[MDEV-23889] UBSAN: UndefinedBehaviorSanitizer: undefined-behavior ../sql/item_cmpfunc.cc:3650:14 Created: 2020-10-05  Updated: 2020-10-21  Resolved: 2020-10-05

Status: Closed
Project: MariaDB Server
Component/s: Server
Affects Version/s: None
Fix Version/s: 10.2.35, 10.3.26, 10.4.16, 10.5.7

Type: Bug Priority: Major
Reporter: Eugene Kosov (Inactive) Assignee: Eugene Kosov (Inactive)
Resolution: Fixed Votes: 0
Labels: None


 Description    

    #0 0xea6f25 in in_vector::find(Item*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/item_cmpfunc.cc:3650:11
 
    #1 0xeaf751 in Item_func_in::val_int() /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/item_cmpfunc.cc:4432:21
 
    #2 0xee6856 in Item::val_bool() /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/item.cc:112:12
 
    #3 0xeb4b5e in Item_cond_and::val_int() /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/item_cmpfunc.cc:5080:16
 
    #4 0xe7fd81 in SQL_SELECT::skip_record(THD*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/opt_range.h:1633:13
 
    #5 0xe71c50 in find_all_keys(THD*, Sort_param*, SQL_SELECT*, SORT_INFO*, st_io_cache*, st_io_cache*, Bounded_queue<unsigned char, unsigned char>*, unsigned long long*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/filesort.cc:844:32
 
    #6 0xe69b74 in filesort(THD*, TABLE*, Filesort*, Filesort_tracker*, JOIN*, unsigned long long) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/filesort.cc:275:13
 
    #7 0x1809f59 in create_sort_index(THD*, JOIN*, st_join_table*, Filesort*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:22059:14
 
    #8 0x1808650 in st_join_table::sort_table() /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:19821:7
 
    #9 0x17a59b2 in join_init_read_record(st_join_table*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:19762:29
 
    #10 0x1800527 in sub_select(JOIN*, st_join_table*, bool) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:18853:12
 
    #11 0x17afe58 in do_select(JOIN*, Procedure*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:18400:14
 
    #12 0x17ac95f in JOIN::exec_inner() /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:3638:10
 
    #13 0x17aaf43 in JOIN::exec() /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:3433:3
 
    #14 0x1733ddb in mysql_select(THD*, TABLE_LIST*, unsigned int, List<Item>&, Item*, unsigned int, st_order*, st_order*, Item*, st_order*, unsigned long long, select_result*, st_select_lex_unit*, st_select_lex*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:3833:9
 
    #15 0x1732944 in handle_select(THD*, LEX*, select_result*, unsigned long) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_select.cc:361:10
 
    #16 0x163e179 in execute_sqlcom_select(THD*, TABLE_LIST*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_parse.cc:6218:12
 
    #17 0x1619b08 in mysql_execute_command(THD*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_parse.cc:3524:12
 
    #18 0x1348771 in sp_instr_stmt::exec_core(THD*, unsigned int*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sp_head.cc:3332:12
 
    #19 0x1345503 in sp_lex_keeper::reset_lex_and_exec_core(THD*, unsigned int*, bool, sp_instr*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sp_head.cc:3095:17
 
    #20 0x13469d9 in sp_instr_stmt::execute(THD*, unsigned int*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sp_head.cc:3248:25
 
    #21 0x1333daa in sp_head::execute(THD*, bool) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sp_head.cc:1326:20
 
    #22 0x133ab32 in sp_head::execute_procedure(THD*, List<Item>*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sp_head.cc:2202:17
 
    #23 0x164415e in do_execute_sp(THD*, sp_head*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_parse.cc:2946:16
 
    #24 0x163257c in mysql_execute_command(THD*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_parse.cc:5564:13
 
    #25 0x160c352 in mysql_parse(THD*, char*, unsigned int, Parser_state*, bool, bool) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_parse.cc:7733:18
 
    #26 0x15fd14c in dispatch_command(enum_server_command, THD*, char*, unsigned int, bool, bool) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_parse.cc:1823:7
 
    #27 0x1607320 in do_command(THD*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_parse.cc:1377:17
 
    #28 0x1b735bb in do_handle_one_connection(CONNECT*) /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_connect.cc:1336:11
 
    #29 0x1b72e09 in handle_one_connection /home/kevgs/work/m/bb-10.2-kevgs/build_ubsan/../sql/sql_connect.cc:1241:3
 
    #30 0x7fce1b8edea6 in start_thread nptl/pthread_create.c:477:8
 
    #31 0x7fce1b482eae in clone misc/../sysdeps/unix/sysv/linux/x86_64/clone.S:95



 Comments   
Comment by Eugene Kosov (Inactive) [ 2020-10-05 ]

https://github.com/MariaDB/server/commit/01ffccd6a4ec2af645b81bcfef8a02f031a492e5

Generated at Thu Feb 08 09:25:49 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.