#26483 [NEW]: Segfault in zend_hash.c

Mon, 01 Dec 2003 04:00:36 -0800 

From:             jan at horde dot org
Operating system: Linux
PHP version:      4CVS-2003-12-01 (stable)
PHP Bug Type:     Scripting Engine problem
Bug description:  Segfault in zend_hash.c

Description:
------------
Again, no script to reproduce, this happens while parsing a compley mime
message in IMP.

Backtrace:

0x4066edd2 in zend_hash_find (ht=0x859369c, arKey=0x407fe161 "this",
    nKeyLength=5, pData=0xbffee2ac)
    at /home/jan/software/php43/Zend/zend_hash.c:892
892     /home/jan/software/php43/Zend/zend_hash.c: No such file or
directory.
---Type <return> to continue, or q <return> to quit---
        in /home/jan/software/php43/Zend/zend_hash.c
(gdb) bt
#0  0x4066edd2 in zend_hash_find (ht=0x859369c, arKey=0x407fe161 "this",
    nKeyLength=5, pData=0xbffee2ac)
    at /home/jan/software/php43/Zend/zend_hash.c:892
#1  0x40679973 in execute (op_array=0x84da0bc)
    at /home/jan/software/php43/Zend/zend_execute.c:1527
#2  0x4067a0f3 in execute (op_array=0x848e08c)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#3  0x4067a0f3 in execute (op_array=0x8185a1c)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#4  0x4067a0f3 in execute (op_array=0x851004c)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#5  0x4067a0f3 in execute (op_array=0x850fe74)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#6  0x4067a0f3 in execute (op_array=0x850fe74)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#7  0x4067a0f3 in execute (op_array=0x8658354)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#8  0x4067a0f3 in execute (op_array=0x850fc9c)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#9  0x4067a0f3 in execute (op_array=0x8484bf4)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#10 0x4067a0f3 in execute (op_array=0x846d5ac)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
---Type <return> to continue, or q <return> to quit---
#11 0x4067a0f3 in execute (op_array=0x850fe74)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#12 0x4067a0f3 in execute (op_array=0x850fd84)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#13 0x4067a0f3 in execute (op_array=0x81826ec)
    at /home/jan/software/php43/Zend/zend_execute.c:1660
#14 0x4066888a in zend_execute_scripts (type=8, retval=0x0, file_count=3)
    at /home/jan/software/php43/Zend/zend.c:884
#15 0x406316e1 in php_execute_script (primary_file=0xbffff1e0)
    at /home/jan/software/php43/main/main.c:1729
#16 0x4067ef94 in apache_php_module_main (r=0x80ceee0,
display_source_mode=0)
    at /home/jan/software/php43/sapi/apache/sapi_apache.c:54
#17 0x4067ff49 in send_php (r=0x80ceee0, display_source_mode=0,
    filename=0x80d0d10 "/home/jan/headhorde//imp/message.php")
    at /home/jan/software/php43/sapi/apache/mod_php4.c:620
#18 0x4067ffc2 in send_parsed_php (r=0x80ceee0)
    at /home/jan/software/php43/sapi/apache/mod_php4.c:635
#19 0x080557a7 in ap_invoke_handler ()
#20 0x0806aaf0 in process_request_internal ()
#21 0x0806ad81 in ap_process_request ()
#22 0x08062762 in child_main ()
#23 0x0806290a in make_child ()
#24 0x08062a46 in startup_children ()
---Type <return> to continue, or q <return> to quit---
#25 0x080634eb in standalone_main ()
#26 0x08063ca6 in main ()

(gdb) frame 1
#1  0x40679973 in execute (op_array=0x84da0bc)
    at /home/jan/software/php43/Zend/zend_execute.c:1527
1527    in /home/jan/software/php43/Zend/zend_execute.c
(gdb) print (char
*)(executor_globals.function_state_ptr->function)->common.function_name
Address of symbol "executor_globals" is unknown.


This is what I found in my logs:

[Mon Dec  1 11:50:10 2003]  Script: 
'/home/jan/headhorde//imp/message.php'
---------------------------------------
/home/jan/software/php43/ext/mbstring/mbstring.c(329) : Block 0x087A2EA8
status:
Beginning:      OK (allocated on
/home/jan/software/php43/ext/mbstring/mbstring.
c:314, 17 bytes)
      End:      Overflown (magic=0x29736D61 instead of 0x2A8FCC84)
                At least 4 bytes overflown



-- 
Edit bug report at http://bugs.php.net/?id=26483&edit=1
-- 
Try a CVS snapshot (php4):  http://bugs.php.net/fix.php?id=26483&r=trysnapshot4
Try a CVS snapshot (php5):  http://bugs.php.net/fix.php?id=26483&r=trysnapshot5
Fixed in CVS:               http://bugs.php.net/fix.php?id=26483&r=fixedcvs
Fixed in release:           http://bugs.php.net/fix.php?id=26483&r=alreadyfixed
Need backtrace:             http://bugs.php.net/fix.php?id=26483&r=needtrace
Need Reproduce Script:      http://bugs.php.net/fix.php?id=26483&r=needscript
Try newer version:          http://bugs.php.net/fix.php?id=26483&r=oldversion
Not developer issue:        http://bugs.php.net/fix.php?id=26483&r=support
Expected behavior:          http://bugs.php.net/fix.php?id=26483&r=notwrong
Not enough info:            http://bugs.php.net/fix.php?id=26483&r=notenoughinfo
Submitted twice:            http://bugs.php.net/fix.php?id=26483&r=submittedtwice
register_globals:           http://bugs.php.net/fix.php?id=26483&r=globals
PHP 3 support discontinued: http://bugs.php.net/fix.php?id=26483&r=php3
Daylight Savings:           http://bugs.php.net/fix.php?id=26483&r=dst
IIS Stability:              http://bugs.php.net/fix.php?id=26483&r=isapi
Install GNU Sed:            http://bugs.php.net/fix.php?id=26483&r=gnused
Floating point limitations: http://bugs.php.net/fix.php?id=26483&r=float

Reply via email to