[MDEV-34770] UBSAN: runtime error: load of address 0x... with insufficient space for an object of type 'uchar' in sys_vars.inl - Jira

XML

Word

Printable

Details

Type: Bug
Status: Stalled (View Workflow)
Priority: Critical
Resolution: Unresolved
Affects Version/s: 10.5, 10.6, 10.11, 11.1(EOL), 11.2, 11.4, 11.6, 11.7
Fix Version/s: 10.5, 10.6, 10.11, 11.2, 11.4, 11.6
Component/s: None
Labels:
- UBSAN
- affects-tests
Environment:
gcc 13/gcc 14

Description

Reproduce

export UBSAN_OPTIONS=print_stacktrace=1

export ASAN_OPTIONS=quarantine_size_mb=512:atexit=0:detect_invalid_pointer_pairs=3:dump_instruction_bytes=1:abort_on_error=1:allocator_may_return_null=1

mariadbd --version

Result

11.1.7 3e3a326108ab0ec74a02fd1c63430b7373faf51f (Debug, UBASAN)
/test/11.1_dbg_san/sql/sys_vars.inl:527:14: runtime error: load of address 0x55c73e66df80 with insufficient space for an object of type 'uchar'
0x55c73e66df80: note: pointer points here
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
^
#0 0x55c7313b4b42 in Sys_var_charptr_base::cleanup() /test/11.1_dbg_san/sql/sys_vars.inl:527
#1 0x55c7303b3830 in sys_var_end() /test/11.1_dbg_san/sql/set_var.cc:113
#2 0x55c7301961e5 in clean_up /test/11.1_dbg_san/sql/mysqld.cc:2072
#3 0x55c7301ba3a3 in mysqld_main(int, char**) /test/11.1_dbg_san/sql/mysqld.cc:6142
#4 0x55c73018fdcc in main /test/11.1_dbg_san/sql/main.cc:34
#5 0x14a17842a1c9 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58
#6 0x14a17842a28a in __libc_start_main_impl ../csu/libc-start.c:360
#7 0x55c730083824 in _start (/test/UBASAN_MD190824-mariadb-11.1.7-linux-x86_64-dbg/bin/mariadbd+0x7a57824) (BuildId: 8e2791b295ca8f9bb9b533507d556457fb12c0d4)

/test/11.1_dbg_san/sql/sys_vars.inl:528:25: runtime error: store to address 0x55c73e66df80 with insufficient space for an object of type 'uchar'
0x55c73e66df80: note: pointer points here
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
^
#0 0x55c7313b4bd8 in Sys_var_charptr_base::cleanup() /test/11.1_dbg_san/sql/sys_vars.inl:528
#1 0x55c7303b3830 in sys_var_end() /test/11.1_dbg_san/sql/set_var.cc:113
#2 0x55c7301961e5 in clean_up /test/11.1_dbg_san/sql/mysqld.cc:2072
#3 0x55c7301ba3a3 in mysqld_main(int, char**) /test/11.1_dbg_san/sql/mysqld.cc:6142
#4 0x55c73018fdcc in main /test/11.1_dbg_san/sql/main.cc:34
#5 0x14a17842a1c9 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58
#6 0x14a17842a28a in __libc_start_main_impl ../csu/libc-start.c:360
#7 0x55c730083824 in _start (/test/UBASAN_MD190824-mariadb-11.1.7-linux-x86_64-dbg/bin/mariadbd+0x7a57824) (BuildId: 8e2791b295ca8f9bb9b533507d556457fb12c0d4)

Currently present in 10.5-11.1

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

R_CMakeCache.txt
120 kB
2024-10-13 19:11
CMakeCache.txt
82 kB
2024-10-07 10:30

Issue Links

relates to

MDEV-25454 Make MariaDB server UBSAN safe

Confirmed

MDEV-34348 MariaDB is violating clang-16 -Wcast-function-type-strict

In Progress

Activity

People

Assignee:: Aleksey Midenkov

Reporter:: Roel Van de Paar

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 2024-08-19 05:53

Updated:: 2024-10-29 14:47

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.