|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
Patchesbug60038.patch (last revision 2011-10-13 00:42 UTC by laruence@php.net)Pull RequestsHistoryAllCommentsChangesGit/SVN commits
[2011-10-11 09:16 UTC] laruence@php.net
[2011-10-11 09:27 UTC] laruence@php.net
[2011-10-11 09:31 UTC] laruence@php.net
-Assigned To:
+Assigned To: laruence
[2011-10-11 09:31 UTC] laruence@php.net
[2011-10-13 00:42 UTC] laruence@php.net
[2011-10-13 00:44 UTC] laruence@php.net
[2011-10-16 03:00 UTC] laruence@php.net
[2011-10-16 06:03 UTC] laruence@php.net
-Status: Assigned
+Status: Closed
-PHP Version: 5.3.8
+PHP Version: 5.4.0beta1
[2011-10-16 06:03 UTC] laruence@php.net
[2012-04-18 09:48 UTC] laruence@php.net
[2012-07-24 23:39 UTC] rasmus@php.net
[2013-11-17 09:35 UTC] laruence@php.net
|
|||||||||||||||||||||||||||
Copyright © 2001-2025 The PHP GroupAll rights reserved. |
Last updated: Tue Jan 21 10:01:33 2025 UTC |
Description: ------------ in php_error_cb: freeing PG(last_error_message) and PG(last_error_file) without blocking alarm signal. so there is a chance that php will segfault when max_execution_time limit reachead. since zend_signal was introduced in PHP 5.4, so I think it's okey to add signal block mechanism for this codes. Test script: --------------- <?php error_reporting(E_ALL|E_NOTICE); set_time_limit(1); while(1) { $a = $arr['index_miss']; } ?> do following steps: 1. gdb php 2. b php_error_cb 3. r "above script" 4. when breakpoint reach: 893 if (PG(last_error_message)) { (gdb) 894 free(PG(last_error_message)); 5. signal SIGPROF 6. next (*n) *** glibc detected *** double free or corruption (fasttop): 0x0000000001207ca0 *** Expected result: ---------------- no segfault Actual result: -------------- segfault