# Keep testcase repeating until mysqld crashes (one time often if not always enough on debug, optimized may take 2-x attempts)
|
USE test;
|
SET SQL_MODE='';
|
SET SESSION enforce_storage_engine=MEMORY;
|
SET SESSION optimizer_trace='enabled=on';
|
CREATE TABLE t1( a INT, b INT, KEY( a ) ) ;
|
SELECT MAX(a), SUM(MAX(a)) OVER () FROM t1 WHERE a > 10;
|
SELECT * FROM information_schema.session_variables WHERE variable_name='innodb_ft_min_token_size';
|
UPDATE t1 SET b=REPEAT(LEFT(b,1),200) WHERE a=1;
|
Leads to:
|
10.5.4 4080e3acefd7e58d88c2f3539fb6a0fb359cf057
|
Core was generated by `/test/MD150620-mariadb-10.5.4-linux-x86_64-dbg/bin/mysqld --no-defaults --core-'.
|
Program terminated with signal SIGSEGV, Segmentation fault.
|
#0 __pthread_kill (threadid=<optimized out>, signo=signo@entry=11)
|
at ../sysdeps/unix/sysv/linux/pthread_kill.c:57
|
[Current thread is 1 (Thread 0x14e11810c700 (LWP 1655068))]
|
(gdb) bt
|
#0 __pthread_kill (threadid=<optimized out>, signo=signo@entry=11) at ../sysdeps/unix/sysv/linux/pthread_kill.c:57
|
#1 0x000055565b1b74c6 in my_write_core (sig=sig@entry=11) at /test/10.5_dbg/mysys/stacktrace.c:518
|
#2 0x000055565a959d60 in handle_fatal_signal (sig=11) at /test/10.5_dbg/sql/signal_handler.cc:330
|
#3 <signal handler called>
|
#4 Opt_trace_context::is_started (this=<error reading variable: Cannot access memory at address 0x8f8f8f8f8f8f910f>) at /test/10.5_dbg/sql/opt_trace_context.h:108
|
#5 THD::trace_started (this=<error reading variable: Cannot access memory at address 0x8f8f8f8f8f8f910f>) at /test/10.5_dbg/sql/sql_class.h:3407
|
#6 Json_writer::add_table_name (this=0x14e0ff471600, tab=tab@entry=0x14e0ff478710) at /test/10.5_dbg/sql/opt_trace.cc:561
|
#7 0x000055565aaf562f in Json_value_helper::add_table_name (tab=0x14e0ff478710, this=0x14e118108438) at /test/10.5_dbg/sql/my_json_writer.h:300
|
#8 Json_writer_object::add_table_name (tab=0x14e0ff478710, this=0x14e118108430) at /test/10.5_dbg/sql/my_json_writer.h:474
|
#9 SQL_SELECT::test_quick_select (this=this@entry=0x14e0ff4754f0, thd=thd@entry=0x14e0ff415088, keys_to_use={static BITS_PER_ELEMENT = 64, static ARRAY_ELEMENTS = 1, static ALL_BITS_SET = 18446744073709551615, buffer = {18446744073709551615}}, prev_tables=prev_tables@entry=0, limit=limit@entry=18446744073709551615, force_quick_range=force_quick_range@entry=false, ordered_output=false, remove_false_parts_of_where=false, only_single_index_range_scan=false) at /test/10.5_dbg/sql/opt_range.cc:2695
|
#10 0x000055565a7a59ad in SQL_SELECT::check_quick (limit=18446744073709551615, force_quick_range=<optimized out>, thd=0x14e0ff415088, this=0x14e0ff4754f0) at /test/10.5_dbg/sql/opt_range.h:1655
|
#11 mysql_update (thd=thd@entry=0x14e0ff415088, table_list=<optimized out>, fields=@0x14e0ff4199f0: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x14e0ff474e30, last = 0x14e0ff474e30, elements = 1}, <No data fields>}, values=@0x14e0ff419f68: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x14e0ff474e40, last = 0x14e0ff474e40, elements = 1}, <No data fields>}, conds=<optimized out>, order_num=<optimized out>, order=0x0, limit=18446744073709551615, ignore=false, found_return=0x14e11810aca0, updated_return=0x14e11810ad70) at /test/10.5_dbg/sql/sql_update.cc:555
|
#12 0x000055565a6b062c in mysql_execute_command (thd=thd@entry=0x14e0ff415088) at /test/10.5_dbg/sql/sql_parse.cc:4401
|
#13 0x000055565a6bc15c in mysql_parse (thd=thd@entry=0x14e0ff415088, rawbuf=<optimized out>, length=<optimized out>, parser_state=parser_state@entry=0x14e11810b350, is_com_multi=is_com_multi@entry=false, is_next_command=is_next_command@entry=false) at /test/10.5_dbg/sql/sql_parse.cc:7993
|
#14 0x000055565a6a8c60 in dispatch_command (command=command@entry=COM_QUERY, thd=thd@entry=0x14e0ff415088, packet=packet@entry=0x14e0ff467089 "UPDATE t1 SET b=REPEAT(LEFT(b,1),200) WHERE a=1", packet_length=packet_length@entry=47, is_com_multi=is_com_multi@entry=false, is_next_command=is_next_command@entry=false) at /test/10.5_dbg/sql/sql_parse.cc:1874
|
#15 0x000055565a6a743a in do_command (thd=0x14e0ff415088) at /test/10.5_dbg/sql/sql_parse.cc:1355
|
#16 0x000055565a802c47 in do_handle_one_connection (connect=<optimized out>, connect@entry=0x14e10197a108, put_in_cache=put_in_cache@entry=true) at /test/10.5_dbg/sql/sql_connect.cc:1411
|
#17 0x000055565a803363 in handle_one_connection (arg=arg@entry=0x14e10197a108) at /test/10.5_dbg/sql/sql_connect.cc:1313
|
#18 0x000055565ac64902 in pfs_spawn_thread (arg=0x14e11f046c88) at /test/10.5_dbg/storage/perfschema/pfs.cc:2201
|
#19 0x000014e1211486db in start_thread (arg=0x14e11810c700) at pthread_create.c:463
|
#20 0x000014e12054688f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
Bug confirmed present in:
MariaDB: 10.4.14 (dbg), 10.4.14 (opt), 10.5.4 (dbg), 10.5.4 (opt)
Bug confirmed not present in:
MariaDB: 10.1.46 (dbg), 10.1.46 (opt), 10.2.33 (dbg), 10.2.33 (opt), 10.3.24 (dbg), 10.3.24 (opt)
MySQL: 5.5.62 (dbg), 5.5.62 (opt), 5.6.47 (dbg), 5.6.47 (opt), 5.7.29 (dbg), 5.7.29 (opt), 8.0.19 (dbg), 8.0.19 (opt)
{"report":{"fcp":934.7000000178814,"ttfb":282.40000000596046,"pageVisibility":"visible","entityId":88368,"key":"jira.project.issue.view-issue","isInitial":true,"threshold":1000,"elementTimings":{},"userDeviceMemory":8,"userDeviceProcessors":64,"apdex":0.5,"journeyId":"12087186-66de-4ea9-adfb-074b9501ba26","navigationType":0,"readyForUser":1011.3000000119209,"redirectCount":0,"resourceLoadedEnd":676.1000000238419,"resourceLoadedStart":290.90000000596046,"resourceTiming":[{"duration":80.30000001192093,"initiatorType":"link","name":"https://jira.mariadb.org/s/2c21342762a6a02add1c328bed317ffd-CDN/lu2bv2/820016/12ta74/0a8bac35585be7fc6c9cc5a0464cd4cf/_/download/contextbatch/css/_super/batch.css","startTime":290.90000000596046,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":290.90000000596046,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":371.2000000178814,"responseStart":0,"secureConnectionStart":0},{"duration":80.2999999821186,"initiatorType":"link","name":"https://jira.mariadb.org/s/7ebd35e77e471bc30ff0eba799ebc151-CDN/lu2bv2/820016/12ta74/2380add21a9a1006587582385952de73/_/download/contextbatch/css/jira.browse.project,project.issue.navigator,jira.view.issue,jira.general,jira.global,atl.general,-_super/batch.css?agile_global_admin_condition=true&jag=true&jira.create.linked.issue=true&slack-enabled=true","startTime":291.2000000178814,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":291.2000000178814,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":371.5,"responseStart":0,"secureConnectionStart":0},{"duration":247.30000001192093,"initiatorType":"script","name":"https://jira.mariadb.org/s/e9b27a47da5fb0f74a35acd57e9847fb-CDN/lu2bv2/820016/12ta74/0a8bac35585be7fc6c9cc5a0464cd4cf/_/download/contextbatch/js/_super/batch.js?locale=en","startTime":291.40000000596046,"connectEnd":291.40000000596046,"connectStart":291.40000000596046,"domainLookupEnd":291.40000000596046,"domainLookupStart":291.40000000596046,"fetchStart":291.40000000596046,"redirectEnd":0,"redirectStart":0,"requestStart":375.30000001192093,"responseEnd":538.7000000178814,"responseStart":403.7000000178814,"secureConnectionStart":291.40000000596046},{"duration":384,"initiatorType":"script","name":"https://jira.mariadb.org/s/c32eb0da7ad9831253f8397e6cc26afd-CDN/lu2bv2/820016/12ta74/2380add21a9a1006587582385952de73/_/download/contextbatch/js/jira.browse.project,project.issue.navigator,jira.view.issue,jira.general,jira.global,atl.general,-_super/batch.js?agile_global_admin_condition=true&jag=true&jira.create.linked.issue=true&locale=en&slack-enabled=true","startTime":292.10000002384186,"connectEnd":292.10000002384186,"connectStart":292.10000002384186,"domainLookupEnd":292.10000002384186,"domainLookupStart":292.10000002384186,"fetchStart":292.10000002384186,"redirectEnd":0,"redirectStart":0,"requestStart":375.5,"responseEnd":676.1000000238419,"responseStart":425.2000000178814,"secureConnectionStart":292.10000002384186},{"duration":118.40000000596046,"initiatorType":"script","name":"https://jira.mariadb.org/s/bc0bcb146314416123c992714ee00ff7-CDN/lu2bv2/820016/12ta74/c92c0caa9a024ae85b0ebdbed7fb4bd7/_/download/contextbatch/js/atl.global,-_super/batch.js?locale=en","startTime":292.30000001192093,"connectEnd":292.30000001192093,"connectStart":292.30000001192093,"domainLookupEnd":292.30000001192093,"domainLookupStart":292.30000001192093,"fetchStart":292.30000001192093,"redirectEnd":0,"redirectStart":0,"requestStart":375.90000000596046,"responseEnd":410.7000000178814,"responseStart":406.40000000596046,"secureConnectionStart":292.30000001192093},{"duration":121.09999999403954,"initiatorType":"script","name":"https://jira.mariadb.org/s/d41d8cd98f00b204e9800998ecf8427e-CDN/lu2bv2/820016/12ta74/1.0/_/download/batch/jira.webresources:calendar-en/jira.webresources:calendar-en.js","startTime":292.40000000596046,"connectEnd":292.40000000596046,"connectStart":292.40000000596046,"domainLookupEnd":292.40000000596046,"domainLookupStart":292.40000000596046,"fetchStart":292.40000000596046,"redirectEnd":0,"redirectStart":0,"requestStart":376,"responseEnd":413.5,"responseStart":408.30000001192093,"secureConnectionStart":292.40000000596046},{"duration":119.2999999821186,"initiatorType":"script","name":"https://jira.mariadb.org/s/d41d8cd98f00b204e9800998ecf8427e-CDN/lu2bv2/820016/12ta74/1.0/_/download/batch/jira.webresources:calendar-localisation-moment/jira.webresources:calendar-localisation-moment.js","startTime":292.60000002384186,"connectEnd":292.60000002384186,"connectStart":292.60000002384186,"domainLookupEnd":292.60000002384186,"domainLookupStart":292.60000002384186,"fetchStart":292.60000002384186,"redirectEnd":0,"redirectStart":0,"requestStart":376.30000001192093,"responseEnd":411.90000000596046,"responseStart":407.30000001192093,"secureConnectionStart":292.60000002384186},{"duration":81.59999999403954,"initiatorType":"link","name":"https://jira.mariadb.org/s/b04b06a02d1959df322d9cded3aeecc1-CDN/lu2bv2/820016/12ta74/a2ff6aa845ffc9a1d22fe23d9ee791fc/_/download/contextbatch/css/jira.global.look-and-feel,-_super/batch.css","startTime":292.80000001192093,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":292.80000001192093,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":374.40000000596046,"responseStart":0,"secureConnectionStart":0},{"duration":121.10000002384186,"initiatorType":"script","name":"https://jira.mariadb.org/rest/api/1.0/shortcuts/820016/47140b6e0a9bc2e4913da06536125810/shortcuts.js?context=issuenavigation&context=issueaction","startTime":293,"connectEnd":293,"connectStart":293,"domainLookupEnd":293,"domainLookupStart":293,"fetchStart":293,"redirectEnd":0,"redirectStart":0,"requestStart":380.2000000178814,"responseEnd":414.10000002384186,"responseStart":410.90000000596046,"secureConnectionStart":293},{"duration":84.69999998807907,"initiatorType":"link","name":"https://jira.mariadb.org/s/3ac36323ba5e4eb0af2aa7ac7211b4bb-CDN/lu2bv2/820016/12ta74/d176f0986478cc64f24226b3d20c140d/_/download/contextbatch/css/com.atlassian.jira.projects.sidebar.init,-_super,-project.issue.navigator,-jira.view.issue/batch.css?jira.create.linked.issue=true","startTime":293.2000000178814,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":293.2000000178814,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":377.90000000596046,"responseStart":0,"secureConnectionStart":0},{"duration":121.09999999403954,"initiatorType":"script","name":"https://jira.mariadb.org/s/719848dd97ebe0663199f49a3936487a-CDN/lu2bv2/820016/12ta74/d176f0986478cc64f24226b3d20c140d/_/download/contextbatch/js/com.atlassian.jira.projects.sidebar.init,-_super,-project.issue.navigator,-jira.view.issue/batch.js?jira.create.linked.issue=true&locale=en","startTime":293.30000001192093,"connectEnd":293.30000001192093,"connectStart":293.30000001192093,"domainLookupEnd":293.30000001192093,"domainLookupStart":293.30000001192093,"fetchStart":293.30000001192093,"redirectEnd":0,"redirectStart":0,"requestStart":380.30000001192093,"responseEnd":414.40000000596046,"responseStart":412.10000002384186,"secureConnectionStart":293.30000001192093},{"duration":307.59999999403954,"initiatorType":"script","name":"https://jira.mariadb.org/s/d41d8cd98f00b204e9800998ecf8427e-CDN/lu2bv2/820016/12ta74/1.0/_/download/batch/jira.webresources:bigpipe-js/jira.webresources:bigpipe-js.js","startTime":307.30000001192093,"connectEnd":307.30000001192093,"connectStart":307.30000001192093,"domainLookupEnd":307.30000001192093,"domainLookupStart":307.30000001192093,"fetchStart":307.30000001192093,"redirectEnd":0,"redirectStart":0,"requestStart":512.5,"responseEnd":614.9000000059605,"responseStart":608.1000000238419,"secureConnectionStart":307.30000001192093},{"duration":307.90000000596046,"initiatorType":"script","name":"https://jira.mariadb.org/s/d41d8cd98f00b204e9800998ecf8427e-CDN/lu2bv2/820016/12ta74/1.0/_/download/batch/jira.webresources:bigpipe-init/jira.webresources:bigpipe-init.js","startTime":307.90000000596046,"connectEnd":307.90000000596046,"connectStart":307.90000000596046,"domainLookupEnd":307.90000000596046,"domainLookupStart":307.90000000596046,"fetchStart":307.90000000596046,"redirectEnd":0,"redirectStart":0,"requestStart":572.6000000238419,"responseEnd":615.8000000119209,"responseStart":611.1000000238419,"secureConnectionStart":307.90000000596046},{"duration":148.40000000596046,"initiatorType":"xmlhttprequest","name":"https://jira.mariadb.org/rest/webResources/1.0/resources","startTime":679.9000000059605,"connectEnd":679.9000000059605,"connectStart":679.9000000059605,"domainLookupEnd":679.9000000059605,"domainLookupStart":679.9000000059605,"fetchStart":679.9000000059605,"redirectEnd":0,"redirectStart":0,"requestStart":791.2000000178814,"responseEnd":828.3000000119209,"responseStart":827.4000000059605,"secureConnectionStart":679.9000000059605}],"fetchStart":0,"domainLookupStart":60,"domainLookupEnd":66,"connectStart":66,"connectEnd":84,"secureConnectionStart":74,"requestStart":84,"responseStart":282,"responseEnd":307,"domLoading":286,"domInteractive":1112,"domContentLoadedEventStart":1112,"domContentLoadedEventEnd":1169,"domComplete":2053,"loadEventStart":2053,"loadEventEnd":2053,"userAgent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)","marks":[{"name":"bigPipe.sidebar-id.start","time":1085.800000011921},{"name":"bigPipe.sidebar-id.end","time":1086.5},{"name":"bigPipe.activity-panel-pipe-id.start","time":1086.7000000178814},{"name":"bigPipe.activity-panel-pipe-id.end","time":1089.300000011921},{"name":"activityTabFullyLoaded","time":1184}],"measures":[],"correlationId":"f0a75b2db8746d","effectiveType":"4g","downlink":9.9,"rtt":0,"serverDuration":98,"dbReadsTimeInMs":12,"dbConnsTimeInMs":20,"applicationHash":"9d11dbea5f4be3d4cc21f03a88dd11d8c8687422","experiments":[]}}
Bug
Critical
The bug seemingly causes sporadic-location delayed crashes in what looks to be completely unrelated code.[UPDATED: Ref next comment]Example: using the testcase above, executed twice, against 10.5.4 optimized, crashes (SIGSEGV) in JSON code:
10.5.4 4080e3acefd7e58d88c2f3539fb6a0fb359cf057
Core was generated by `/test/MD150620-mariadb-10.5.4-linux-x86_64-opt/bin/mysqld --no-defaults --core-'.Program terminated with signal SIGSEGV, Segmentation fault.#0 __pthread_kill (threadid=<optimized out>, signo=signo@entry=11)at ../sysdeps/unix/sysv/linux/pthread_kill.c:57[Current thread is 1 (Thread 0x147dab73b700 (LWP 1826601))](gdb) bt#0 __pthread_kill (threadid=<optimized out>, signo=signo@entry=11)at ../sysdeps/unix/sysv/linux/pthread_kill.c:57#1 0x0000556af9ae80b7 in my_write_core (sig=sig@entry=11) at /test/10.5_opt/mysys/stacktrace.c:518#2 0x0000556af94b1e4a in handle_fatal_signal (sig=11) at /test/10.5_opt/sql/signal_handler.cc:330#3 <signal handler called>#4 0x0000556af94320fb in Json_writer::add_table_name (this=0x147d878953c0,tab=tab@entry=0x147d8784b608) at /test/10.5_opt/sql/opt_trace.cc:579#5 0x0000556af95d900c in Json_value_helper::add_table_name (tab=0x147d8784b608, this=0x147dab737848)at /test/10.5_opt/sql/my_json_writer.h:300#6 Json_writer_object::add_table_name (tab=0x147d8784b608, this=0x147dab737840)at /test/10.5_opt/sql/my_json_writer.h:474#7 SQL_SELECT::test_quick_select (this=this@entry=0x147d87848480, thd=thd@entry=0x147d87812018,keys_to_use=keys_to_use@entry=..., prev_tables=prev_tables@entry=0,limit=limit@entry=18446744073709551615, force_quick_range=false, ordered_output=false,remove_false_parts_of_where=false, only_single_index_range_scan=false)at /test/10.5_opt/sql/opt_range.cc:2695#8 0x0000556af9366ed4 in SQL_SELECT::check_quick (limit=18446744073709551615,force_quick_range=<optimized out>, thd=0x147d87812018, this=0x147d87848480)at /test/10.5_opt/sql/opt_range.h:1655#9 mysql_update (thd=thd@entry=0x147d87812018, table_list=<optimized out>, fields=..., values=...,conds=<optimized out>, order_num=<optimized out>, order=0x0, limit=18446744073709551615,ignore=false, found_return=0x147dab739f90, updated_return=0x147dab73a060)at /test/10.5_opt/sql/sql_update.cc:555#10 0x0000556af92b9d35 in mysql_execute_command (thd=thd@entry=0x147d87812018)at /test/10.5_opt/sql/sql_parse.cc:4401#11 0x0000556af92c185c in mysql_parse (thd=0x147d87812018, rawbuf=<optimized out>, length=47,parser_state=0x147dab73a430, is_com_multi=<optimized out>, is_next_command=<optimized out>)at /test/10.5_opt/sql/sql_parse.cc:7993#12 0x0000556af92b6b65 in dispatch_command (command=command@entry=COM_QUERY,thd=thd@entry=0x147d87812018,packet=packet@entry=0x147d8783a019 "UPDATE t1 SET b=REPEAT(LEFT(b,1),200) WHERE a=1",packet_length=packet_length@entry=47, is_com_multi=is_com_multi@entry=false,is_next_command=is_next_command@entry=false) at /test/10.5_opt/sql/sql_parse.cc:1874#13 0x0000556af92b4f74 in do_command (thd=0x147d87812018) at /test/10.5_opt/sql/sql_parse.cc:1355#14 0x0000556af93aab51 in do_handle_one_connection (connect=<optimized out>,connect@entry=0x147da8433958, put_in_cache=put_in_cache@entry=true)at /test/10.5_opt/sql/sql_connect.cc:1411#15 0x0000556af93aaeb4 in handle_one_connection (arg=arg@entry=0x147da8433958)at /test/10.5_opt/sql/sql_connect.cc:1313#16 0x0000556af9719bca in pfs_spawn_thread (arg=0x147da844f218)at /test/10.5_opt/storage/perfschema/pfs.cc:2201#17 0x0000147daa6b46db in start_thread (arg=0x147dab73b700) at pthread_create.c:463#18 0x0000147da9ab288f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95Increasing prio to blocker.