[MDEV-7883] Segmentation failure when running mysqladmin -u root -p Created: 2015-03-30  Updated: 2015-07-02  Resolved: 2015-04-27

Status: Closed
Project: MariaDB Server
Component/s: Scripts & Clients
Affects Version/s: 5.5.41, 10.0
Fix Version/s: 5.5.43, 10.0.18, 10.1.5

Type: Bug Priority: Major
Reporter: Honza Horak Assignee: Sergei Golubchik
Resolution: Fixed Votes: 0
Labels: None
Environment:

Linux

Attachments: File bz1207041-fix.patch    
Issue Links:
Duplicate
duplicates MDEV-8084 OOB write in mysqladmin:mask_password Closed
PartOf
is part of MDEV-8379 SUSE mariadb patches Closed

 Description   

"mysqladmin" crash on execution of below command:

 # mysqladmin -u root -p
 
 
 
 mysqladmin  Ver 9.0 Distrib 5.5.41-MariaDB, for Linux on s390x
 
 Copyright (c) 2000, 2014, Oracle, MariaDB Corporation Ab and others.
 
 
 
 Administration program for the mysqld daemon.
 
 Usage: mysqladmin [OPTIONS] command command....
 
 
 
 Default options are read from the following files in the given order:
 
 Segmentation fault (core dumped)

This error occurs only when no options is sent with the mysqladmin command.
If I downgrade mariadb packages to version 5.5.37-1.el7, not getting core dump.

Version-Release number of selected component (if applicable):
mariadb-5.5.41-2.el7_0

How reproducible:
Always

Steps to Reproduce:
1. Install mariadb version 5.5.41-2.el7 packages on system and execute below command:

   # mysqladmin -u root -p

Backtrace from the coredump generated on local test system:

Using host libthread_db library "/lib64/libthread_db.so.1".
 
Core was generated by `mysqladmin -u root -p'.
 
Program terminated with signal 11, Segmentation fault.
 
#0  0x00007f4cb75224bd in malloc_consolidate (av=av@entry=0x7f4cb7860760 <main_arena>) at malloc.c:4129
 
4129		      unlink(av, nextchunk, bck, fwd);
 
(gdb) bt
 
#0  0x00007f4cb75224bd in malloc_consolidate (av=av@entry=0x7f4cb7860760 <main_arena>) at malloc.c:4129
 
#1  0x00007f4cb75230e7 in _int_free (av=0x7f4cb7860760 <main_arena>, p=0x7f4cba6ce8b0, have_lock=0) at malloc.c:4021
 
#2  0x00007f4cb8d5da48 in free_root (root=root@entry=0x7fff66a257c0, MyFlags=MyFlags@entry=0) at /usr/src/debug/mariadb-5.5.41/mysys/my_alloc.c:372
 
#3  0x00007f4cb8d682bd in my_print_default_files (conf_file=0x7f4cb8d7ff84 "my") at /usr/src/debug/mariadb-5.5.41/mysys/default.c:1075
 
#4  0x00007f4cb8d68348 in print_defaults (conf_file=<optimized out>, groups=0x7f4cb91f85e0 <load_default_groups>)
 
    at /usr/src/debug/mariadb-5.5.41/mysys/default.c:1083
 
#5  0x00007f4cb8d37cf7 in usage () at /usr/src/debug/mariadb-5.5.41/client/mysqladmin.cc:1235
 
#6  0x00007f4cb8d37ad6 in main (argc=0, argv=0x7f4cba6ce7a0) at /usr/src/debug/mariadb-5.5.41/client/mysqladmin.cc:330
 
(gdb)



 Comments   
Comment by Honza Horak [ 2015-03-30 ]

This is a proposed patch.
I think the issue is caused by working with 

 temp_argv[-1]

item in case argc == 0. The attached patch should hopefully prevent that issue.

Comment by Honza Horak [ 2015-03-30 ]

10.0.17 is affected as well, even though I didn't see it crash (memory corruption caused probably less damage than in 5.5.x).

Comment by Honza Horak [ 2015-03-30 ]

I've reproduced it on x86_64 as well, it doesn't seem to be specific to s390x.

Comment by Elena Stepanova [ 2015-03-30 ]

Oh you are right, sorry. I ran mysqladmin -uroot -p and it worked okay, but mysqladmin -u root -p crashes.

Generated at Thu Feb 08 07:22:59 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.