Bug #99525 Assertion "ha_innodb.cc line 2148"
Submitted: 12 May 2020 9:18 Modified: 13 May 2020 5:46
Reporter: Hrvoje Matijakovic Email Updates:
Status: Verified Impact on me:
None 
Category:MySQL Server: DDL Severity:S6 (Debug Builds)
Version:5.6.48 OS:Linux
Assigned to: CPU Architecture:x86

[12 May 2020 9:18] Hrvoje Matijakovic
Description:
Running the following query on the debug results in a crash. Release builds doesn't seem to be affected. I was able to reproduce this on 5.6.45 as well.

gdb from the debug build:
(gdb) bt
+bt
#0  0x00007f2d16ea3aa1 in pthread_kill () from /lib64/libpthread.so.0
#1  0x0000000000aac260 in my_write_core (sig=6) at /sdc/MS-5.6.45_dbg/mysys/stacktrace.c:424
#2  0x000000000073b9f0 in handle_fatal_signal (sig=6) at /sdc/MS-5.6.45_dbg/sql/signal_handler.cc:230
#3  <signal handler called>
#4  0x00007f2d151ac387 in raise () from /lib64/libc.so.6
#5  0x00007f2d151ada78 in abort () from /lib64/libc.so.6
#6  0x0000000000b239ec in innobase_get_cset_width (cset=17, mbminlen=0x7f2d17495af8, mbmaxlen=0x7f2d17495af0) at /sdc/MS-5.6.45_dbg/storage/innobase/handler/ha_innodb.cc:1736
#7  0x0000000000d2c9eb in dtype_get_mblen (mtype=13, prtype=1114622, mbminlen=0x7f2d17495af8, mbmaxlen=0x7f2d17495af0) at /sdc/MS-5.6.45_dbg/storage/innobase/include/data0type.ic:96
#8  0x0000000000d2e718 in dict_mem_fill_column_struct (column=0x7f2cd20b1878, col_pos=0, mtype=13, prtype=1114622, col_len=5) at /sdc/MS-5.6.45_dbg/storage/innobase/dict/dict0mem.cc:502
#9  0x0000000000d2dd3c in dict_mem_table_add_col (table=0x7f2cd20395f8, heap=0x7f2cd20e7b00, name=0x7f2cd2027929 "a", mtype=13, prtype=1114622, len=5) at /sdc/MS-5.6.45_dbg/storage/innobase/dict/dict0mem.cc:262
#10 0x0000000000b2f1a3 in create_table_def (trx=0x7f2cd20afa78, form=0x7f2d17496ae0, table_name=0x7f2d174962d0 "test/#sql-2c4a_2", temp_path=0x7f2d174960d0 "", remote_path=0x7f2d17495ed0 "", flags=1, flags2=80) at /sdc/MS-5.6.45_dbg/storage/innobase/handler/ha_innodb.cc:8865
#11 0x0000000000b30b19 in ha_innobase::create (this=0x7f2cd2028010, name=0x7f2d1749885c "./test/#sql-2c4a_2", form=0x7f2d17496ae0, create_info=0x7f2d174993a0) at /sdc/MS-5.6.45_dbg/storage/innobase/handler/ha_innodb.cc:9781
#12 0x0000000000654d42 in handler::ha_create (this=0x7f2cd2028010, name=0x7f2d1749885c "./test/#sql-2c4a_2", form=0x7f2d17496ae0, info=0x7f2d174993a0) at /sdc/MS-5.6.45_dbg/sql/handler.cc:4533
#13 0x0000000000655633 in ha_create_table (thd=0x7f2ceefd7000, path=0x7f2d1749885c "./test/#sql-2c4a_2", db=0x7f2cd201f690 "test", table_name=0x7f2d17497ff0 "#sql-2c4a_2", create_info=0x7f2d174993a0, update_create_info=false, is_temp_table=false) at /sdc/MS-5.6.45_dbg/sql/handler.cc:4777
#14 0x000000000085bf0a in mysql_alter_table (thd=0x7f2ceefd7000, new_db=0x7f2cd201f690 "test", new_name=0x0, create_info=0x7f2d174993a0, table_list=0x7f2cd201f130, alter_info=0x7f2d17499310, order_num=0, order=0x0, ignore=false) at /sdc/MS-5.6.45_dbg/sql/sql_table.cc:8611
#15 0x00000000009970d3 in Sql_cmd_alter_table::execute (this=0x7f2cd201f770, thd=0x7f2ceefd7000) at /sdc/MS-5.6.45_dbg/sql/sql_alter.cc:324
#16 0x00000000007ee5f7 in mysql_execute_command (thd=0x7f2ceefd7000) at /sdc/MS-5.6.45_dbg/sql/sql_parse.cc:4995
#17 0x00000000007f1bd9 in mysql_parse (thd=0x7f2ceefd7000, rawbuf=0x7f2cd201f010 "ALTER TABLE t1 MODIFY a CHAR(1)CHARACTER SET filename", length=53, parser_state=0x7f2d1749a530) at /sdc/MS-5.6.45_dbg/sql/sql_parse.cc:6422
#18 0x00000000007e4eb0 in dispatch_command (command=COM_QUERY, thd=0x7f2ceefd7000, packet=0x7f2ce12e5001 "ALTER TABLE t1 MODIFY a CHAR(1)CHARACTER SET filename", packet_length=53) at /sdc/MS-5.6.45_dbg/sql/sql_parse.cc:1399
#19 0x00000000007e3f61 in do_command (thd=0x7f2ceefd7000) at /sdc/MS-5.6.45_dbg/sql/sql_parse.cc:1064
#20 0x00000000007ac785 in do_handle_one_connection (thd_arg=0x7f2ceef8e000) at /sdc/MS-5.6.45_dbg/sql/sql_connect.cc:982
#21 0x00000000007ac50f in handle_one_connection (arg=0x7f2ceef8e000) at /sdc/MS-5.6.45_dbg/sql/sql_connect.cc:899
#22 0x0000000000ddb8f9 in pfs_spawn_thread (arg=0x7f2d133f66a0) at /sdc/MS-5.6.45_dbg/storage/perfschema/pfs.cc:1861
#23 0x00007f2d16e9eea5 in start_thread () from /lib64/libpthread.so.0
#24 0x00007f2d152748dd in clone () from /lib64/libc.so.6
(gdb) quit

How to repeat:
USE test;
create TABLE t1(a int key,giga BLOB);
ALTER TABLE t1 MODIFY a CHAR(1)CHARACTER SET filename;
[13 May 2020 5:46] MySQL Verification Team
Hello Hrvoje Matijakovic,

Thank you for the bug report and test case.
Observed that 5.6.48 debug build is affected.

regards,
Umesh