php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #28110 Interpreter crashes reproducibly (2)
Submitted: 2004-04-22 18:42 UTC Modified: 2004-11-08 12:31 UTC
Votes:7
Avg. Score:4.7 ± 0.7
Reproduced:6 of 6 (100.0%)
Same Version:0 (0.0%)
Same OS:3 (50.0%)
From: cpuidle at gmx dot de Assigned:
Status: Closed Package: Reproducible crash
PHP Version: 5CVS-2004-04-22 (dev) OS: WinXP SP1
Private report: No CVE-ID: None
View Add Comment Developer Edit
Welcome! If you don't have a Git account, you can't do anything here.
You can add a comment by following this link or if you reported this bug, you can edit this bug over here.
(description)
Block user comment
Status: Assign to:
Package:
Bug Type:
Summary:
From: cpuidle at gmx dot de
New email:
PHP Version: OS:

 

 [2004-04-22 18:42 UTC] cpuidle at gmx dot de
Description:
------------
Apache crashes reporducibly with the following long file entry:

Parent: child process exited with status 3221225477 -- Restarting

Same thing happens with Apache 2.0.48 and PHP5RC1.

This happens without client firewall being installed.


Reproduce code:
---------------
The code to reproduce is part of the code that smarty generates from one of my templates:

<?php 

	echo $this->_plugins['function']['counter'][0](array('start' => 0,'print' => false,'name' => 'videocount'), $this) ; 

?>

Even if the code were wrong- it shouldn't crash apache, right?

Expected result:
----------------
no crash...


Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2004-04-22 18:43 UTC] cpuidle at gmx dot de
Not sure the two are related, but I've also found bug 28108, please cross-check.
 [2004-06-03 14:27 UTC] messju at lammfellpuschen dot de
event simpler code that reproduces this crash: 
<?php 
 
function foo() { 
    $obj->plugins['function']['counter'][0](); 
} 
 
?> 
 
note: the function doesn't need to be called. it already 
crashes during parsing. 
 
with php-5.0.0RC3RC2 on linux i get: 
(gdb) r 
Starting 
program: /mnt/debbie/home/messju/build/php-5.0.0RC3RC2/sapi/cli/php /usr/local/httpd/messju/foo.php 
[Thread debugging using libthread_db enabled] 
[New Thread 1078702752 (LWP 14190)] 
 
Program received signal SIGSEGV, Segmentation fault. 
[Switching to Thread 1078702752 (LWP 14190)] 
0x08207bb3 in zend_binary_strcasecmp (s1=0x0, len1=7, 
s2=0x83ad53c "__clone", len2=7) 
    at ctype.h:192 
192     { 
(gdb) bt 
#0  0x08207bb3 in zend_binary_strcasecmp (s1=0x0, len1=7, 
s2=0x83ad53c "__clone", len2=7) 
    at ctype.h:192 
#1  0x081f7b0f in zend_do_begin_method_call 
(left_bracket=0xbfffc0bc) 
    at /home/messju/debbie/build/php-5.0.0RC3RC2/Zend/zend_compile.c:1203 
#2  0x081ed16b in zendparse () at 
Zend/zend_language_parser.c:3229 
#3  0x081ee671 in compile_file (file_handle=0x2, type=2) 
at Zend/zend_language_scanner.c:3141 
#4  0x0820a6bb in zend_execute_scripts (type=8, 
retval=0x0, file_count=3) 
    at /home/messju/debbie/build/php-5.0.0RC3RC2/Zend/zend.c:1057 
#5  0x081d049f in php_execute_script 
(primary_file=0xbffff4d0) 
    at /home/messju/debbie/build/php-5.0.0RC3RC2/main/main.c:1627 
#6  0x082350ae in main (argc=2, argv=0xbffff594) 
    at /home/messju/debbie/build/php-5.0.0RC3RC2/sapi/cli/php_cli.c:943
 [2004-06-28 23:20 UTC] chris at leftbrained dot org
I, too, am getting that same error message in the apache error log, but I can duplicate it differently.

Every call to bcmul(), I tried various values, and various values for bcscale), where either of the arguments is 0 will produce this error. 

$fStepX = '0.00750000000000000000';
bcmul($fStepX,0);

The system:
PHP 5.0, RC3 (Module, Pre-compiled , downloaded from php.net[Hurricane Electric mirror])
Windows 2000 Pro, SP4 [5.00.2195]
Apache 2.0.49 (Pre-compiled, downloaded from apache.org, No SSL)

Error message in Apache error log:
[Mon Jun 28 13:52:23 2004] [notice] Parent: child process exited with status 3221225477 -- Restarting.
[Mon Jun 28 13:52:23 2004] [notice] Parent: Created child process 2000

I wasn't sure whether I should give this a new bug report, or tack it on to one of the exisitings ones. I chose this one because it was the only relevant open report I could find.
 [2004-10-11 19:05 UTC] joel at preacherboy dot net
I'm seeing this occur with Apache 2.0.52, PHP 5.0.2, and Windows 2003.

I'm not doing anything particularly special in the PHP. Most of the hosted files are 100% HTML going through PHP.
 [2004-10-12 09:36 UTC] jorton@php.net
This has nothing to do with Apache since it's a crash in Zend.
 [2004-11-08 12:32 UTC] john@php.net
This bug has been fixed in CVS.

Snapshots of the sources are packaged every three hours; this change
will be in the next snapshot. You can grab the snapshot at
http://snaps.php.net/.
 
Thank you for the report, and for helping us make PHP better.


 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Thu Mar 28 23:01:26 2024 UTC