From: markus-php at anthill dot de
Operating system: linux / solaris
PHP version: 4.4.0
PHP Bug Type: Reproducible crash
Bug description: segmentation faults with multiple include virtual requests
Description:
------------
I installed Apache 2.0.55 with PHP 4.4.0. I got lots of entries like the
following in the error log:
[Mon Oct 17 18:19:04 2005] [notice] child pid 9385 exit signal
Segmentation fault (11)
They occure on pages with HTML code like
...
<body>
<!--#include virtual="/php/body_header.php" -->
...
<!--#include virtual="/php/body_footer.php" -->
</body>
With only one of the includes (either one) all works well. Back with
Apache 2.0.54 and PHP 4.4.0 I haven't got this problem.
I stripped down the PHP scripts to just print a small text using echo(),
but the problem remained.
Reproduce code:
---------------
see above
Actual result:
--------------
(gdb) bt
#0 0x402eb3ea in _zval_ptr_dtor (zval_ptr=0x4035fb08)
at /tmp/test/php-4.4.0/Zend/zend_execute_API.c:287
#1 0x40300843 in execute (op_array=0x8179474) at zend_execute_locks.h:26
#2 0x402f1f23 in zend_execute_scripts (type=2, retval=0x0, file_count=1)
at /tmp/test/php-4.4.0/Zend/zend.c:938
#3 0x403021ba in php_handler (r=0x81774b0)
at /tmp/test/php-4.4.0/sapi/apache2handler/sapi_apache2.c:557
#4 0x08067622 in ap_run_handler (r=0x81774b0) at config.c:153
#5 0x08067b3a in ap_invoke_handler (r=0x81774b0) at config.c:364
#6 0x0807c4d1 in ap_run_sub_req (r=0x81774b0) at request.c:1855
#7 0x4003547d in handle_include (ctx=0x8165918, bb=0xbfffd994,
r=0x8169478,
f=0x816aa98, head_ptr=0x8167908, inserted_head=0xbfffd960)
at mod_include.c:782
#8 0x40038ca0 in send_parsed_content (f=0x816aa98, bb=0x816abe0)
at mod_include.c:3309
#9 0x08071b9e in ap_pass_brigade (next=0x0, bb=0xfffffffe)
at util_filter.c:512
#10 0x08078666 in default_handler (r=0x8169478) at core.c:3640
#11 0x08067622 in ap_run_handler (r=0x8169478) at config.c:153
#12 0x08067b3a in ap_invoke_handler (r=0x8169478) at config.c:364
#13 0x08064ee3 in ap_process_request (r=0x8169478) at http_request.c:249
#14 0x08060dc1 in ap_process_http_connection (c=0x8165540) at
http_core.c:251
#15 0x0806f9c2 in ap_run_process_connection (c=0x8165540) at
connection.c:43
#16 0x0806619b in child_main (child_num_arg=3) at prefork.c:610
#17 0x080662b8 in make_child (s=0x809bff0, slot=0) at prefork.c:704
#18 0x0806639f in startup_children (number_to_start=5) at prefork.c:722
#19 0x08066aad in ap_mpm_run (_pconf=0x0, plog=0x80c62c0, s=0x809bff0)
at prefork.c:941
#20 0x0806bb36 in main (argc=3, argv=0xbfffdc44) at main.c:618
#21 0x42015704 in __libc_start_main () from /lib/tls/libc.so.6
--
Edit bug report at http://bugs.php.net/?id=35029&edit=1
--
Try a CVS snapshot (php4): http://bugs.php.net/fix.php?id=35029&r=trysnapshot4
Try a CVS snapshot (php5.0):
http://bugs.php.net/fix.php?id=35029&r=trysnapshot50
Try a CVS snapshot (php5.1):
http://bugs.php.net/fix.php?id=35029&r=trysnapshot51
Fixed in CVS: http://bugs.php.net/fix.php?id=35029&r=fixedcvs
Fixed in release: http://bugs.php.net/fix.php?id=35029&r=alreadyfixed
Need backtrace: http://bugs.php.net/fix.php?id=35029&r=needtrace
Need Reproduce Script: http://bugs.php.net/fix.php?id=35029&r=needscript
Try newer version: http://bugs.php.net/fix.php?id=35029&r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=35029&r=support
Expected behavior: http://bugs.php.net/fix.php?id=35029&r=notwrong
Not enough info:
http://bugs.php.net/fix.php?id=35029&r=notenoughinfo
Submitted twice:
http://bugs.php.net/fix.php?id=35029&r=submittedtwice
register_globals: http://bugs.php.net/fix.php?id=35029&r=globals
PHP 3 support discontinued: http://bugs.php.net/fix.php?id=35029&r=php3
Daylight Savings: http://bugs.php.net/fix.php?id=35029&r=dst
IIS Stability: http://bugs.php.net/fix.php?id=35029&r=isapi
Install GNU Sed: http://bugs.php.net/fix.php?id=35029&r=gnused
Floating point limitations: http://bugs.php.net/fix.php?id=35029&r=float
No Zend Extensions: http://bugs.php.net/fix.php?id=35029&r=nozend
MySQL Configuration Error: http://bugs.php.net/fix.php?id=35029&r=mysqlcfg
