[MDEV-4295] Server crashes in get_point on a query with Area, AsBinary, MultiPoint - JIRA

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 10.0.1, 5.5.30, 5.1.67, 5.2.14, 5.3.12
Fix Version/s: 10.0.2, 5.5.31, 5.3.13, 5.2.15, 5.1.73
Component/s: None
Labels:
- upstream

Description

Also reproducible on MySQL and filed as http://bugs.mysql.com/bug.php?id=68709

SELECT Area( AsBinary( MultiPoint( Point( 0,9 ), Point( 0,1 ), Point( 2,2 ) ) ) );

#3  <signal handler called>
#4  __memcpy_ssse3 () at ../sysdeps/x86_64/multiarch/memcpy-ssse3.S:1816
#5  0x000000000085a56c in get_point (x=0x7f300c5462a0, y=0x7f300c5462a8, data=0x7f3000150ff9 "") at spatial.cc:128
#6  0x000000000085c68e in Gis_polygon::area (this=0x7f300c546310, ar=0x7f300c5462f0, end_of_data=0x7f300c5462f8) at spatial.cc:880
#7  0x0000000000630725 in Item_func_area::val_real (this=0x7f300001d108) at item_geofunc.cc:723
#8  0x00000000005abb2f in Item::send (this=0x7f300001d108, protocol=0x22cb078, buffer=0x7f300c546440) at item.cc:5658
#9  0x000000000065df22 in select_send::send_data (this=0x7f300001d358, items=...) at sql_class.cc:1823
#10 0x00000000006fcfb2 in JOIN::exec (this=0x7f3000018650) at sql_select.cc:1829
#11 0x00000000006ff89f in mysql_select (thd=0x22cac98, rref_pointer_array=0x22cd030, tables=0x0, wild_num=0, fields=..., conds=0x0, og_num=0, order=0x0, group=0x0, having=0x0, proc_param=0x0, select_options=2147764736, result=0x7f300001d358, unit=0x22cca30, select_lex=0x22cce58) at sql_select.cc:2576
#12 0x00000000006f7721 in handle_select (thd=0x22cac98, lex=0x22cc990, result=0x7f300001d358, setup_tables_done_option=0) at sql_select.cc:280
#13 0x00000000006949ce in execute_sqlcom_select (thd=0x22cac98, all_tables=0x0) at sql_parse.cc:5247
#14 0x000000000068b848 in mysql_execute_command (thd=0x22cac98) at sql_parse.cc:2386
#15 0x00000000006971b1 in mysql_parse (thd=0x22cac98, rawbuf=0x7f300001c690 "SELECT Area( AsBinary( MultiPoint( Point( 0,9 ), Point( 0,1 ), Point( 2,2 ) ) ) )", length=81, found_semicolon=0x7f300c547900) at sql_parse.cc:6222
#16 0x0000000000688fe1 in dispatch_command (command=COM_QUERY, thd=0x22cac98, packet=0x2337969 "", packet_length=81) at sql_parse.cc:1294
#17 0x0000000000687edc in do_command (thd=0x22cac98) at sql_parse.cc:906
#18 0x0000000000684e73 in handle_one_connection (arg=0x22cac98) at sql_connect.cc:1238
#19 0x00007f301a32fe9a in start_thread (arg=0x7f300c548700) at pthread_create.c:308
#20 0x00007f301a05ccbd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:112

revision-id: sanja@askmonty.org-20130318130752-d89oec5li492i0gv
revno: 3191
branch-nick: 5.1

Gliffy Diagrams

Attachments

Issue Links

links to

Bug #68709 - Server crashes in get_point on a geometry query

Activity

Hide

Permalink

Alexey Botchkov added a comment - 2013-03-19 15:37

fixing patch: http://lists.askmonty.org/pipermail/commits/2013-March/004457.html

Show

Alexey Botchkov added a comment - 2013-03-19 15:37 fixing patch: http://lists.askmonty.org/pipermail/commits/2013-March/004457.html

People

Assignee:

Alexey Botchkov

Reporter:

Elena Stepanova

Votes:

0 Vote for this issue

Watchers:

4 Start watching this issue

Dates

Created:

2013-03-19 02:43

Updated:

2013-03-19 15:38

Resolved:

2013-03-19 15:38

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

Agile

View on Board