php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #72727 SOAP-WSDL Cache Segfault
Submitted: 2016-08-01 13:27 UTC Modified: -
Votes:1
Avg. Score:3.0 ± 0.0
Reproduced:1 of 1 (100.0%)
Same Version:1 (100.0%)
Same OS:1 (100.0%)
From: michael dot bakker at heg dot com Assigned:
Status: Open Package: SOAP related
PHP Version: 5.6Git-2016-08-01 (Git) OS: Debian GNU/Linux Jessie 64Bit
Private report: No CVE-ID: None
Have you experienced this issue?
Rate the importance of this bug to you:

 [2016-08-01 13:27 UTC] michael dot bakker at heg dot com
Description:
------------
PHP-Versions: 5.6.24, Git PHP-5.6 Branch (Sat Jul 30 18:34:34 2016 +0200)

PHP-Modules: bcmath, bz2, calendar, Core, ctype, curl, date, dba, dom, ereg, exif, fileinfo, filter, ftp, gd, geoip, gettext, hash, iconv, imagick, imap, intl, ionCube Loader, json, ldap, libxml, mbstring, mcrypt, mhash, mysql, mysqli, mysqlnd, openssl, pcre, PDFlib, PDO, pdo_mysql, pdo_sqlite, Phar, posix, pspell, readline, Reflection, session, shmop, SimpleXML, soap, sockets, SPL, sqlite3, standard, suhosin, sysvmsg, sysvsem, sysvshm, tet, tidy, timezonedb, tokenizer, wddx, xml, xmlreader, xmlrpc, xmlwriter, xsl, Zend Guard Loader, Zend OPcache, zip, zlib

Zend Modules: Zend Guard Loader, Zend OPcache, ionCube PHP Loader

64Bit kernel and userspace with xfs (rw,nosuid,nodev,noatime,attr2,inode64,grpquota) in case its relevant somehow

Test script:
---------------
http://bugreport.php.he-webpack.de/soapwsdl_test.phps

But the actual access to the WSDL site is login/password protected.

Here is at least the wsdl cache file in case it will be helpful:

http://bugreport.php.he-webpack.de/wsdl-wp10714431-47f2924ba05757b8337a2d8d97db59cd

Actual result:
--------------
Core was generated by `/usr/sbin/apache2 -f /etc/httpd/apache2-modphp56.conf -k start'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0  0x00007fbc4e5d8e27 in sdl_deserialize_string (in=in@entry=0x7fffdf5400c8) at /usr/src/php56/he-wp-php5.6/ext/soap/php_sdl.c:1205
1205            WSDL_CACHE_GET_INT(len, in);
(gdb) bt
#0  0x00007fbc4e5d8e27 in sdl_deserialize_string (in=in@entry=0x7fffdf5400c8) at /usr/src/php56/he-wp-php5.6/ext/soap/php_sdl.c:1205
#1  0x00007fbc4e5e1c7c in get_sdl_from_cache (
    fn=0x7fbc4887fc20 "/is/htdocs/user_tmp/wp10714431_S30FFW8HUK/wsdl-wp10714431-47f2924ba05757b8337a2d8d97db59cd", uri=<optimized out>, t=1469714977,
    cached=0x7fffdf5403c0) at /usr/src/php56/he-wp-php5.6/ext/soap/php_sdl.c:1592
#2  0x00007fbc4e5e78f1 in get_sdl (this_ptr=0x7fbc4887c278, uri=0x90 <error: Cannot access memory at address 0x90>, cache_wsdl=58)
    at /usr/src/php56/he-wp-php5.6/ext/soap/php_sdl.c:3253
#3  0x00007fbc4e5aca19 in zim_SoapClient_SoapClient (ht=1, return_value=<optimized out>, return_value_ptr=<optimized out>, this_ptr=0x7fbc4887c278,
    return_value_used=<optimized out>) at /usr/src/php56/he-wp-php5.6/ext/soap/soap.c:2532
#4  0x00007fbc4df6b9e0 in suhosin_execute_internal (execute_data_ptr=0x7fbc662c6e18, fci=0x0, return_value_used=0)
    at /usr/src/php56/he-wp-php5.6/pecl-build/suhosin-0.9.37.1/execute.c:1813
#5  0x00007fbc641857a0 in zend_do_fcall_common_helper_SPEC (execute_data=0x7fbc662c6e18) at /usr/src/php56/he-wp-php5.6/Zend/zend_vm_execute.h:560
#6  0x00007fbc64113b50 in execute_ex (execute_data=0x7fbc662c6e18) at /usr/src/php56/he-wp-php5.6/Zend/zend_vm_execute.h:363
#7  0x00007fbc5bd2bf6c in zend_oe () from /usr/lib/php5.6/20131226+lfs/ZendGuardLoader.so
#8  0x00007fbc4df6c48e in suhosin_execute_ex (execute_data=0x7fbc662c6e18) at /usr/src/php56/he-wp-php5.6/pecl-build/suhosin-0.9.37.1/execute.c:641
#9  0x00007fbc5c0a2d1c in ?? () from /usr/lib/php5.6/20131226+lfs/ioncube_loader_lin_5.6.so
#10 0x00007fbc64185ce3 in zend_do_fcall_common_helper_SPEC (execute_data=0x7fbc662c6c78) at /usr/src/php56/he-wp-php5.6/Zend/zend_vm_execute.h:592
#11 0x00007fbc64113b50 in execute_ex (execute_data=0x7fbc662c6c78) at /usr/src/php56/he-wp-php5.6/Zend/zend_vm_execute.h:363
#12 0x00007fbc5bd2bf6c in zend_oe () from /usr/lib/php5.6/20131226+lfs/ZendGuardLoader.so
#13 0x00007fbc4df6c48e in suhosin_execute_ex (execute_data=0x7fbc662c6c78) at /usr/src/php56/he-wp-php5.6/pecl-build/suhosin-0.9.37.1/execute.c:641
#14 0x00007fbc5c0a2d1c in ?? () from /usr/lib/php5.6/20131226+lfs/ioncube_loader_lin_5.6.so
#15 0x00007fbc640d8080 in zend_execute_scripts (type=-548142904, type@entry=8, retval=0x90, retval@entry=0x0, file_count=-1191414006,
    file_count@entry=3) at /usr/src/php56/he-wp-php5.6/Zend/zend.c:1341
#16 0x00007fbc64073a70 in php_execute_script (primary_file=primary_file@entry=0x7fffdf543f90) at /usr/src/php56/he-wp-php5.6/main/main.c:2613
#17 0x00007fbc641873ca in php_handler (r=<optimized out>) at /usr/src/php56/he-wp-php5.6/sapi/apache2handler/sapi_apache2.c:667

Patches

Add a Patch

Pull Requests

Add a Pull Request

 
PHP Copyright © 2001-2019 The PHP Group
All rights reserved.
Last updated: Tue Sep 17 16:01:27 2019 UTC