[MDEV-22928] SUMMARY: AddressSanitizer: SEGV storage/innobase/include/dict0mem.h:1178 in dict_index_t::is_spatial() const - Jira

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 10.5.4, 10.2(EOL), 10.3(EOL), 10.4(EOL)
Fix Version/s: 10.2.38, 10.3.29, 10.4.19, 10.5.10, 10.6.1
Component/s: Storage Engine - InnoDB
Labels:
- need_rr

Description

SEGV hit during RQG testing

Workflow of RQG test

1. Start the server + generate some data

2. Several connections run a DDL/DML mix on the same tables

3. At some point of time during 2. the server process gets killed

4. Restart of the server

5. Try to check the integrity of InnoDB tables

Within 5. some

      SHOW KEYS FROM `test`.`t3` harvested

2013: Lost connection to MySQL server

and the server error log shows

SUMMARY: AddressSanitizer: SEGV /storage/innobase/include/dict0mem.h:1178 in dict_index_t::is_spatial() const

Thread T33 created by T0 here:

    #0 0x131f70338d2f in __interceptor_pthread_create (/usr/lib/x86_64-linux-gnu/libasan.so.4+0x37d2f)

    #1 0x560720863ff6 in my_thread_create /storage/perfschema/my_thread.h:34

    #2 0x560720869693 in pfs_spawn_thread_v1 /storage/perfschema/pfs.cc:2252

    #3 0x56071f48814c in inline_mysql_thread_create /include/mysql/psi/mysql_thread.h:1321

    #4 0x56071f49d5e9 in create_thread_to_handle_connection(CONNECT*) /sql/mysqld.cc:5951

    #5 0x56071f49dc4a in create_new_thread(CONNECT*) /sql/mysqld.cc:6010

    #6 0x56071f49df70 in handle_accepted_socket(st_mysql_socket, st_mysql_socket) /sql/mysqld.cc:6075

    #7 0x56071f49ea8d in handle_connections_sockets() /sql/mysqld.cc:6202

    #8 0x56071f49ce47 in mysqld_main(int, char**) /sql/mysqld.cc:5620

    #9 0x56071f486879 in main /sql/main.cc:25

    #10 0x7f3a327f6b96 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x21b96)

==8558==ABORTING

origin/HEAD, origin/10.5, 10.5 bd62a636a42f1486437cbed21198315f44d9e7b6 2020-06-14T18:40:07+09:00

Per Thiru all MariaDB versions >= 10.2 are affected.

RQG

git clone https://github.com/mleich1/rqg --branch experimental RQG

origin/experimental 611a31e38a3bc157392c0748c95991b6a248bb3b 2020-06-09T15:31:46+02:00

perl rqg.pl \

--grammar=conf/mariadb/table_stress_innodb_nocopy.yy \

--gendata=conf/mariadb/table_stress.zz \

--gendata_sql=conf/mariadb/table_stress.sql \

--reporters=CrashRecovery1 \

--mysqld=--innodb_use_native_aio=1 \

--mysqld=--innodb_stats_persistent=off \

--mysqld=--innodb_lock_schedule_algorithm=fcfs \

--mysqld=--loose-idle_write_transaction_timeout=0 \

--mysqld=--loose-idle_transaction_timeout=0 \

--mysqld=--loose-idle_readonly_transaction_timeout=0 \

--mysqld=--connect_timeout=60 \

--mysqld=--interactive_timeout=28800 \

--mysqld=--slave_net_timeout=60 \

--mysqld=--net_read_timeout=30 \

--mysqld=--net_write_timeout=60 \

--mysqld=--loose-table_lock_wait_timeout=50 \

--mysqld=--wait_timeout=28800 \

--mysqld=--lock-wait-timeout=86400 \

--mysqld=--innodb-lock-wait-timeout=50 \

--no-mask \

--queries=10000000 \

--duration=300 \

--seed=random \

--reporters=Backtrace \

--reporters=ErrorLog \

--reporters=Deadlock1 \

--validators=None \

--mysqld=--log_output=none \

--mysqld=--log-bin \

--mysqld=--log_bin_trust_function_creators=1 \

--mysqld=--loose-max-statement-time=30 \

--mysqld=--loose-debug_assert_on_not_freed_memory=0 \

--engine=InnoDB \

--restart_timeout=60 \

--threads=9 \

--redefine=conf/mariadb/redefine_ment-601.yy \

... certain local settings

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

001032.log
637 kB
2020-06-17 18:27

Issue Links

relates to

MDEV-17567 Atomic DDL

Closed

Activity

Descending order - Click to sort in ascending order

Sergei Golubchik made changes - 2021-12-06 21:51

Workflow

MariaDB v3 [ 110167 ]

MariaDB v4 [ 157978 ]

Thirunarayanan Balathandayuthapani made changes - 2021-04-27 12:21

Fix Version/s		10.2.38 [ 25207 ]
Fix Version/s		10.3.29 [ 25206 ]
Fix Version/s		10.4.19 [ 25205 ]
Fix Version/s		10.5.10 [ 25204 ]
Fix Version/s		10.6.1 [ 24437 ]
Fix Version/s	10.2 [ 14601 ]
Fix Version/s	10.3 [ 22126 ]
Fix Version/s	10.4 [ 22408 ]
Fix Version/s	10.5 [ 23123 ]
Resolution		Fixed [ 1 ]
Status	Stalled [ 10000 ]	Closed [ 6 ]

Marko Mäkelä made changes - 2021-04-27 08:59

Assignee	Marko Mäkelä [ marko ]	Thirunarayanan Balathandayuthapani [ thiru ]
Status	In Review [ 10002 ]	Stalled [ 10000 ]

Thirunarayanan Balathandayuthapani made changes - 2021-04-26 16:53

Assignee	Thirunarayanan Balathandayuthapani [ thiru ]	Marko Mäkelä [ marko ]
Status	In Progress [ 3 ]	In Review [ 10002 ]

Thirunarayanan Balathandayuthapani made changes - 2021-04-26 16:52

Status

Open [ 1 ]

In Progress [ 3 ]

Marko Mäkelä made changes - 2020-07-16 05:17

Labels

rr-profile

need_rr

Marko Mäkelä made changes - 2020-07-16 05:17

Link

This issue relates to ~~MDEV-17567~~ [ ~~MDEV-17567~~ ]

Matthias Leich made changes - 2020-06-17 18:31

Assignee	Matthias Leich [ mleich ]	Thirunarayanan Balathandayuthapani [ thiru ]
Summary	Draft: SUMMARY: AddressSanitizer: SEGV storage/innobase/include/dict0mem.h:1178 in dict_index_t::is_spatial() const	SUMMARY: AddressSanitizer: SEGV storage/innobase/include/dict0mem.h:1178 in dict_index_t::is_spatial() const

Matthias Leich made changes - 2020-06-17 18:27

Attachment

001032.log [ 52231 ]

Matthias Leich made changes - 2020-06-17 18:27

Field	Original Value	New Value
Description	{noformat} SEGV hit during RQG testing Workflow of RQG test 1. Start the server + generate some data 2. Several connections run a DDL/DML mix on the same tables 3. At some point of time during 2. the server process gets killed 4. Restart of the server 5. Try to check the integrity of InnoDB tables Within 5. some SHOW KEYS FROM `test`.`t3` harvested 2013: Lost connection to MySQL server and the server error log shows SUMMARY: AddressSanitizer: SEGV /storage/innobase/include/dict0mem.h:1178 in dict_index_t::is_spatial() const Thread T33 created by T0 here: #0 0x131f70338d2f in __interceptor_pthread_create (/usr/lib/x86_64-linux-gnu/libasan.so.4+0x37d2f) #1 0x560720863ff6 in my_thread_create /storage/perfschema/my_thread.h:34 #2 0x560720869693 in pfs_spawn_thread_v1 /storage/perfschema/pfs.cc:2252 #3 0x56071f48814c in inline_mysql_thread_create /include/mysql/psi/mysql_thread.h:1321 #4 0x56071f49d5e9 in create_thread_to_handle_connection(CONNECT) /sql/mysqld.cc:5951 #5 0x56071f49dc4a in create_new_thread(CONNECT) /sql/mysqld.cc:6010 #6 0x56071f49df70 in handle_accepted_socket(st_mysql_socket, st_mysql_socket) /sql/mysqld.cc:6075 #7 0x56071f49ea8d in handle_connections_sockets() /sql/mysqld.cc:6202 #8 0x56071f49ce47 in mysqld_main(int, char**) /sql/mysqld.cc:5620 #9 0x56071f486879 in main /sql/main.cc:25 #10 0x7f3a327f6b96 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x21b96) ==8558==ABORTING origin/HEAD, origin/10.5, 10.5 bd62a636a42f1486437cbed21198315f44d9e7b6 2020-06-14T18:40:07+09:00 Per Thiru all MariaDB versions >= 10.2 are affected. RQG git clone https://github.com/mleich1/rqg --branch experimental RQG origin/experimental 611a31e38a3bc157392c0748c95991b6a248bb3b 2020-06-09T15:31:46+02:00 perl rqg.pl \ --grammar=conf/mariadb/table_stress_innodb_nocopy.yy \ --gendata=conf/mariadb/table_stress.zz \ --gendata_sql=conf/mariadb/table_stress.sql \ --reporters=CrashRecovery1 \ --mysqld=--innodb_use_native_aio=1 \ --mysqld=--innodb_stats_persistent=off \ --mysqld=--innodb_lock_schedule_algorithm=fcfs \ --mysqld=--loose-idle_write_transaction_timeout=0 \ --mysqld=--loose-idle_transaction_timeout=0 \ --mysqld=--loose-idle_readonly_transaction_timeout=0 \ --mysqld=--connect_timeout=60 \ --mysqld=--interactive_timeout=28800 \ --mysqld=--slave_net_timeout=60 \ --mysqld=--net_read_timeout=30 \ --mysqld=--net_write_timeout=60 \ --mysqld=--loose-table_lock_wait_timeout=50 \ --mysqld=--wait_timeout=28800 \ --mysqld=--lock-wait-timeout=86400 \ --mysqld=--innodb-lock-wait-timeout=50 \ --no-mask \ --queries=10000000 \ --duration=300 \ --seed=random \ --reporters=Backtrace \ --reporters=ErrorLog \ --reporters=Deadlock1 \ --validators=None \ --mysqld=--log_output=none \ --mysqld=--log-bin \ --mysqld=--log_bin_trust_function_creators=1 \ --mysqld=--loose-max-statement-time=30 \ --mysqld=--loose-debug_assert_on_not_freed_memory=0 \ --engine=InnoDB \ --restart_timeout=60 \ --threads=9 \ --redefine=conf/mariadb/redefine_ment-601.yy \ ... certain local settings {noformat}	{noformat} SEGV hit during RQG testing Workflow of RQG test 1. Start the server + generate some data 2. Several connections run a DDL/DML mix on the same tables 3. At some point of time during 2. the server process gets killed 4. Restart of the server 5. Try to check the integrity of InnoDB tables Within 5. some SHOW KEYS FROM `test`.`t3` harvested 2013: Lost connection to MySQL server and the server error log shows SUMMARY: AddressSanitizer: SEGV /storage/innobase/include/dict0mem.h:1178 in dict_index_t::is_spatial() const Thread T33 created by T0 here: #0 0x131f70338d2f in __interceptor_pthread_create (/usr/lib/x86_64-linux-gnu/libasan.so.4+0x37d2f) #1 0x560720863ff6 in my_thread_create /storage/perfschema/my_thread.h:34 #2 0x560720869693 in pfs_spawn_thread_v1 /storage/perfschema/pfs.cc:2252 #3 0x56071f48814c in inline_mysql_thread_create /include/mysql/psi/mysql_thread.h:1321 #4 0x56071f49d5e9 in create_thread_to_handle_connection(CONNECT) /sql/mysqld.cc:5951 #5 0x56071f49dc4a in create_new_thread(CONNECT) /sql/mysqld.cc:6010 #6 0x56071f49df70 in handle_accepted_socket(st_mysql_socket, st_mysql_socket) /sql/mysqld.cc:6075 #7 0x56071f49ea8d in handle_connections_sockets() /sql/mysqld.cc:6202 #8 0x56071f49ce47 in mysqld_main(int, char**) /sql/mysqld.cc:5620 #9 0x56071f486879 in main /sql/main.cc:25 #10 0x7f3a327f6b96 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x21b96) ==8558==ABORTING origin/HEAD, origin/10.5, 10.5 bd62a636a42f1486437cbed21198315f44d9e7b6 2020-06-14T18:40:07+09:00 Per Thiru all MariaDB versions >= 10.2 are affected. RQG git clone https://github.com/mleich1/rqg --branch experimental RQG origin/experimental 611a31e38a3bc157392c0748c95991b6a248bb3b 2020-06-09T15:31:46+02:00 perl rqg.pl \ --grammar=conf/mariadb/table_stress_innodb_nocopy.yy \ --gendata=conf/mariadb/table_stress.zz \ --gendata_sql=conf/mariadb/table_stress.sql \ --reporters=CrashRecovery1 \ --mysqld=--innodb_use_native_aio=1 \ --mysqld=--innodb_stats_persistent=off \ --mysqld=--innodb_lock_schedule_algorithm=fcfs \ --mysqld=--loose-idle_write_transaction_timeout=0 \ --mysqld=--loose-idle_transaction_timeout=0 \ --mysqld=--loose-idle_readonly_transaction_timeout=0 \ --mysqld=--connect_timeout=60 \ --mysqld=--interactive_timeout=28800 \ --mysqld=--slave_net_timeout=60 \ --mysqld=--net_read_timeout=30 \ --mysqld=--net_write_timeout=60 \ --mysqld=--loose-table_lock_wait_timeout=50 \ --mysqld=--wait_timeout=28800 \ --mysqld=--lock-wait-timeout=86400 \ --mysqld=--innodb-lock-wait-timeout=50 \ --no-mask \ --queries=10000000 \ --duration=300 \ --seed=random \ --reporters=Backtrace \ --reporters=ErrorLog \ --reporters=Deadlock1 \ --validators=None \ --mysqld=--log_output=none \ --mysqld=--log-bin \ --mysqld=--log_bin_trust_function_creators=1 \ --mysqld=--loose-max-statement-time=30 \ --mysqld=--loose-debug_assert_on_not_freed_memory=0 \ --engine=InnoDB \ --restart_timeout=60 \ --threads=9 \ --redefine=conf/mariadb/redefine_ment-601.yy \ ... certain local settings {noformat}
Labels		rr-profile

Matthias Leich created issue - 2020-06-17 18:26

People

Assignee:: Thirunarayanan Balathandayuthapani

Reporter:: Matthias Leich

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2020-06-17 18:26

Updated:: 2021-05-05 09:39

Resolved:: 2021-04-27 12:21

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.

MariaDB Server

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates

Git Integration