php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #75065 Segfaults with soap.so
Submitted: 2017-08-11 15:12 UTC Modified: 2018-01-02 08:00 UTC
Votes:3
Avg. Score:4.7 ± 0.5
Reproduced:3 of 3 (100.0%)
Same Version:3 (100.0%)
Same OS:1 (33.3%)
From: willem at mollie dot nl Assigned:
Status: Duplicate Package: SOAP related
PHP Version: 7.1.8 OS: Ubuntu 16.04
Private report: No CVE-ID: None
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.
Password:
Status:
Package:
Bug Type:
Summary:
From: willem at mollie dot nl
New email:
PHP Version: OS:

 

 [2017-08-11 15:12 UTC] willem at mollie dot nl
Description:
------------
We are experiencing frequent segfaults using SOAP. 

Unfortunately, we have been unable to track it down to any specific SOAP snippets - we are guessing that it happens during cleanup at the end of the request. We didn't find any corresponding HTTP 502 status responses in our logs. 

We use SOAP memory and file cache. 

At the moment we are running on PHP 7.1.7. Since no mentions of any SOAP segfaults were in the changelog for 7.1.8 we haven't updated yet. 

This is the only thing I was able to retrieve from our production environment, 

[Fri Aug 11 14:11:25.475651 2017] [core:notice] [pid 3114] AH00052: child pid 5786 exit signal Segmentation fault (11)
*** Error in `/usr/sbin/apache2': free(): invalid pointer: 0x00007f0470a835e0 ***
======= Backtrace: =========
/lib/x86_64-linux-gnu/libc.so.6(+0x777e5)[0x7f0494f827e5]
/lib/x86_64-linux-gnu/libc.so.6(+0x8037a)[0x7f0494f8b37a]
/lib/x86_64-linux-gnu/libc.so.6(cfree+0x4c)[0x7f0494f8f53c]
/usr/lib/apache2/modules/libphp7.1.so(zend_hash_destroy+0x12e)[0x7f0491e49a5e]
/usr/lib/php/20160303/soap.so(delete_type_persistent+0x121)[0x7f047eccda71]
/usr/lib/apache2/modules/libphp7.1.so(zend_hash_destroy+0xa5)[0x7f0491e499d5]
[...]

Also, we have lots of messages like this, but it probably doesn't help much: 

[Fri Aug 11 14:31:28.189252 2017] [core:notice] [pid 1129] AH00052: child pid 7841 exit signal Segmentation fault (11)
[Fri Aug 11 14:56:21.320665 2017] [core:notice] [pid 1129] AH00052: child pid 14230 exit signal Segmentation fault (11)
[Fri Aug 11 15:00:04.628161 2017] [core:notice] [pid 1129] AH00052: child pid 15305 exit signal Segmentation fault (11)
[Fri Aug 11 15:03:22.905461 2017] [core:notice] [pid 1129] AH00052: child pid 15827 exit signal Segmentation fault (11)
[Fri Aug 11 15:05:01.045575 2017] [core:notice] [pid 1129] AH00052: child pid 17230 exit signal Segmentation fault (11)
[Fri Aug 11 15:05:34.091106 2017] [core:notice] [pid 1129] AH00052: child pid 16727 exit signal Segmentation fault (11)
[Fri Aug 11 15:07:53.282893 2017] [core:notice] [pid 1129] AH00052: child pid 17203 exit signal Segmentation fault (11)
[Fri Aug 11 15:09:03.388137 2017] [core:notice] [pid 1129] AH00052: child pid 18321 exit signal Segmentation fault (11)
[Fri Aug 11 15:10:54.547715 2017] [core:notice] [pid 1129] AH00052: child pid 18405 exit signal Segmentation fault (11)
[Fri Aug 11 15:16:45.052236 2017] [core:notice] [pid 1129] AH00052: child pid 19936 exit signal Segmentation fault (11)
zend_mm_heap corrupted
[Fri Aug 11 15:20:46.404124 2017] [core:notice] [pid 1129] AH00052: child pid 21378 exit signal Segmentation fault (11)
[Fri Aug 11 15:20:52.415301 2017] [core:notice] [pid 1129] AH00052: child pid 21346 exit signal Segmentation fault (11)
[Fri Aug 11 15:21:34.473730 2017] [core:notice] [pid 1129] AH00052: child pid 21061 exit signal Segmentation fault (11)
zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted


Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2017-09-15 15:12 UTC] nsorosac at axome dot com
Same OS and PHP versions here.

We are also facing 502 status responses from NGINX when PHP-FPM executes script with SOAP requests, with WSDL cache on disk + memory.

Backtrace:
----------

Reading symbols from /usr/sbin/php-fpm7.1...(no debugging symbols found)...done.
[New LWP 29727]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
Core was generated by `php-fpm: pool www                                                            '.
Program terminated with signal SIGSEGV, Segmentation fault.
#0  0x00000b97307be66f in zend_hash_destroy ()
(gdb) backtrace full
#0  0x00000b97307be66f in zend_hash_destroy ()
No symbol table info available.
#1  0x00007a803f7d0a71 in delete_type_persistent () from /usr/lib/php/20160303/soap.so
No symbol table info available.
#2  0x00000b97307be5c5 in zend_hash_destroy ()
No symbol table info available.
#3  0x00007a803f7d7931 in ?? () from /usr/lib/php/20160303/soap.so
No symbol table info available.
#4  0x00007a803f7d799f in ?? () from /usr/lib/php/20160303/soap.so
No symbol table info available.
#5  0x00000b97307be666 in zend_hash_destroy ()
No symbol table info available.
#6  0x00007a803f7a875b in zm_shutdown_soap () from /usr/lib/php/20160303/soap.so
No symbol table info available.
#7  0x00000b97307b39f7 in module_destructor ()
No symbol table info available.
#8  0x00000b97307ac0ec in ?? ()
No symbol table info available.
#9  0x00000b97307bf139 in zend_hash_graceful_reverse_destroy ()
No symbol table info available.
#10 0x00000b97307acc95 in zend_shutdown ()
No symbol table info available.
#11 0x00000b973074958b in php_module_shutdown ()
No symbol table info available.
#12 0x00000b9730627a53 in main ()
No symbol table info available.
 [2018-01-01 20:37 UTC] nikic@php.net
-Status: Open +Status: Duplicate
 [2018-01-01 20:37 UTC] nikic@php.net
Based on the backtrace this is very likely the same issue as bug #75502, which is now fixed.
 [2018-01-02 08:00 UTC] willem at mollie dot nl
Thanks, great to see the soap module getting some love. 

Could you have a look at #69417 too which even contains a patch.
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Thu Nov 21 16:01:29 2024 UTC