From: nkukard at lbsd dot net
Operating system: Linux
PHP version: 5.0.3
PHP Bug Type: Reproducible crash
Bug description: Segfault in zend_execute_API.c:599
Description:
------------
Using horde (cvs) and imp (cvs), i get a sefault in php.
Reproduce code:
---------------
download horde cvs & imp cvs, close browser, reopen browser and try login
Actual result:
--------------
#0 0xb777f526 in zend_call_function (fci=0xbfff60b0, fci_cache=0x0)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute_API.c:599
#1 0xb7780075 in call_user_function_ex (function_table=0xbfff6118,
object_pp=0xbfff6118,
function_name=0xbfff6118, retval_ptr_ptr=0xbfff6118,
param_count=3221184792, params=0xbfff6118,
no_separation=-1073782504, symbol_table=0xbfff6118)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute_API.c:551
#2 0xb77800d9 in call_user_function (function_table=0x8212f38,
object_pp=0x0, function_name=0x29,
retval_ptr=0xbfff6160, param_count=0, params=0xbfff6158)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute_API.c:526
#3 0xb76e26ca in array_user_key_compare (a=0xbfff6118, b=0xbfff6118)
at /var/tmp/nkukard-php-build/php-5.0.3/ext/standard/array.c:688
#4 0xb779858e in zend_qsort (base=0x29, nmemb=41, siz=4,
compare=0xb76e2630 <array_user_key_compare>)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_qsort.c:86
#5 0xb7792ada in zend_hash_sort (ht=0x8a4b40c, sort_func=0xb77984e0
<zend_qsort>,
compar=0xb76e2630 <array_user_key_compare>, renumber=0)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_hash.c:1134
#6 0xb76e286a in zif_uksort (ht=2, return_value=0x8a4d7a4, this_ptr=0x0,
return_value_used=0)
at /var/tmp/nkukard-php-build/php-5.0.3/ext/standard/array.c:723
#7 0xb77bf30e in zend_do_fcall_common_helper (execute_data=0xbfff64d0,
opline=0x8a48ff8, op_array=0x8a47da4)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2711
#8 0xb77bf62d in zend_do_fcall_handler (execute_data=0xbfff64d0,
opline=0x8a48ff8, op_array=0x8a47da4)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2843
#9 0xb77ad7db in execute (op_array=0x8a47da4)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#10 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff6850,
opline=0x8992d90, op_array=0x89355ec)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#11 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x8992d90,
op_array=0x89355ec) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#12 0xb77ad7db in execute (op_array=0x89355ec)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#13 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff6d50,
opline=0x89621cc, op_array=0x8933e14)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#14 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x89621cc,
op_array=0x8933e14) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#15 0xb77ad7db in execute (op_array=0x8933e14)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#16 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff7670,
opline=0x898f9e0, op_array=0x89353ac)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#17 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x898f9e0,
op_array=0x89353ac) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#18 0xb77ad7db in execute (op_array=0x89353ac)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
---Type <return> to continue, or q <return> to quit---
#19 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff7f80,
opline=0x89670f8, op_array=0x8934054)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#20 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x89670f8,
op_array=0x8934054) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#21 0xb77ad7db in execute (op_array=0x8934054)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#22 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff8620,
opline=0x897d5a4, op_array=0x8934824)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#23 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x897d5a4,
op_array=0x8934824) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#24 0xb77ad7db in execute (op_array=0x8934824)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#25 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff8a60,
opline=0x8938c8c, op_array=0x8927b64)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#26 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x8938c8c,
op_array=0x8927b64) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#27 0xb77ad7db in execute (op_array=0x8927b64)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#28 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff8d40,
opline=0x893c46c, op_array=0x892bc8c)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#29 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x893c46c,
op_array=0x892bc8c) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#30 0xb77ad7db in execute (op_array=0x892bc8c)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#31 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff8f40,
opline=0x8937df0, op_array=0x892bfa4)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#32 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x8937df0,
op_array=0x892bfa4) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#33 0xb77ad7db in execute (op_array=0x892bfa4)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#34 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff9400,
opline=0x893bf50, op_array=0x88c78dc)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#35 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x893bf50,
op_array=0x88c78dc) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#36 0xb77ad7db in execute (op_array=0x88c78dc)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#37 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff9a40,
opline=0x895f6e4, op_array=0x89272b4)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#38 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x895f6e4,
op_array=0x89272b4) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#39 0xb77ad7db in execute (op_array=0x89272b4)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
---Type <return> to continue, or q <return> to quit---
#40 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfff9ba0,
opline=0x893abf4, op_array=0x88ebb44)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#41 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x893abf4,
op_array=0x88ebb44) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#42 0xb77ad7db in execute (op_array=0x88ebb44)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#43 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfffbe00,
opline=0x88b3654, op_array=0x886323c)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#44 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x88b3654,
op_array=0x886323c) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#45 0xb77ad7db in execute (op_array=0x886323c)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#46 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfffc1a0,
opline=0x88208b8, op_array=0x88bb014)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#47 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x88208b8,
op_array=0x88bb014) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#48 0xb77ad7db in execute (op_array=0x88bb014)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#49 0xb77bee12 in zend_do_fcall_common_helper (execute_data=0xbfffd500,
opline=0x86078e0, op_array=0x859d54c)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2740
#50 0xb77bf529 in zend_do_fcall_by_name_handler (execute_data=0xbfff6118,
opline=0x86078e0,
op_array=0x859d54c) at
/var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:2825
#51 0xb77ad7db in execute (op_array=0x859d54c)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend_execute.c:1400
#52 0xb778b136 in zend_execute_scripts (type=8, retval=0x0, file_count=3)
at /var/tmp/nkukard-php-build/php-5.0.3/Zend/zend.c:1069
#53 0xb77513b4 in php_execute_script (primary_file=0xbffff860)
at /var/tmp/nkukard-php-build/php-5.0.3/main/main.c:1628
#54 0xb77c8167 in php_handler (r=0x84234d8)
at
/var/tmp/nkukard-php-build/php-5.0.3/sapi/apache2handler/sapi_apache2.c:537
#55 0x0805c59d in ap_run_handler ()
--
Edit bug report at http://bugs.php.net/?id=31203&edit=1
--
Try a CVS snapshot (php4): http://bugs.php.net/fix.php?id=31203&r=trysnapshot4
Try a CVS snapshot (php5.0):
http://bugs.php.net/fix.php?id=31203&r=trysnapshot50
Try a CVS snapshot (php5.1):
http://bugs.php.net/fix.php?id=31203&r=trysnapshot51
Fixed in CVS: http://bugs.php.net/fix.php?id=31203&r=fixedcvs
Fixed in release: http://bugs.php.net/fix.php?id=31203&r=alreadyfixed
Need backtrace: http://bugs.php.net/fix.php?id=31203&r=needtrace
Need Reproduce Script: http://bugs.php.net/fix.php?id=31203&r=needscript
Try newer version: http://bugs.php.net/fix.php?id=31203&r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=31203&r=support
Expected behavior: http://bugs.php.net/fix.php?id=31203&r=notwrong
Not enough info:
http://bugs.php.net/fix.php?id=31203&r=notenoughinfo
Submitted twice:
http://bugs.php.net/fix.php?id=31203&r=submittedtwice
register_globals: http://bugs.php.net/fix.php?id=31203&r=globals
PHP 3 support discontinued: http://bugs.php.net/fix.php?id=31203&r=php3
Daylight Savings: http://bugs.php.net/fix.php?id=31203&r=dst
IIS Stability: http://bugs.php.net/fix.php?id=31203&r=isapi
Install GNU Sed: http://bugs.php.net/fix.php?id=31203&r=gnused
Floating point limitations: http://bugs.php.net/fix.php?id=31203&r=float
No Zend Extensions: http://bugs.php.net/fix.php?id=31203&r=nozend
MySQL Configuration Error: http://bugs.php.net/fix.php?id=31203&r=mysqlcfg
