Bug #48245 | crash in Bitmap<64u>::merge called by add_key_field | ||
---|---|---|---|
Submitted: | 22 Oct 2009 20:25 | Modified: | 23 Oct 2009 19:29 |
Reporter: | Matthias Leich | Email Updates: | |
Status: | Verified | Impact on me: | |
Category: | MySQL Server: Optimizer | Severity: | S3 (Non-critical) |
Version: | 5.1,mysql-6.0-codebase-bugfixing | OS: | Any |
Assigned to: | CPU Architecture: | Any |
[22 Oct 2009 20:25]
Matthias Leich
[23 Oct 2009 19:29]
Matthias Leich
For a simplified replay testcase see Bug#48157 crash in Item_field::used_tables
[13 Nov 2009 11:16]
Matthias Leich
Attempts to replay this bug on mysql-5.1-bugteam Nov 2009 with the RQG grammar were not successfull. I got either no crash/assert or crashes/assertions with different backtraces.
[13 Nov 2009 12:38]
Matthias Leich
Sorry, this bug could be replayed with mysql-5.1-bugteam. But the likelihood that we get this and not something else is very low. And the backtrace is a tiny bit different. Bitmap<64u>::merge gets called by update_const_equal_items --------------------------------------- Thread 1 (process 15200): #0 0x00007f172226ace6 in pthread_kill () from /lib64/libpthread.so.0 #1 0x0000000000b16093 in my_write_core (sig=11) at stacktrace.c:310 #2 0x00000000006baca7 in handle_segfault (sig=11) at mysqld.cc:2570 #3 <signal handler called> #4 0x00000000007242a8 in Bitmap<64u>::merge (this=0x138, map2=@0x41d4c430) at sql_bitmap.h:129 #5 0x000000000074c72b in update_const_equal_items (cond=0x7f17140185a0, tab=0x7f171402a028) at sql_select.cc:8302 #6 0x000000000074c5e8 in update_const_equal_items (cond=0x7f1714018280, tab=0x7f171402a028) at sql_select.cc:8283 #7 0x000000000074cb7b in join_read_const_table (tab=0x7f171402a028, pos=0x7f171402bba8) at sql_select.cc:11652 #8 0x0000000000756436 in make_join_statistics (join=0x7f171402bae0, tables_arg=0x1a2e300, conds=0x7f1714018280, keyuse_array=0x7f171402d0c8) at sql_select.cc:2693 #9 0x0000000000758768 in JOIN::optimize (this=0x7f171402bae0) at sql_select.cc:978 #10 0x000000000075cb9c in mysql_select (thd=0x7f171c0fd3f0, rref_pointer_array=0x1a2c890, tables=0x1a2e300, wild_num=0, fields=@0x41d4ce00, conds=0x0, og_num=0, order=0x0, group=0x0, having=0x0, proc_param=0x0, select_options=1342177408, result=0x7f1714018190, unit=0x1a2c260, select_lex=0x1a2c698) at sql_select.cc:2430 #11 0x000000000077eea2 in mysql_multi_update (thd=0x7f171c0fd3f0, table_list=0x1a2e300, fields=0x1a2c7a8, values=0x1a2cbf0, conds=0x0, options=0, handle_duplicates=DUP_ERROR, ignore=false, unit=0x1a2c260, select_lex=0x1a2c698) at sql_update.cc:1229 #12 0x00000000006cf74d in mysql_execute_command (thd=0x7f171c0fd3f0) at sql_parse.cc:3130 #13 0x000000000089e771 in sp_instr_stmt::exec_core (this=0x1a3f260, thd=0x7f171c0fd3f0, nextp=0x41d4e188) at sp_head.cc:2912 #14 0x000000000089e9b3 in sp_lex_keeper::reset_lex_and_exec_core (this=0x1a3f2a8, thd=0x7f171c0fd3f0, nextp=0x41d4e188, open_tables=false, instr=0x1a3f260) at sp_head.cc:2740 #15 0x00000000008a4f90 in sp_instr_stmt::execute (this=0x1a3f260, thd=0x7f171c0fd3f0, nextp=0x41d4e188) at sp_head.cc:2855 #16 0x00000000008a0ed2 in sp_head::execute (this=0x1a55fa0, thd=0x7f171c0fd3f0) at sp_head.cc:1255 #17 0x00000000008a1c9f in sp_head::execute_procedure (this=0x1a55fa0, thd=0x7f171c0fd3f0, args=0x7f171c0ff7f0) at sp_head.cc:1988 #18 0x00000000006d3a4d in mysql_execute_command (thd=0x7f171c0fd3f0) at sql_parse.cc:4392 #19 0x00000000006d5ba6 in mysql_parse (thd=0x7f171c0fd3f0, inBuf=0x7f171c103f30 "CALL testdb_S . p1", length=18, found_semicolon=0x41d4fef0) at sql_parse.cc:5970 #20 0x00000000006d69ea in dispatch_command (command=COM_QUERY, thd=0x7f171c0fd3f0, packet=0x7f171c0ffe01 "CALL testdb_S . p1", packet_length=18) at sql_parse.cc:1231 #21 0x00000000006d7ddc in do_command (thd=0x7f171c0fd3f0) at sql_parse.cc:872 #22 0x00000000006c4269 in handle_one_connection (arg=0x7f171c0fd3f0) at sql_connect.cc:1127 #23 0x00007f1722266040 in start_thread () from /lib64/libpthread.so.0 #24 0x00007f172151408d in clone () from /lib64/libc.so.6 #25 0x0000000000000000 in ?? ()
[1 Feb 2011 12:50]
Martin Hansson
Matthias, Can we close this bug as a duplicate of Bug#48157?