MariaDB

Crash with join_cache_hashed with semijoin and join_cache_level=3

Bug #725050 reported by Timour Katchaounov
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
MariaDB
Fix Released
Medium
Igor Babaev
MariaDB 5.3

Bug Description

The following example causes a crash in 5.3. The reason to set a
debug trace is because it forces the call to print_keyuse() via:
update_ref_and_keys -> print_keyuse_array -> print_keyuse.

create table t1 (a int not null);

set @@optimizer_switch='join_cache_hashed=on,semijoin=on';
set join_cache_level=3;

SET @@debug = 'd:t:O,/tmp/trace.out';

explain
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in (
  select a from t1 where a in ( select a from t1)
  )))))))))))))))))))))))))))))))))))))))))))))))))))))))))))));

drop table t1;

Revision history for this message
Timour Katchaounov (timour) wrote :

The same example, but without setting a debug trace causes
a crash in 5.3-mwl89 in a different (but related) place, when
update_ref_and_keys is called for the first subquery
(counted from the outside->in). The call stack in 5.3-mwl89 is:

#0 add_key_field at sql_select.cc:3677
#1 add_key_fields at sql_select.cc:3981
#2 update_ref_and_keys at sql_select.cc:4332
#3 make_join_statistics at sql_select.cc:2955
#4 JOIN::optimize at sql_select.cc:952
#5 st_select_lex::optimize_unflattened_subqueries at sql_lex.cc:3140
#6 JOIN::optimize_unflattened_subqueries at opt_subselect.cc:3617
#7 JOIN::optimize at sql_select.cc:1447
#8 mysql_select

The reason for the difference is that 5.3-mwl89 optimizes subqueries
early during JOIN::optimize of the outer query.

Changed in maria:
status: New → Confirmed
Revision history for this message
Timour Katchaounov (timour) wrote :

Notice that to reproduce the bug:

- join_cache_hashed = on
- join_cache_level > 2,
- semijoin = on

The test case was extracted from subselect_sj2_jcl6.test.

Revision history for this message
Timour Katchaounov (timour) wrote :

Reduced test case.
It turns out that in 5.3 there is no need for
all the subquery levels, 2 are enough.

create table t1 (a int not null);

set @@optimizer_switch='join_cache_hashed=on,semijoin=on';
set join_cache_level=3;

SET @@debug = 'd:t:O,/tmp/trace.out';

explain
select a from t1 where a in ( select a from t1);

drop table t1;

Timour Katchaounov (timour)
Changed in maria:
assignee: nobody → Igor Babaev (igorb-seattle)
milestone: none → 5.3
importance: Undecided → High
Revision history for this message
Igor Babaev (igorb-seattle) wrote :

Timour,
Your test case reproduces a bug in print_keyuse(KEYUSE *keyuse).
I've fixed this bug, but I'm not sure that this bug relates to your original
problem

summary: - Carsh with join_cache_hashed with semijoin and join_cache_level=3
+ Crash with join_cache_hashed with semijoin and join_cache_level=3
Igor Babaev (igorb-seattle)
Changed in maria:
status: Confirmed → In Progress
Igor Babaev (igorb-seattle)
Changed in maria:
status: In Progress → Fix Committed
importance: High → Medium
Daniel Bartholomew (dbart)
Changed in maria:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.