php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #76791 coredump in libphp7.so`sapi_register_post_entry
Submitted: 2018-08-24 17:04 UTC Modified: 2020-11-18 13:55 UTC
Votes:1
Avg. Score:3.0 ± 0.0
Reproduced:0 of 0 (0.0%)
From: petr dot sumbera at oracle dot com Assigned: cmb (profile)
Status: Closed Package: Apache2 related
PHP Version: 7.1.21 OS: Solaris
Private report: No CVE-ID: None
 [2018-08-24 17:04 UTC] petr dot sumbera at oracle dot com
Description:
------------
While running Apache 2.4.34 with PHP 7.1.21. Every time I sent HUP signal to Apache HTTP server (e.g. pkill -HUP httpd) it cores dump with following stack:

ffffff9de4bbf9b1 libphp7.so`sapi_register_post_entry+0x28(1ffeec01f4bd88, 7, 1ffeec01cc38f8, 1, 0, 0)
ffffff9de4bbfa71 libphp7.so`sapi_register_post_entries+0x34(1ffeec01f4bd88, 8, 1ffeec01cc38f8, 1, 0, 0)
ffffff9de4bbfb21 libphp7.so`php_setup_sapi_content_types+0x1c(0, 0, b400, 1ffeec08827958, 1ffeec08b210a8, 38)
ffffff9de4bbfbd1 libphp7.so`ts_allocate_id+0x174(400000be991b5c30, 0, 1, 2, 8, 900000be9914c1a0)
ffffff9de4bbfc91 libphp7.so`php_apache_server_startup+0xa4(b00000be9908e038, 600000be990e6038, 38, 1ffeec08b210a8, 0, 1ffeec01f4c0d0)
ffffff9de4bbfd51 ap_run_post_config+0x58(b00000be9908e038, 600000be990e6038, d00000be990f2038, 200000be990de120, 100200, 100000)
ffffff9de4bbfe01 main+0x122c(1001b6000, 100000, 100038d20, 100200000, 400000be9908a130, 1001b6460)
ffffff9de4bbff61 _start+0x108(0, 0, 0, 0, 0, 1001ac000)

Particularly it seems to fail on first part of the condition:

SAPI_API int sapi_register_post_entry(sapi_post_entry *post_entry)
{
    if (SG(sapi_started) && EG(current_execute_data)) {
        ~~~~~~~~~~~~~~~~



Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2018-08-24 17:27 UTC] petr dot sumbera at oracle dot com
libphp7.so`sapi_register_post_entry:    save      %sp, -0xc0, %sp
libphp7.so`sapi_register_post_entry+4:  sethi     %hi(0x273c00), %l7
libphp7.so`sapi_register_post_entry+8:  call      -0x3534ec     <0x1ffeec01972c28>
libphp7.so`sapi_register_post_entry+0xc:add       %l7, 0x2ec, %l7
libphp7.so`sapi_register_post_entry+0x10:       sethi     %hi(0x0), %o0
libphp7.so`sapi_register_post_entry+0x14:       add       %o0, 0x38, %o0
libphp7.so`sapi_register_post_entry+0x18:       call      +0x274bfc     <PLT=libc.so.1`__tls_get_addr>
libphp7.so`sapi_register_post_entry+0x1c:       add       %l7, %o0, %o0
libphp7.so`sapi_register_post_entry+0x20:       ldx       [%o0], %g4
libphp7.so`sapi_register_post_entry+0x24:       sethi     %hi(0x0), %g1
libphp7.so`sapi_register_post_entry+0x28:       ldx       [%g4], %g5     <======
libphp7.so`sapi_register_post_entry+0x2c:       xor       %g1, 0xe0, %g1
 [2018-09-09 23:17 UTC] ab@php.net
-Status: Open +Status: Feedback
 [2018-09-09 23:17 UTC] ab@php.net
Thanks for the report. Please give 7.2 a try, as it received substantial fixes for thread safety. If same is reproducible with 7.2 or above, please use a debug build of PHP and post a backtrace.

Thanks.
 [2018-09-24 10:38 UTC] petr dot sumbera at oracle dot com
I have tested with PHP 7.2.10 and I'm no longer able to reproduce the issue.
 [2018-11-18 22:35 UTC] cmb@php.net
-Status: Feedback +Status: Open
 [2020-11-18 13:55 UTC] cmb@php.net
-Status: Open +Status: Closed -Assigned To: +Assigned To: cmb
 [2020-11-18 13:55 UTC] cmb@php.net
> I have tested with PHP 7.2.10 and I'm no longer able to
> reproduce the issue.

Since PHP 7.1 (and even 7.2) are out of active support, this
ticket can be closed.
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Fri Dec 13 03:01:28 2024 UTC