[CONC-167] Crash on mthd_stmt_read_all_rows when SELECT has lots of field Created: 2016-03-16  Updated: 2016-04-12

Status: Open
Project: MariaDB Connector/C
Component/s: None
Affects Version/s: 2.2.0
Fix Version/s: None

Type: Bug Priority: Major
Reporter: Oz Gilat Assignee: Georg Richter
Resolution: Unresolved Votes: 0
Labels: None
Environment:

Windows, using QT 5 plugin

Attachments: PNG File Capture.PNG     File libmariadb.dll     File libmariadb.pdb     File maria.dmp     File maria2.sql     File maria220316.dmp    

 Description   

I have a rather long SELECT query that retrieves data from multiple tables - a query that crashes when it is executed.

I've attached the windows minidump. Plus some analysis data from BoundsChecker,

backtrace:
1 libmariadb.dll!net_field_length(unsigned char * * packet=0x0018e128)
*2 libmariadb.dll!mthd_stmt_read_all_rows(st_mysql_stmt * stmt=0x032c7ce8)
3 libmariadb.dll!mysql_stmt_store_result(st_mysql_stmt * stmt=0x032c7ce8)
4 qsqlmysql.dll!QMYSQLResult::exec()

Easily reproducible - please let me know what you need more.

 Comments   
Comment by Georg Richter [ 2016-03-16 ]

Hi,

thx for your bug report.
can you please provide a table dump and the select statement?

Thanks!

Comment by Oz Gilat [ 2016-03-16 ]

you can get the database dump at
https://drive.google.com/file/d/0B_uEVRIKDy09U0p0OVBKV0o5NnM/view?usp=sharing

the query:
select deployment_app_status.* , deployment_apps_versions.* , deployment_apps.* , deployment_tasks_descriptors.* , deployment_packages.* from deployment_app_status left join deployment_apps_versions on (deployment_app_status.app_version_id = deployment_apps_versions.app_version_id) left join deployment_apps on (deployment_apps.app_id = deployment_apps_versions.app_id) left join deployment_tasks_descriptors on (deployment_tasks_descriptors.task_descriptor_id = deployment_apps_versions.task_descriptor_id) left join deployment_packages on (deployment_packages.package_id = deployment_tasks_descriptors.package_id)

Comment by Georg Richter [ 2016-03-16 ]

Thanks, but this is not a dump (doesn't contain create table statements) - and I don't need the entire database, only tables which are used in select statement.

Comment by Oz Gilat [ 2016-03-17 ]

sorry -
new dump https://drive.google.com/file/d/0B_uEVRIKDy09Yk1ZaHo2U0wydzg/view?usp=sharing

Comment by Oz Gilat [ 2016-03-17 ] 

One interesting note -
 
in the select, when you switch ", deployment_tasks_descriptors.* , deployment_packages.* " to ",deployment_packages.*, deployment_tasks_descriptors.* " - 
the crash is gone...

Comment by Georg Richter [ 2016-03-17 ]

Which server version do you use?
Also it would be good to know if you really use Connector/C 2.2.0 - According to the line numbers in Capture.png it will not match 2.2.0 - likely it's a much older version.

I wasn't able to reproduce problem with latest C/C version 2.2.2 and MariaDB Server 10.1

Comment by Georg Richter [ 2016-03-17 ]

We had same crash in CONC-60 with similiar line numbers, so I highly assume that you're using an old 1.0 or 1.1 version of Connector/C

Comment by Oz Gilat [ 2016-03-22 ]

my server is:
Server version: 5.6.28-log MySQL Community Server (GPL) on Windows 7.

Comment by Oz Gilat [ 2016-03-22 ]

Also verified it's version libmariadb connector C 2.2.2.
Attached new dump maria220316.dmp libmariadb.dll and dll and pdb used (received from regular installation from your website..)

also reproduced on "Server version: 5.6.16 MySQL Community Server (GPL)" running on windows 10

Comment by Oz Gilat [ 2016-03-22 ]

also attached latests dump to match the latest crash files I've added maria2.sql

Comment by Oz Gilat [ 2016-03-29 ]

Hey Georg ,
do you need anything else from me?

Comment by Georg Richter [ 2016-03-29 ]

Hi Oz,

would it be possible to provide
a) a Zend server version which uses libmariadb.dll (with some instructions how to repeat the bug)
or b)
a wireshark dump

Thanks !

Comment by Oz Gilat [ 2016-03-29 ]

ok - I'll work on preparing you a machine with a reproduction

Generated at Thu Feb 08 03:03:21 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.