Bug #520 mysql crush
Submitted: 27 May 2003 15:13 Modified: 28 Jun 2003 4:59
Reporter: [ name withheld ] Email Updates:
Status: No Feedback Impact on me:
None 
Category:MySQL Server Severity:S2 (Serious)
Version:4.0.12 OS:Linux (linux 2.4.19)
Assigned to: CPU Architecture:Any

[27 May 2003 15:13] [ name withheld ]
Description:
mysql got signal 11.
        
        The query that crushed it was:
select b.banners_id, b.expires_date, b.expires_impressions, sum(bh.banners_shown) as
banners_shown from banners b, banners_history bh where b.status = '1' and
b.banners_id = bh.banners_id group by b.banners_id

        Here is the stack dump:
0x80de5ac handle_segfault + 424
0x40021f05 _end + 935979133
0x82c9423 _hp_delete_key + 107
0x82c8ef0 heap_write + 204
0x810c607 end_update__FP4JOINP13st_join_tableb + 395
0x810b65e sub_select__FP4JOINP13st_join_tableb + 238
0x810b65e sub_select__FP4JOINP13st_join_tableb + 238
0x810b379 do_select__FP4JOINPt4List1Z4ItemP8st_tableP9Procedure + 393
0x8103c99
mysql_select__FP3THDP13st_table_listRt4List1Z4ItemP4ItemP8st_orderT4T3T4UlP13select_result
+ 6433
0x8110ad8 handle_select__FP3THDP6st_lexP13select_result + 92
0x80e928e mysql_execute_command__Fv + 934
0x80eca69 mysql_parse__FP3THDPcUi + 349
0x80e85fc dispatch_command__F19enum_server_commandP3THDPcUi + 1280
0x80edf79 do_command__FP3THD + 137
0x80e7a60 handle_one_connection + 612
0x4001efaf _end + 935967015
0x420e790a _end + 970343042

Configure command: ./configure '--with-unix-socket-path=/var/lib/mysql/mysql.sock'
'--with-mysqld-user=mysql' '--with-mysqld-ldflags=-static -O9 -fomit-frame-pointer
-ffixed-ebp-mysqld' '--without-docs' '--without-bench' '--prefix=/usr/local/mysql'

How to repeat:
I don't know
[28 May 2003 4:17] Indrek Siitan
Does the same query produce a segfault every time it's executed? If so, we would be interested in 
the copy of the table (preferrably copy of the 3 table files in the database directory, because the 
problem migth be that the table is corrupted).
[28 May 2003 4:39] [ name withheld ]
Mysql crushed many times with different queries to the same databases. How can I send you the log?
[28 May 2003 4:40] [ name withheld ]
Sorry, I forgot to say mysqlcheck status for the tables was OK.
[28 May 2003 4:59] MySQL Verification Team
Sorry,

But we need a fully repeatable test case, and logs and tables would not help us much. 

So, please try to make a set of SQL commands that will always lead to MySQL server  being crashed.
[28 May 2003 5:11] [ name withheld ]
here are a few more examples. I can't say the query is the same any where, but please see and tell me if it's a bug or something else:

query:
select count(*) as count from categories where parent_id =
'33'
[28 May 2003 5:16] [ name withheld ]
here are a few more examples. I can't say the query is the same any where, but please see and tell me if it's a bug or something else:

query:
select count(*) as count from categories where parent_id =
'33'

stack:
0x80de5ac handle_segfault + 424
0x40021f05 _end + 935979133
0x8130377
get_quick_keys__FP13st_qsel_paramP12QUICK_SELECTP11st_key_partP7SEL_ARGPcUiT4Ui +
1359
0x8131561 get_quick_select__FP13st_qsel_paramUiP7SEL_ARG + 113
0x812c8f5 test_quick_select__10SQL_SELECTUlUlUlb + 1573
0x8104f5b make_join_statistics__FP4JOINP13st_table_listP4ItemP16st_dynamic_array + 2463
0x8103216
mysql_select__FP3THDP13st_table_listRt4List1Z4ItemP4ItemP8st_orderT4T3T4UlP13select_result
+ 3742
0x8110ad8 handle_select__FP3THDP6st_lexP13select_result + 92
0x80e928e mysql_execute_command__Fv + 934
0x80eca69 mysql_parse__FP3THDPcUi + 349
0x80e85fc dispatch_command__F19enum_server_commandP3THDPcUi + 1280
0x80edf79 do_command__FP3THD + 137
0x80e7a60 handle_one_connection + 612
0x4001efaf _end + 935967015
0x420e790a _end + 970343042

query:
select b.banners_id, b.expires_date,
b.expires_impressions, sum(bh.banners_shown) as banners_shown from banners b,
banners_history bh where b.status = '1' and b.banners_id = bh.banners_id group by
b.banners_id

stack:
0x80de5ac handle_segfault + 424
0x40021f05 _end + 935979133
0x82c9423 _hp_delete_key + 107
0x82c8ef0 heap_write + 204

thd->query at 0x41d4d890  is invalid pointer

0x80de5ac handle_segfault + 424
0x40021f05 _end + 935979133
0x82c9423 _hp_delete_key + 107
0x82c8ef0 heap_write + 204
0x810c607 end_update__FP4JOINP13st_join_tableb + 395
0x810b65e sub_select__FP4JOINP13st_join_tableb + 238
0x810b65e sub_select__FP4JOINP13st_join_tableb + 238
0x810b379 do_select__FP4JOINPt4List1Z4ItemP8st_tableP9Procedure + 393
0x8103c99
mysql_select__FP3THDP13st_table_listRt4List1Z4ItemP4ItemP8st_orderT4T3T4UlP13select_result
+ 6433
0x8110ad8 handle_select__FP3THDP6st_lexP13select_result + 92
0x80e928e mysql_execute_command__Fv + 934
0x80eca69 mysql_parse__FP3THDPcUi + 349
0x80e85fc dispatch_command__F19enum_server_commandP3THDPcUi + 1280
0x80edf79 do_command__FP3THD + 137
0x80e7a60 handle_one_connection + 612
0x4001efaf _end + 935967015
0x420e790a _end + 970343042

And so on...

Do you need anything else? I can't send the databases, would the structure do?
[29 May 2003 3:23] Alexander Keremidarski
Please send us repeatable test case.

This means some table(s) filled with some data and query which causes crash.

CREATE ...
INSERT ...
INSERT ...

SELECT ...
# MySQL crashes at this point

Please also tell us how did you installed MySQL.

If you built it from source you should first try to repeat it with our binary downloaded from www.mysql.com/downloads
[14 Feb 2005 22:51] Bugs System
No feedback was provided for this bug for over a month, so it is
being suspended automatically. If you are able to provide the
information that was originally requested, please do so and change
the status of the bug back to "Open".