PHP :: Bug #34093 :: Apache child segfaults(11) in strlen

Bug #34093	Apache child segfaults(11) in strlen
Submitted:	2005-08-12 07:37 UTC	Modified:	2005-08-15 15:31 UTC
From:	alexiadeath at hotmail dot com	Assigned:
Status:	Closed	Package:	Reproducible crash
PHP Version:	5.0.4	OS:	Slackware Linux 10.1
Private report:	No	CVE-ID:	None

View Add Comment Developer Edit

[2005-08-12 07:37 UTC] alexiadeath at hotmail dot com

Description:
------------
in php 5.0.4 with either apache 2 or apache 1.3 (there is no difference) click on phpMyadmin Browse tab generates a partial page with segfault(11) in apache log. Failed to find the exact cause because the moment of segfaulting DEPENDS on minor changes in the code for example an added echo.

With php 4.4 nothing like this happens and page loads properly.

on windows with apache2 and php 5.0.5dev the problem simply does not exist. Cant try the latest dev because of the disc space limitations of my box. no room for compile tools. all items involeved are a maching set of precompiled packages from linuxpackages site.



Reproduce code:
---------------
In phpMyadmin every time on clicking browse. go try.

Expected result:
----------------
phpMyadmin page with database results.

Actual result:
--------------
page with just tab headers.
GDB backtrace follows:

(gdb) bt
#0  0x403c623b in strlen () from /lib/libc.so.6
#1  0x407c2128 in add_property_string_ex () from /usr/lib/apache2/libphp5.so
#2  0x406803fb in zif_mysql_fetch_field () from /usr/lib/apache2/libphp5.so
#3  0x407e40b8 in zend_do_fcall_common_helper () from /usr/lib/apache2/libphp5.so
#4  0x407e422a in zend_do_fcall_handler () from /usr/lib/apache2/libphp5.so
#5  0x407e09a5 in execute () from /usr/lib/apache2/libphp5.so
#6  0x407e3e7f in zend_do_fcall_common_helper () from /usr/lib/apache2/libphp5.so
#7  0x407e416a in zend_do_fcall_by_name_handler () from /usr/lib/apache2/libphp5.so
#8  0x407e09a5 in execute () from /usr/lib/apache2/libphp5.so
#9  0x407bfc6d in zend_execute_scripts () from /usr/lib/apache2/libphp5.so
#10 0x40786d6f in php_execute_script () from /usr/lib/apache2/libphp5.so
#11 0x407ebb9c in php_handler () from /usr/lib/apache2/libphp5.so
#12 0x08067fa6 in ap_run_handler ()
#13 0x08068578 in ap_invoke_handler ()
#14 0x080654af in ap_process_request ()
#15 0x08060d49 in ap_process_http_connection ()
#16 0x08071046 in ap_run_process_connection ()
#17 0x08066958 in child_main ()
#18 0x08066b0e in make_child ()
#19 0x08066b7f in startup_children ()
#20 0x080672f9 in ap_mpm_run ()
#21 0x0806ca88 in main ()

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[2005-08-12 08:50 UTC] derick@php.net

Thank you for this bug report. To properly diagnose the problem, we
need a short but complete example script to be able to reproduce
this bug ourselves. 

A proper reproducing script starts with <?php and ends with ?>,
is max. 10-20 lines long and does not require any external 
resources such as databases, etc.

If possible, make the script source available online and provide
an URL to it here. Try to avoid embedding huge scripts into the report.

[2005-08-12 08:57 UTC] alexiadeath at hotmail dot com

point: I cant give the reproduction code because Im not able to isolate it. commenting bits out just moves the pont of segfaulting. different amounts of page get shown. segfault happens in require statment of sql.php of file tbl_properties_links.php

during or right after calling PMA_printTab function in common.php . good luck figuring this one out. i cant find a bug that floats around at will.

[2005-08-12 09:21 UTC] derick@php.net

Then ask the mysqladmin people to do that. We *require* a short reproducing script - we're not willing to debug just any application out there.

[2005-08-12 12:00 UTC] tony2001@php.net

Please try using this CVS snapshot:

  http://snaps.php.net/php5-STABLE-latest.tar.gz
 
For Windows:
 
  http://snaps.php.net/win32/php5.0-win32-latest.zip

Please try latest snapshot before that.

[2005-08-15 15:31 UTC] alexiadeath at hotmail dot com

Its an issue with t1lib versioning showing up in an odd place and claimed to be the fault of the config script. Works with t1lib 5.0.1 but not with t1lib 1.3.1.

If you cant run apache with a fault t1lib.so.5 cannot be found linking it to t1lib.so.1.3.1 IS NOT a solution. its the cause of issues like this.

Learn from my mistakes.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Thu May 09 23:01:32 2024 UTC