1. 16 Apr, 2013 2 commits
  2. 14 Apr, 2013 2 commits
    • Chaithra Gopalareddy's avatar
      Merge from 5.1 to 5.5 · 51555d2a
      Chaithra Gopalareddy authored
      sql/sql_class.h:
        Parsing for group_concat's order by  is made independent.
        As a result, add_order_to_list cannot be used anymore.
      51555d2a
    • Chaithra Gopalareddy's avatar
      Bug#16347426:ASSERTION FAILED: (SELECT_INSERT && · 2d836633
      Chaithra Gopalareddy authored
                   !TABLES->NEXT_NAME_RESOLUTION_TABLE) || !TAB
            
      Problem:
      The context info of select query gets corrupted when a query
      with group_concat having order by is present in an order by
      clause of the select query. As a result, server crashes with
      an assert.
            
      Analysis:
      While parsing order by for group_concat, it is presumed that
      it is always present before the actual order by for the
      select query.
      As a result, parser uses select->order_list to populate the
      order by items of group_concat and creates a select->gorder_list
      to which select->order_list is copied onto. Once this is done,
      it empties the select->order_list.
      In the case presented in the bugpage, as order by is already
      parsed when group_concat's order by is encountered, parser
      presumes that it is the second order by in the select query
      and creates fake_lex_unit which results in the change of
      context info.
            
      Solution:
      Make group_concat's order by parsing independent of the select
      
      
      sql/item_sum.cc:
        Change the argument as, select->gorder_list is not pointer anymore
      sql/item_sum.h:
        Change the argument as, select->gorder_list is not pointer anymore
      sql/mysql_priv.h:
        Parsing for group_concat's order by is made independent.
        As a result, add_order_to_list cannot be used anymore.
      sql/sql_lex.cc:
        Parsing for group_concat's order by is made independent.
        As a result, add_order_to_list cannot be used anymore.
      sql/sql_lex.h:
        Parsing for group_concat's order by is made independent.
        As a result, add_order_to_list cannot be used anymore.
      sql/sql_yacc.yy:
         Make group_concat's order by parsing independent of the select
        queries order by.
      2d836633
  3. 12 Apr, 2013 2 commits
    • Venkatesh Duggirala's avatar
      BUG#16615117 MYSQLDUMP PRODUCES A CHANGE MASTER STATEMENT · 0fe3128c
      Venkatesh Duggirala authored
      WITH A PORT NUMBER ENCLOSED IN QUOTES
      
      Problem: mysqldump --dump-slave --include-master-host-port
      prints the CHANGE MASTER command in the generated logical
      backup. The PORT number that is generated with this command
      is a string and should be an integer.
      
      Fix: Remove the Enclosed quotes for port number.
      0fe3128c
    • Jorgen Loland's avatar
      Bug#16540042: WRONG QUERY RESULT WHEN USING RANGE OVER · 2c780b46
      Jorgen Loland authored
                    PARTIAL INDEX
      
      Consider the following table definition:
      
      CREATE TABLE t (
        my_col CHAR(10),
        ...
        INDEX my_idx (my_col(1))
      )
      
      The my_idx index is not able to distinguish between rows with
      equal first-character my_col-values (e.g. "f", "foo", "fee").
      
      Prior to this CS, the range optimizer would translate
      
      "WHERE my_col NOT IN ('f', 'h')" into (optimizer trace syntax)
      
      "ranges": [
        "NULL < my_col < f",
        "f < my_col"
      ]
      
      But this was not correct because the rows with values "foo" 
      and "fee" would not belong to any of those ranges. However, the
      predicate "my_col != 'f' AND my_col != 'h'" would translate
      to 
      
      "ranges": [
        "NULL < my_col"
      ]
      
      because get_mm_leaf() changes from "<" to "<=" for partial
      keyparts. This CS changes the range optimizer implementation 
      for NOT IN to behave like a conjunction of NOT EQUAL: it 
      replaces "<" with "<=" for all but the first range when the
      keypart is partial.
      2c780b46
  4. 11 Apr, 2013 1 commit
  5. 10 Apr, 2013 2 commits
    • Tor Didriksen's avatar
      Bug#16395606 SCRIPTS MISSING EXECUTE BIT · 6b9233fb
      Tor Didriksen authored
      Add execute bit for scripts:
       - in build directory
       - in install directory
      6b9233fb
    • Thayumanavar's avatar
      BUG#16402143 - STACK CORRUPTION IN DBUG_EXPLAIN · 348d14c7
      Thayumanavar authored
      DESCRIPTION AND FIX:
      DBUG_EXPLAIN result in buffer overflow when the
      DEBUG variable values length exceed 255.
      In _db_explain_ function which call macro str_to_buf
      incorrectly passes the length of buf avaliable to
      strnmov as len+1. The fix calculates the avaliable
      space in buf and passes it to strnxmov.
      348d14c7
  6. 09 Apr, 2013 2 commits
  7. 08 Apr, 2013 5 commits
    • Gopal Shankar's avatar
      null merge · 90738111
      Gopal Shankar authored
      90738111
    • unknown's avatar
      No commit message · 6777c3fa
      unknown authored
      No commit message
      6777c3fa
    • unknown's avatar
      No commit message · 944ea996
      unknown authored
      No commit message
      944ea996
    • unknown's avatar
      No commit message · dc7af6e6
      unknown authored
      No commit message
      dc7af6e6
    • Raghav Kapoor's avatar
      BUG#15978766 - TEST VALGRIND_REPORT FAILS INNODB TESTS · 0d67ea37
      Raghav Kapoor authored
      BACKGROUND:
      The testcase i_innodb.innodb_bug14036214 when run under valgrind
      leaks memory.
      
      ANALYSIS:
      In the code path of mysql_update, a temporary file is opened
      using open_cached_file().
      When an error has occured in that code path, this temporary
      file was not closed since call to close_cached_file() was 
      missing.
      This problem exists in 5.5 but it does not exists in 5.6 and 
      trunk. 
      This is because in 5.6 and trunk, when we issue the update
      statement in the test case, it does not take the same code path
      as in 5.5. The code path is different because a different plan 
      is chosen by optimizer. 
      See Bug#14036214 for details.
      However, the problem can still be examined in 5.6 and trunk
      by code inspection.
      
      FIX:
      The file opened by open_cached_file() has been closed by calling
      close_cached_file() when an error occurs so that it does not 
      results in a memory leak.
      0d67ea37
  8. 04 Apr, 2013 1 commit
  9. 03 Apr, 2013 1 commit
  10. 02 Apr, 2013 5 commits
  11. 01 Apr, 2013 2 commits
  12. 31 Mar, 2013 2 commits
    • Chaithra Gopalareddy's avatar
      Merge from 5.1 to 5.5 · 911934db
      Chaithra Gopalareddy authored
      911934db
    • Chaithra Gopalareddy's avatar
      · cfb3bbac
      Chaithra Gopalareddy authored
      Bug #16347343 : CRASH, GROUP_CONCAT, DERIVED TABLES
            
      Problem:
      A select query inside a group_concat function having an 
      outer reference results in a crash.
            
      Analysis:
      In function Item_group_concat::add, we do not check if 
      return value of get_tmp_table_field can be NULL for 
      a non-const item. This can happen for a query with a 
      outer reference.
      While resolving the outer reference in the query present
      inside group_concat function, we set the "const_item_cache" 
      to false. As a result in the call to const_item() from 
      Item_func_group_concat::add, it returns false and goes on 
      to check if this can be NULL resulting in the crash.
      get_tmp_table_field does not return NULL for Items of type 
      Item_field, Item_result_field and Item_ref. 
      For all other items, it returns NULL. 
           
      Solution:
      Check for the return value of get_tmp_table_field before we 
      access field contents.
      
      sql/item_sum.cc:
        Check for the return value of get_tmp_table_field before accessing
      cfb3bbac
  13. 30 Mar, 2013 1 commit
    • Chaithra Gopalareddy's avatar
      Bug#14261010: ON DUPLICATE KEY UPDATE CRASHES THE SERVER · d8c9cd70
      Chaithra Gopalareddy authored
            
      Problem:
      Insert with 'on duplicate key update' on a view,
      crashes the server.
            
      Analysis:
      During an insert on to a view, we do the following:
            
      For insert fields and values -
      1. Resolve insert values.
      2. Resolve insert fields.
      3. Check if the fields and values are all from a 
         single table of a view in case of INSERT VALUES.
         Do not check the same in case of INSERT SELECT,
         as the values can be read from different table than
         that of the view.
            
      For the update fields (if DUP UPDATE is used)
      1. Create a name resolution context with 'table_list' only.
      2. Resolve update fields in this context.
      3. Check if update fields and values are from the same
         table as the insert fields.
      4. Get the next name resolution context. Concatinate this
         with the previous one.
      5. Resolve update values in this context as we can refer
         to other tables in the values clause.
            
      Note that at step 3(of update fields), we check for
      'used_tables map' of update values, without resolving them
      first. Hence the crash.
            
      Fix:
      At step 3, do not pass the update values to check if its a
      single table view update, as update values can refer other table.
            
      Code has been re-organized to function like check_insert_fields.
      
      
      sql/sql_insert.cc:
        Do not pass update_values as they are not resolved yet.
      d8c9cd70
  14. 29 Mar, 2013 7 commits
  15. 28 Mar, 2013 5 commits
    • Georgi Kodinov's avatar
      merge · 00ee67de
      Georgi Kodinov authored
      00ee67de
    • Georgi Kodinov's avatar
      Addendum #1 to the fix for bug #16451878 : GEOMETRY QUERY CRASHES SERVER · e927bda6
      Georgi Kodinov authored
      Fixed the get_data_size() methods for multi-point features to check properly for end 
      of their respective data arrays.
      Extended the point checking function to take a 3d optional argument so cases where
      there's additional data in each array element (besides the point data itself) can be
      covered by the helper function.
      Fixed the 3 cases where such offset was present to use the proper checking helper 
      function.
      Test cases added.
      Fixed review comments.
      e927bda6
    • Nisha Gopalakrishnan's avatar
      Merge from 5.1 to 5.5 · 62db3380
      Nisha Gopalakrishnan authored
      62db3380
    • Nisha Gopalakrishnan's avatar
      BUG#11753852: IF() VALUES ARE EVALUATED DIFFERENTLY IN A · e85c90b9
      Nisha Gopalakrishnan authored
                    REGULAR SQL VS PREPARED STATEMENT
      
      Analysis:
      ---------
      
      When passing user variables as parameters to the
      prepared statements, the IF() function evaluation
      turns out to be incorrect.
      
      Consider the example:
      
      SET @var1='0.038687';
      SELECT @var1 , IF( @var1 = 0 , 1 ,@var1 ) AS sqlif ;
      +----------+----------+
      | @var1    | sqlif    |
      +----------+----------+
      | 0.038687 | 0.038687 |
      +----------+----------+
      
      Executing a prepared statement where the parameters are
      supplied:
      
      PREPARE fail_stmt FROM "SELECT ? ,
      IF( ? = 0 , 1 , ? ) AS ps_if_fail" ;
      EXECUTE fail_stmt USING @var1 ,@var1 , @var1 ;
      +----------+------------+
      | ?        | ps_if_fail |
      +----------+------------+
      | 0.038687 | 1          |
      +----------+------------+
      1 row in set (0.00 sec)
      
      In the regular statement or while executing the prepared
      statements without passing parameters, the decimal
      precision is set for the user variable of type string.
      The comparison function used for evaluation considered
      the precision while comparing the values.
      
      But while executing the prepared statement with the
      parameters supplied, the decimal precision was not
      set. Thus the comparison function chosen was different
      which looked at the absolute values for comparison.
      
      Fix:
      ----
      
      The fix is to set 'decimals' field of Item_param to the
      default value which is nothing but the maximum number of
      decimals(NOT_FIXED_DEC). This is set for cases where the
      strings are converted to the numeric form within certain
      functions. Thus the value is not rounded off during
      comparison, ensuring correct evaluation.
      e85c90b9
    • Sujatha Sivakumar's avatar
      Merge from mysql-5.1 to mysql-5.5 · 9a1d651b
      Sujatha Sivakumar authored
      9a1d651b