php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #81146 PHP web server crashes with core dump
Submitted: 2021-06-16 12:28 UTC Modified: 2021-06-17 08:19 UTC
Votes:1
Avg. Score:1.0 ± 0.0
Reproduced:0 of 0 (0.0%)
From: norbert at aimeos dot com Assigned:
Status: Open Package: Built-in web server
PHP Version: 8.0.7 OS: Ubuntu 18.04
Private report: No CVE-ID: None
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If this is not your bug, you can add a comment by following this link.
If this is your bug, but you forgot your password, you can retrieve your password here.
Password:
Status:
Package:
Bug Type:
Summary:
From: norbert at aimeos dot com
New email:
PHP Version: OS:

 

 [2021-06-16 12:28 UTC] norbert at aimeos dot com
Description:
------------
When running our Aimeos PHP application using PHP 8.0 (up to latest 8.0.7), the PHP web server crashes immediately. The problem is related to the OPCache and if it's disabled, it works without problems:

php8.0 -S 127.0.0.1:8000 -t public/ -dopcache.enable=0

Test script:
---------------
https://github.com/aimeos#installation

composer create-project aimeos/aimeos myshop
cd myshop
php -S 127.0.0.1:8000 -t public

Actual result:
--------------
#0  zend_zval_type_name (arg=0xb, arg@entry=0x7f06ac218260) at ./Zend/zend_API.c:137
#1  0x00005606c461ee96 in zend_verify_type_error_common (zf=<optimized out>, zf=<optimized out>, arg_info=<optimized out>, given_kind=<synthetischer Zeiger>, 
    need_msg=<synthetischer Zeiger>, fclass=<synthetischer Zeiger>, fsep=<synthetischer Zeiger>, fname=<synthetischer Zeiger>, value=0x7f06ac218260)
    at ./Zend/zend_execute.c:681
#2  zend_verify_return_error (zf=<optimized out>, value=0x7f06ac218260) at ./Zend/zend_execute.c:1186
#3  0x00005606c482d534 in ZEND_VERIFY_RETURN_TYPE_SPEC_TMP_UNUSED_HANDLER () at ./Zend/zend_vm_execute.h:20121
#4  0x00005606c4848f50 in execute_ex (ex=0xb) at ./Zend/zend_vm_execute.h:56568
#5  0x00005606c47d5a4e in zend_call_function (fci=fci@entry=0x7ffeea7e7e10, fci_cache=<optimized out>, fci_cache@entry=0x7ffeea7e7df0) at ./Zend/zend_execute_API.c:895
#6  0x00005606c470d10f in zif_call_user_func_array (execute_data=0x7f06ac217cb0, return_value=0x7f06ac217c50) at ./ext/standard/basic_functions.c:1579
#7  0x00005606c484f833 in ZEND_DO_FCALL_BY_NAME_SPEC_RETVAL_USED_HANDLER () at ./Zend/zend_vm_execute.h:1554
#8  execute_ex (ex=0xb) at ./Zend/zend_vm_execute.h:54548
#9  0x00005606c47d5a4e in zend_call_function (fci=fci@entry=0x7ffeea7e8080, fci_cache=<optimized out>, fci_cache@entry=0x7ffeea7e8060) at ./Zend/zend_execute_API.c:895
#10 0x00005606c47d5ff1 in zend_call_known_function (fn=0x7f06ac31c360, object=object@entry=0x7f06ac28df00, called_scope=called_scope@entry=0x7f06ac2c7a40, 
    retval_ptr=retval_ptr@entry=0x7f06ac217500, param_count=param_count@entry=1, params=params@entry=0x7ffeea7e8100, named_params=0x0) at ./Zend/zend_execute_API.c:985
#11 0x00005606c48542aa in zend_call_method (object=object@entry=0x7f06ac28df00, obj_ce=<optimized out>, obj_ce@entry=0x7f06ac2c7a40, fn_proxy=fn_proxy@entry=0x0, 
    function_name=function_name@entry=0x5606c48a3640 "offsetget", function_name_len=function_name_len@entry=9, retval_ptr=retval_ptr@entry=0x7f06ac217500, param_count=1, 
    arg1=0x7ffeea7e8190, arg2=0x0) at ./Zend/zend_interfaces.c:82
#12 0x00005606c486b8e0 in zend_std_read_dimension (object=0x7f06ac28df00, offset=<optimized out>, type=0, rv=0x7f06ac217500) at ./Zend/zend_object_handlers.c:846
#13 0x00005606c47fee55 in zend_fetch_dimension_address_read (slow=1, is_list=false, type=0, dim_type=8, dim=0x7f06ac2174e0, container=0x7f06ac2174f0, 
    result=0x7f06ac217500) at ./Zend/zend_execute.c:2423
#14 zend_fetch_dimension_address_read_R_slow (container=0x7f06ac2174f0, dim=<optimized out>) at ./Zend/zend_execute.c:2459
#15 0x00005606c4820b82 in ZEND_FETCH_DIM_R_SPEC_TMPVAR_CV_HANDLER () at ./Zend/zend_vm_execute.h:17794
#16 0x00005606c48490e2 in execute_ex (ex=0xb) at ./Zend/zend_vm_execute.h:56315
#17 0x00005606c4850b0d in zend_execute (op_array=0x7f06ac204000, return_value=0x0) at ./Zend/zend_vm_execute.h:58875
#18 0x00005606c47e30cb in zend_execute_scripts (type=type@entry=8, retval=retval@entry=0x0, file_count=-1407093616, file_count@entry=3) at ./Zend/zend.c:1680
#19 0x00005606c477f587 in php_execute_script (primary_file=primary_file@entry=0x7ffeea7ea690) at ./main/main.c:2501
#20 0x00005606c487eaaa in php_cli_server_dispatch_script (server=server@entry=0x5606c4bddac0 <server>, client=client@entry=0x5606c4cfc3d0)
    at ./sapi/cli/php_cli_server.c:2023
#21 0x00005606c487f0d4 in php_cli_server_dispatch (client=0x5606c4cfc3d0, server=0x5606c4bddac0 <server>) at ./sapi/cli/php_cli_server.c:2195
#22 php_cli_server_recv_event_read_request (server=0x5606c4bddac0 <server>, client=0x5606c4cfc3d0) at ./sapi/cli/php_cli_server.c:2513
#23 0x00005606c487f38f in php_cli_server_do_event_for_each_fd_callback (_params=_params@entry=0x7ffeea7ea940, fd=<optimized out>, event=event@entry=1)
    at ./sapi/cli/php_cli_server.c:2599
#24 0x00005606c487fff6 in php_cli_server_poller_iter_on_active (poller=0x5606c4bddac8 <server+8>, callback=0x5606c487f340 <php_cli_server_do_event_for_each_fd_callback>, 
    opaque=0x7ffeea7ea940) at ./sapi/cli/php_cli_server.c:869
#25 php_cli_server_do_event_for_each_fd (whandler=0x5606c487dc20 <php_cli_server_send_event>, rhandler=0x5606c487eac0 <php_cli_server_recv_event_read_request>, 
    server=0x5606c4bddac0 <server>) at ./sapi/cli/php_cli_server.c:2617
#26 php_cli_server_do_event_loop (server=0x5606c4bddac0 <server>) at ./sapi/cli/php_cli_server.c:2627
#27 do_cli_server (argc=<optimized out>, argv=<optimized out>) at ./sapi/cli/php_cli_server.c:2757
#28 0x00005606c462798b in main (argc=5, argv=0x5606c4cde520) at ./sapi/cli/php_cli.c:1339


Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2021-06-17 08:19 UTC] nikic@php.net
I'm not able to reproduce a crash (or sanitizer violation) on current 8.0 HEAD. I tried a few different variants (with/without JIT, with/without file cache).
 
PHP Copyright © 2001-2021 The PHP Group
All rights reserved.
Last updated: Mon Sep 20 09:03:36 2021 UTC