php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #71662 Segmentation fault in zend_string_release (s=0x7fe420712a28) zend_string.h:269
Submitted: 2016-02-25 17:08 UTC Modified: 2016-02-26 01:03 UTC
From: tom60 at op dot pl Assigned: rasmus (profile)
Status: Closed Package: Reproducible crash
PHP Version: 7.0.3 OS: Debian Jessie
Private report: No CVE-ID: None
 [2016-02-25 17:08 UTC] tom60 at op dot pl
Description:
------------
I'm running PHP 7.0.3 mod_php using Apache 2.4.18. Unfortunately, I'm getting segmentation faults. When I switch to PHP 5.6.18, everything works fine. I saved the relevant core dump files from Apache. Unfortunately, I don't know how to trace which Apache requests or what PHP code triggers the problem.


#0  zend_string_release (s=0x7fe420712a28) at /src/php-7.0.3/Zend/zend_string.h:269
#1  zend_hash_destroy (ht=0x7fe42c1c43c0 <pcre_globals>) at /src/php-7.0.3/Zend/zend_hash.c:1273
#2  0x00007fe42b867919 in module_destructor (module=module@entry=0x7fe42f16b530) at /src/php-7.0.3/Zend/zend_API.c:2509
#3  0x00007fe42b86049c in module_destructor_zval (zv=<optimized out>) at /src/php-7.0.3/Zend/zend.c:615
#4  0x00007fe42b872389 in _zend_hash_del_el_ex (prev=<optimized out>, p=<optimized out>, idx=<optimized out>, ht=<optimized out>)
    at /src/php-7.0.3/Zend/zend_hash.c:1013
#5  _zend_hash_del_el (p=0x7fe42f1838d0, idx=4, ht=0x7fe42c1cb2c0 <module_registry>) at /src/php-7.0.3/Zend/zend_hash.c:1037
#6  zend_hash_graceful_reverse_destroy (ht=ht@entry=0x7fe42c1cb2c0 <module_registry>) at /src/php-7.0.3/Zend/zend_hash.c:1489
#7  0x00007fe42b865ddc in zend_destroy_modules () at /src/php-7.0.3/Zend/zend_API.c:1977
#8  0x00007fe42b861455 in zend_shutdown () at /src/php-7.0.3/Zend/zend.c:840
#9  0x00007fe42b8059cb in php_module_shutdown () at /src/php-7.0.3/main/main.c:2352
#10 0x00007fe42b805a89 in php_module_shutdown_wrapper (sapi_globals=<optimized out>) at /src/php-7.0.3/main/main.c:2320
#11 0x00007fe42b8f1b51 in php_apache_child_shutdown (tmp=<optimized out>) at /src/php-7.0.3/sapi/apache2handler/sapi_apache2.c:399
#12 0x00007fe42cdf4fae in run_cleanups (cref=<optimized out>) at memory/unix/apr_pools.c:2352
#13 apr_pool_destroy (pool=0x7fe42f2be8d8) at memory/unix/apr_pools.c:814
#14 0x00007fe42e22975e in clean_child_exit (code=0) at prefork.c:227
#15 0x00007fe42e229c48 in child_main (child_num_arg=544287272, child_bucket=-1104392960) at prefork.c:744
#16 0x00007fe42e229ff0 in make_child (s=0x7fe42f013248, slot=172, bucket=0) at prefork.c:824
#17 0x00007fe42e22adb5 in perform_idle_server_maintenance (p=<optimized out>) at prefork.c:932
#18 prefork_run (_pconf=0x7fe420712a28, plog=0x7ffebe2c4dac, s=0x7ffebe2c4db0) at prefork.c:1128
#19 0x00007fe42e1ac27e in ap_run_mpm (pconf=0x7fe42efe0138, plog=0x7fe42f019818, s=0x7fe42f013248) at mpm_common.c:94
#20 0x00007fe42e1a5845 in main (argc=3, argv=0x7ffebe2c5088) at main.c:777


Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2016-02-26 01:03 UTC] rasmus@php.net
-Status: Open +Status: Closed -Assigned To: +Assigned To: rasmus
 [2016-02-26 01:03 UTC] rasmus@php.net
This is fixed in PHP-7.0-head and should be in 7.0.4
 [2016-04-21 03:59 UTC] 22055620 at qq dot com
how to fix this crash?

i can't find anything about this in 7.0.4 changelog
 [2016-05-03 21:24 UTC] tom60 at op dot pl
I can confirm that the crash no longer occurs in PHP >= 7.0.4.
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Tue Nov 26 01:01:29 2024 UTC