[MDEV-19660] wsrep_rec_get_foreign_key() is dereferencing a stale pointer to a page that was previously latched - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 5.5.33a-galera, 10.0.19-galera, 10.1.6, 10.2.0, 10.3.0, 10.4.0
Fix Version/s: 10.2.26, 10.1.41, 10.3.17, 10.4.7
Component/s: Galera, Storage Engine - InnoDB, Storage Engine - XtraDB
Labels:

Description

In row_ins_foreign_check_on_constraint(), clustered index record is being passed to wsrep_append_foreign_key() after releasing the latch. If a record has been changed by other thread in the meantime then it could lead to a crash when
wsrep_rec_get_foreign_key () tries to access the record.

The following is the problematic code :

        btr_pcur_store_position(pcur, mtr);

        if (index == clust_index) {

                btr_pcur_copy_stored_position(cascade->pcur, pcur);

        } else {

                btr_pcur_store_position(cascade->pcur, mtr);

        mtr_commit(mtr);

        ut_a(cascade->pcur->rel_pos == BTR_PCUR_ON);

        cascade->state = UPD_NODE_UPDATE_CLUSTERED;

#ifdef WITH_WSREP

        err = wsrep_append_foreign_key(

                                        thr_get_trx(thr),

                                        foreign,

                                        clust_rec,

                                        clust_index,

                                        FALSE,

                                        (node) ? TRUE : FALSE);

Attachments

Activity

People

Assignee:: Jan Lindström (Inactive)

Reporter:: Thirunarayanan Balathandayuthapani

Votes:: 1 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 2019-05-31 11:26

Updated:: 2024-07-07 22:47

Resolved:: 2019-07-09 12:17

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.