# Child-SP RetAddr Call Site 00 00000007`a1d9d180 00007ffa`7f17c73e server!heap_rrnd(struct st_heap_info * info = 0x000001c0`19fa18b8, unsigned char * record = 0x000001c0`1a1c8110 "???", unsigned char * pos = 0x000001c0`1a926ef0 "")+0x42 [D:\winx64-packages\build\src\storage\heap\hp_rrnd.c @ 40] 01 00000007`a1d9d1b0 00007ffa`7f28fe08 server!handler::ha_rnd_pos(unsigned char * buf = 0x000001c0`1a1c8110 "???", unsigned char * pos = 0x000001c0`1ad3fe60 "???")+0x17e [D:\winx64-packages\build\src\sql\handler.cc @ 3446] 02 00000007`a1d9d230 00007ffa`7f3b0080 server!rr_from_pointers(struct READ_RECORD * info = 0x000001c0`19d532c0)+0x38 [D:\winx64-packages\build\src\sql\records.cc @ 615] 03 (Inline Function) --------`-------- server!READ_RECORD::read_record(void)+0xd [D:\winx64-packages\build\src\sql\records.h @ 81] 04 00000007`a1d9d260 00007ffa`7f38d21d server!sub_select(class JOIN * join = 0x000001c0`1a4e4e40, struct st_join_table * join_tab = 0x000001c0`19d531f8, bool end_of_records = )+0x2b0 [D:\winx64-packages\build\src\sql\sql_select.cc @ 21835] 05 00000007`a1d9d2e0 00007ffa`7f390017 server!do_select(class JOIN * join = 0x000001c0`1a4e4e40, class Procedure * procedure = 0x00000000`00000000)+0x3ad [D:\winx64-packages\build\src\sql\sql_select.cc @ 21359] 06 00000007`a1d9d370 00007ffa`7f39de24 server!JOIN::exec_inner(void)+0x8b7 [D:\winx64-packages\build\src\sql\sql_select.cc @ 4823] 07 (Inline Function) --------`-------- server!JOIN::exec(void)+0x46 [D:\winx64-packages\build\src\sql\sql_select.cc @ 4601] 08 00000007`a1d9d7a0 00007ffa`7f39463d server!mysql_select(class THD * thd = 0x000001c0`19f89f18, struct TABLE_LIST * tables = 0x000001c0`19f9a3e8, class List * fields = , class Item * conds = 0x000001c0`1a4e40b8, unsigned int og_num = 1, struct st_order * order = 0x00000000`00000000, struct st_order * group = 0x000001c0`1a4e4440, class Item * having = 0x00000000`00000000, struct st_order * proc_param = 0x00000000`00000000, unsigned int64 select_options = 0x81040b00, class select_result * result = 0x000001c0`1a4e4e18, class st_select_lex_unit * unit = 0x000001c0`19f8d6c8, class st_select_lex * select_lex = 0x000001c0`19f97be8)+0x3c4 [D:\winx64-packages\build\src\sql\sql_select.cc @ 5081] 09 00000007`a1d9d830 00007ffa`7f34ea35 server!handle_select(class THD * thd = 0x000001c0`19f89f18, struct LEX * lex = 0x000001c0`19f8d600, class select_result * result = 0x000001c0`1a4e4e18, unsigned long setup_tables_done_option = 0)+0x1fd [D:\winx64-packages\build\src\sql\sql_select.cc @ 581] 0a 00000007`a1d9d8c0 00007ffa`7f35194f server!execute_sqlcom_select(class THD * thd = 0x000001c0`19f89f18, struct TABLE_LIST * all_tables = 0x000001c0`19f9a3e8)+0x2e5 [D:\winx64-packages\build\src\sql\sql_parse.cc @ 6261] 0b 00000007`a1d9dd70 00007ffa`7f355d14 server!mysql_execute_command(class THD * thd = 0x000001c0`19f89f18, bool is_called_from_prepared_stmt = false)+0xaaf [D:\winx64-packages\build\src\sql\sql_parse.cc @ 3945] 0c 00000007`a1d9e770 00007ffa`7f34c90c server!mysql_parse(class THD * thd = 0x000001c0`19f89f18, char * rawbuf = , unsigned int length = 0x1b8, class Parser_state * parser_state = 0x00000007`a1d9e940)+0x1a4 [D:\winx64-packages\build\src\sql\sql_parse.cc @ 8025] 0d 00000007`a1d9e7d0 00007ffa`7f34dc7a server!dispatch_command(enum_server_command command = COM_QUERY (0n3), class THD * thd = 0x000001c0`19f89f18, char * packet = , unsigned int packet_length = , bool blocking = false)+0x91c [D:\winx64-packages\build\src\sql\sql_parse.cc @ 1896] 0e 00000007`a1d9f9e0 00007ffa`7f4ea672 server!do_command(class THD * thd = 0x000001c0`19f89f18, bool blocking = false)+0x21a [D:\winx64-packages\build\src\sql\sql_parse.cc @ 1407] 0f (Inline Function) --------`-------- server!threadpool_process_request(void)+0x74 [D:\winx64-packages\build\src\sql\threadpool_common.cc @ 432] 10 00000007`a1d9fa40 00007ffa`ed5ebb74 server!tp_callback(struct TP_connection * c = 0x000001bf`66d5c2b0)+0x272 [D:\winx64-packages\build\src\sql\threadpool_common.cc @ 245] 11 00000007`a1d9fa80 00007ffa`eeab10f9 KERNEL32!BasepTpIoCallback+0x54 12 00000007`a1d9fad0 00007ffa`eeae2f26 ntdll!TppIopExecuteCallback+0x129 13 00000007`a1d9fb50 00007ffa`ed5e7034 ntdll!TppWorkerThread+0x456 14 00000007`a1d9fe50 00007ffa`eeae2651 KERNEL32!BaseThreadInitThunk+0x14 15 00000007`a1d9fe80 00000000`00000000 ntdll!RtlUserThreadStart+0x21 0:020> dx Debugger.Sessions[0].Processes[8852].Threads[7420].Stack.Frames[0].SwitchTo();dv /t /v Debugger.Sessions[0].Processes[8852].Threads[7420].Stack.Frames[0].SwitchTo() @rbx struct st_heap_info * info = 0x000001c0`19fa18b8 @r10 unsigned char * record = 0x000001c0`1a1c8110 "???" @r9 unsigned char * pos = 0x000001c0`1a926ef0 "" @rcx struct st_heap_share * share = 0x000001c0`1a1cb8a8 ******************************************************************************* * * * Exception Analysis * * * ******************************************************************************* KEY_VALUES_STRING: 1 Key : AV.Fault Value: Read Key : Analysis.CPU.mSec Value: 999 Key : Analysis.DebugAnalysisManager Value: Create Key : Analysis.Elapsed.mSec Value: 19314 Key : Analysis.Init.CPU.mSec Value: 1999 Key : Analysis.Init.Elapsed.mSec Value: 655617 Key : Analysis.Memory.CommitPeak.Mb Value: 231 Key : Timeline.OS.Boot.DeltaSec Value: 25154 Key : Timeline.Process.Start.DeltaSec Value: 789 Key : WER.OS.Branch Value: vb_release Key : WER.OS.Timestamp Value: 2019-12-06T14:06:00Z Key : WER.OS.Version Value: 10.0.19041.1 Key : WER.Process.Version Value: 10.10.2.0 NTGLOBALFLAG: 0 APPLICATION_VERIFIER_FLAGS: 0 EXCEPTION_RECORD: (.exr -1) ExceptionAddress: 00007ffa7f6ffb92 (server!heap_rrnd+0x0000000000000042) ExceptionCode: c0000005 (Access violation) ExceptionFlags: 00000000 NumberParameters: 2 Parameter[0]: 0000000000000000 Parameter[1]: 000001c01a927001 Attempt to read from address 000001c01a927001 FAULTING_THREAD: 00001cfc PROCESS_NAME: mysqld.exe READ_ADDRESS: 000001c01a927001 ERROR_CODE: (NTSTATUS) 0xc0000005 - Die Anweisung in 0x%p verwies auf Arbeitsspeicher bei 0x%p. Der Vorgang %s konnte im Arbeitsspeicher nicht durchgef hrt werden. EXCEPTION_CODE_STR: c0000005 EXCEPTION_PARAMETER1: 0000000000000000 EXCEPTION_PARAMETER2: 000001c01a927001 STACK_TEXT: 00000007`a1d9d180 00007ffa`7f17c73e : 000001c0`19d532c0 00000000`00000000 000001c0`1a4e6458 00000000`0000001a : server!heap_rrnd+0x42 00000007`a1d9d1b0 00007ffa`7f28fe08 : 00000000`00000078 000001c0`19d53520 00000000`00000000 000001c0`19d532c0 : server!handler::ha_rnd_pos+0x17e 00000007`a1d9d230 00007ffa`7f3b0080 : 000001c0`19d531f8 000001c0`19d531f8 000001c0`19d53520 00000000`00000000 : server!rr_from_pointers+0x38 00000007`a1d9d260 00007ffa`7f38d21d : 00000007`a1d9d470 00007ffa`7f380ec7 0000529e`722bbc01 00000007`00000000 : server!sub_select+0x2b0 00000007`a1d9d2e0 00007ffa`7f390017 : 00000000`00000000 00000000`00000000 00000000`00000100 000001c0`19d56f98 : server!do_select+0x3ad 00000007`a1d9d370 00007ffa`7f39de24 : 000001c0`19f97be8 00000000`00000000 000001c0`19f89f18 000001c0`1a4e4e40 : server!JOIN::exec_inner+0x8b7 00000007`a1d9d7a0 00007ffa`7f39463d : 000001c0`19f89f18 000001c0`19f8d6c8 000001c0`19f97be8 000001c0`19f8d600 : server!mysql_select+0x3c4 00000007`a1d9d830 00007ffa`7f34ea35 : 000001c0`19f9a3e8 00000000`00000000 000001c0`19f89f18 00000000`00000000 : server!handle_select+0x1fd 00000007`a1d9d8c0 00007ffa`7f35194f : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : server!execute_sqlcom_select+0x2e5 00000007`a1d9dd70 00007ffa`7f355d14 : 00000000`000001b8 00000000`000001b8 000001c0`19f89f18 000001c0`19f8d600 : server!mysql_execute_command+0xaaf 00000007`a1d9e770 00007ffa`7f34c90c : 000001c0`19f89f18 00000007`a1d9e8d0 000001c0`19f979c8 000001c0`19f8f799 : server!mysql_parse+0x1a4 00000007`a1d9e7d0 00007ffa`7f34dc7a : 000001bf`66c307d8 00007ffa`7f4ea318 000001c0`000001b9 000001bf`66d5c320 : server!dispatch_command+0x91c 00000007`a1d9f9e0 00007ffa`7f4ea672 : 000001c0`19f89f18 00000000`00000000 000001bf`66d5c320 00000000`00000001 : server!do_command+0x21a 00000007`a1d9fa40 00007ffa`ed5ebb74 : 00000007`a1d9fdd0 00000007`a1d9fcc8 000001bf`66d5c320 000001c0`19f7e440 : server!tp_callback+0x272 00000007`a1d9fa80 00007ffa`eeab10f9 : 000001c0`1a1af1a0 00000000`00000000 00000000`00000000 000001c0`19f864e8 : KERNEL32!BasepTpIoCallback+0x54 00000007`a1d9fad0 00007ffa`eeae2f26 : 000001c0`1a1af268 000001c0`00000000 000001bf`66d5c320 000001bf`56688ed0 : ntdll!TppIopExecuteCallback+0x129 00000007`a1d9fb50 00007ffa`ed5e7034 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!TppWorkerThread+0x456 00000007`a1d9fe50 00007ffa`eeae2651 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : KERNEL32!BaseThreadInitThunk+0x14 00000007`a1d9fe80 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x21 FAULTING_SOURCE_LINE: D:\winx64-packages\build\src\storage\heap\hp_rrnd.c FAULTING_SOURCE_FILE: D:\winx64-packages\build\src\storage\heap\hp_rrnd.c FAULTING_SOURCE_LINE_NUMBER: 40 FAULTING_SOURCE_CODE: No source found for 'D:\winx64-packages\build\src\storage\heap\hp_rrnd.c' SYMBOL_NAME: server!heap_rrnd+42 MODULE_NAME: server IMAGE_NAME: server.dll STACK_COMMAND: ~20s ; .cxr ; kb FAILURE_BUCKET_ID: INVALID_POINTER_READ_c0000005_server.dll!heap_rrnd OS_VERSION: 10.0.19041.1 BUILDLAB_STR: vb_release OSPLATFORM_TYPE: x64 OSNAME: Windows 10 IMAGE_VERSION: 10.10.2.0 FAILURE_ID_HASH: {7d182237-ef52-e8c6-23c5-f72c66940b2d} Followup: MachineOwner