[MDEV-32600] Server crash after query Created: 2023-10-27  Updated: 2023-11-09  Resolved: 2023-11-09

Status: Closed
Project: MariaDB Server
Component/s: Server
Affects Version/s: 11.1
Fix Version/s: N/A

Type: Bug Priority: Major
Reporter: fuying Assignee: Unassigned
Resolution: Duplicate Votes: 0
Labels: None

Issue Links:
Duplicate

 Description    

CREATE TABLE v0 ( v1 INT ) engine=Aria;
 
INSERT INTO v0 VALUES ( null NULL ) ;
 
INSERT INTO v0 VALUES ( -128 ) ;
 
INSERT INTO v0 VALUES ( -128 ) ;
 
SELECT v1 FROM v0 WHERE 1 + 1 + 1 + 1 + 1 + 1 + 'x' >= 1 UNION SELECT 1 UNION SELECT 1 ORDER BY + + 1 + 1 + 1 + 1 + 1 IN ( SELECT v1 GROUP BY v1 HAVING v1 > 1 ) ;
 
SELECT v1 FROM v0 WHERE v1 NOT IN ( SELECT v1 FROM v0 ) ;
 
DROP TABLE v0 ;
 
DROP TABLE v0 ;

Stack Trace:
Attempting backtrace. You can use the following information to find out
where mysqld died. If you see no messages after this, something went
terribly wrong...
stack_bottom = 0x7f9a65959880 thread_stack 0x5fc00
/usr/local/mysql/bin/mariadbd(__interceptor_backtrace+0x5b)[0x781b5b]
mysys/stacktrace.c:215(my_print_stacktrace)[0x228cfae]
sql/signal_handler.cc:0(handle_fatal_signal)[0x12bd0d2]
sigaction.c:0(__restore_rt)[0x7f9a896ed420]
/usr/local/mysql/bin/mariadbd(Z17setup_copy_fieldsP3THDP15TMP_TABLE_PARAM20Bounds_checked_arrayIP4ItemER4ListIS4_ES9_jS9+0x906)[0xc3f836]
sql/sql_select.cc:4025(JOIN::make_aggr_tables_info())[0xc31e31]
/usr/local/mysql/bin/mariadbd(_ZN4JOIN15optimize_stage2Ev+0x306)[0xc00046]
/usr/local/mysql/bin/mariadbd(_ZN4JOIN14optimize_innerEv+0x3919)[0xc17249]
/usr/local/mysql/bin/mariadbd(_ZN4JOIN8optimizeEv+0x176)[0xbffb46]
sql/sql_lex.cc:4847(st_select_lex::optimize_unflattened_subqueries(bool))[0xabbb11]
sql/sql_select.cc:3227(JOIN::optimize_stage2())[0xc0c059]
/usr/local/mysql/bin/mariadbd(_ZN4JOIN14optimize_innerEv+0x3919)[0xc17249]
/usr/local/mysql/bin/mariadbd(_ZN4JOIN8optimizeEv+0x176)[0xbffb46]
sql/sql_select.cc:5237(mysql_select(THD*, TABLE_LIST*, List<Item>&, Item*, unsigned int, st_order*, st_order*, Item*, st_order*, unsigned long long, select_result*, st_select_lex_unit*, st_select_lex*))[0xbe886f]
/usr/local/mysql/bin/mariadbd(_ZN18st_select_lex_unit10exec_innerEv+0x183e)[0xdfa01e]
sql/sql_union.cc:45(mysql_union(THD*, LEX*, select_result*, st_select_lex_unit*, unsigned long long))[0xde6fbf]
/usr/local/mysql/bin/mariadbd(_Z13handle_selectP3THDP3LEXP13select_resulty+0x110)[0xbe7ba0]
sql/sql_parse.cc:6041(execute_sqlcom_select(THD*, TABLE_LIST*))[0xb41bc6]
/usr/local/mysql/bin/mariadbd(_Z21mysql_execute_commandP3THDb+0x18b7)[0xb319a7]
sql/sql_class.h:2830(THD::enter_stage(PSI_stage_info_v1 const*, char const*, char const*, unsigned int))[0xb24c79]
/usr/local/mysql/bin/mariadbd(_Z16dispatch_command19enum_server_commandP3THDPcjb+0x2cf8)[0xb1e648]
sql/sql_parse.cc:1407(do_command(THD*, bool))[0xb25971]
sql/sql_connect.cc:1416(do_handle_one_connection(CONNECT*, bool))[0xf0d066]
sql/sql_connect.cc:1322(handle_one_connection)[0xf0caa9]
perfschema/pfs.cc:2203(pfs_spawn_thread)[0x19d710b]
nptl/pthread_create.c:478(start_thread)[0x7f9a896e1609]
addr2line: DWARF error: section .debug_info is larger than its filesize! (0x93ef57 vs 0x530f28)
/lib/x86_64-linux-gnu/libc.so.6(clone+0x43)[0x7f9a893f9133]

 Comments   
Comment by Alice Sherepa [ 2023-11-09 ]

Thanks! THis is the same as MDEV-32322

Version: '10.4.32-MariaDB-debug-log'  
231109 14:16:48 [ERROR] mysqld got signal 11 ;
 
 
 
Server version: 10.4.32-MariaDB-debug-log source revision: 62d80652be7c19f4ad2bf68d6ffbb4e1eb1d77ea
 
 
 
sql/signal_handler.cc:235(handle_fatal_signal)[0x563fc3ca31e9]
 
sigaction.c:0(__restore_rt)[0x7f9e6b9fc420]
 
sql/sql_select.cc:25679(setup_copy_fields(THD*, TMP_TABLE_PARAM*, Bounds_checked_array<Item*>, List<Item>&, List<Item>&, unsigned int, List<Item>&))[0x563fc36519f1]
 
sql/sql_select.cc:3752(JOIN::make_aggr_tables_info())[0x563fc35affe1]
 
sql/sql_select.cc:3170(JOIN::optimize_stage2())[0x563fc35a92bb]
 
sql/sql_select.cc:2414(JOIN::optimize_inner())[0x563fc35a14fa]
 
sql/sql_select.cc:1731(JOIN::optimize())[0x563fc359a205]
 
sql/sql_lex.cc:4337(st_select_lex::optimize_unflattened_subqueries(bool))[0x563fc346b808]
 
sql/opt_subselect.cc:5611(JOIN::optimize_unflattened_subqueries())[0x563fc39e65c7]
 
sql/sql_select.cc:2962(JOIN::optimize_stage2())[0x563fc35a7583]
 
sql/sql_select.cc:2414(JOIN::optimize_inner())[0x563fc35a14fa]
 
sql/sql_select.cc:1731(JOIN::optimize())[0x563fc359a205]
 
sql/sql_select.cc:4832(mysql_select(THD*, TABLE_LIST*, unsigned int, List<Item>&, Item*, unsigned int, st_order*, st_order*, Item*, st_order*, unsigned long long, select_result*, st_select_lex_unit*, st_select_lex*))[0x563fc35bb1ef]
 
sql/sql_union.cc:1729(st_select_lex_unit::exec())[0x563fc37b2aa0]
 
sql/sql_union.cc:42(mysql_union(THD*, LEX*, select_result*, st_select_lex_unit*, unsigned long))[0x563fc37a0928]
 
sql/sql_select.cc:432(handle_select(THD*, LEX*, select_result*, unsigned long))[0x563fc358b91f]
 
sql/sql_parse.cc:6475(execute_sqlcom_select(THD*, TABLE_LIST*))[0x563fc34f2c5c]
 
sql/sql_parse.cc:3978(mysql_execute_command(THD*))[0x563fc34e03d3]
 
sql/sql_parse.cc:8014(mysql_parse(THD*, char*, unsigned int, Parser_state*, bool, bool))[0x563fc34fc1d7]
 
sql/sql_parse.cc:1860(dispatch_command(enum_server_command, THD*, char*, unsigned int, bool, bool))[0x563fc34d2563]
 
sql/sql_parse.cc:1378(do_command(THD*))[0x563fc34cf08e]
 
sql/sql_connect.cc:1419(do_handle_one_connection(CONNECT*))[0x563fc38e367e]
 
sql/sql_connect.cc:1324(handle_one_connection)[0x563fc38e2f22]
 
perfschema/pfs.cc:1871(pfs_spawn_thread)[0x563fc4580bb0]
 
nptl/pthread_create.c:478(start_thread)[0x7f9e6b9f0609]
 
 
 
Query (0x62b0000a1290): SELECT v1 FROM v0 WHERE 1 + 1 + 1 + 1 + 1 + 1 + 'x' >= 1 UNION SELECT 1 UNION SELECT 1 ORDER BY + + 1 + 1 + 1 + 1 + 1 IN ( SELECT v1 GROUP BY v1 HAVING v1 > 1 )

Generated at Thu Feb 08 10:32:35 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.