[#MDEV-20727] Crash in memcpy call by my_b_write, apparently related to index_merge

Full backtrace of crashing thread (it is not thread 1 here due to an additional fault when producing the backtrace for the error log):

Thread 4 (Thread 0x7f6a5e5b1700 (LWP 4098)):

#0  0x00007f8f763a1fb1 in __malloc_fork_unlock_parent () at arena.c:171

#1  0x00007f8f763ea5e4 in __libc_fork () at ../sysdeps/nptl/fork.c:243

#2  0x000055b6bdda3950 in start_addr2line_fork (binary_path=0x7ffc2f9f7253 "/usr/sbin/mysqld") at /home/buildbot/buildbot/build/mariadb-10.3.16/mysys/my_addr_resolve.c:172

#3  0x000055b6bdda3c68 in my_addr_resolve (ptr=0x55b6bd71126e <Unique::merge(TABLE*, unsigned char*, bool)+590>, loc=loc@entry=0x7f6a5e5ad280) at /home/buildbot/buildbot/build/mariadb-10.3.16/mysys/my_addr_resolve.c:220

#4  0x000055b6bdd87e62 in print_with_addr_resolve (n=<optimized out>, addrs=0x7f6a5e5ad2a0) at /home/buildbot/buildbot/build/mariadb-10.3.16/mysys/stacktrace.c:254

#5  my_print_stacktrace (stack_bottom=<optimized out>, thread_stack=299008, silent=silent@entry=0 '\000') at /home/buildbot/buildbot/build/mariadb-10.3.16/mysys/stacktrace.c:273

#6  0x000055b6bd8325a7 in handle_fatal_signal (sig=11) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/signal_handler.cc:207

#7  <signal handler called>

#8  __memcpy_avx_unaligned () at ../sysdeps/x86_64/multiarch/memcpy-avx-unaligned.S:265

#9  0x000055b6bdd64f51 in memcpy (__len=18446744073709551612, __src=0x7f5b74395f58, __dest=<optimized out>) at /usr/include/x86_64-linux-gnu/bits/string3.h:53

#10 _my_b_write (info=info@entry=0x7f5b740ae550, Buffer=0x7f5b74395f58 "", Count=Count@entry=4) at /home/buildbot/buildbot/build/mariadb-10.3.16/mysys/mf_iocache.c:589

#11 0x000055b6bd82fb4c in my_b_write (Count=4, Buffer=<optimized out>, info=0x7f5b740ae550) at /home/buildbot/buildbot/build/mariadb-10.3.16/include/my_sys.h:543

#12 merge_buffers (param=param@entry=0x7f6a5e5adf00, from_file=from_file@entry=0x7f5b740ae178, to_file=to_file@entry=0x7f5b740ae550, sort_buffer=sort_buffer@entry=0x7f5b74355f58 "", lastbuff=lastbuff@entry=0x7f5b7401d288, Fb=Fb@entry=0x7f5b7401d288, Tb=0x7f5b7401d3d8, flag=1) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/filesort.cc:1704

#13 0x000055b6bd83040e in merge_index (param=param@entry=0x7f6a5e5adf00, sort_buffer=sort_buffer@entry=0x7f5b74355f58 "", buffpek=buffpek@entry=0x7f5b7401d288, maxbuffer=<optimized out>, tempfile=tempfile@entry=0x7f5b740ae178, outfile=outfile@entry=0x7f5b740ae550) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/filesort.cc:1832

#14 0x000055b6bd71126e in Unique::merge (this=this@entry=0x7f5b740ae148, table=table@entry=0x7f65be2bbff8, buff=buff@entry=0x7f5b74355f58 "", without_last_merge=without_last_merge@entry=false) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/uniques.cc:739

#15 0x000055b6bd711919 in Unique::get (this=this@entry=0x7f5b740ae148, table=table@entry=0x7f65be2bbff8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/uniques.cc:794

#16 0x000055b6bd940497 in read_keys_and_merge_scans (thd=0x7f5b7401e6a8, head=0x7f65be2bbff8, quick_selects=..., pk_quick_select=0x0, read_record=0x7f5b7403b548, intersection=intersection@entry=true, filtered_scans=0x7f5b7403b5e0, unique_ptr=0x7f5b7403b4d0) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/opt_range.cc:11071

#17 0x000055b6bd940746 in QUICK_INDEX_INTERSECT_SELECT::read_keys_and_merge (this=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/opt_range.cc:11142

#18 0x000055b6bd695474 in join_init_read_record (tab=0x7f5b7405f900) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:20402

#19 0x000055b6bd75682b in JOIN_CACHE::join_matching_records (this=0x7f5b74060de0, skip_last=false) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_join_cache.cc:2252

#20 0x000055b6bd7561d4 in JOIN_CACHE::join_records (this=this@entry=0x7f5b74060de0, skip_last=skip_last@entry=false) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_join_cache.cc:2088

#21 0x000055b6bd68746a in sub_select_cache (join=0x7f5b74044df8, join_tab=0x7f5b7405f900, end_of_records=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:19261

#22 0x000055b6bd6a69e9 in do_select (procedure=<optimized out>, join=0x7f5b74044df8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:19023

#23 JOIN::exec_inner (this=this@entry=0x7f5b74044df8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:4043

#24 0x000055b6bd6a6a33 in JOIN::exec (this=0x7f5b74044df8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:3837

#25 0x000055b6bd8d0763 in subselect_single_select_engine::exec (this=0x7f5b74034200) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item_subselect.cc:3891

#26 0x000055b6bd8cff0c in Item_subselect::exec (this=0x7f5b74034060) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item_subselect.cc:736

#27 0x000055b6bd8cfdb1 in Item_exists_subselect::val_int (this=0x7f5b74034060) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item_subselect.cc:1614

#28 0x000055b6bd842a1a in Item_cache_int::cache_value (this=0x7f5b740abb68) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item.cc:9875

#29 0x000055b6bd85adf3 in Item_cache_wrapper::cache (this=this@entry=0x7f5b740abaa8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item.cc:8700

#30 0x000055b6bd8571b8 in Item_cache_wrapper::val_bool (this=0x7f5b740abaa8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item.cc:8864

#31 0x000055b6bd85ee4a in Item_cond_or::val_int (this=0x7f5b74010f60) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item_cmpfunc.cc:5073

#32 0x000055b6bd853dbf in Item::save_int_in_field (this=0x7f5b74010f60, field=0x7f5b74037b20, no_conversions=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item.cc:6861

#33 0x000055b6bd845a56 in Item::save_in_field (this=0x7f5b74010f60, field=0x7f5b74037b20, no_conversions=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/item.cc:6871

#34 0x000055b6bd696d11 in copy_funcs (func_ptr=0x7f5b74037120, thd=0x7f5b7401e6a8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:24530

#35 0x000055b6bd696db4 in end_write (join=0x7f5b74042d78, join_tab=0x7f5b74051bf0, end_of_records=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:20893

#36 0x000055b6bd67bdde in evaluate_join_record (join=join@entry=0x7f5b74042d78, join_tab=join_tab@entry=0x7f5b74051860, error=error@entry=0) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:19701

#37 0x000055b6bd687102 in sub_select (join=0x7f5b74042d78, join_tab=0x7f5b74051860, end_of_records=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:19520

#38 0x000055b6bd67bdde in evaluate_join_record (join=join@entry=0x7f5b74042d78, join_tab=join_tab@entry=0x7f5b740514d0, error=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:19701

#39 0x000055b6bd687099 in sub_select (join=0x7f5b74042d78, join_tab=0x7f5b740514d0, end_of_records=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:19481

#40 0x000055b6bd6a6812 in do_select (procedure=<optimized out>, join=0x7f5b74042d78) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:19021

#41 JOIN::exec_inner (this=this@entry=0x7f5b74042d78) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:4043

#42 0x000055b6bd6a6a33 in JOIN::exec (this=this@entry=0x7f5b74042d78) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:3837

#43 0x000055b6bd6a6b7f in mysql_select (thd=thd@entry=0x7f5b7401e6a8, tables=0x7f5b74008f90, wild_num=0, fields=..., conds=<optimized out>, og_num=1, order=0x7f5b74042ba0, group=0x0, having=0x0, proc_param=0x0, select_options=2147748608, result=0x7f5b7400abc8, unit=0x7f5b740223b0, select_lex=0x7f5b74022b28) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:4242

#44 0x000055b6bd6a7478 in handle_select (thd=thd@entry=0x7f5b7401e6a8, lex=lex@entry=0x7f5b740222e8, result=result@entry=0x7f5b7400abc8, setup_tables_done_option=setup_tables_done_option@entry=0) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_select.cc:386

#45 0x000055b6bd5690c9 in execute_sqlcom_select (thd=thd@entry=0x7f5b7401e6a8, all_tables=0x7f5b74008f90) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_parse.cc:6281

#46 0x000055b6bd654016 in mysql_execute_command (thd=thd@entry=0x7f5b7401e6a8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_parse.cc:3818

#47 0x000055b6bd655dfa in mysql_parse (thd=thd@entry=0x7f5b7401e6a8, rawbuf=<optimized out>, length=2107, parser_state=parser_state@entry=0x7f6a5e5b04b0, is_com_multi=<optimized out>, is_next_command=<optimized out>) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_parse.cc:7824

#48 0x000055b6bd6587da in dispatch_command (command=command@entry=COM_QUERY, thd=thd@entry=0x7f5b7401e6a8, packet=packet@entry=0x7f5b740280d9 "", packet_length=packet_length@entry=2107, is_com_multi=is_com_multi@entry=false, is_next_command=is_next_command@entry=false) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_parse.cc:1858

#49 0x000055b6bd6592cc in do_command (thd=0x7f5b7401e6a8) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_parse.cc:1404

#50 0x000055b6bd72cbc2 in do_handle_one_connection (connect=connect@entry=0x55b78830c948) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_connect.cc:1402

#51 0x000055b6bd72cd3d in handle_one_connection (arg=0x55b78830c948) at /home/buildbot/buildbot/build/mariadb-10.3.16/sql/sql_connect.cc:1308

#52 0x00007f8f76d7a6ba in start_thread (arg=0x7f6a5e5b1700) at pthread_create.c:333

#53 0x00007f8f7642541d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:109

[MDEV-20727] Crash in memcpy call by my_b_write, apparently related to index_merge_intersection Created: 2019-10-02 Updated: 2021-02-11 Resolved: 2020-06-01
Status:	Closed
Project:	MariaDB Server
Component/s:	Optimizer
Affects Version/s:	10.3.16
Fix Version/s:	N/A

[MDEV-20727] Crash in memcpy call by my_b_write, apparently related to index_merge_intersection Created: 2019-10-02 Updated: 2021-02-11 Resolved: 2020-06-01