/oracle.sp-package-security
      mysqltest: At line 233: query 'GRANT EXECUTE ON PACKAGE BODY db1.pkg1 TO u1@localhost' failed: 2013: Lost connection to MySQL server during query
      

        Attachments

          Activity

            People

            • Assignee:
              bar Alexander Barkov
              Reporter:
              marko Marko Mäkelä
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: