[MDEV-29317] Assertion `sp && savepoint_next && *sp && *sp <= savepoint_level' failed in federatedx_txn::sp_release, and ASAN: use-after-poison in federatedx_txn::sp_release - Jira

XML

Word

Printable

Details

Type: Bug
Status: Confirmed (View Workflow)
Priority: Major
Resolution: Unresolved
Affects Version/s: 10.3(EOL), 10.4(EOL), 10.5, 10.6, 10.7(EOL), 10.8(EOL), 10.9(EOL), 10.10(EOL), 10.11, 11.2(EOL), 11.4, 11.6(EOL), 11.7
Fix Version/s: 10.5, 10.6, 10.11, 11.4, 11.7
Component/s: Storage Engine - Federated
Labels:
- ASAN
- memory_corruption

Description

INSTALL SONAME 'ha_federatedx';

eval CREATE SERVER fedlink FOREIGN DATA WRAPPER mysql OPTIONS (USER 'root', HOST '127.0.0.1', DATABASE 'test', PORT $MASTER_MYPORT);

CREATE TABLE t (id INT);

CREATE TABLE fed_t ENGINE=FEDERATED CONNECTION='fedlink/t';

INSERT INTO fed_t VALUES (1);

START TRANSACTION;

SELECT * FROM fed_t;

SAVEPOINT sp;

SAVEPOINT sp;

# Cleanup

DROP TABLE fed_t, t;

10.3 8c21dc52
mysqld: /data/src/10.3/storage/federatedx/federatedx_txn.cc:336: int federatedx_txn::sp_release(ulong): Assertion `sp && savepoint_next && sp && *sp <= savepoint_level' failed.
220816 19:45:57 [ERROR] mysqld got signal 6 ;

#7 0x00007f9562db6662 in __GI___assert_fail (assertion=0x7f955cd8bc48 "sp && savepoint_next && sp && sp <= savepoint_level", file=0x7f955cd8b888 "/data/src/10.3/storage/federatedx/federatedx_txn.cc", line=336, function=0x7f955cd8bcc8 "int federatedx_txn::sp_release(ulong*)") at assert.c:101
#8 0x00007f955cd87029 in federatedx_txn::sp_release (this=0x7f954c146cf0, sp=0x7f954c018be0) at /data/src/10.3/storage/federatedx/federatedx_txn.cc:336
#9 0x00007f955cd830be in ha_federatedx::savepoint_release (hton=0x7f954c006ff0, thd=0x7f954c000d90, sv=0x7f954c018be0) at /data/src/10.3/storage/federatedx/ha_federatedx.cc:3559
#10 0x0000560e5b78131f in ha_release_savepoint (thd=0x7f954c000d90, sv=0x7f954c018b78) at /data/src/10.3/sql/handler.cc:2466
#11 0x0000560e5b5e5b96 in trans_savepoint (thd=0x7f954c000d90, name=...) at /data/src/10.3/sql/transaction.cc:631
#12 0x0000560e5b4603e9 in mysql_execute_command (thd=0x7f954c000d90) at /data/src/10.3/sql/sql_parse.cc:5675
#13 0x0000560e5b4671ea in mysql_parse (thd=0x7f954c000d90, rawbuf=0x7f954c012ad8 "SAVEPOINT sp", length=12, parser_state=0x7f955cddd5b0, is_com_multi=false, is_next_command=false) at /data/src/10.3/sql/sql_parse.cc:7871
#14 0x0000560e5b453a1f in dispatch_command (command=COM_QUERY, thd=0x7f954c000d90, packet=0x7f954c008f31 "SAVEPOINT sp", packet_length=12, is_com_multi=false, is_next_command=false) at /data/src/10.3/sql/sql_parse.cc:1852
#15 0x0000560e5b4523dd in do_command (thd=0x7f954c000d90) at /data/src/10.3/sql/sql_parse.cc:1398
#16 0x0000560e5b5cfe30 in do_handle_one_connection (connect=0x560e5e505170) at /data/src/10.3/sql/sql_connect.cc:1403
#17 0x0000560e5b5cfb9b in handle_one_connection (arg=0x560e5e505170) at /data/src/10.3/sql/sql_connect.cc:1308
#18 0x0000560e5bf80346 in pfs_spawn_thread (arg=0x560e5e605a40) at /data/src/10.3/storage/perfschema/pfs.cc:1869
#19 0x00007f9562f4fea7 in start_thread (arg=<optimized out>) at pthread_create.c:477
#20 0x00007f9562e7fdef in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95

Likely related to MDEV-29178.

Attachments

Issue Links

relates to

MDEV-29178 Assertion `sp > last_savepoint()' failed in federatedx_io_mysql::savepoint_set or crash upon shutdown

Confirmed

Activity

People

Assignee:: Oleksandr Byelkin

Reporter:: Elena Stepanova

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 2022-08-16 16:47

Updated:: 2024-11-22 17:11

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.