[MDEV-30842] Item_subselect::get_cache_parameters and UBSAN member access within null pointer of type 'struct st_select_lex' in Item_subselect::get_cache_parameters on INSERT - Jira

XML

Word

Printable

Details

Type: Bug
Status: Stalled (View Workflow)
Priority: Major
Resolution: Unresolved
Affects Version/s: 10.4, 10.5, 10.6, 10.7, 10.8, 10.9, 10.10, 10.11, 11.0
Fix Version/s: 10.4, 10.5, 10.6, 10.11
Component/s: Data Manipulation - Insert, Optimizer
Labels:

Description

CREATE TABLE x (x INT) ENGINE=InnoDB;

INSERT INTO x (x) VALUES (0);

INSERT INTO x (x) VALUES (x IN (SELECT (SELECT x FROM (SELECT x FROM (SELECT 0 IN (SELECT x=0 FROM (SELECT x FROM (SELECT (SELECT (SELECT (SELECT (SELECT 0 AS x) FROM x AS x) IN (SELECT 0 AS x) AS x) FROM x AS x) IN (SELECT x WHERE x=0) AS x FROM x AS x) AS x) AS x GROUP BY x) AS x FROM x) AS x) AS x) IN (SELECT 0 AS x) AS x FROM x));

Leads to:

11.0.1 f2dc4d4c10ac36a73b5c1eb765352d3aee808d66 (Optimized)
Core was generated by `/test/MD180223-mariadb-11.0.1-linux-x86_64-opt/bin/mariadbd --no-defaults --cor'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0 0x00005640324a8d61 in Item_subselect::get_cache_parameters (
this=0x1526e004b6d8, parameters=...)
at /test/11.0_opt/sql/item_subselect.cc:837
837 };
[Current thread is 1 (Thread 0x152730745640 (LWP 2639645))]
(gdb) bt
#0 0x00005640324a8d61 in Item_subselect::get_cache_parameters (this=0x1526e004b6d8, parameters=@0x1526e0074a70: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x1526e0077c10, last = 0x1526e0077c10, elements = 1}, <No data fields>}) at /test/11.0_opt/sql/item_subselect.cc:837
#1 0x00005640323f74e6 in Item_cache_wrapper::init_on_demand (this=0x1526e00749e0) at /test/11.0_opt/sql/item.cc:8779
#2 Item_cache_wrapper::init_on_demand (this=0x1526e00749e0) at /test/11.0_opt/sql/item.cc:8775
#3 0x00005640323f7901 in Item_cache_wrapper::check_cache (this=this@entry=0x1526e00749e0) at /test/11.0_opt/sql/item.cc:8904
#4 0x00005640323f7a91 in Item_cache_wrapper::val_int (this=0x1526e00749e0) at /test/11.0_opt/sql/item.cc:8968
#5 0x00005640323dfb83 in Item_direct_ref::val_int (this=0x1526e0069938) at /test/11.0_opt/sql/item.cc:8685
#6 0x00005640323dfb83 in Item_direct_ref::val_int (this=0x1526e006a020) at /test/11.0_opt/sql/item.cc:8685
#7 0x0000564032403afd in Arg_comparator::compare_int_signed (this=0x1526e00135c8) at /test/11.0_opt/sql/item_cmpfunc.cc:944
#8 0x000056403240414f in Arg_comparator::compare (this=<optimized out>) at /test/11.0_opt/sql/item_cmpfunc.h:103
#9 Item_func_eq::val_int (this=<optimized out>) at /test/11.0_opt/sql/item_cmpfunc.cc:1776
#10 0x0000564032403b1c in Arg_comparator::compare_int_signed (this=0x1526e006d360) at /test/11.0_opt/sql/item_cmpfunc.cc:947
#11 0x000056403240414f in Arg_comparator::compare (this=<optimized out>) at /test/11.0_opt/sql/item_cmpfunc.h:103
#12 Item_func_eq::val_int (this=<optimized out>) at /test/11.0_opt/sql/item_cmpfunc.cc:1776
#13 0x0000564032314dd4 in Type_handler_int_result::Item_val_bool (this=<optimized out>, item=<optimized out>) at /test/11.0_opt/sql/sql_type.cc:5091
#14 0x00005640324051fc in Item_cond_or::val_int (this=0x1526e006e2e8) at /test/11.0_opt/sql/item_cmpfunc.cc:5538
#15 0x00005640321b8ddc in evaluate_join_record (join=join@entry=0x1526e0060690, join_tab=join_tab@entry=0x1526e0073de0, error=<optimized out>) at /test/11.0_opt/sql/sql_select.cc:22898
#16 0x00005640321caa4b in sub_select (end_of_records=false, join_tab=0x1526e0073de0, join=0x1526e0060690) at /test/11.0_opt/sql/sql_select.cc:22797
#17 sub_select (join=0x1526e0060690, join_tab=0x1526e0073de0, end_of_records=false) at /test/11.0_opt/sql/sql_select.cc:22713
#18 0x00005640321fba12 in do_select (procedure=<optimized out>, join=0x1526e0060690) at /test/11.0_opt/sql/sql_select.cc:22329
#19 JOIN::exec_inner (this=0x1526e0060690) at /test/11.0_opt/sql/sql_select.cc:4888
#20 0x00005640321fbf08 in JOIN::exec (this=0x1526e0060690) at /test/11.0_opt/sql/sql_select.cc:4666
#21 0x00005640324aadf6 in subselect_single_select_engine::exec (this=0x1526e004cd90) at /test/11.0_opt/sql/item_subselect.cc:4156
#22 0x00005640324a9ecc in Item_subselect::exec (this=0x1526e004cb60) at /test/11.0_opt/sql/item_subselect.cc:812
#23 0x00005640324b03e1 in Item_in_subselect::exec (this=0x1526e004cb60) at /test/11.0_opt/sql/item_subselect.cc:994
#24 Item_in_subselect::val_bool (this=0x1526e004cb60) at /test/11.0_opt/sql/item_subselect.cc:1991
#25 0x0000564032410e14 in Item_in_optimizer::val_int (this=0x1526e006a2b0) at /test/11.0_opt/sql/item_cmpfunc.cc:1651
#26 Item_in_optimizer::val_int (this=0x1526e006a2b0) at /test/11.0_opt/sql/item_cmpfunc.cc:1559
#27 0x00005640323e0129 in Item_cache_int::cache_value (this=0x1526e0076fc8) at /test/11.0_opt/sql/item.cc:10166
#28 0x00005640323f7adc in Item_cache_wrapper::cache (this=0x1526e0076f20) at /test/11.0_opt/sql/item.cc:8920
#29 Item_cache_wrapper::val_int (this=0x1526e0076f20) at /test/11.0_opt/sql/item.cc:8974
#30 Item_cache_wrapper::val_int (this=0x1526e0076f20) at /test/11.0_opt/sql/item.cc:8957
#31 0x00005640323dfe53 in Item_direct_view_ref::val_int_result (this=0x1526e006b220) at /test/11.0_opt/sql/item.cc:9523
#32 0x00005640323dfe53 in Item_direct_view_ref::val_int_result (this=0x1526e006b9a8) at /test/11.0_opt/sql/item.cc:9523
#33 0x00005640323e0129 in Item_cache_int::cache_value (this=0x1526e006baf8) at /test/11.0_opt/sql/item.cc:10166
#34 0x000056403211ea0e in select_singlerow_subselect::send_data (this=<optimized out>, items=<optimized out>) at /test/11.0_opt/sql/sql_class.cc:3654
#35 0x00005640321e4f64 in select_result_sink::send_data_with_check (u=<optimized out>, sent=<optimized out>, items=@0x1526e0012060: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x1526e0012380, last = 0x1526e0012380, elements = 1}, <No data fields>}, this=<optimized out>) at /test/11.0_opt/sql/sql_class.h:5748
#36 select_result_sink::send_data_with_check (sent=<optimized out>, u=<optimized out>, items=@0x1526e0012060: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x1526e0012380, last = 0x1526e0012380, elements = 1}, <No data fields>}, this=<optimized out>) at /test/11.0_opt/sql/sql_class.h:5738
#37 end_send (join=0x1526e005f5c8, join_tab=0x1526e0076460, end_of_records=<optimized out>) at /test/11.0_opt/sql/sql_select.cc:24063
#38 0x00005640321b8f2e in evaluate_join_record (join=join@entry=0x1526e005f5c8, join_tab=join_tab@entry=0x1526e0076060, error=<optimized out>) at /test/11.0_opt/sql/sql_select.cc:23030
#39 0x00005640321caa4b in sub_select (end_of_records=false, join_tab=0x1526e0076060, join=0x1526e005f5c8) at /test/11.0_opt/sql/sql_select.cc:22797
#40 sub_select (join=0x1526e005f5c8, join_tab=0x1526e0076060, end_of_records=false) at /test/11.0_opt/sql/sql_select.cc:22713
#41 0x00005640321fba12 in do_select (procedure=<optimized out>, join=0x1526e005f5c8) at /test/11.0_opt/sql/sql_select.cc:22329
#42 JOIN::exec_inner (this=0x1526e005f5c8) at /test/11.0_opt/sql/sql_select.cc:4888
#43 0x00005640321fbf08 in JOIN::exec (this=0x1526e005f5c8) at /test/11.0_opt/sql/sql_select.cc:4666
#44 0x00005640324aadf6 in subselect_single_select_engine::exec (this=0x1526e0051dc8) at /test/11.0_opt/sql/item_subselect.cc:4156
#45 0x00005640324a9ecc in Item_subselect::exec (this=0x1526e0050c88) at /test/11.0_opt/sql/item_subselect.cc:812
#46 0x00005640324abd54 in Item_singlerow_subselect::val_int (this=0x1526e0050c88) at /test/11.0_opt/sql/item_subselect.cc:1462
#47 0x00005640323e0129 in Item_cache_int::cache_value (this=0x1526e006c2c8) at /test/11.0_opt/sql/item.cc:10166
#48 0x0000564032410994 in Item_in_optimizer::fix_left (this=0x1526e006c1f8, thd=<optimized out>) at /test/11.0_opt/sql/item_cmpfunc.cc:1349
#49 0x00005640324afdcb in Item_in_subselect::select_in_like_transformer (this=0x1526e0052b90, join=0x1526e006bba0) at /test/11.0_opt/sql/item_subselect.cc:3474
#50 0x00005640322dcc64 in check_and_do_in_subquery_rewrites (join=join@entry=0x1526e006bba0) at /test/11.0_opt/sql/opt_subselect.cc:751
#51 0x00005640321e7d17 in JOIN::prepare (this=0x1526e006bba0, tables_init=<optimized out>, conds_init=<optimized out>, og_num=<optimized out>, order_init=<optimized out>, skip_order_by=skip_order_by@entry=false, group_init=<optimized out>, having_init=<optimized out>, proc_param_init=<optimized out>, select_lex_arg=<optimized out>, unit_arg=<optimized out>) at /test/11.0_opt/sql/sql_select.cc:1591
#52 0x00005640324b1168 in subselect_single_select_engine::prepare (this=0x1526e0052dc0, thd=0x1526e0000c68) at /test/11.0_opt/sql/sql_lex.h:1373
#53 0x00005640324b082d in Item_subselect::fix_fields (this=this@entry=0x1526e0052b90, thd_param=thd_param@entry=0x1526e0000c68, ref=ref@entry=0x1526e0052e10) at /test/11.0_opt/sql/item_subselect.cc:296
#54 0x00005640324b0b35 in Item_in_subselect::fix_fields (this=0x1526e0052b90, thd_arg=0x1526e0000c68, ref=0x1526e0052e10) at /test/11.0_opt/sql/item_subselect.cc:3600
#55 0x000056403211479f in Item::fix_fields_if_needed (ref=0x1526e0052e10, thd=0x1526e0000c68, this=0x1526e0052b90) at /test/11.0_opt/sql/item.h:1147
#56 Item::fix_fields_if_needed (ref=0x1526e0052e10, thd=0x1526e0000c68, this=0x1526e0052b90) at /test/11.0_opt/sql/item.h:1145
#57 Item::fix_fields_if_needed_for_scalar (ref=0x1526e0052e10, thd=0x1526e0000c68, this=0x1526e0052b90) at /test/11.0_opt/sql/item.h:1156
#58 setup_fields (thd=thd@entry=0x1526e0000c68, ref_pointer_array=<optimized out>, fields=<optimized out>, column_usage=column_usage@entry=MARK_COLUMNS_READ, sum_func_list=sum_func_list@entry=0x1526e005e838, pre_fix=0x1526e0011bc8, allow_sum_func=true) at /test/11.0_opt/sql/sql_base.cc:7978
#59 0x00005640321e752b in JOIN::prepare (this=0x1526e005e490, tables_init=<optimized out>, conds_init=<optimized out>, og_num=<optimized out>, order_init=<optimized out>, skip_order_by=skip_order_by@entry=false, group_init=0x0, having_init=0x0, proc_param_init=0x0, select_lex_arg=0x1526e00118f8, unit_arg=0x1526e0053598) at /test/11.0_opt/sql/sql_select.cc:1486
#60 0x00005640324b1168 in subselect_single_select_engine::prepare (this=0x1526e0053ff8, thd=0x1526e0000c68) at /test/11.0_opt/sql/sql_lex.h:1373
#61 0x00005640324b082d in Item_subselect::fix_fields (this=this@entry=0x1526e0053dc8, thd_param=thd_param@entry=0x1526e0000c68, ref=ref@entry=0x1526e0054040) at /test/11.0_opt/sql/item_subselect.cc:296
#62 0x00005640324b0b35 in Item_in_subselect::fix_fields (this=0x1526e0053dc8, thd_arg=0x1526e0000c68, ref=0x1526e0054040) at /test/11.0_opt/sql/item_subselect.cc:3600
#63 0x000056403211479f in Item::fix_fields_if_needed (ref=0x1526e0054040, thd=0x1526e0000c68, this=0x1526e0053dc8) at /test/11.0_opt/sql/item.h:1147
#64 Item::fix_fields_if_needed (ref=0x1526e0054040, thd=0x1526e0000c68, this=0x1526e0053dc8) at /test/11.0_opt/sql/item.h:1145
#65 Item::fix_fields_if_needed_for_scalar (ref=0x1526e0054040, thd=0x1526e0000c68, this=0x1526e0053dc8) at /test/11.0_opt/sql/item.h:1156
#66 setup_fields (thd=thd@entry=0x1526e0000c68, ref_pointer_array=<optimized out>, fields=@0x1526e00117b8: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x1526e0054038, last = 0x1526e0054038, elements = 1}, <No data fields>}, column_usage=column_usage@entry=MARK_COLUMNS_READ, sum_func_list=sum_func_list@entry=0x0, pre_fix=0x0, allow_sum_func=false) at /test/11.0_opt/sql/sql_base.cc:7978
#67 0x0000564032142129 in mysql_prepare_insert (thd=thd@entry=0x1526e0000c68, table_list=table_list@entry=0x1526e0010ab0, fields=@0x1526e0005c10: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x1526e00112f8, last = 0x1526e00112f8, elements = 1}, <No data fields>}, values=values@entry=0x1526e00117b8, update_fields=@0x1526e0005c40: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x564033320090 <end_of_list>, last = 0x1526e0005c40, elements = 0}, <No data fields>}, update_values=@0x1526e0005c28: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x564033320090 <end_of_list>, last = 0x1526e0005c28, elements = 0}, <No data fields>}, duplic=<optimized out>, ignore=<optimized out>, where=<optimized out>, select_insert=<optimized out>) at /test/11.0_opt/sql/sql_array.h:38
#68 0x000056403214919b in mysql_insert (thd=thd@entry=0x1526e0000c68, table_list=0x1526e0010ab0, fields=@0x1526e0005c10: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x1526e00112f8, last = 0x1526e00112f8, elements = 1}, <No data fields>}, values_list=@0x1526e0005c58: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x1526e0054148, last = 0x1526e0054148, elements = 1}, <No data fields>}, update_fields=@0x1526e0005c40: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x564033320090 <end_of_list>, last = 0x1526e0005c40, elements = 0}, <No data fields>}, update_values=@0x1526e0005c28: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x564033320090 <end_of_list>, last = 0x1526e0005c28, elements = 0}, <No data fields>}, duplic=<optimized out>, ignore=<optimized out>, result=<optimized out>) at /test/11.0_opt/sql/sql_insert.cc:779
#69 0x0000564032180315 in mysql_execute_command (thd=0x1526e0000c68, is_called_from_prepared_stmt=<optimized out>) at /test/11.0_opt/sql/sql_parse.cc:4569
#70 0x0000564032184794 in mysql_parse (rawbuf=<optimized out>, length=<optimized out>, parser_state=<optimized out>, thd=0x1526e0000c68) at /test/11.0_opt/sql/sql_parse.cc:8002
#71 mysql_parse (thd=0x1526e0000c68, rawbuf=<optimized out>, length=<optimized out>, parser_state=<optimized out>) at /test/11.0_opt/sql/sql_parse.cc:7924
#72 0x0000564032186d72 in dispatch_command (command=COM_QUERY, thd=0x1526e0000c68, packet=<optimized out>, packet_length=<optimized out>, blocking=<optimized out>) at /test/11.0_opt/sql/sql_parse.cc:1991
#73 0x0000564032188510 in do_command (thd=0x1526e0000c68, blocking=blocking@entry=true) at /test/11.0_opt/sql/sql_parse.cc:1407
#74 0x00005640322a0717 in do_handle_one_connection (connect=<optimized out>, connect@entry=0x564035429448, put_in_cache=put_in_cache@entry=true) at /test/11.0_opt/sql/sql_connect.cc:1416
#75 0x00005640322a09ed in handle_one_connection (arg=0x564035429448) at /test/11.0_opt/sql/sql_connect.cc:1318
#76 0x0000152749bd7b43 in start_thread (arg=<optimized out>) at ./nptl/pthread_create.c:442
#77 0x0000152749c69a00 in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:81

11.0.1 f2dc4d4c10ac36a73b5c1eb765352d3aee808d66 (Debug)
Core was generated by `/test/MD180223-mariadb-11.0.1-linux-x86_64-dbg/bin/mariadbd --no-defaults --cor'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0 0x000055a451030fbf in Item_subselect::get_cache_parameters (
this=0x148af406c648, parameters=...)
at /test/11.0_dbg/sql/item_subselect.cc:837
837 };
[Current thread is 1 (Thread 0x148b49b3d640 (LWP 3814849))]
(gdb) bt
#0 0x000055a451030fbf in Item_subselect::get_cache_parameters (this=0x148af406c648, parameters=@0x148af4095d20: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x148af4098fd0, last = 0x148af4098fd0, elements = 1}, <No data fields>}) at /test/11.0_dbg/sql/item_subselect.cc:837
#1 0x000055a450f81993 in Item_in_optimizer::get_cache_parameters (this=0x148af4087070, parameters=@0x148af4095d20: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x148af4098fd0, last = 0x148af4098fd0, elements = 1}, <No data fields>}) at /test/11.0_dbg/sql/item_cmpfunc.cc:1485
#2 0x000055a450f6285f in Item_cache_wrapper::init_on_demand (this=this@entry=0x148af4095c90) at /test/11.0_dbg/sql/item.cc:8779
#3 0x000055a450f62c19 in Item_cache_wrapper::check_cache (this=this@entry=0x148af4095c90) at /test/11.0_dbg/sql/item.cc:8904
#4 0x000055a450f62d1b in Item_cache_wrapper::val_int (this=0x148af4095c90) at /test/11.0_dbg/sql/item.cc:8968
#5 0x000055a450f46e71 in Item_direct_ref::val_int (this=this@entry=0x148af408a930) at /test/11.0_dbg/sql/item.cc:8685
#6 0x000055a450f6a0b8 in Item_direct_view_ref::val_int (this=0x148af408a930) at /test/11.0_dbg/sql/item.h:6125
#7 0x000055a450f46e71 in Item_direct_ref::val_int (this=this@entry=0x148af408b018) at /test/11.0_dbg/sql/item.cc:8685
#8 0x000055a450f6a0b8 in Item_direct_view_ref::val_int (this=0x148af408b018) at /test/11.0_dbg/sql/item.h:6125
#9 0x000055a450f725e9 in Arg_comparator::compare_int_signed (this=0x148af4015f98) at /test/11.0_dbg/sql/item_cmpfunc.cc:944
#10 0x000055a450f76adc in Arg_comparator::compare (this=0x148af4015f98) at /test/11.0_dbg/sql/item_cmpfunc.h:103
#11 Item_func_eq::val_int (this=0x148af4015ee0) at /test/11.0_dbg/sql/item_cmpfunc.cc:1776
#12 0x000055a450f72608 in Arg_comparator::compare_int_signed (this=0x148af408e368) at /test/11.0_dbg/sql/item_cmpfunc.cc:947
#13 0x000055a450f76adc in Arg_comparator::compare (this=0x148af408e368) at /test/11.0_dbg/sql/item_cmpfunc.h:103
#14 Item_func_eq::val_int (this=0x148af408e2b0) at /test/11.0_dbg/sql/item_cmpfunc.cc:1776
#15 0x000055a450e50776 in Type_handler_int_result::Item_val_bool (this=<optimized out>, item=<optimized out>) at /test/11.0_dbg/sql/sql_type.cc:5091
#16 0x000055a450b4a6ee in Item::val_bool (this=0x148af408e2b0) at /test/11.0_dbg/sql/item.h:1701
#17 0x000055a450f74ab4 in Item_cond_or::val_int (this=0x148af40959c8) at /test/11.0_dbg/sql/item_cmpfunc.cc:5538
#18 0x000055a450ca5dd2 in evaluate_join_record (join=join@entry=0x148af4081418, join_tab=join_tab@entry=0x148af4094cf0, error=error@entry=0) at /test/11.0_dbg/sql/sql_select.cc:22898
#19 0x000055a450cbc8e2 in sub_select (join=0x148af4081418, join_tab=0x148af4094cf0, end_of_records=false) at /test/11.0_dbg/sql/sql_select.cc:22797
#20 0x000055a450cf267f in do_select (procedure=0x0, join=0x148af4081418) at /test/11.0_dbg/sql/sql_select.cc:22329
#21 JOIN::exec_inner (this=this@entry=0x148af4081418) at /test/11.0_dbg/sql/sql_select.cc:4888
#22 0x000055a450cf2be0 in JOIN::exec (this=0x148af4081418) at /test/11.0_dbg/sql/sql_select.cc:4666
#23 0x000055a451033908 in subselect_single_select_engine::exec (this=0x148af406dd00) at /test/11.0_dbg/sql/item_subselect.cc:4156
#24 0x000055a4510353c2 in Item_subselect::exec (this=this@entry=0x148af406dad0) at /test/11.0_dbg/sql/item_subselect.cc:812
#25 0x000055a4510382d9 in Item_in_subselect::exec (this=0x148af406dad0) at /test/11.0_dbg/sql/item_subselect.cc:994
#26 0x000055a45103251b in Item_in_subselect::val_bool (this=0x148af406dad0) at /test/11.0_dbg/sql/item_subselect.cc:1991
#27 0x000055a450b4a7bb in Item::val_bool_result (this=<optimized out>) at /test/11.0_dbg/sql/item.h:1797
#28 0x000055a450f81334 in Item_in_optimizer::val_int (this=0x148af408b2a8) at /test/11.0_dbg/sql/item_cmpfunc.cc:1651
#29 0x000055a450b4a77f in Item::val_int_result (this=<optimized out>) at /test/11.0_dbg/sql/item.h:1793
#30 0x000055a450f47663 in Item_cache_int::cache_value (this=0x148af4098380) at /test/11.0_dbg/sql/item.cc:10166
#31 0x000055a450f62d7b in Item_cache_wrapper::cache (this=0x148af40982d8) at /test/11.0_dbg/sql/item.cc:8920
#32 Item_cache_wrapper::val_int (this=0x148af40982d8) at /test/11.0_dbg/sql/item.cc:8974
#33 0x000055a450b4a77f in Item::val_int_result (this=<optimized out>) at /test/11.0_dbg/sql/item.h:1793
#34 0x000055a450f4733f in Item_direct_view_ref::val_int_result (this=0x148af408c220) at /test/11.0_dbg/sql/item.cc:9523
#35 0x000055a450f4733f in Item_direct_view_ref::val_int_result (this=0x148af408c9a8) at /test/11.0_dbg/sql/item.cc:9523
#36 0x000055a450f47663 in Item_cache_int::cache_value (this=0x148af408caf8) at /test/11.0_dbg/sql/item.cc:10166
#37 0x000055a451035c24 in Item_singlerow_subselect::store (this=this@entry=0x148af4071bf8, i=i@entry=0, item=<optimized out>) at /test/11.0_dbg/sql/item_subselect.cc:1298
#38 0x000055a450bf6df6 in select_singlerow_subselect::send_data (this=<optimized out>, items=<optimized out>) at /test/11.0_dbg/sql/sql_class.cc:3654
#39 0x000055a450cd72a7 in select_result_sink::send_data_with_check (sent=<optimized out>, u=<optimized out>, items=@0x148af4014a30: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x148af4014d50, last = 0x148af4014d50, elements = 1}, <No data fields>}, this=<optimized out>) at /test/11.0_dbg/sql/sql_class.h:5748
#40 end_send (join=0x148af4080340, join_tab=0x148af4097718, end_of_records=<optimized out>) at /test/11.0_dbg/sql/sql_select.cc:24063
#41 0x000055a450ca5ffc in evaluate_join_record (join=join@entry=0x148af4080340, join_tab=join_tab@entry=0x148af4097318, error=error@entry=0) at /test/11.0_dbg/sql/sql_select.cc:23030
#42 0x000055a450cbc8e2 in sub_select (join=0x148af4080340, join_tab=0x148af4097318, end_of_records=false) at /test/11.0_dbg/sql/sql_select.cc:22797
#43 0x000055a450cf267f in do_select (procedure=0x0, join=0x148af4080340) at /test/11.0_dbg/sql/sql_select.cc:22329
#44 JOIN::exec_inner (this=this@entry=0x148af4080340) at /test/11.0_dbg/sql/sql_select.cc:4888
#45 0x000055a450cf2be0 in JOIN::exec (this=0x148af4080340) at /test/11.0_dbg/sql/sql_select.cc:4666
#46 0x000055a451033908 in subselect_single_select_engine::exec (this=0x148af4072d38) at /test/11.0_dbg/sql/item_subselect.cc:4156
#47 0x000055a4510353c2 in Item_subselect::exec (this=0x148af4071bf8) at /test/11.0_dbg/sql/item_subselect.cc:812
#48 0x000055a45103198d in Item_singlerow_subselect::val_int (this=0x148af4071bf8) at /test/11.0_dbg/sql/item_subselect.cc:1462
#49 0x000055a450b4a77f in Item::val_int_result (this=<optimized out>) at /test/11.0_dbg/sql/item.h:1793
#50 0x000055a450f47663 in Item_cache_int::cache_value (this=0x148af408d2d0) at /test/11.0_dbg/sql/item.cc:10166
#51 0x000055a450f80f87 in Item_in_optimizer::fix_left (this=0x148af408d200, thd=<optimized out>) at /test/11.0_dbg/sql/item_cmpfunc.cc:1349
#52 0x000055a451037d32 in Item_in_subselect::select_in_like_transformer (this=0x148af4073b00, join=0x148af408cba0) at /test/11.0_dbg/sql/item_subselect.cc:3474
#53 0x000055a451038011 in Item_in_subselect::select_transformer (this=<optimized out>, join=<optimized out>) at /test/11.0_dbg/sql/item_subselect.cc:2774
#54 0x000055a450e0fb3b in check_and_do_in_subquery_rewrites (join=join@entry=0x148af408cba0) at /test/11.0_dbg/sql/opt_subselect.cc:751
#55 0x000055a450cda6b0 in JOIN::prepare (this=0x148af408cba0, tables_init=<optimized out>, conds_init=<optimized out>, og_num=<optimized out>, order_init=<optimized out>, skip_order_by=skip_order_by@entry=false, group_init=<optimized out>, having_init=<optimized out>, proc_param_init=<optimized out>, select_lex_arg=<optimized out>, unit_arg=<optimized out>) at /test/11.0_dbg/sql/sql_select.cc:1591
#56 0x000055a451039139 in subselect_single_select_engine::prepare (this=0x148af4073d30, thd=0x148af4000d58) at /test/11.0_dbg/sql/sql_lex.h:1373
#57 0x000055a4510385f5 in Item_subselect::fix_fields (this=this@entry=0x148af4073b00, thd_param=thd_param@entry=0x148af4000d58, ref=ref@entry=0x148af4073d80) at /test/11.0_dbg/sql/item_subselect.cc:296
#58 0x000055a451038c67 in Item_in_subselect::fix_fields (this=0x148af4073b00, thd_arg=0x148af4000d58, ref=0x148af4073d80) at /test/11.0_dbg/sql/item_subselect.cc:3600
#59 0x000055a450beb84a in Item::fix_fields_if_needed (ref=0x148af4073d80, thd=0x148af4000d58, this=0x148af4073b00) at /test/11.0_dbg/sql/item.h:1147
#60 Item::fix_fields_if_needed_for_scalar (ref=0x148af4073d80, thd=0x148af4000d58, this=0x148af4073b00) at /test/11.0_dbg/sql/item.h:1156
#61 setup_fields (thd=0x148af4000d58, ref_pointer_array=<optimized out>, fields=<optimized out>, column_usage=column_usage@entry=MARK_COLUMNS_READ, sum_func_list=sum_func_list@entry=0x148af407f5b0, pre_fix=0x148af4014598, allow_sum_func=true) at /test/11.0_dbg/sql/sql_base.cc:7978
#62 0x000055a450cd9aa3 in JOIN::prepare (this=0x148af407f200, tables_init=<optimized out>, conds_init=<optimized out>, og_num=<optimized out>, order_init=<optimized out>, skip_order_by=skip_order_by@entry=false, group_init=0x0, having_init=0x0, proc_param_init=0x0, select_lex_arg=0x148af40142c8, unit_arg=0x148af4074508) at /test/11.0_dbg/sql/sql_select.cc:1486
#63 0x000055a451039139 in subselect_single_select_engine::prepare (this=0x148af4074f68, thd=0x148af4000d58) at /test/11.0_dbg/sql/sql_lex.h:1373
#64 0x000055a4510385f5 in Item_subselect::fix_fields (this=this@entry=0x148af4074d38, thd_param=thd_param@entry=0x148af4000d58, ref=ref@entry=0x148af4074fb0) at /test/11.0_dbg/sql/item_subselect.cc:296
#65 0x000055a451038c67 in Item_in_subselect::fix_fields (this=0x148af4074d38, thd_arg=0x148af4000d58, ref=0x148af4074fb0) at /test/11.0_dbg/sql/item_subselect.cc:3600
#66 0x000055a450beb84a in Item::fix_fields_if_needed (ref=0x148af4074fb0, thd=0x148af4000d58, this=0x148af4074d38) at /test/11.0_dbg/sql/item.h:1147
#67 Item::fix_fields_if_needed_for_scalar (ref=0x148af4074fb0, thd=0x148af4000d58, this=0x148af4074d38) at /test/11.0_dbg/sql/item.h:1156
#68 setup_fields (thd=thd@entry=0x148af4000d58, ref_pointer_array=<optimized out>, fields=@0x148af4014188: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x148af4074fa8, last = 0x148af4074fa8, elements = 1}, <No data fields>}, column_usage=column_usage@entry=MARK_COLUMNS_READ, sum_func_list=sum_func_list@entry=0x0, pre_fix=0x0, allow_sum_func=false) at /test/11.0_dbg/sql/sql_base.cc:7978
#69 0x000055a450c1eef1 in mysql_prepare_insert (thd=thd@entry=0x148af4000d58, table_list=table_list@entry=0x148af4013480, fields=@0x148af4005ec0: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x148af4013cc8, last = 0x148af4013cc8, elements = 1}, <No data fields>}, values=values@entry=0x148af4014188, update_fields=@0x148af4005ef0: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x55a452141440 <end_of_list>, last = 0x148af4005ef0, elements = 0}, <No data fields>}, update_values=@0x148af4005ed8: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x55a452141440 <end_of_list>, last = 0x148af4005ed8, elements = 0}, <No data fields>}, duplic=<optimized out>, ignore=<optimized out>, where=<optimized out>, select_insert=<optimized out>) at /test/11.0_dbg/sql/sql_array.h:38
#70 0x000055a450c27efe in mysql_insert (thd=thd@entry=0x148af4000d58, table_list=0x148af4013480, fields=@0x148af4005ec0: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x148af4013cc8, last = 0x148af4013cc8, elements = 1}, <No data fields>}, values_list=@0x148af4005f08: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x148af40750b8, last = 0x148af40750b8, elements = 1}, <No data fields>}, update_fields=@0x148af4005ef0: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x55a452141440 <end_of_list>, last = 0x148af4005ef0, elements = 0}, <No data fields>}, update_values=@0x148af4005ed8: {<base_list> = {<Sql_alloc> = {<No data fields>}, first = 0x55a452141440 <end_of_list>, last = 0x148af4005ed8, elements = 0}, <No data fields>}, duplic=DUP_ERROR, ignore=false, result=0x0) at /test/11.0_dbg/sql/sql_insert.cc:779
#71 0x000055a450c63e0b in mysql_execute_command (thd=thd@entry=0x148af4000d58, is_called_from_prepared_stmt=is_called_from_prepared_stmt@entry=false) at /test/11.0_dbg/sql/sql_parse.cc:4569
#72 0x000055a450c697cf in mysql_parse (thd=thd@entry=0x148af4000d58, rawbuf=<optimized out>, length=<optimized out>, parser_state=parser_state@entry=0x148b49b3c2c0) at /test/11.0_dbg/sql/sql_parse.cc:8002
#73 0x000055a450c6b963 in dispatch_command (command=command@entry=COM_QUERY, thd=thd@entry=0x148af4000d58, packet=packet@entry=0x148af400ae19 "INSERT INTO x (x) VALUES (x IN (SELECT (SELECT x FROM (SELECT x FROM (SELECT 0 IN (SELECT x=0 FROM (SELECT x FROM (SELECT (SELECT (SELECT (SELECT (SELECT 0 AS x) FROM x AS x) IN (SELECT 0 AS x) AS x) "..., packet_length=packet_length@entry=335, blocking=blocking@entry=true) at /test/11.0_dbg/sql/sql_class.h:242
#74 0x000055a450c6d7bc in do_command (thd=0x148af4000d58, blocking=blocking@entry=true) at /test/11.0_dbg/sql/sql_parse.cc:1407
#75 0x000055a450dbe6e2 in do_handle_one_connection (connect=<optimized out>, connect@entry=0x55a45309eb58, put_in_cache=put_in_cache@entry=true) at /test/11.0_dbg/sql/sql_connect.cc:1416
#76 0x000055a450dbe941 in handle_one_connection (arg=0x55a45309eb58) at /test/11.0_dbg/sql/sql_connect.cc:1318
#77 0x0000148b77445b43 in start_thread (arg=<optimized out>) at ./nptl/pthread_create.c:442
#78 0x0000148b774d7a00 in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:81

11.0.1 4d09050ca77a7efac4565d46e4bcd85a5f210c53 (Optimized, UBASAN)
/test/11.0_opt_san/sql/item_subselect.cc:832:27: runtime error: member access within null pointer of type 'struct st_select_lex'
#0 0x55e4aae38314 in Item_subselect::get_cache_parameters(List<Item>&) /test/11.0_opt_san/sql/item_subselect.cc:832
#1 0x55e4aa62ce75 in Item_cache_wrapper::init_on_demand() /test/11.0_opt_san/sql/item.cc:8763
#2 0x55e4aa62ec2b in Item_cache_wrapper::check_cache() /test/11.0_opt_san/sql/item.cc:8888
#3 0x55e4aa62fd5e in Item_cache_wrapper::val_int() /test/11.0_opt_san/sql/item.cc:8952
#4 0x55e4aa544d5d in Item_direct_ref::val_int() /test/11.0_opt_san/sql/item.cc:8669
#5 0x55e4aa544d5d in Item_direct_ref::val_int() /test/11.0_opt_san/sql/item.cc:8669
#6 0x55e4aa71da65 in Arg_comparator::compare_int_signed() /test/11.0_opt_san/sql/item_cmpfunc.cc:944
#7 0x55e4aa6f9512 in Arg_comparator::compare() /test/11.0_opt_san/sql/item_cmpfunc.h:103
#8 0x55e4aa6f9512 in Item_func_eq::val_int() /test/11.0_opt_san/sql/item_cmpfunc.cc:1776
#9 0x55e4aa71dc31 in Arg_comparator::compare_int_signed() /test/11.0_opt_san/sql/item_cmpfunc.cc:947
#10 0x55e4aa6f9512 in Arg_comparator::compare() /test/11.0_opt_san/sql/item_cmpfunc.h:103
#11 0x55e4aa6f9512 in Item_func_eq::val_int() /test/11.0_opt_san/sql/item_cmpfunc.cc:1776
#12 0x55e4a9d13d3f in Type_handler_int_result::Item_val_bool(Item*) const /test/11.0_opt_san/sql/sql_type.cc:5091
#13 0x55e4aa715fdc in Item_cond_or::val_int() /test/11.0_opt_san/sql/item_cmpfunc.cc:5507
#14 0x55e4a91cbed6 in evaluate_join_record /test/11.0_opt_san/sql/sql_select.cc:21983
#15 0x55e4a92586c8 in sub_select(JOIN, st_join_table, bool) /test/11.0_opt_san/sql/sql_select.cc:21885
#16 0x55e4a941be6b in do_select /test/11.0_opt_san/sql/sql_select.cc:21428
#17 0x55e4a941be6b in JOIN::exec_inner() /test/11.0_opt_san/sql/sql_select.cc:4822
#18 0x55e4a9420f23 in JOIN::exec() /test/11.0_opt_san/sql/sql_select.cc:4600
#19 0x55e4aae532a4 in subselect_single_select_engine::exec() /test/11.0_opt_san/sql/item_subselect.cc:4101
#20 0x55e4aae478d4 in Item_subselect::exec() /test/11.0_opt_san/sql/item_subselect.cc:811
#21 0x55e4aae4ab12 in Item_in_subselect::val_bool() /test/11.0_opt_san/sql/item_subselect.cc:1946
#22 0x55e4aa77aa55 in Item_in_optimizer::val_int() /test/11.0_opt_san/sql/item_cmpfunc.cc:1651
#23 0x55e4aa549226 in Item_cache_int::cache_value() /test/11.0_opt_san/sql/item.cc:10150
#24 0x55e4aa6c1b1b in Item_cache_wrapper::cache() /test/11.0_opt_san/sql/item.cc:8904
#25 0x55e4aa62ffbf in Item_cache_wrapper::val_int() /test/11.0_opt_san/sql/item.cc:8958
#26 0x55e4aa54782d in Item_direct_view_ref::val_int_result() /test/11.0_opt_san/sql/item.cc:9507
#27 0x55e4aa54782d in Item_direct_view_ref::val_int_result() /test/11.0_opt_san/sql/item.cc:9507
#28 0x55e4aa549226 in Item_cache_int::cache_value() /test/11.0_opt_san/sql/item.cc:10150
#29 0x55e4a8c7f9a4 in select_singlerow_subselect::send_data(List<Item>&) /test/11.0_opt_san/sql/sql_class.cc:3655
#30 0x55e4a9315bf3 in select_result_sink::send_data_with_check(List<Item>&, st_select_lex_unit*, unsigned long long) /test/11.0_opt_san/sql/sql_class.h:5720
#31 0x55e4a9315bf3 in select_result_sink::send_data_with_check(List<Item>&, st_select_lex_unit*, unsigned long long) /test/11.0_opt_san/sql/sql_class.h:5710
#32 0x55e4a9315bf3 in end_send /test/11.0_opt_san/sql/sql_select.cc:23121
#33 0x55e4a91cccb0 in evaluate_join_record /test/11.0_opt_san/sql/sql_select.cc:22115
#34 0x55e4a92586c8 in sub_select(JOIN, st_join_table, bool) /test/11.0_opt_san/sql/sql_select.cc:21885
#35 0x55e4a941be6b in do_select /test/11.0_opt_san/sql/sql_select.cc:21428
#36 0x55e4a941be6b in JOIN::exec_inner() /test/11.0_opt_san/sql/sql_select.cc:4822
#37 0x55e4a9420f23 in JOIN::exec() /test/11.0_opt_san/sql/sql_select.cc:4600
#38 0x55e4aae532a4 in subselect_single_select_engine::exec() /test/11.0_opt_san/sql/item_subselect.cc:4101
#39 0x55e4aae478d4 in Item_subselect::exec() /test/11.0_opt_san/sql/item_subselect.cc:811
#40 0x55e4aae3f059 in Item_singlerow_subselect::val_int() /test/11.0_opt_san/sql/item_subselect.cc:1461
#41 0x55e4aa549226 in Item_cache_int::cache_value() /test/11.0_opt_san/sql/item.cc:10150
#42 0x55e4aa7762ac in Item_in_optimizer::fix_left(THD*) /test/11.0_opt_san/sql/item_cmpfunc.cc:1349
#43 0x55e4aae88570 in Item_in_subselect::select_in_like_transformer(JOIN*) /test/11.0_opt_san/sql/item_subselect.cc:3419
#44 0x55e4a9b294d8 in check_and_do_in_subquery_rewrites(JOIN*) /test/11.0_opt_san/sql/opt_subselect.cc:760
#45 0x55e4a9331268 in JOIN::prepare(TABLE_LIST, Item, unsigned int, st_order, bool, st_order, Item, st_order, st_select_lex, st_select_lex_unit) /test/11.0_opt_san/sql/sql_select.cc:1564
#46 0x55e4aae9593f in subselect_single_select_engine::prepare(THD*) /test/11.0_opt_san/sql/item_subselect.cc:3886
#47 0x55e4aae8e672 in Item_subselect::fix_fields(THD, Item*) /test/11.0_opt_san/sql/item_subselect.cc:295
#48 0x55e4aae91671 in Item_in_subselect::fix_fields(THD, Item*) /test/11.0_opt_san/sql/item_subselect.cc:3545
#49 0x55e4a8c27818 in Item::fix_fields_if_needed(THD, Item*) /test/11.0_opt_san/sql/item.h:1147
#50 0x55e4a8c27818 in Item::fix_fields_if_needed_for_scalar(THD, Item*) /test/11.0_opt_san/sql/item.h:1156
#51 0x55e4a8c27818 in setup_fields(THD, Bounds_checked_array<Item>, List<Item>&, enum_column_usage, List<Item>, List<Item>, bool) /test/11.0_opt_san/sql/sql_base.cc:7977
#52 0x55e4a932cb18 in JOIN::prepare(TABLE_LIST, Item, unsigned int, st_order, bool, st_order, Item, st_order, st_select_lex, st_select_lex_unit) /test/11.0_opt_san/sql/sql_select.cc:1459
#53 0x55e4aae9593f in subselect_single_select_engine::prepare(THD*) /test/11.0_opt_san/sql/item_subselect.cc:3886
#54 0x55e4aae8e672 in Item_subselect::fix_fields(THD, Item*) /test/11.0_opt_san/sql/item_subselect.cc:295
#55 0x55e4aae91671 in Item_in_subselect::fix_fields(THD, Item*) /test/11.0_opt_san/sql/item_subselect.cc:3545
#56 0x55e4a8c27818 in Item::fix_fields_if_needed(THD, Item*) /test/11.0_opt_san/sql/item.h:1147
#57 0x55e4a8c27818 in Item::fix_fields_if_needed_for_scalar(THD, Item*) /test/11.0_opt_san/sql/item.h:1156
#58 0x55e4a8c27818 in setup_fields(THD, Bounds_checked_array<Item>, List<Item>&, enum_column_usage, List<Item>, List<Item>, bool) /test/11.0_opt_san/sql/sql_base.cc:7977
#59 0x55e4a8dc0730 in mysql_prepare_insert(THD, TABLE_LIST, List<Item>&, List<Item>, List<Item>&, List<Item>&, enum_duplicates, bool, Item*, bool) /test/11.0_opt_san/sql/sql_insert.cc:1706
#60 0x55e4a8e239a6 in mysql_insert(THD, TABLE_LIST, List<Item>&, List<List<Item> >&, List<Item>&, List<Item>&, enum_duplicates, bool, select_result*) /test/11.0_opt_san/sql/sql_insert.cc:779
#61 0x55e4a9010a01 in mysql_execute_command(THD*, bool) /test/11.0_opt_san/sql/sql_parse.cc:4567
#62 0x55e4a9031542 in mysql_parse(THD, char, unsigned int, Parser_state*) /test/11.0_opt_san/sql/sql_parse.cc:8000
#63 0x55e4a903efa5 in dispatch_command(enum_server_command, THD, char, unsigned int, bool) /test/11.0_opt_san/sql/sql_parse.cc:1894
#64 0x55e4a9048700 in do_command(THD*, bool) /test/11.0_opt_san/sql/sql_parse.cc:1407
#65 0x55e4a992903c in do_handle_one_connection(CONNECT*, bool) /test/11.0_opt_san/sql/sql_connect.cc:1416
#66 0x55e4a992b63c in handle_one_connection /test/11.0_opt_san/sql/sql_connect.cc:1318
#67 0x1458c6232b42 in start_thread nptl/pthread_create.c:442
#68 0x1458c62c49ff (/lib/x86_64-linux-gnu/libc.so.6+0x1269ff)

11.0.1 4d09050ca77a7efac4565d46e4bcd85a5f210c53 (Debug, UBASAN)
/test/11.0_dbg_san/sql/item_subselect.cc:832:27: runtime error: member access within null pointer of type 'struct st_select_lex'
#0 0x55dfcb3d3519 in Item_subselect::get_cache_parameters(List<Item>&) /test/11.0_dbg_san/sql/item_subselect.cc:832
#1 0x55dfcac382fb in Item_in_optimizer::get_cache_parameters(List<Item>&) /test/11.0_dbg_san/sql/item_cmpfunc.cc:1485
#2 0x55dfcaa9e6b5 in Item_cache_wrapper::init_on_demand() /test/11.0_dbg_san/sql/item.cc:8763
#3 0x55dfcaaa0856 in Item_cache_wrapper::check_cache() /test/11.0_dbg_san/sql/item.cc:8888
#4 0x55dfcaaa1db8 in Item_cache_wrapper::val_int() /test/11.0_dbg_san/sql/item.cc:8952
#5 0x55dfca99b55a in Item_direct_ref::val_int() /test/11.0_dbg_san/sql/item.cc:8669
#6 0x55dfcab250af in Item_direct_view_ref::val_int() /test/11.0_dbg_san/sql/item.h:6111
#7 0x55dfca99b55a in Item_direct_ref::val_int() /test/11.0_dbg_san/sql/item.cc:8669
#8 0x55dfcab250af in Item_direct_view_ref::val_int() /test/11.0_dbg_san/sql/item.h:6111
#9 0x55dfcaba3003 in Arg_comparator::compare_int_signed() /test/11.0_dbg_san/sql/item_cmpfunc.cc:944
#10 0x55dfcabacd56 in Arg_comparator::compare() /test/11.0_dbg_san/sql/item_cmpfunc.h:103
#11 0x55dfcabacd56 in Item_func_eq::val_int() /test/11.0_dbg_san/sql/item_cmpfunc.cc:1776
#12 0x55dfcaba31f2 in Arg_comparator::compare_int_signed() /test/11.0_dbg_san/sql/item_cmpfunc.cc:947
#13 0x55dfcabacd56 in Arg_comparator::compare() /test/11.0_dbg_san/sql/item_cmpfunc.h:103
#14 0x55dfcabacd56 in Item_func_eq::val_int() /test/11.0_dbg_san/sql/item_cmpfunc.cc:1776
#15 0x55dfca0790d2 in Type_handler_int_result::Item_val_bool(Item*) const /test/11.0_dbg_san/sql/sql_type.cc:5091
#16 0x55dfc896a94e in Item::val_bool() /test/11.0_dbg_san/sql/item.h:1695
#17 0x55dfcaba25bc in Item_cond_or::val_int() /test/11.0_dbg_san/sql/item_cmpfunc.cc:5507
#18 0x55dfc93ecefe in evaluate_join_record /test/11.0_dbg_san/sql/sql_select.cc:21983
#19 0x55dfc948f7ee in sub_select(JOIN, st_join_table, bool) /test/11.0_dbg_san/sql/sql_select.cc:21885
#20 0x55dfc9640d7b in do_select /test/11.0_dbg_san/sql/sql_select.cc:21428
#21 0x55dfc9640d7b in JOIN::exec_inner() /test/11.0_dbg_san/sql/sql_select.cc:4822
#22 0x55dfc96424e5 in JOIN::exec() /test/11.0_dbg_san/sql/sql_select.cc:4600
#23 0x55dfcb3eddad in subselect_single_select_engine::exec() /test/11.0_dbg_san/sql/item_subselect.cc:4101
#24 0x55dfcb3fe559 in Item_subselect::exec() /test/11.0_dbg_san/sql/item_subselect.cc:811
#25 0x55dfcb424e12 in Item_in_subselect::exec() /test/11.0_dbg_san/sql/item_subselect.cc:993
#26 0x55dfcb3e4b2b in Item_in_subselect::val_bool() /test/11.0_dbg_san/sql/item_subselect.cc:1946
#27 0x55dfc896b2ac in Item::val_bool_result() /test/11.0_dbg_san/sql/item.h:1791
#28 0x55dfcac3301a in Item_in_optimizer::val_int() /test/11.0_dbg_san/sql/item_cmpfunc.cc:1651
#29 0x55dfc896af4a in Item::val_int_result() /test/11.0_dbg_san/sql/item.h:1787
#30 0x55dfca99f6ce in Item_cache_int::cache_value() /test/11.0_dbg_san/sql/item.cc:10150
#31 0x55dfcaaa2775 in Item_cache_wrapper::cache() /test/11.0_dbg_san/sql/item.cc:8904
#32 0x55dfcaaa2775 in Item_cache_wrapper::val_int() /test/11.0_dbg_san/sql/item.cc:8958
#33 0x55dfc896af4a in Item::val_int_result() /test/11.0_dbg_san/sql/item.h:1787
#34 0x55dfca99dbc6 in Item_direct_view_ref::val_int_result() /test/11.0_dbg_san/sql/item.cc:9507
#35 0x55dfca99dbc6 in Item_direct_view_ref::val_int_result() /test/11.0_dbg_san/sql/item.cc:9507
#36 0x55dfca99f6ce in Item_cache_int::cache_value() /test/11.0_dbg_san/sql/item.cc:10150
#37 0x55dfcb40385e in Item_singlerow_subselect::store(unsigned int, Item*) /test/11.0_dbg_san/sql/item_subselect.cc:1297
#38 0x55dfc8e73270 in select_singlerow_subselect::send_data(List<Item>&) /test/11.0_dbg_san/sql/sql_class.cc:3655
#39 0x55dfc95514cc in select_result_sink::send_data_with_check(List<Item>&, st_select_lex_unit*, unsigned long long) /test/11.0_dbg_san/sql/sql_class.h:5720
#40 0x55dfc95514cc in end_send /test/11.0_dbg_san/sql/sql_select.cc:23121
#41 0x55dfc93edf84 in evaluate_join_record /test/11.0_dbg_san/sql/sql_select.cc:22115
#42 0x55dfc948f7ee in sub_select(JOIN, st_join_table, bool) /test/11.0_dbg_san/sql/sql_select.cc:21885
#43 0x55dfc9640d7b in do_select /test/11.0_dbg_san/sql/sql_select.cc:21428
#44 0x55dfc9640d7b in JOIN::exec_inner() /test/11.0_dbg_san/sql/sql_select.cc:4822
#45 0x55dfc96424e5 in JOIN::exec() /test/11.0_dbg_san/sql/sql_select.cc:4600
#46 0x55dfcb3eddad in subselect_single_select_engine::exec() /test/11.0_dbg_san/sql/item_subselect.cc:4101
#47 0x55dfcb3fe559 in Item_subselect::exec() /test/11.0_dbg_san/sql/item_subselect.cc:811
#48 0x55dfcb3da684 in Item_singlerow_subselect::val_int() /test/11.0_dbg_san/sql/item_subselect.cc:1461
#49 0x55dfc896af4a in Item::val_int_result() /test/11.0_dbg_san/sql/item.h:1787
#50 0x55dfca99f6ce in Item_cache_int::cache_value() /test/11.0_dbg_san/sql/item.cc:10150
#51 0x55dfcac2fdbb in Item_in_optimizer::fix_left(THD*) /test/11.0_dbg_san/sql/item_cmpfunc.cc:1349
#52 0x55dfcb420d9f in Item_in_subselect::select_in_like_transformer(JOIN*) /test/11.0_dbg_san/sql/item_subselect.cc:3419
#53 0x55dfcb42338f in Item_in_subselect::select_transformer(JOIN*) /test/11.0_dbg_san/sql/item_subselect.cc:2729
#54 0x55dfc9e66c91 in check_and_do_in_subquery_rewrites(JOIN*) /test/11.0_dbg_san/sql/opt_subselect.cc:760
#55 0x55dfc956b839 in JOIN::prepare(TABLE_LIST, Item, unsigned int, st_order, bool, st_order, Item, st_order, st_select_lex, st_select_lex_unit) /test/11.0_dbg_san/sql/sql_select.cc:1564
#56 0x55dfcb42fcdf in subselect_single_select_engine::prepare(THD*) /test/11.0_dbg_san/sql/item_subselect.cc:3886
#57 0x55dfcb427792 in Item_subselect::fix_fields(THD, Item*) /test/11.0_dbg_san/sql/item_subselect.cc:295
#58 0x55dfcb42c566 in Item_in_subselect::fix_fields(THD, Item*) /test/11.0_dbg_san/sql/item_subselect.cc:3545
#59 0x55dfc8e19ce8 in Item::fix_fields_if_needed(THD, Item*) /test/11.0_dbg_san/sql/item.h:1147
#60 0x55dfc8e19ce8 in Item::fix_fields_if_needed_for_scalar(THD, Item*) /test/11.0_dbg_san/sql/item.h:1156
#61 0x55dfc8e19ce8 in setup_fields(THD, Bounds_checked_array<Item>, List<Item>&, enum_column_usage, List<Item>, List<Item>, bool) /test/11.0_dbg_san/sql/sql_base.cc:7977
#62 0x55dfc956578b in JOIN::prepare(TABLE_LIST, Item, unsigned int, st_order, bool, st_order, Item, st_order, st_select_lex, st_select_lex_unit) /test/11.0_dbg_san/sql/sql_select.cc:1459
#63 0x55dfcb42fcdf in subselect_single_select_engine::prepare(THD*) /test/11.0_dbg_san/sql/item_subselect.cc:3886
#64 0x55dfcb427792 in Item_subselect::fix_fields(THD, Item*) /test/11.0_dbg_san/sql/item_subselect.cc:295
#65 0x55dfcb42c566 in Item_in_subselect::fix_fields(THD, Item*) /test/11.0_dbg_san/sql/item_subselect.cc:3545
#66 0x55dfc8e19ce8 in Item::fix_fields_if_needed(THD, Item*) /test/11.0_dbg_san/sql/item.h:1147
#67 0x55dfc8e19ce8 in Item::fix_fields_if_needed_for_scalar(THD, Item*) /test/11.0_dbg_san/sql/item.h:1156
#68 0x55dfc8e19ce8 in setup_fields(THD, Bounds_checked_array<Item>, List<Item>&, enum_column_usage, List<Item>, List<Item>, bool) /test/11.0_dbg_san/sql/sql_base.cc:7977
#69 0x55dfc8fca96c in mysql_prepare_insert(THD, TABLE_LIST, List<Item>&, List<Item>, List<Item>&, List<Item>&, enum_duplicates, bool, Item*, bool) /test/11.0_dbg_san/sql/sql_insert.cc:1706
#70 0x55dfc90259a1 in mysql_insert(THD, TABLE_LIST, List<Item>&, List<List<Item> >&, List<Item>&, List<Item>&, enum_duplicates, bool, select_result*) /test/11.0_dbg_san/sql/sql_insert.cc:779
#71 0x55dfc92391ac in mysql_execute_command(THD*, bool) /test/11.0_dbg_san/sql/sql_parse.cc:4567
#72 0x55dfc925e8b1 in mysql_parse(THD, char, unsigned int, Parser_state*) /test/11.0_dbg_san/sql/sql_parse.cc:8000
#73 0x55dfc926e60f in dispatch_command(enum_server_command, THD, char, unsigned int, bool) /test/11.0_dbg_san/sql/sql_parse.cc:1894
#74 0x55dfc927c3d9 in do_command(THD*, bool) /test/11.0_dbg_san/sql/sql_parse.cc:1407
#75 0x55dfc9c1e503 in do_handle_one_connection(CONNECT*, bool) /test/11.0_dbg_san/sql/sql_connect.cc:1416
#76 0x55dfc9c1fa1e in handle_one_connection /test/11.0_dbg_san/sql/sql_connect.cc:1318
#77 0x14cd6119ab42 in start_thread nptl/pthread_create.c:442
#78 0x14cd6122c9ff (/lib/x86_64-linux-gnu/libc.so.6+0x1269ff)

Bug confirmed present in:
MariaDB: 10.4.29 (dbg), 10.4.29 (opt), 10.5.20 (dbg), 10.5.20 (opt), 10.6.13 (dbg), 10.6.13 (opt), 10.7.8 (dbg), 10.7.8 (opt), 10.8.8 (dbg), 10.8.8 (opt), 10.9.6 (dbg), 10.9.6 (opt), 10.10.4 (dbg), 10.10.4 (opt), 10.11.2 (dbg), 10.11.2 (opt), 11.0.1 (dbg), 11.0.1 (opt)

Bug (or feature/syntax) confirmed not present in:
MariaDB: 10.3.38 (dbg), 10.3.38 (opt)
MySQL: 5.5.62 (dbg), 5.5.62 (opt), 5.6.51 (dbg), 5.6.51 (opt), 5.7.40 (dbg), 5.7.40 (opt), 8.0.31 (dbg), 8.0.31 (opt)

Attachments

Issue Links

is part of

MDEV-28622 Item_subselect eliminated flag set but Item still evaluated/used.

Stalled

relates to

MDEV-28620 Server crash in /sql/item_subselect.cc:812 in Item_subselect::get_cache_parameters(List<Item>&)

Confirmed

Activity

People

Assignee:: Rex Johnston

Reporter:: Roel Van de Paar

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2023-03-14 07:31

Updated:: 2023-11-28 10:29

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.