From: jille at hexon dot cx
Operating system: MacOS 10.4.9
PHP version: 5.2.3
PHP Bug Type: Apache related
Bug description: httpd crashes near file uploading
Description:
------------
I have found these 2 lines in my syslog,
this crash happens nearly a few times a day.
Aug 23 10:37:00 hillsbrad crashdump[10305]: httpd crashed
Aug 23 10:37:00 hillsbrad crashdump[10305]: crash report written to:
/Library/Logs/CrashReporter/httpd.crash.log
My website is being used by 400 users a day,
on the 'crashing page' several images can be uploaded.
Reproduce code:
---------------
I tried to reproduce the crash, but it didn`t work out.
I`ve added some debug code,
some debuglines appear about 30 seconds before the crash.
Some a few seconds after (they are not reported in the same way).
It might also be that the debugging lines are not even reached.
Expected result:
----------------
I don`t know what exactly happens to the user on the website.
I`ve never got any complaints about it or something.
It could be a delayed crash or something
(eg: the uploads create some buffer overflow, and apache crashes on the
next request or something.)
But I would expect not to see a crash happen
Actual result:
--------------
Exception: EXC_BAD_ACCESS (0x0001)
Codes: KERN_INVALID_ADDRESS (0x0001) at 0x310074f4
Thread 0 Crashed:
0 libphp5.so 0x022f2010 _zend_mm_free_int + 544
1 libphp5.so 0x02323808 zend_hash_destroy + 168
2 libphp5.so 0x023161b4 _zval_dtor_func + 164
3 libphp5.so 0x02304100 _zval_ptr_dtor + 80
4 libphp5.so 0x0207f4ec zm_deactivate_filter + 140
5 libphp5.so 0x0231a95c module_registry_cleanup + 44
6 libphp5.so 0x02323ce8 zend_hash_apply + 152
7 libphp5.so 0x02316c1c zend_deactivate_modules + 92
8 libphp5.so 0x022c1298 php_request_shutdown + 328
9 libphp5.so 0x023ca1cc apache_php_module_main + 236
10 libphp5.so 0x023cb8bc send_php + 1212
11 libphp5.so 0x023cb968 send_parsed_php + 56
12 httpd 0x0000dd18 ap_invoke_handler + 232
13 httpd 0x00017dd4 process_request_internal + 640
14 httpd 0x00017e54 ap_process_request + 72
15 httpd 0x00006b60 child_main + 1832
16 httpd 0x00006dc4 make_child + 312
17 httpd 0x00007660 standalone_main + 852
18 httpd 0x00007d74 main + 1052
19 httpd 0x0000238c _start + 348
20 httpd 0x0000222c start + 60
Thread 0 crashed with PPC Thread State 64:
srr0: 0x00000000022f2010 srr1: 0x100000000200f030
vrsave: 0x0000000000000000
cr: 0x48000448 xer: 0x0000000000000000 lr:
0x00000000022f1e90 ctr: 0x0000000000003ddc
r0: 0x0000000000000000 r1: 0x00000000bfffe220 r2:
0x0000000000000001 r3: 0x000000000185e800
r4: 0x00000000002c74b0 r5: 0x0000000000000002 r6:
0x00000000002c74a8 r7: 0x0000000000000000
r8: 0x0000000000000010 r9: 0x00000000002c74e8 r10:
0x00000000002c74e8 r11: 0x00000000310074e8
r12: 0x0000000000003ddc r13: 0x0000000000000000 r14:
0x0000000000000000 r15: 0x0000000000000000
r16: 0x0000000000000000 r17: 0x0000000000000000 r18:
0x0000000000000000 r19: 0x0000000000000000
r20: 0x0000000000000000 r21: 0x0000000000000000 r22:
0x0000000000057314 r23: 0x0000000000057314
r24: 0x0000000000057314 r25: 0x0000000000057314 r26:
0x000000000187a638 r27: 0x000000000231a930
r28: 0x000000000185e800 r29: 0x0000000000000040 r30:
0x00000000002c74a8 r31: 0x00000000022f1e04
Binary Images Description:
0x1000 - 0x4ffff httpd /usr/sbin/httpd
0x65000 - 0x67fff mod_log_config.so
/usr/libexec/httpd/mod_log_config.so
0x6a000 - 0x6bfff mod_mime.so /usr/libexec/httpd/mod_mime.so
0x6e000 - 0x70fff mod_status.so /usr/libexec/httpd/mod_status.so
0x73000 - 0x75fff mod_info.so /usr/libexec/httpd/mod_info.so
0x78000 - 0x81fff mod_rewrite.so /usr/libexec/httpd/mod_rewrite.so
0x85000 - 0x86fff mod_access.so /usr/libexec/httpd/mod_access.so
0x89000 - 0x8afff mod_auth_apple.so
/usr/libexec/httpd/mod_auth_apple.so
0x8d000 - 0x8dfff mod_setenvif.so
/usr/libexec/httpd/mod_setenvif.so
0x90000 - 0x90fff mod_hfs_apple.so
/usr/libexec/httpd/mod_hfs_apple.so
0x93000 - 0x95fff mod_digest_apple.so
/usr/libexec/httpd/mod_digest_apple.so
0x98000 - 0xb4fff libssl.so /usr/libexec/httpd/libssl.so
0xd1000 - 0xeefff libjpeg.62.dylib /sw/lib/libjpeg.62.dylib
0xf6000 - 0xf7fff ZendExtensionManager.so
/usr/local/Zend/lib/ZendExtensionManager.so
0x205000 - 0x223fff libpng.3.dylib /sw/lib/libpng.3.dylib
0x282000 - 0x286fff libmnogocharset-3.3.dylib
/usr/local/mnogosearch/lib/libmnogocharset-3.3.dylib
0x405000 - 0x4fefff libiconv.2.dylib /sw/lib/libiconv.2.dylib
0x1008000 - 0x1048fff libfreetype.6.dylib /sw/lib/libfreetype.6.dylib
0x118f000 - 0x129ffff libxml2.2.dylib /sw/lib/libxml2.2.dylib
0x14d5000 - 0x1600fff ZendOptimizer.so
/usr/local/Zend/lib/Optimizer-3.2.8/php-5.2.x/ZendOptimizer.so
0x2008000 - 0x2660fff libphp5.so /usr/libexec/httpd/libphp5.so
0x287d000 - 0x2947fff libmnogosearch-3.3.dylib
/usr/local/mnogosearch/lib/libmnogosearch-3.3.dylib
0x8fe00000 - 0x8fe52fff dyld 46.12 /usr/lib/dyld
0x90000000 - 0x901bcfff libSystem.B.dylib /usr/lib/libSystem.B.dylib
0x90214000 - 0x90219fff libmathCommon.A.dylib
/usr/lib/system/libmathCommon.A.dylib
0x907bb000 - 0x90894fff com.apple.CoreFoundation 6.4.7 (368.28)
/System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation
0x908df000 - 0x909e1fff libicucore.A.dylib /usr/lib/libicucore.A.dylib
0x90a3b000 - 0x90abffff libobjc.A.dylib /usr/lib/libobjc.A.dylib
0x90b6f000 - 0x90b81fff libauto.dylib /usr/lib/libauto.dylib
0x9110f000 - 0x9111dfff libz.1.dylib /usr/lib/libz.1.dylib
0x91120000 - 0x912dbfff com.apple.security 4.6 (29770)
/System/Library/Frameworks/Security.framework/Versions/A/Security
0x91431000 - 0x9143cfff libgcc_s.1.dylib /usr/lib/libgcc_s.1.dylib
0x91a19000 - 0x91ae0fff libcrypto.0.9.7.dylib
/usr/lib/libcrypto.0.9.7.dylib
0x93701000 - 0x93721fff com.apple.DirectoryService.Framework 3.1
/System/Library/Frameworks/DirectoryService.framework/Versions/A/DirectoryService
0x95040000 - 0x9506ffff libssl.0.9.7.dylib /usr/lib/libssl.0.9.7.dylib
0x95784000 - 0x957acfff libcurl.3.dylib /usr/lib/libcurl.3.dylib
--
Edit bug report at http://bugs.php.net/?id=42395&edit=1
--
Try a CVS snapshot (PHP 4.4):
http://bugs.php.net/fix.php?id=42395&r=trysnapshot44
Try a CVS snapshot (PHP 5.2):
http://bugs.php.net/fix.php?id=42395&r=trysnapshot52
Try a CVS snapshot (PHP 6.0):
http://bugs.php.net/fix.php?id=42395&r=trysnapshot60
Fixed in CVS: http://bugs.php.net/fix.php?id=42395&r=fixedcvs
Fixed in release:
http://bugs.php.net/fix.php?id=42395&r=alreadyfixed
Need backtrace: http://bugs.php.net/fix.php?id=42395&r=needtrace
Need Reproduce Script: http://bugs.php.net/fix.php?id=42395&r=needscript
Try newer version: http://bugs.php.net/fix.php?id=42395&r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=42395&r=support
Expected behavior: http://bugs.php.net/fix.php?id=42395&r=notwrong
Not enough info:
http://bugs.php.net/fix.php?id=42395&r=notenoughinfo
Submitted twice:
http://bugs.php.net/fix.php?id=42395&r=submittedtwice
register_globals: http://bugs.php.net/fix.php?id=42395&r=globals
PHP 3 support discontinued: http://bugs.php.net/fix.php?id=42395&r=php3
Daylight Savings: http://bugs.php.net/fix.php?id=42395&r=dst
IIS Stability: http://bugs.php.net/fix.php?id=42395&r=isapi
Install GNU Sed: http://bugs.php.net/fix.php?id=42395&r=gnused
Floating point limitations: http://bugs.php.net/fix.php?id=42395&r=float
No Zend Extensions: http://bugs.php.net/fix.php?id=42395&r=nozend
MySQL Configuration Error: http://bugs.php.net/fix.php?id=42395&r=mysqlcfg
