Skip to content

M
mariadb
Commit dd4d4cc8 authored by monty@mashka.mysql.fi's avatar monty@mashka.mysql.fi
Browse files
Options

Only set thd->query to 0 if LOCK_thread_count is hold 

This fixes a possible core dump problem in SHOW PROCESSLIST
parent 9fb47756
Hide whitespace changes
Inline Side-by-side
Showing with 40 additions and 21 deletions
sql/slave.cc
View file @ dd4d4cc8
...@@ -22,6 +22,7 @@ ...@@ -22,6 +22,7 @@
#include "slave.h" #include "slave.h"
#include <thr_alarm.h> #include <thr_alarm.h>
#include <my_dir.h> #include <my_dir.h>
#include <assert.h>
#define RPL_LOG_NAME (glob_mi.log_file_name[0] ? glob_mi.log_file_name :\ #define RPL_LOG_NAME (glob_mi.log_file_name[0] ? glob_mi.log_file_name :\
"FIRST") "FIRST")
...@@ -362,6 +363,7 @@ static int create_table_from_dump(THD* thd, NET* net, const char* db, ...@@ -362,6 +363,7 @@ static int create_table_from_dump(THD* thd, NET* net, const char* db,
TABLE_LIST tables; TABLE_LIST tables;
int error= 1; int error= 1;
handler *file; handler *file;
char *query;
if (packet_len == packet_error) if (packet_len == packet_error)
{ {
...@@ -375,15 +377,23 @@ static int create_table_from_dump(THD* thd, NET* net, const char* db, ...@@ -375,15 +377,23 @@ static int create_table_from_dump(THD* thd, NET* net, const char* db,
return 1; return 1;
} }
thd->command = COM_TABLE_DUMP; thd->command = COM_TABLE_DUMP;
thd->query = sql_alloc(packet_len + 1); /* Note that we should not set thd->query until the area is initalized */
if (!thd->query) if (!(query = sql_alloc(packet_len + 1)))
{ {
sql_print_error("create_table_from_dump: out of memory"); sql_print_error("create_table_from_dump: out of memory");
net_printf(&thd->net, ER_GET_ERRNO, "Out of memory"); net_printf(&thd->net, ER_GET_ERRNO, "Out of memory");
return 1; return 1;
} }
memcpy(thd->query, net->read_pos, packet_len); memcpy(query, net->read_pos, packet_len);
thd->query[packet_len] = 0; query[packet_len]= 0;
thd->query_length= packet_len;
/*
We make the following lock in an attempt to ensure that the compiler will
not rearrange the code so that thd->query is set too soon
*/
VOID(pthread_mutex_lock(&LOCK_thread_count));
thd->query= query;
VOID(pthread_mutex_unlock(&LOCK_thread_count));
thd->current_tablenr = 0; thd->current_tablenr = 0;
thd->query_error = 0; thd->query_error = 0;
thd->net.no_send_ok = 1; thd->net.no_send_ok = 1;
...@@ -967,10 +977,11 @@ static int exec_event(THD* thd, NET* net, MASTER_INFO* mi, int event_len) ...@@ -967,10 +977,11 @@ static int exec_event(THD* thd, NET* net, MASTER_INFO* mi, int event_len)
thd->db = rewrite_db((char*)qev->db); thd->db = rewrite_db((char*)qev->db);
if (db_ok(thd->db, replicate_do_db, replicate_ignore_db)) if (db_ok(thd->db, replicate_do_db, replicate_ignore_db))
{ {
thd->query = (char*)qev->query; thd->query_length= q_len;
thd->set_time((time_t)qev->when); thd->set_time((time_t)qev->when);
thd->current_tablenr = 0; thd->current_tablenr = 0;
VOID(pthread_mutex_lock(&LOCK_thread_count)); VOID(pthread_mutex_lock(&LOCK_thread_count));
thd->query = (char*)qev->query;
thd->query_id = query_id++; thd->query_id = query_id++;
VOID(pthread_mutex_unlock(&LOCK_thread_count)); VOID(pthread_mutex_unlock(&LOCK_thread_count));
thd->last_nx_table = thd->last_nx_db = 0; thd->last_nx_table = thd->last_nx_db = 0;
...@@ -1008,7 +1019,9 @@ static int exec_event(THD* thd, NET* net, MASTER_INFO* mi, int event_len) ...@@ -1008,7 +1019,9 @@ static int exec_event(THD* thd, NET* net, MASTER_INFO* mi, int event_len)
else else
{ {
// master could be inconsistent, abort and tell DBA to check/fix it // master could be inconsistent, abort and tell DBA to check/fix it
VOID(pthread_mutex_lock(&LOCK_thread_count));
thd->db = thd->query = 0; thd->db = thd->query = 0;
VOID(pthread_mutex_unlock(&LOCK_thread_count));
thd->convert_set = 0; thd->convert_set = 0;
close_thread_tables(thd); close_thread_tables(thd);
free_root(&thd->mem_root,0); free_root(&thd->mem_root,0);
...@@ -1017,7 +1030,9 @@ static int exec_event(THD* thd, NET* net, MASTER_INFO* mi, int event_len) ...@@ -1017,7 +1030,9 @@ static int exec_event(THD* thd, NET* net, MASTER_INFO* mi, int event_len)
} }
} }
thd->db = 0; // prevent db from being freed thd->db = 0; // prevent db from being freed
VOID(pthread_mutex_lock(&LOCK_thread_count));
thd->query = 0; // just to be sure thd->query = 0; // just to be sure
VOID(pthread_mutex_unlock(&LOCK_thread_count));
// assume no convert for next query unless set explictly // assume no convert for next query unless set explictly
thd->convert_set = 0; thd->convert_set = 0;
close_thread_tables(thd); close_thread_tables(thd);
...@@ -1059,10 +1074,11 @@ static int exec_event(THD* thd, NET* net, MASTER_INFO* mi, int event_len) ...@@ -1059,10 +1074,11 @@ static int exec_event(THD* thd, NET* net, MASTER_INFO* mi, int event_len)
Load_log_event* lev = (Load_log_event*)ev; Load_log_event* lev = (Load_log_event*)ev;
init_sql_alloc(&thd->mem_root, 8192,0); init_sql_alloc(&thd->mem_root, 8192,0);
thd->db = rewrite_db((char*)lev->db); thd->db = rewrite_db((char*)lev->db);
DBUG_ASSERT(thd->query == 0);
thd->query = 0; thd->query = 0;
thd->query_error = 0; thd->query_error = 0;
if(db_ok(thd->db, replicate_do_db, replicate_ignore_db)) if (db_ok(thd->db, replicate_do_db, replicate_ignore_db))
{ {
thd->set_time((time_t)lev->when); thd->set_time((time_t)lev->when);
thd->current_tablenr = 0; thd->current_tablenr = 0;
...@@ -1490,9 +1506,11 @@ the slave thread with \"mysqladmin start-slave\". We stopped at log \ ...@@ -1490,9 +1506,11 @@ the slave thread with \"mysqladmin start-slave\". We stopped at log \
sql_print_error("Slave thread exiting, replication stopped in log '%s' at \ sql_print_error("Slave thread exiting, replication stopped in log '%s' at \
position %s", position %s",
RPL_LOG_NAME, llstr(glob_mi.pos,llbuff)); RPL_LOG_NAME, llstr(glob_mi.pos,llbuff));
VOID(pthread_mutex_lock(&LOCK_thread_count));
thd->query = thd->db = 0; // extra safety thd->query = thd->db = 0; // extra safety
if(mysql) VOID(pthread_mutex_unlock(&LOCK_thread_count));
mc_mysql_close(mysql); if (mysql)
mc_mysql_close(mysql);
thd->proc_info = "Waiting for slave mutex on exit"; thd->proc_info = "Waiting for slave mutex on exit";
pthread_mutex_lock(&LOCK_slave); pthread_mutex_lock(&LOCK_slave);
slave_running = 0; slave_running = 0;
......
sql/sql_db.cc
View file @ dd4d4cc8
...@@ -89,9 +89,9 @@ void mysql_create_db(THD *thd, char *db, uint create_options) ...@@ -89,9 +89,9 @@ void mysql_create_db(THD *thd, char *db, uint create_options)
} }
if (!thd->query) if (!thd->query)
{ {
thd->query = path;
thd->query_length = (uint) (strxmov(path,"create database ", db, NullS)- thd->query_length = (uint) (strxmov(path,"create database ", db, NullS)-
path); path);
thd->query = path;
} }
{ {
mysql_update_log.write(thd,thd->query, thd->query_length); mysql_update_log.write(thd,thd->query, thd->query_length);
...@@ -103,8 +103,9 @@ void mysql_create_db(THD *thd, char *db, uint create_options) ...@@ -103,8 +103,9 @@ void mysql_create_db(THD *thd, char *db, uint create_options)
} }
if (thd->query == path) if (thd->query == path)
{ {
VOID(pthread_mutex_lock(&LOCK_thread_count));
thd->query = 0; // just in case thd->query = 0; // just in case
thd->query_length = 0; VOID(pthread_mutex_unlock(&LOCK_thread_count));
} }
send_ok(&thd->net, result); send_ok(&thd->net, result);
...@@ -178,9 +179,9 @@ void mysql_rm_db(THD *thd,char *db,bool if_exists) ...@@ -178,9 +179,9 @@ void mysql_rm_db(THD *thd,char *db,bool if_exists)
if (!thd->query) if (!thd->query)
{ {
thd->query = path;
thd->query_length = (uint) (strxmov(path,"drop database ", db, NullS)- thd->query_length = (uint) (strxmov(path,"drop database ", db, NullS)-
path); path);
thd->query = path;
} }
mysql_update_log.write(thd, thd->query, thd->query_length); mysql_update_log.write(thd, thd->query, thd->query_length);
if (mysql_bin_log.is_open()) if (mysql_bin_log.is_open())
...@@ -190,8 +191,9 @@ void mysql_rm_db(THD *thd,char *db,bool if_exists) ...@@ -190,8 +191,9 @@ void mysql_rm_db(THD *thd,char *db,bool if_exists)
} }
if (thd->query == path) if (thd->query == path)
{ {
VOID(pthread_mutex_lock(&LOCK_thread_count));
thd->query = 0; // just in case thd->query = 0; // just in case
thd->query_length = 0; VOID(pthread_mutex_unlock(&LOCK_thread_count));
} }
send_ok(&thd->net,(ulong) deleted); send_ok(&thd->net,(ulong) deleted);
} }
......
sql/sql_parse.cc
View file @ dd4d4cc8
...@@ -691,15 +691,15 @@ int mysql_table_dump(THD* thd, char* db, char* tbl_name, int fd) ...@@ -691,15 +691,15 @@ int mysql_table_dump(THD* thd, char* db, char* tbl_name, int fd)
thd->free_list = 0; thd->free_list = 0;
thd->query = tbl_name; thd->query = tbl_name;
if((error = mysqld_dump_create_info(thd, table, -1))) if ((error = mysqld_dump_create_info(thd, table, -1)))
{ {
my_error(ER_GET_ERRNO, MYF(0)); my_error(ER_GET_ERRNO, MYF(0));
goto err; goto err;
} }
net_flush(&thd->net); net_flush(&thd->net);
error = table->file->dump(thd,fd); error = table->file->dump(thd,fd);
if(error) if (error)
my_error(ER_GET_ERRNO, MYF(0)); my_error(ER_GET_ERRNO, MYF(0));
err: err:
...@@ -776,9 +776,8 @@ bool do_command(THD *thd) ...@@ -776,9 +776,8 @@ bool do_command(THD *thd)
*tbl_name++ = 0; *tbl_name++ = 0;
memcpy(tbl_name, data + db_len + 2, tbl_len); memcpy(tbl_name, data + db_len + 2, tbl_len);
tbl_name[tbl_len] = 0; tbl_name[tbl_len] = 0;
if(mysql_table_dump(thd, db, tbl_name, -1)) if (mysql_table_dump(thd, db, tbl_name, -1))
send_error(&thd->net); // dump to NET send_error(&thd->net); // dump to NET
break; break;
} }
case COM_CHANGE_USER: case COM_CHANGE_USER:
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7