php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #43295 php-cgi crash
Submitted: 2007-11-14 14:41 UTC Modified: 2007-12-03 16:19 UTC
Votes:36
Avg. Score:4.8 ± 0.7
Reproduced:32 of 33 (97.0%)
Same Version:31 (96.9%)
Same OS:5 (15.6%)
From: pioklo at serveradmin dot pl Assigned: dmitry (profile)
Status: Closed Package: CGI/CLI related
PHP Version: 5.2.5 OS: Debian 4.0 kernel 2.6.23.1
Private report: No CVE-ID: None
 [2007-11-14 14:41 UTC] pioklo at serveradmin dot pl
Description:
------------
Hello There !

I have installed lighttpd and php-cgi as backend.
i started 1500 process php-cgi trought spawn-cgi from lighttpd
Everything is ok but when more connections is  coming i mean more than 1k per second i have problem with PHP
php proces crashed every 1-2 minutes..

ns78:/tmp/phpcore# ls -la
total 68004
drwxr-xr-x 2 apache apache     4096 2007-11-14 12:54 .
drwxrwxrwt 6 root   root       4096 2007-11-14 14:00 ..
-rw------- 1 apache apache 69554176 2007-11-14 15:23 core
ns78:/tmp/phpcore# gdb /usr/local/bin/php-cgi  core
GNU gdb 6.4.90-debian
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "i486-linux-gnu"...Using host libthread_db library "/lib/tls/libthread_db.so.1".


warning: Can't read pathname for load map: Input/output error.
Reading symbols from /lib/tls/libcrypt.so.1...done.
Loaded symbols for /lib/tls/libcrypt.so.1
Reading symbols from /lib/tls/librt.so.1...done.
Loaded symbols for /lib/tls/librt.so.1
Reading symbols from /usr/local/mysql/lib/mysql/libmysqlclient.so.15...done.
Loaded symbols for /usr/local/mysql/lib/mysql/libmysqlclient.so.15
Reading symbols from /usr/lib/libz.so.1...done.
Loaded symbols for /usr/lib/libz.so.1
Reading symbols from /usr/local/lib/libiconv.so.2...done.
Loaded symbols for /usr/local/lib/libiconv.so.2
Reading symbols from /usr/local/lib/libfreetype.so.6...done.
Loaded symbols for /usr/local/lib/libfreetype.so.6
Reading symbols from /usr/local/lib/libpng.so.3...done.
Loaded symbols for /usr/local/lib/libpng.so.3
Reading symbols from /lib/tls/libresolv.so.2...done.
Loaded symbols for /lib/tls/libresolv.so.2
Reading symbols from /lib/tls/libm.so.6...done.
Loaded symbols for /lib/tls/libm.so.6
Reading symbols from /lib/tls/libdl.so.2...done.
Loaded symbols for /lib/tls/libdl.so.2
Reading symbols from /lib/tls/libnsl.so.1...done.
Loaded symbols for /lib/tls/libnsl.so.1
Reading symbols from /usr/lib/libxml2.so.2...done.
Loaded symbols for /usr/lib/libxml2.so.2
Reading symbols from /lib/tls/libc.so.6...done.
Loaded symbols for /lib/tls/libc.so.6
Reading symbols from /lib/tls/libpthread.so.0...done.
Loaded symbols for /lib/tls/libpthread.so.0
Reading symbols from /lib/ld-linux.so.2...done.
Loaded symbols for /lib/ld-linux.so.2
Reading symbols from /usr/local/lib/php/extensions/no-debug-non-zts-20060613/xcache.so...done.
Loaded symbols for /usr/local/lib/php/extensions/no-debug-non-zts-20060613/xcache.so
Reading symbols from /usr/local/lib/php/extensions/no-debug-non-zts-20060613/fileinfo.so...done.
Loaded symbols for /usr/local/lib/php/extensions/no-debug-non-zts-20060613/fileinfo.so
Reading symbols from /usr/lib/libmagic.so.1...done.
Loaded symbols for /usr/lib/libmagic.so.1
Reading symbols from /lib/tls/libnss_files.so.2...done.
Loaded symbols for /lib/tls/libnss_files.so.2
Reading symbols from /lib/tls/libnss_dns.so.2...done.
Loaded symbols for /lib/tls/libnss_dns.so.2
Core was generated by `/usr/local/bin/php-cgi'.
Program terminated with signal 11, Segmentation fault.
#0  0x082e28cc in zend_cleanup_class_data (pce=0x86b0773) at /root/root/php-5.2.5/Zend/zend_opcode.c:153
153             if ((*pce)->type == ZEND_USER_CLASS) {
(gdb) bt
#0  0x082e28cc in zend_cleanup_class_data (pce=0x86b0773) at /root/root/php-5.2.5/Zend/zend_opcode.c:153
#1  0x082f4b6c in zend_hash_apply (ht=0x85fe3e8, apply_func=0x82e28c0 <zend_cleanup_class_data>)
    at /root/root/php-5.2.5/Zend/zend_hash.c:673
#2  0x082df3b9 in shutdown_executor () at /root/root/php-5.2.5/Zend/zend_execute_API.c:281
#3  0x082eb18d in zend_deactivate () at /root/root/php-5.2.5/Zend/zend.c:860
#4  0x082ac129 in php_request_shutdown (dummy=0x0) at /root/root/php-5.2.5/main/main.c:1485
#5  0x083666b7 in main (argc=1, argv=0xbfdbe404) at /root/root/php-5.2.5/sapi/cgi/cgi_main.c:1972
(gdb) up
#1  0x082f4b6c in zend_hash_apply (ht=0x85fe3e8, apply_func=0x82e28c0 <zend_cleanup_class_data>)
    at /root/root/php-5.2.5/Zend/zend_hash.c:673
673                     int result = apply_func(p->pData TSRMLS_CC);
(gdb) print *p
$1 = {h = 726206240, nKeyLength = 8, pData = 0x86b0773, pDataPtr = 0x86b4718, pListNext = 0x86b0774, pListLast = 0x86b2fc0,
  pNext = 0x769, pLast = 0x0, arKey = "l"}
(gdb) print (char *)&*p->arKey
$2 = 0x86b4ae0 "l\amattr"
(gdb)


In lighttpd logs:

mod_proxy_backend_fastcgi.c.484: (trace) 8192 / 0 -> 8192
mod_proxy_backend_fastcgi.c.487: (error) looks like the fastcgi-backend (/gry.php?co=1&co2=play&idm=1363) terminated before it sent a FIN packet

I dont know this is php bug or hardware issue :(

Every crash produce different core  :
ns78:/tmp/phpcore# ls -al
total 72196
drwxr-xr-x 2 apache apache     4096 2007-11-14 12:54 .
drwxrwxrwt 6 root   root       4096 2007-11-14 14:00 ..
-rw------- 1 apache apache 73842688 2007-11-14 15:28 core
ns78:/tmp/phpcore# gdb /usr/local/bin/php-cgi  core
GNU gdb 6.4.90-debian
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "i486-linux-gnu"...Using host libthread_db library "/lib/tls/libthread_db.so.1".


warning: Can't read pathname for load map: Input/output error.
Reading symbols from /lib/tls/libcrypt.so.1...done.
Loaded symbols for /lib/tls/libcrypt.so.1
Reading symbols from /lib/tls/librt.so.1...done.
Loaded symbols for /lib/tls/librt.so.1
Reading symbols from /usr/local/mysql/lib/mysql/libmysqlclient.so.15...done.
Loaded symbols for /usr/local/mysql/lib/mysql/libmysqlclient.so.15
Reading symbols from /usr/lib/libz.so.1...done.
Loaded symbols for /usr/lib/libz.so.1
Reading symbols from /usr/local/lib/libiconv.so.2...done.
Loaded symbols for /usr/local/lib/libiconv.so.2
Reading symbols from /usr/local/lib/libfreetype.so.6...done.
Loaded symbols for /usr/local/lib/libfreetype.so.6
Reading symbols from /usr/local/lib/libpng.so.3...done.
Loaded symbols for /usr/local/lib/libpng.so.3
Reading symbols from /lib/tls/libresolv.so.2...done.
Loaded symbols for /lib/tls/libresolv.so.2
Reading symbols from /lib/tls/libm.so.6...done.
Loaded symbols for /lib/tls/libm.so.6
Reading symbols from /lib/tls/libdl.so.2...done.
Loaded symbols for /lib/tls/libdl.so.2
Reading symbols from /lib/tls/libnsl.so.1...done.
Loaded symbols for /lib/tls/libnsl.so.1
Reading symbols from /usr/lib/libxml2.so.2...done.
Loaded symbols for /usr/lib/libxml2.so.2
Reading symbols from /lib/tls/libc.so.6...done.
Loaded symbols for /lib/tls/libc.so.6
Reading symbols from /lib/tls/libpthread.so.0...done.
Loaded symbols for /lib/tls/libpthread.so.0
Reading symbols from /lib/ld-linux.so.2...done.
Loaded symbols for /lib/ld-linux.so.2
Reading symbols from /usr/local/lib/php/extensions/no-debug-non-zts-20060613/xcache.so...done.
Loaded symbols for /usr/local/lib/php/extensions/no-debug-non-zts-20060613/xcache.so
Reading symbols from /usr/local/lib/php/extensions/no-debug-non-zts-20060613/fileinfo.so...done.
Loaded symbols for /usr/local/lib/php/extensions/no-debug-non-zts-20060613/fileinfo.so
Reading symbols from /usr/lib/libmagic.so.1...done.
Loaded symbols for /usr/lib/libmagic.so.1
Reading symbols from /lib/tls/libnss_files.so.2...done.
Loaded symbols for /lib/tls/libnss_files.so.2
Reading symbols from /lib/tls/libnss_dns.so.2...done.
Loaded symbols for /lib/tls/libnss_dns.so.2
Core was generated by `/usr/local/bin/php-cgi'.
Program terminated with signal 11, Segmentation fault.
#0  0x082d1f77 in _zend_mm_free_int (heap=0x85fe120, p=<value optimized out>) at /root/root/php-5.2.5/Zend/zend_alloc.c:822
822                     if (UNEXPECTED(prev->next_free_block != mm_block) || UNEXPECTED(next->prev_free_block != mm_block)) {
(gdb) bt full
#0  0x082d1f77 in _zend_mm_free_int (heap=0x85fe120, p=<value optimized out>) at /root/root/php-5.2.5/Zend/zend_alloc.c:822
        prev = <value optimized out>
        next = <value optimized out>
        mm_block = (zend_mm_block *) 0xb3680110
        next_block = (zend_mm_block *) 0xb3680880
        size = 1904
#1  0x080fd722 in php_gd_gdImageDestroy (im=0xb7a160d8) at /root/root/php-5.2.5/ext/gd/libgd/gd.c:234
        i = 651
#2  0x082f75d2 in list_entry_destructor (ptr=0xb36abf48) at /root/root/php-5.2.5/Zend/zend_list.c:184
        ld = (zend_rsrc_list_dtors_entry *) 0x86a5128
#3  0x082f5aee in zend_hash_del_key_or_index (ht=0x85fd180, arKey=<value optimized out>, nKeyLength=140759248, h=16, flag=1)
    at /root/root/php-5.2.5/Zend/zend_hash.c:497
        p = (Bucket *) 0xb366af48
#4  0x082f7817 in _zend_list_delete (id=16) at /root/root/php-5.2.5/Zend/zend_list.c:58
        le = (zend_rsrc_list_entry *) 0xb36abf48
#5  0x080efa4e in zif_imagedestroy (ht=1, return_value=0xb36ecf7c, return_value_ptr=0x0, this_ptr=0x0, return_value_used=0)
    at /root/root/php-5.2.5/ext/gd/gd.c:3044
        IM = (zval **) 0xb79f7914
#6  0x08309582 in zend_do_fcall_common_helper_SPEC (execute_data=0xbfdb4220)
    at /root/root/php-5.2.5/Zend/zend_vm_execute.h:200
        class_name = <value optimized out>
        i = 1
        p = <value optimized out>
        arg_count = 0
        return_reference = 0 '\0'
        opline = (zend_op *) 0xb4b0d7b8
        original_return_value = <value optimized out>
        current_scope = (zend_class_entry *) 0x0
        current_this = (zval *) 0x0
        should_change_scope = 0 '\0'
#7  0x083085b8 in execute (op_array=0x8712a18) at /root/root/php-5.2.5/Zend/zend_vm_execute.h:92
        execute_data = {opline = 0xb4b0d7b8, function_state = {function_symbol_table = 0xb7a08718, function = 0x863d0d0,
    reserved = {0xb4aee300, 0xb7a02ed0, 0xbfdb4250, 0x11}}, fbc = 0x0, op_array = 0x8712a18, object = 0x0, Ts = 0xbfdb4120,
  CVs = 0xbfdb40f0, original_in_execution = 1 '\001', symbol_table = 0xb7a0557c, prev_execute_data = 0xbfdb9e70,
  old_error_reporting = 0x0}
#8  0x08308fe8 in zend_do_fcall_common_helper_SPEC (execute_data=0xbfdb9e70)
    at /root/root/php-5.2.5/Zend/zend_vm_execute.h:234
        opline = (zend_op *) 0xb4aeeaa0
        original_return_value = (zval **) 0xbfdb9f04
        current_scope = (zend_class_entry *) 0x0
        current_this = (zval *) 0x0
        should_change_scope = 1 '\001'
#9  0x083085b8 in execute (op_array=0xb7a0387c) at /root/root/php-5.2.5/Zend/zend_vm_execute.h:92
        execute_data = {opline = 0xb4aeeaa0, function_state = {function_symbol_table = 0xb7a0557c, function = 0x8712a18,
    reserved = {0x82e225a, 0xb7a03a14, 0xbfdbe300, 0x0}}, fbc = 0x8712a18, op_array = 0xb7a0387c, object = 0x0,
  Ts = 0xbfdb4470, CVs = 0xbfdb4330, original_in_execution = 0 '\0', symbol_table = 0x85fd0f0, prev_execute_data = 0x0,
---Type <return> to continue, or q <return> to quit---
  old_error_reporting = 0xbfdb5fa0}
#10 0x082eaf44 in zend_execute_scripts (type=8, retval=<value optimized out>, file_count=3)
    at /root/root/php-5.2.5/Zend/zend.c:1134
        retval2 = (zval *) 0x0
        old_exception = (zval *) 0x0
        files = 0xbfdb9f34 ""
        i = 1
        file_handle = <value optimized out>
        orig_op_array = (zend_op_array *) 0x0
        orig_retval_ptr_ptr = (zval **) 0x0
        local_retval = (zval *) 0x0
#11 0x082ab920 in php_execute_script (primary_file=0xbfdbe300) at /root/root/php-5.2.5/main/main.c:2004
        realfile = "\000\000\000\000\001\000\000\000&#313;\025&#345;&#380;\034U\215&#281;\204&#379;&#368;&#380;&#313;X?&#729;\000\232\231&#350;\000~8&#350;Cy&#381;?!4'\025K%&#357;\235&#270;C&#355;&#347;*?V\217p?*y{dmSKO/:\220ne\b\237?&#380;&#318;\215&#350;qk&#346;Y&#368;&#268;^5\035??\237&#378;c&#355;&#350;&#314;v&#366;H&#366;d_N8Q\231\235&#382;(?3&#729;\0005?\tZ@_&#377;\223J\236?&#258;&#367;Z0qB1&#728;\216\221&#327;s\032(&#369;(?&#380;&#369;,U\n?c?\020?#Jx&#731;&#353;?&#355;W,*&#350;&#321;&#272;z&#282;&#378;&#366;G?&#366;&#355;*b&#381;&#341;\205\017&#377;&#355;\227?&#731;&#323;&#328;&#313;\\8&#313;\b\202\0267K_?o&#313;LU`\2221&#351;D"...
        prepend_file_p = (zend_file_handle *) 0x0
        append_file_p = <value optimized out>
        prepend_file = {type = 0 '\0', filename = 0x0, opened_path = 0x0, handle = {fd = 0, fp = 0x0, stream = {
      handle = 0x0, reader = 0, closer = 0, fteller = 0, interactive = 0}}, free_filename = 0 '\0'}
        append_file = {type = 0 '\0', filename = 0x0, opened_path = 0x0, handle = {fd = 0, fp = 0x0, stream = {
      handle = 0x0, reader = 0, closer = 0, fteller = 0, interactive = 0}}, free_filename = 0 '\0'}
        old_cwd = 0xbfdb9f40 ""
        retval = 0
#12 0x08366f4f in main (argc=1, argv=0xbfdbe404) at /root/root/php-5.2.5/sapi/cgi/cgi_main.c:1909
        l = <value optimized out>
        path_translated_len = 0
        path_translated = <value optimized out>
        free_query_string = 0
        exit_status = 0
        cgi = <value optimized out>
        c = <value optimized out>
        i = <value optimized out>
        len = <value optimized out>
        file_handle = {type = 2 '\002',
  filename = 0xb79f7020 "/home/admin/domains/poszkole.pl/public_html/beta/galerie.php", opened_path = 0x0, handle = {
    fd = 141686200, fp = 0x871f5b8, stream = {handle = 0x871f5b8, reader = 0xbfdbe3b0, closer = 0xb7f3c4f8,
      fteller = 0x806c723, interactive = 24641422}}, free_filename = 0 '\0'}
        retval = <value optimized out>
        s = 0x87218d8 "136005"
        behavior = 1
        no_headers = 0
        orig_optind = 1
        orig_optarg = 0x0
        script_file = 0x0
        ini_entries_len = 0
        max_requests = 50000
---Type <return> to continue, or q <return> to quit---
        requests = 427
        fastcgi = 1
        bindpath = 0x0
        fcgi_fd = <value optimized out>
        request = {listen_socket = 0, fd = 7, id = 1, keep = 1, in_len = 0, in_pad = 0, out_hdr = 0x0,
  out_pos = 0xbfdbc154 "\001\003",
  out_buf = "\001\003\000\001\000\b\000\000\000\000\000\000\000v class=\"bord\"></div>\r\n\t\t\t\t\t\t\t</div>\r\n\t\t\t\t\t\t</div>\r\n\t\t\t\t\r\n\t\t\t\t\t\t<div class=\"middle\">\r\n\t\t\t\t\t\t\t<ul>\r\n\t\t\t\t\t\t\t\t\r\n\t\t\t\t\t\t\t</ul>\r\n\t\t\t\t\t\t</div>\r\n\t\t\t\t\r\n\t\t\t\t\t\t<div class=\"bottom\">\r\n\t\t\t\t\t\t\t<div clas"...,
  reserved = '\0' <repeats 15 times>, env = {nTableSize = 64, nTableMask = 63, nNumOfElements = 33, nNextFreeElement = 0,
    pInternalPointer = 0x8721da0, pListHead = 0x8721da0, pListTail = 0x871dd70, arBuckets = 0x87210c0,
    pDestructor = 0x83631a0 <fcgi_free_var>, persistent = 1 '\001', nApplyCount = 0 '\0', bApplyProtection = 1 '\001'}}
        repeats = 1
        benchmark = 0
        start = {tv_sec = 134802161, tv_usec = -1208762380}
        end = {tv_sec = 140313464, tv_usec = -1076108440}
        status = 0
(gdb)



My config for php
./configure  --enable-fastcgi \
   --enable-discard-path \
      --enable-force-cgi-redirect \
       --with-gd --with-gettext \
 --with-jpeg-dir=/usr/local/lib \
--with-mysql=/usr/local/mysql --with-pear --with-png-dir=/usr/local/lib  \
--with-zlib  \
--enable-ftp --enable-shared --enable-magic-quotes --enable-sockets \
--enable-mbstring \
--enable-exif \
--with-ttf --with-freetype-dir --enable-gd-native-ttf \
--with-iconv=/usr/local


Regards,
Piotr Kloc



Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2007-11-14 19:50 UTC] pioklo at serveradmin dot pl
ns78:~/root/php-5.2.5/sapi/cgi# /usr/local/bin/php-cgi  -m
[PHP Modules]
cgi-fcgi
ctype
date
dom
exif
fileinfo
filter
ftp
gd
gettext
hash
iconv
json
libxml
mbstring
mysql
pcre
PDO
pdo_sqlite
posix
Reflection
session
SimpleXML
sockets
SPL
SQLite
standard
tokenizer
XCache
xml
xmlreader
xmlwriter
zlib

[Zend Modules]
XCache

Segmentation fault (core dumped)


ns78:~/root/php-5.2.5/sapi/cgi# gdb /usr/local/bin/php-cgi core
GNU gdb 6.4.90-debian
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "i486-linux-gnu"...Using host libthread_db library "/lib/tls/libthread_db.so.1".


warning: Can't read pathname for load map: Input/output error.
Reading symbols from /lib/tls/libcrypt.so.1...done.
Loaded symbols for /lib/tls/libcrypt.so.1
Reading symbols from /lib/tls/librt.so.1...done.
Loaded symbols for /lib/tls/librt.so.1
Reading symbols from /usr/local/mysql/lib/mysql/libmysqlclient.so.15...done.
Loaded symbols for /usr/local/mysql/lib/mysql/libmysqlclient.so.15
Reading symbols from /usr/lib/libz.so.1...done.
Loaded symbols for /usr/lib/libz.so.1
Reading symbols from /usr/local/lib/libiconv.so.2...done.
Loaded symbols for /usr/local/lib/libiconv.so.2
Reading symbols from /usr/local/lib/libfreetype.so.6...done.
Loaded symbols for /usr/local/lib/libfreetype.so.6
Reading symbols from /usr/local/lib/libpng.so.3...done.
Loaded symbols for /usr/local/lib/libpng.so.3
Reading symbols from /lib/tls/libresolv.so.2...done.
Loaded symbols for /lib/tls/libresolv.so.2
Reading symbols from /lib/tls/libm.so.6...done.
Loaded symbols for /lib/tls/libm.so.6
Reading symbols from /lib/tls/libdl.so.2...done.
Loaded symbols for /lib/tls/libdl.so.2
Reading symbols from /lib/tls/libnsl.so.1...done.
Loaded symbols for /lib/tls/libnsl.so.1
Reading symbols from /usr/lib/libxml2.so.2...done.
Loaded symbols for /usr/lib/libxml2.so.2
Reading symbols from /lib/tls/libc.so.6...done.
Loaded symbols for /lib/tls/libc.so.6
Reading symbols from /lib/tls/libpthread.so.0...done.
Loaded symbols for /lib/tls/libpthread.so.0
Reading symbols from /lib/ld-linux.so.2...done.
Loaded symbols for /lib/ld-linux.so.2
Reading symbols from /usr/local/lib/php/extensions/no-debug-non-zts-20060613/fileinfo.so...done.
Loaded symbols for /usr/local/lib/php/extensions/no-debug-non-zts-20060613/fileinfo.so
Reading symbols from /usr/lib/libmagic.so.1...done.
Loaded symbols for /usr/lib/libmagic.so.1
Reading symbols from /lib/tls/libnss_files.so.2...done.
Loaded symbols for /lib/tls/libnss_files.so.2
Core was generated by `/usr/local/bin/php-cgi -m'.
Program terminated with signal 11, Segmentation fault.
#0  0xb7978db0 in ?? ()
(gdb) bt full
#0  0xb7978db0 in ?? ()
No symbol table info available.
#1  <signal handler called>
No symbol table info available.
#2  0xb7978e00 in ?? ()
No symbol table info available.
#3  0x082ee8e2 in module_destructor (module=0x86ce280) at /root/root/php-5.2.5/Zend/zend_API.c:1916
No locals.
#4  0x082f4967 in zend_hash_apply_deleter (ht=0x85fd2e0, p=0x86ce250) at /root/root/php-5.2.5/Zend/zend_hash.c:611
        retval = <value optimized out>
#5  0x082f4be7 in zend_hash_graceful_reverse_destroy (ht=0x85fd2e0) at /root/root/php-5.2.5/Zend/zend_hash.c:646
        p = (Bucket *) 0xb7978e00
#6  0x082eb3ae in zend_shutdown () at /root/root/php-5.2.5/Zend/zend.c:733
No locals.
#7  0x082aba6f in php_module_shutdown () at /root/root/php-5.2.5/main/main.c:1887
No locals.
#8  0x08365bdf in main (argc=2, argv=0xbff614b4) at /root/root/php-5.2.5/sapi/cgi/cgi_main.c:2055
        sec = <value optimized out>
        usec = <value optimized out>
        free_query_string = 0
        exit_status = 0
        cgi = 0
        c = <value optimized out>
        i = <value optimized out>
        len = <value optimized out>
        file_handle = {type = 0 '\0', filename = 0x0, opened_path = 0x0, handle = {fd = 0, fp = 0x0, stream = {
      handle = 0x0, reader = 0xbff61460, closer = 0xb7ff34f8, fteller = 0x806c723, interactive = 24641422}},
  free_filename = 0 '\0'}
        retval = <value optimized out>
        s = 0x0
        behavior = 1
        no_headers = 0
        orig_optind = 1
        orig_optarg = 0x0
        script_file = 0x0
        ini_entries_len = 0
        max_requests = 500
        requests = 0
        fastcgi = 0
        bindpath = 0x0
        fcgi_fd = <value optimized out>
        request = {listen_socket = 0, fd = 0, id = 0, keep = 0, in_len = 0, in_pad = 0, out_hdr = 0x0, out_pos = 0x0,
  out_buf = '\0' <repeats 4612 times>, "\200\002?&#711;(\004?&#380;i\220&#355;&#711;&#270;\024&#379;&#711;\214\002?&#711;?/&#729;&#711;&#341;1&#729;&#711;\000\000\000\000?\006?&#380;\2346&#355;&#711;&#313;\024&#379;&#711;?V?&#711;", '\0' <repeats 16 times>, "&#270;\024&#379;&#711;\000\000\000\000 0&#729;&#711;", '\0' <repeats 14 times>, "?&#711;", '\0' <repeats 16 times>, "?V?&#711;", '\0' <repeats 24 times>, "\200\002?&#711;?\004?&#380;i\220&#355;&#711;\223\032&#261;&#711;\214\002?&#711;?/&#729;&#711;&#341;1&#729;&#711;\000\000\000\0000\a?&#380;\2346&#355;&#711;", '\0' <repeats 24 times>, "\223\032&#261;&#711;\000\000\000\000 0&#729;&#711;", '\0' <repeats 12 times>, "??&#366;&#711;", '\0' <repeats 40 times>...,
---Type <return> to continue, or q <return> to quit---
  reserved = "-smp-19102007-1", env = {nTableSize = 0, nTableMask = 0, nNumOfElements = 0, nNextFreeElement = 0,
    pInternalPointer = 0x0, pListHead = 0x0, pListTail = 0x0, arBuckets = 0x0, pDestructor = 0x23000000,
    persistent = 49 '1', nApplyCount = 32 ' ', bApplyProtection = 83 'S'}}
        repeats = 1
        benchmark = 0
        start = {tv_sec = 134802161, tv_usec = -1208012812}
        end = {tv_sec = 140313464, tv_usec = -1074392040}
        status = 0
(gdb) up
#1  <signal handler called>
(gdb)
#2  0xb7978e00 in ?? ()
(gdb)
#3  0x082ee8e2 in module_destructor (module=0x86ce280) at /root/root/php-5.2.5/Zend/zend_API.c:1916
1916                    module->module_shutdown_func(module->type, module->module_number TSRMLS_CC);
(gdb)
#4  0x082f4967 in zend_hash_apply_deleter (ht=0x85fd2e0, p=0x86ce250) at /root/root/php-5.2.5/Zend/zend_hash.c:611
611                     ht->pDestructor(p->pData);
(gdb)
#5  0x082f4be7 in zend_hash_graceful_reverse_destroy (ht=0x85fd2e0) at /root/root/php-5.2.5/Zend/zend_hash.c:646
646                     zend_hash_apply_deleter(ht, p);
(gdb)
#6  0x082eb3ae in zend_shutdown () at /root/root/php-5.2.5/Zend/zend.c:733
733             zend_hash_graceful_reverse_destroy(&module_registry);
(gdb)
#7  0x082aba6f in php_module_shutdown () at /root/root/php-5.2.5/main/main.c:1887
1887            zend_shutdown(TSRMLS_C);
(gdb)
#8  0x08365bdf in main (argc=2, argv=0xbff614b4) at /root/root/php-5.2.5/sapi/cgi/cgi_main.c:2055
2055            php_module_shutdown(TSRMLS_C);
(gdb)
Initial frame selected; you cannot go up.
(gdb)


I dont know what is going on
We have replace all RAM on server today..

Regards,
Piotr
 [2007-11-14 23:35 UTC] jani@php.net
First of all: Disable ALL 3rd party shared extensions. (Like xcache for starters) If after that you're still able to reproduce this, generate a clean backtrace.
 [2007-11-17 20:53 UTC] pioklo at serveradmin dot pl
I have disable Xcache  recompile php with --enable-debug

I spawned php process using spawn-fcgi from lighttpd

---------------------------------------
[Sat Nov 17 21:40:49 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x08820bec status:
Invalid pointer: ((size=0x00000000) != (next.prev=0x0000000e))
Invalid pointer: ((prev=0x0000000e) != (prev.size=0x086a56d8))
---------------------------------------
[Sat Nov 17 21:41:02 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x0881dc44 status:
Beginning:      Freed (magic=0x00000010, expected=0x99954317)
    Start:      Overflown (magic=0x914E91A4 instead of 0x3AF0ADC9)
                At least 4 bytes overflown
[Sat Nov 17 21:42:58 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x08861764 status:
Beginning:      Freed (magic=0x00000007, expected=0x99954317)
    Start:      Overflown (magic=0x00000080 instead of 0x3AF0ADC9)
                At least 4 bytes overflown
[Sat Nov 17 21:42:59 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x08824004 status:
Invalid pointer: ((size=0x00000041) != (next.prev=0x086ee1f4))
[Sat Nov 17 21:43:59 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x08822308 status:
Invalid pointer: ((size=0x00000041) != (next.prev=0x00000000))
[Sat Nov 17 21:46:46 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x08822bec status:
Invalid pointer: ((prev=0x000000fc) != (prev.size=0x3af0adc9))
---------------------------------------
[Sat Nov 17 21:47:13 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x08828034 status:
Invalid pointer: ((size=0x0000000a) != (next.prev=0x5a5a5a5a))
[Sat Nov 17 21:47:18 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x08823344 status:
Invalid pointer: ((size=0x0000002d) != (next.prev=0x00000089))
zend_mm_heap corrupted
[Sat Nov 17 21:49:03 2007]  Script:  '/home/admin/domains/poszkole.pl/public_html/beta/gry.php'
---------------------------------------
/root/php-5.2.5/main/SAPI.c(445) : Block 0x0886192c status:
Invalid pointer: ((size=0x000000ac) != (next.prev=0x5a5a5a5a))


Regards,
Piotr
 [2007-11-17 21:46 UTC] pioklo at serveradmin dot pl
Bellow is clean backtrace:
hardware is ok because I have tested this on 5 different servers..

ns79:~# gdb /usr/local/bin/php-cgi /home/admin/domains/poszkole.pl/public_html/beta/core
GNU gdb 6.6.90.20070912-debian
Copyright (C) 2007 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "i486-linux-gnu"...
Using host libthread_db library "/lib/libthread_db.so.1".

warning: Can't read pathname for load map: Input/output error.
Reading symbols from /lib/libcrypt.so.1...done.
Loaded symbols for /lib/libcrypt.so.1
Reading symbols from /lib/librt.so.1...done.
Loaded symbols for /lib/librt.so.1
Reading symbols from /usr/local/mysql/lib/mysql/libmysqlclient.so.15...done.
Loaded symbols for /usr/local/mysql/lib/mysql/libmysqlclient.so.15
Reading symbols from /usr/lib/libz.so.1...done.
Loaded symbols for /usr/lib/libz.so.1
Reading symbols from /usr/local/lib/libiconv.so.2...done.
Loaded symbols for /usr/local/lib/libiconv.so.2
Reading symbols from /usr/local/lib/libfreetype.so.6...done.
Loaded symbols for /usr/local/lib/libfreetype.so.6
Reading symbols from /usr/local/lib/libpng.so.3...done.
Loaded symbols for /usr/local/lib/libpng.so.3
Reading symbols from /lib/libresolv.so.2...done.
Loaded symbols for /lib/libresolv.so.2
Reading symbols from /lib/libm.so.6...done.
Loaded symbols for /lib/libm.so.6
Reading symbols from /lib/libdl.so.2...done.
Loaded symbols for /lib/libdl.so.2
Reading symbols from /lib/libnsl.so.1...done.
Loaded symbols for /lib/libnsl.so.1
Reading symbols from /usr/lib/libxml2.so.2...done.
Loaded symbols for /usr/lib/libxml2.so.2
Reading symbols from /lib/libc.so.6...done.
Loaded symbols for /lib/libc.so.6
Reading symbols from /lib/libpthread.so.0...done.
Loaded symbols for /lib/libpthread.so.0
Reading symbols from /lib/ld-linux.so.2...done.
Loaded symbols for /lib/ld-linux.so.2
Reading symbols from /usr/lib/libnss_db.so.2...done.
Loaded symbols for /usr/lib/libnss_db.so.2
Reading symbols from /lib/libnss_files.so.2...done.
Loaded symbols for /lib/libnss_files.so.2
Reading symbols from /usr/lib/libdb-4.3.so...done.
Loaded symbols for /usr/lib/libdb-4.3.so
Reading symbols from /lib/libnss_dns.so.2...done.
Loaded symbols for /lib/libnss_dns.so.2
Core was generated by `/usr/local/bin/php-cgi -b 80.86.81.87:1026'.
Program terminated with signal 11, Segmentation fault.
#0  0x08391412 in zend_mm_check_ptr (heap=0x86ee138, ptr=0x8820e54, silent=1,
    __zend_filename=0x868d9f7 "/root/php-5.2.5/main/SAPI.c", __zend_lineno=445, __zend_orig_filename=0x0,
    __zend_orig_lineno=0) at /root/php-5.2.5/Zend/zend_alloc.c:1276
1276            if (p->info._size != ZEND_MM_NEXT_BLOCK(p)->info._prev) {
(gdb) bt full
#0  0x08391412 in zend_mm_check_ptr (heap=0x86ee138, ptr=0x8820e54, silent=1,
    __zend_filename=0x868d9f7 "/root/php-5.2.5/main/SAPI.c", __zend_lineno=445, __zend_orig_filename=0x0,
    __zend_orig_lineno=0) at /root/php-5.2.5/Zend/zend_alloc.c:1276
        p = (zend_mm_block *) 0x8820e2c
        no_cache_notice = 0
        had_problems = 0
        valid_beginning = 1
#1  0x08392961 in _zend_mm_free_int (heap=0x86ee138, p=0x8820e54, __zend_filename=0x868d9f7 "/root/php-5.2.5/main/SAPI.c",
    __zend_lineno=445, __zend_orig_filename=0x0, __zend_orig_lineno=0) at /root/php-5.2.5/Zend/zend_alloc.c:1909
        mm_block = (zend_mm_block *) 0xcf0
        next_block = (zend_mm_block *) 0x1
        size = 3214980088
#2  0x0839396a in _efree (ptr=0x8820e54, __zend_filename=0x868d9f7 "/root/php-5.2.5/main/SAPI.c", __zend_lineno=445,
    __zend_orig_filename=0x0, __zend_orig_lineno=0) at /root/php-5.2.5/Zend/zend_alloc.c:2277
No locals.
#3  0x08366c4a in sapi_deactivate () at /root/php-5.2.5/main/SAPI.c:445
No locals.
#4  0x0835f207 in php_request_shutdown (dummy=0x0) at /root/php-5.2.5/main/main.c:1494
        __orig_bailout = (jmp_buf *) 0xbfa0c514
        __bailout = {{__jmpbuf = {-1212280844, -1208259360, 0, -1079982904, 1434960001, 2145648110}, __mask_was_saved = 0,
    __saved_mask = {__val = {0, 3082575350, 0, 142330428, 0, 0, 1, 142330525, 0, 3082686452, 142634872, 3081258672,
        3214984296, 3081774445, 3086707936, 0, 3214984360, 137964004, 142330468, 90, 57, 141237152, 1968, 0, 0, 0,
        3082686452, 0, 3082690880, 3214984360, 142330428, 3082690880}}}}
        report_memleaks = 1 '\001'
#5  0x0842cb32 in main (argc=3, argv=0xbfa0e784) at /root/php-5.2.5/sapi/cgi/cgi_main.c:1972
        path_translated = 0x8809f28 "/home/admin/domains/poszkole.pl/public_html/beta/gry.php"
        __orig_bailout = (jmp_buf *) 0x0
        __bailout = {{__jmpbuf = {-1212280844, -1208259360, 0, -1079974168, 1435082881, -1853892114}, __mask_was_saved = 0,
    __saved_mask = {__val = {0 <repeats 32 times>}}}}
        free_query_string = 0
        exit_status = 0
        cgi = 0
        c = 60
        i = -1079974096
        len = -1208256920
        file_handle = {type = 2 '\002', filename = 0x87bca64 'Z' <repeats 57 times>, "Fi\024\017", opened_path = 0x0,
  handle = {fd = 142634872, fp = 0x8806f78, stream = {handle = 0x8806f78, reader = 0x83c6f0c <zend_stream_stdio_reader>,
      closer = 0x83c6f35 <zend_stream_stdio_closer>, fteller = 0x83c6f54 <zend_stream_stdio_fteller>, interactive = 0}},
  free_filename = 0 '\0'}
        retval = 0
        s = 0x0
        behavior = 1
        no_headers = 0
        orig_optind = 1
        orig_optarg = 0x0
        script_file = 0x0
---Type <return> to continue, or q <return> to quit---
        ini_entries_len = 0
        max_requests = 500
        requests = 7
        fastcgi = 1
        bindpath = 0x86ee110 "80.86.81.87:1026"
        fcgi_fd = 3
        request = {listen_socket = 3, fd = 4, id = 1, keep = 1, in_len = 0, in_pad = 0, out_hdr = 0x0,
  out_pos = 0xbfa0c5f8 "\001\006",
  out_buf = "\001\006\000\001\f&#269;\000\000t goog\">\n\t\t\t<script type=\"text/javascript\"><!--\r\ngoogle_ad_client = \"pub-4042275753879057\";\r\ngoogle_ad_width = 120;\r\ngoogle_ad_height = 600;\r\ngoogle_ad_format = \"120x600_as\";\r\ngoogle_ad_type ="..., reserved = '\0' <repeats 15 times>, env = {nTableSize = 32, nTableMask = 31, nNumOfElements = 27,
    nNextFreeElement = 0, pInternalPointer = 0x87fac80, pListHead = 0x87fac80, pListTail = 0x87b85c8,
    arBuckets = 0x87fb680, pDestructor = 0x8428945 <fcgi_free_var>, persistent = 1 '\001', nApplyCount = 0 '\0',
    bApplyProtection = 1 '\001', inconsistent = 0}}
        repeats = 1
        benchmark = 0
        start = {tv_sec = 0, tv_usec = 0}
        end = {tv_sec = 0, tv_usec = 0}
        status = 0
(gdb)


Regards,
Piotr
 [2007-11-18 21:42 UTC] pioklo at serveradmin dot pl
I have installed php 5.1.6 and the problem has passed away.
 [2007-11-18 23:41 UTC] jani@php.net
Please don't post any backtraces anymore. What exactly does this gry.php do? Try shorten the script to bare minimum which still causes the problem.
 [2007-11-19 12:34 UTC] pioklo at serveradmin dot pl
The problem isnt only with  gry.php  but many other scripts..
I use external sql servers and I'm connection to them through mysql_pconnect method . Changing method to mysql_connect provides less amount of crashes but finally when i changed php version to 5.1.6  segfault was eliminated  at all.

Regards,
Piotr
 [2007-11-19 13:49 UTC] jani@php.net
What is the content-type on these pages where it crashes? What is the diff between your php.ini and the stock php.ini-dist / php.ini-recommended (depending what you used as base for your php.ini)

 [2007-11-19 13:57 UTC] pioklo at serveradmin dot pl
The diff is here :
http://tapsy.pl/phpdiff.txt

Content-Type text/html
 [2007-11-20 10:45 UTC] dns dot bind9 at gmail dot com
hi,I have same problem on my update php to 5.2.5.

My System is FreeBSD 6.1 + Lighttpd 1.4.18 + php5.2.5 + php-cgi. 

[user@www] ~#/usr/local/bin/php-cgi -m
[PHP Modules]
cgi-fcgi
date
gd
iconv
libxml
mbstring
memcache
mysql
pcre
Reflection
session
standard
xml
zlib

[Zend Modules]



In Lighttpd Logs:

2007-11-20 18:25:24: (mod_fastcgi.c.2462) unexpected end-of-file (perhaps the fastcgi process died): pid: 4823 socket: unix:/tmp/php-fastcgi.socket-0 
2007-11-20 18:25:24: (mod_fastcgi.c.3269) response already sent out, but backend returned error on socket: unix:/tmp/php-fastcgi.socket-0 for /detail.php , terminating connection
 [2007-11-21 16:41 UTC] f dot fenix at gmail dot com
I also have such bug appeared after update to PHP 5.2.5.
System Info: FreeBSD 6.2-RELEASE-p3, nginx/0.5.32, PHP 5.2.5
# php -m
[PHP Modules]
bcmath
bz2
ctype
curl
date
dom
gd
gettext
hash
iconv
libxml
mbstring
mhash
mysql
pcre
PDO
pgsql
posix
readline
Reflection
session
SimpleXML
sockets
SPL
SQLite
standard
tokenizer
xml
xmlreader
xmlwriter
zlib

[Zend Modules]

#gdb /usr/local/bin/php-cgi php-cgi.core
--SKIPED--
(gdb) bt
#0  0x00000000004e79cf in _zend_mm_free_int ()
#1  0x00000000004c858a in sapi_deactivate ()
#2  0x00000000004c1eea in php_request_shutdown ()
#3  0x0000000000591943 in main ()

It crashes with such baktrace on ANY script.
 [2007-11-23 18:53 UTC] f dot fenix at gmail dot com
Additional backtrace for previous comment:
(gdb) bt
#0  0x0000000000537d09 in zend_mm_check_ptr (heap=0x7bf000, ptr=0xb29818, silent=1, __zend_filename=0x6445d8 "/usr/ports/lang/php5/work/php-5.2.5/main/SAPI.c", __zend_lineno=445, __zend_orig_filename=0x0,
    __zend_orig_lineno=0) at /usr/ports/lang/php5/work/php-5.2.5/Zend/zend_alloc.c:1276
#1  0x0000000000539451 in _zend_mm_free_int (heap=0x7bf000, p=0xb29818, __zend_filename=0x6445d8 "/usr/ports/lang/php5/work/php-5.2.5/main/SAPI.c", __zend_lineno=445, __zend_orig_filename=0x0,
    __zend_orig_lineno=0) at /usr/ports/lang/php5/work/php-5.2.5/Zend/zend_alloc.c:1909
#2  0x000000000053a64c in _efree (ptr=0xb29818, __zend_filename=0x6445d8 "/usr/ports/lang/php5/work/php-5.2.5/main/SAPI.c", __zend_lineno=445, __zend_orig_filename=0x0, __zend_orig_lineno=0)
    at /usr/ports/lang/php5/work/php-5.2.5/Zend/zend_alloc.c:2277
#3  0x000000000050b99e in sapi_deactivate () at /usr/ports/lang/php5/work/php-5.2.5/main/SAPI.c:445
#4  0x0000000000502397 in php_request_shutdown (dummy=0x0) at /usr/ports/lang/php5/work/php-5.2.5/main/main.c:1494
#5  0x00000000005d8771 in main (argc=3, argv=0x7fffffffea98) at /usr/ports/lang/php5/work/php-5.2.5/sapi/cgi/cgi_main.c:1972

PS System is AMD64
 [2007-11-25 02:53 UTC] dns dot bind9 at gmail dot com
now,more error msg "
[user@www] ~#zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted
zend_mm_heap corrupted"

display on my console!
 [2007-11-26 09:28 UTC] till@php.net
I can confirm the last additions to this bug.

I am also on FreeBSD/AMD64, and today I started getting "zend_mm_heap corrupted" messages. Also, PHP started to sig11 and what I did so far was disable all modules that I do not need - doing this I got rid off some of the obvious crashes.

This is my extension.ini
http://pastie.caboo.se/private/ytqpr1hnn0slvjsvabt70g

php -m:
http://pastie.caboo.se/private/yscuxwtkvromili7m15w


What can we do to provide more feedback?
 [2007-11-27 13:49 UTC] php at high5 dot nu
I am also seeing problems with FastCGI and PHP-5.2.5.
FreeBSD 6.2-p8 (jail) and Lighttpd 1.4.18. No third party extensions.

root@www2:~ # pkg_info | grep php
php5-5.2.5          PHP Scripting Language
php5-gettext-5.2.5  The gettext shared extension for php
php5-mysql-5.2.5    The mysql shared extension for php
php5-pcre-5.2.5     The pcre shared extension for php
php5-session-5.2.5  The session shared extension for php
php5-xml-5.2.5      The xml shared extension for php
php5-zlib-5.2.5     The zlib shared extension for php

From the log file:

[Tue Nov 27 14:35:18 2007]  Script:  
'/usr/local/www/www.<site>.com/blog/wpcontent/themes/default/images/he
ader-img.php'
---------------------------------------
/var/ports/basejail/usr/ports/lang/php5/work/php-
5.2.5/main/SAPI.c(445) : Block 0x08289e30 status:
Invalid pointer: ((size=0x00000005) != (next.prev=0x5445475f))
2007-11-27 14:35:18: (mod_fastcgi.c.2462) unexpected end-of-file 
(perhaps the fastcgi process died): pid: 96290 socket: unix:/tmp/php-
fastcgi.socket-0
2007-11-27 14:35:18: (mod_fastcgi.c.3269) response already sent out, 
but backend returned error on socket: unix:/tmp/php-fastcgi.socket-0 
for /blog/wp-content/themes/default/images/header-img.php , 
terminating connection
[Tue Nov 27 14:40:21 2007]  Script:  
'/usr/local/www/www.<site>.com/index.php'
---------------------------------------
/var/ports/basejail/usr/ports/lang/php5/work/php-
5.2.5/main/SAPI.c(445) : Block 0x08289d10 status:
Beginning:      Freed (magic=0x00000000, expected=0x99954317)
    Start:      Overflown (magic=0x00000000 instead of 0x678FA504)
                At least 4 bytes overflown
      End:      Overflown (magic=0x0000000E instead of 0x0A184C31)
                At least 4 bytes overflown
---------------------------------------
 [2007-11-28 17:33 UTC] php at high5 dot nu
I went back to php4, this seems to work fine.
 [2007-12-01 23:51 UTC] ty at aumix dot com
Hi,

Same problem here with CentOS 4.5.


-Tareq
 [2007-12-03 11:40 UTC] jani@php.net
Dmitry, this has propably something to do with your patch for this:

"- Added ability to control memory consumption between request using
  ZEND_MM_COMPACT environment variable. (Dmitry)"

 [2007-12-03 11:41 UTC] jani@php.net
See also bug #43459 and bug #43387
 [2007-12-03 16:19 UTC] dmitry@php.net
The crash in main/SAPI.c(445) must be fixed in CVS.
It wasn't releated to CGI sapi or memory manager.
It was just because of uninitialized variable.

It is a duplicate of #43476, but not #43387 and #43459.
 
PHP Copyright © 2001-2018 The PHP Group
All rights reserved.
Last updated: Mon Dec 10 16:01:25 2018 UTC