Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-16679

[Drafts]

    XMLWordPrintable

Details

    • Bug
    • Status: Open (View Workflow)
    • Major
    • Resolution: Unresolved
    • 10.3
    • None
    • None
    • None

    Description

      10.3 commit 358ae4b46dd52b329154c

      =================================================================
      		 
      ==25899==ERROR: AddressSanitizer: heap-use-after-free on address 0x60c000c04d30 at pc 0x55ae658cc46c bp 0x7f2c91ce9630 sp 0x7f2c91ce9620
      		 
      READ of size 1 at 0x60c000c04d30 thread T32
      		 
          #0 0x55ae658cc46b in Item_ident::print(String*, enum_query_type) /10.3/sql/item.cc:3320
      		 
          #1 0x55ae658ee323 in Item_field::print(String*, enum_query_type) /10.3/sql/item.cc:7802
      		 
          #2 0x55ae658b636e in Item::print_parenthesised(String*, enum_query_type, precedence) /10.3/sql/item.cc:584
      		 
          #3 0x55ae659a0a6a in Item_func::print_op(String*, enum_query_type) /10.3/sql/item_func.cc:620
      		 
          #4 0x55ae6518e4ca in Item_num_op::print(String*, enum_query_type) /10.3/sql/item_func.h:730
      		 
          #5 0x55ae658b636e in Item::print_parenthesised(String*, enum_query_type, precedence) /10.3/sql/item.cc:584
      		 
          #6 0x55ae653751fd in Item::print_for_table_def(String*) /10.3/sql/item.h:1416
      		 
          #7 0x55ae65375969 in Virtual_column_info::print(String*) /10.3/sql/item.h:6611
      		 
          #8 0x55ae6549246b in pack_expression /10.3/sql/unireg.cc:639
      		 
          #9 0x55ae654926e5 in pack_vcols /10.3/sql/unireg.cc:660
      		 
          #10 0x55ae6548ed0c in build_frm_image(THD*, st_mysql_const_lex_string const*, HA_CREATE_INFO*, List<Create_field>&, unsigned int, st_key*, handler*) /10.3/sql/unireg.cc:194
      		 
          #11 0x55ae653b31bc in mysql_create_frm_image(THD*, st_mysql_const_lex_string const*, st_mysql_const_lex_string const*, HA_CREATE_INFO*, Alter_info*, int, st_key**, unsigned int*, st_mysql_const_unsigned_lex_string*) /10.3/sql/sql_table.cc:4724
      		 
          #12 0x55ae653b45b5 in create_table_impl /10.3/sql/sql_table.cc:4963
      		 
          #13 0x55ae653d01b8 in mysql_alter_table(THD*, st_mysql_const_lex_string const*, st_mysql_const_lex_string const*, HA_CREATE_INFO*, TABLE_LIST*, Alter_info*, unsigned int, st_order*, bool) /10.3/sql/sql_table.cc:9592
      		 
          #14 0x55ae6550bf2f in Sql_cmd_alter_table::execute(THD*) /10.3/sql/sql_alter.cc:466
      		 
          #15 0x55ae651cd951 in mysql_execute_command(THD*) /10.3/sql/sql_parse.cc:6279
      		 
          #16 0x55ae651d85ab in mysql_parse(THD*, char*, unsigned int, Parser_state*, bool, bool) /10.3/sql/sql_parse.cc:8076
      		 
          #17 0x55ae651b31b6 in dispatch_command(enum_server_command, THD*, char*, unsigned int, bool, bool) /10.3/sql/sql_parse.cc:1847
      		 
          #18 0x55ae651b034e in do_command(THD*) /10.3/sql/sql_parse.cc:1392
      		 
          #19 0x55ae654fda7b in do_handle_one_connection(CONNECT*) /10.3/sql/sql_connect.cc:1402
      		 
          #20 0x55ae654fd458 in handle_one_connection /10.3/sql/sql_connect.cc:1308
      		 
          #21 0x7f2cbfe806b9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76b9)
      		 
          #22 0x7f2cbf31541c in clone (/lib/x86_64-linux-gnu/libc.so.6+0x10741c)


      =================================================================
      		 
      ==2191==ERROR: AddressSanitizer: heap-use-after-free on address 0x6110001c8380 at pc 0x55d611934cfa bp 0x7fbcc7621030 sp 0x7fbcc7621020
      		 
      READ of size 8 at 0x6110001c8380 thread T32
      		 
          #0 0x55d611934cf9 in maria_status /10.3/storage/maria/ma_info.c:59
      		 
          #1 0x55d611970518 in ha_maria::info(unsigned int) /10.3/storage/maria/ha_maria.cc:2518
      		 
          #2 0x55d612495867 in ha_partition::info(unsigned int) /10.3/sql/ha_partition.cc:8205
      		 
          #3 0x55d612467dea in ha_partition::update_create_info(HA_CREATE_INFO*) /10.3/sql/ha_partition.cc:2161
      		 
          #4 0x55d610fc5a3e in mysql_prepare_alter_table(THD*, TABLE*, HA_CREATE_INFO*, Alter_info*, Alter_table_ctx*) /10.3/sql/sql_table.cc:8487
      		 
          #5 0x55d610fca4d6 in mysql_alter_table(THD*, st_mysql_const_lex_string const*, st_mysql_const_lex_string const*, HA_CREATE_INFO*, TABLE_LIST*, Alter_info*, unsigned int, st_order*, bool) /10.3/sql/sql_table.cc:9408
      		 
          #6 0x55d611106f2f in Sql_cmd_alter_table::execute(THD*) /10.3/sql/sql_alter.cc:466
      		 
          #7 0x55d610dc8951 in mysql_execute_command(THD*) /10.3/sql/sql_parse.cc:6279
      		 
          #8 0x55d610dd35ab in mysql_parse(THD*, char*, unsigned int, Parser_state*, bool, bool) /10.3/sql/sql_parse.cc:8076
      		 
          #9 0x55d610dae1b6 in dispatch_command(enum_server_command, THD*, char*, unsigned int, bool, bool) /10.3/sql/sql_parse.cc:1847
      		 
          #10 0x55d610dab34e in do_command(THD*) /10.3/sql/sql_parse.cc:1392
      		 
          #11 0x55d6110f8a7b in do_handle_one_connection(CONNECT*) /10.3/sql/sql_connect.cc:1402
      		 
          #12 0x55d6110f8458 in handle_one_connection /10.3/sql/sql_connect.cc:1308
      		 
          #13 0x7fbcf57b66b9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76b9)
      		 
          #14 0x7fbcf4c4b41c in clone (/lib/x86_64-linux-gnu/libc.so.6+0x10741c)
      		 
      


       
      		 
      ==7586==ERROR: AddressSanitizer: heap-use-after-free on address 0x6110000a1880 at pc 0x564cad92dcfa bp 0x7fbb52d9fea0 sp 0x7fbb52d9fe90
      		 
      READ of size 8 at 0x6110000a1880 thread T32
      		 
          #0 0x564cad92dcf9 in maria_status /10.3/storage/maria/ma_info.c:59
      		 
          #1 0x564cad969518 in ha_maria::info(unsigned int) /10.3/storage/maria/ha_maria.cc:2518
      		 
          #2 0x564cae48e867 in ha_partition::info(unsigned int) /10.3/sql/ha_partition.cc:8205
      		 
          #3 0x564cae460dea in ha_partition::update_create_info(HA_CREATE_INFO*) /10.3/sql/ha_partition.cc:2161
      		 
          #4 0x564cacf3854a in get_schema_tables_record /10.3/sql/sql_show.cc:5478
      		 
          #5 0x564cacf3189b in fill_schema_table_by_open /10.3/sql/sql_show.cc:4598
      		 
          #6 0x564cacf34c87 in get_all_tables(THD*, TABLE_LIST*, Item*) /10.3/sql/sql_show.cc:5203
      		 
          #7 0x564cacf638d0 in get_schema_tables_result(JOIN*, enum_schema_table_state) /10.3/sql/sql_show.cc:8765
      		 
          #8 0x564cace60f3c in JOIN::exec_inner() /10.3/sql/sql_select.cc:3974
      		 
          #9 0x564cace5f2b7 in JOIN::exec() /10.3/sql/sql_select.cc:3805
      		 
          #10 0x564cace62689 in mysql_select(THD*, TABLE_LIST*, unsigned int, List<Item>&, Item*, unsigned int, st_order*, st_order*, Item*, st_order*, unsigned long long, select_result*, st_select_lex_unit*, st_select_lex*) /10.3/sql/sql_select.cc:4210
      		 
          #11 0x564cace3dfd2 in handle_select(THD*, LEX*, select_result*, unsigned long) /10.3/sql/sql_select.cc:382
      		 
          #12 0x564cacdc3bc1 in execute_sqlcom_select /10.3/sql/sql_parse.cc:6541
      		 
          #13 0x564cacdb23d4 in mysql_execute_command(THD*) /10.3/sql/sql_parse.cc:3764
      		 
          #14 0x564cacdcc5ab in mysql_parse(THD*, char*, unsigned int, Parser_state*, bool, bool) /10.3/sql/sql_parse.cc:8076
      		 
          #15 0x564cacda71b6 in dispatch_command(enum_server_command, THD*, char*, unsigned int, bool, bool) /10.3/sql/sql_parse.cc:1847
      		 
          #16 0x564cacda434e in do_command(THD*) /10.3/sql/sql_parse.cc:1392
      		 
          #17 0x564cad0f1a7b in do_handle_one_connection(CONNECT*) /10.3/sql/sql_connect.cc:1402
      		 
          #18 0x564cad0f1458 in handle_one_connection /10.3/sql/sql_connect.cc:1308
      		 
          #19 0x7fbb80f456b9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76b9)
      		 
          #20 0x7fbb803da41c in clone (/lib/x86_64-linux-gnu/libc.so.6+0x10741c)

      10.3 dbc0d576a3f402ae52

      		 
          ==23930==ERROR: AddressSanitizer: heap-use-after-free on address 0x6290078e6290 at pc 0x55e53ed84806 bp 0x7fe1c4097cc0 sp 0x7fe1c4097cb0
      		 
      READ of size 8 at 0x6290078e6290 thread T33
      		 
          #0 0x55e53ed84805 in ha_maria::store_lock(THD*, st_thr_lock_data**, thr_lock_type) /10.3/storage/maria/ha_maria.cc:3008
      		 
          #1 0x55e53eb45986 in get_lock_data(THD*, TABLE**, unsigned int, unsigned int) /10.3/sql/lock.cc:793
      		 
          #2 0x55e53eb41d17 in mysql_lock_tables(THD*, TABLE**, unsigned int, unsigned int) /10.3/sql/lock.cc:301
      		 
          #3 0x55e53e064a58 in lock_tables(THD*, TABLE_LIST*, unsigned int, unsigned int) /10.3/sql/sql_base.cc:5260
      		 
          #4 0x55e53e06321e in open_and_lock_tables(THD*, DDL_options_st const&, TABLE_LIST*, bool, unsigned int, Prelocking_strategy*) /10.3/sql/sql_base.cc:5005
      		 
          #5 0x55e53dfdb10b in open_and_lock_tables(THD*, TABLE_LIST*, bool, unsigned int) /10.3/sql/sql_base.h:502
      		 
          #6 0x55e53e110a6d in mysql_insert(THD*, TABLE_LIST*, List<Item>&, List<List<Item> >&, List<Item>&, List<Item>&, enum_duplicates, bool) /10.3/sql/sql_insert.cc:760
      		 
          #7 0x55e53e1a8174 in mysql_execute_command(THD*) /10.3/sql/sql_parse.cc:4726
      		 
          #8 0x55e53e1bd989 in mysql_parse(THD*, char*, unsigned int, Parser_state*, bool, bool) /10.3/sql/sql_parse.cc:8089
      		 
          #9 0x55e53e1984aa in dispatch_command(enum_server_command, THD*, char*, unsigned int, bool, bool) /10.3/sql/sql_parse.cc:1857
      		 
          #10 0x55e53e195610 in do_command(THD*) /10.3/sql/sql_parse.cc:1403
      		 
          #11 0x55e53e4ea3fd in do_handle_one_connection(CONNECT*) /10.3/sql/sql_connect.cc:1402
      		 
          #12 0x55e53e4e9dda in handle_one_connection /10.3/sql/sql_connect.cc:1308
      		 
          #13 0x7fe1f96286b9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76b9)
      		 
          #14 0x7fe1f8abd41c in clone (/lib/x86_64-linux-gnu/libc.so.6+0x10741c)

      Attachments

        Activity

          People

            alice Alice Sherepa
            alice Alice Sherepa
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.