[MDEV-11488] Server crashes in Item_sum::cleanup with condition_pushdown_for_derived=on Created: 2016-12-05  Updated: 2016-12-20  Resolved: 2016-12-14

Status: Closed
Project: MariaDB Server
Component/s: Optimizer
Affects Version/s: 10.2
Fix Version/s: 10.2.3

Type: Bug Priority: Major
Reporter: Elena Stepanova Assignee: Igor Babaev
Resolution: Fixed Votes: 0
Labels: regression-10.2


 Description    

CREATE TABLE t1 (i INT) ENGINE=MyISAM;
 
INSERT INTO t1 VALUES (1),(2);
 
 
 
CREATE TABLE t2 (j INT, KEY(j)) ENGINE=MyISAM;
 
INSERT INTO t2 VALUES (3),(4);
 
 
 
SELECT * FROM ( SELECT DISTINCT * FROM t1 ) AS sq WHERE i IN ( SELECT MIN(j) FROM t2 );

10.2 3371904380796322eebe70526475c98ca01f4918

 
#3  <signal handler called>
 
#4  0x00007fc635b56722 in Item_sum::cleanup (this=0x7fc62a066848) at /data/src/10.2/sql/item_sum.cc:580
 
#5  0x00007fc635b5b46a in Item_sum_hybrid::cleanup (this=0x7fc62a066848) at /data/src/10.2/sql/item_sum.cc:2086
 
#6  0x00007fc6358636ef in JOIN::cleanup_item_list (this=0x7fc62a068370, items=...) at /data/src/10.2/sql/sql_select.cc:3451
 
#7  0x00007fc6358635eb in JOIN::destroy (this=0x7fc62a068370) at /data/src/10.2/sql/sql_select.cc:3435
 
#8  0x00007fc6358ff4ae in st_select_lex::cleanup (this=0x7fc62a065c58) at /data/src/10.2/sql/sql_union.cc:1443
 
#9  0x00007fc6358feec6 in st_select_lex_unit::cleanup (this=0x7fc62a066010) at /data/src/10.2/sql/sql_union.cc:1276
 
#10 0x00007fc6358ff508 in st_select_lex::cleanup (this=0x7fc62a01a280) at /data/src/10.2/sql/sql_union.cc:1450
 
#11 0x00007fc635863abf in mysql_select (thd=0x7fc62a016070, tables=0x7fc62a065540, wild_num=1, fields=..., conds=0x7fc62a067018, og_num=0, order=0x0, group=0x0, having=0x0, proc_param=0x0, select_options=2147748608, result=0x7fc62a067338, unit=0x7fc62a019b48, select_lex=0x7fc62a01a280) at /data/src/10.2/sql/sql_select.cc:3595
 
#12 0x00007fc635858b25 in handle_select (thd=0x7fc62a016070, lex=0x7fc62a019a80, result=0x7fc62a067338, setup_tables_done_option=0) at /data/src/10.2/sql/sql_select.cc:373
 
#13 0x00007fc63582546f in execute_sqlcom_select (thd=0x7fc62a016070, all_tables=0x7fc62a065540) at /data/src/10.2/sql/sql_parse.cc:6356
 
#14 0x00007fc63581af2a in mysql_execute_command (thd=0x7fc62a016070) at /data/src/10.2/sql/sql_parse.cc:3379
 
#15 0x00007fc635828e2e in mysql_parse (thd=0x7fc62a016070, rawbuf=0x7fc62a064088 "SELECT * FROM ( SELECT DISTINCT * FROM t1 ) AS sq WHERE i IN ( SELECT MIN(j) FROM t2 )", length=86, parser_state=0x7fc63693fdd0, is_com_multi=false, is_next_command=false) at /data/src/10.2/sql/sql_parse.cc:7799
 
#16 0x00007fc635816b7e in dispatch_command (command=COM_QUERY, thd=0x7fc62a016070, packet=0x7fc62a058071 "", packet_length=86, is_com_multi=false, is_next_command=false) at /data/src/10.2/sql/sql_parse.cc:1808
 
#17 0x00007fc635815558 in do_command (thd=0x7fc62a016070) at /data/src/10.2/sql/sql_parse.cc:1368
 
#18 0x00007fc63595ca26 in do_handle_one_connection (connect=0x7fc632471410) at /data/src/10.2/sql/sql_connect.cc:1354
 
#19 0x00007fc63595c7b3 in handle_one_connection (arg=0x7fc632471410) at /data/src/10.2/sql/sql_connect.cc:1260
 
#20 0x00007fc635c97f62 in pfs_spawn_thread (arg=0x7fc63240f9f0) at /data/src/10.2/storage/perfschema/pfs.cc:1862
 
#21 0x00007fc634e540a4 in start_thread (arg=0x7fc636941300) at pthread_create.c:309
 
#22 0x00007fc632e0187d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:111



 Comments   
Comment by Igor Babaev [ 2016-12-14 ]

The fix for this bug was pushed into the 10.2 tree.

Generated at Thu Feb 08 07:50:20 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.