php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #45577 Integer overflow connecting to https soap service
Submitted: 2008-07-21 09:55 UTC Modified: 2008-07-30 01:00 UTC
Votes:3
Avg. Score:3.7 ± 1.9
Reproduced:2 of 3 (66.7%)
Same Version:1 (50.0%)
Same OS:2 (100.0%)
From: contact at reubidium dot com Assigned:
Status: No Feedback Package: SOAP related
PHP Version: 5.2.6 OS: Mac OS X 10.5.4
Private report: No CVE-ID: None
 [2008-07-21 09:55 UTC] contact at reubidium dot com
Description:
------------
With version 5.2.6 of PHP installed from MacPorts, I was saddened to find that all the SOAP calls in my application were suddenly broken, kicking up the following PHP Fatal error:  
Uncaught SoapFault exception: [Client] Possible integer overflow in memory allocation (3819152321 * 4 + 0)

This app was working fine in my Entropy PHP 5.2.5 package, and switching back to that all my soap calls were once again working fine.

Since all the calls were via https, I thought this would be a good first thing to try changing.  so I found a public http soap service and ran a quick test, and things worked just fine then.  

I should mention that I have the max memory setting in my php.ini set at 256M currently, but I had tried increasing it to 512M with no effect.. not that that should matter, this is a small soap request I am dealing with.


Reproduce code:
---------------
$client = new SoapClient('https://api.store.sinatra.iventa.com/UserService.asmx?WSDL');

Expected result:
----------------
A valid SOAP client object

Actual result:
--------------
PHP Fatal error:  Uncaught SoapFault exception: [Client] Possible integer overflow in memory allocation (3819152321 * 4 + 0) 


Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2008-07-21 10:02 UTC] contact at reubidium dot com
I also added this as a bug over at MacPorts.org: https://trac.macports.org/ticket/16036
 [2008-07-30 01:00 UTC] php-bugs at lists dot php dot net
No feedback was provided for this bug for over a week, so it is
being suspended automatically. If you are able to provide the
information that was originally requested, please do so and change
the status of the bug back to "Open".
 [2010-01-28 15:13 UTC] sgbeal at googlemail dot com
i'm seeing this same problem on Linux:

Linux myhostname 2.6.18-164.9.1.el5xen #1 SMP Wed Dec 9 03:35:42 EST 2009 x86_64 x86_64 x86_64 GNU/Linux

but the allocation value varies from the original report:

"PHP Fatal error:  Uncaught SoapFault exception: [Client] Possible integer overflow in memory allocation (2781995460 * 4 + 0)"

that happens on each call to the SoapClient ctor.

My app runs just fine via the CLI, but not from under Apache. i'm trying to port a CLI app to an AJAX interface, and this bug is making that impossible.

~> php --version
PHP 5.1.6 (cli) (built: Feb 26 2009 07:01:12)
Copyright (c) 1997-2006 The PHP Group
Zend Engine v2.1.0, Copyright (c) 1998-2006 Zend Technologies
~> free
 free
             total       used       free     shared    buffers     cached
Mem:      14336000    5264904    9071096          0     676488    1421936
-/+ buffers/cache:    3166480   11169520
Swap:      2097144          0    2097144
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Sat Dec 21 13:01:31 2024 UTC