From:             [EMAIL PROTECTED]
Operating system: VA Redhat 6.2.3
PHP version:      4.0.4pl1
PHP Bug Type:     Reproduceable crash
Bug description:  segfault w/ long POST/GET vars

The script in question is thousands of lines long.

basically, the script uses about 100 global variables and just under 30 (depending on 
parameters) sql queries to a postgresql db.

when submitting a form that creates an array (e.g. <input type="text" 
name="input[first_name]">) with 20 or so elements, apache segfaults.

When reworking the script to not use array style names for form controls, it works ok. 
I haven't tested whether or not it is simply a length issue or something to do 
specifically with the array style for form variables, as it does add significantly to 
the length of the URI.

It happens with either GET or POST for methods.

the stack trace is below:

Program received signal SIGSEGV, Segmentation fault.
0x4019e90a in zend_indent () at zend_indent.c:96
96                                                                      ZEND_PUTS(" 
(gdb) bt
#0  0x4019e90a in zend_indent () at zend_indent.c:96
#1  0xbfff8568 in ?? ()
#2  0x4018ef8b in _get_zval_ptr_ptr (node=0x8149774, Ts=0xbfff8580) at 
#3  0x4018a819 in execute (op_array=0x81a6424) at ./zend_execute.c:1531
#4  0x4018b9ac in execute (op_array=0x819d5f4) at ./zend_execute.c:1768
#5  0x4019a2bf in add_assoc_long (arg=0x8, key=0x3 <Address 0x3 out of bounds>, n=0) 
at zend_API.c:238
#6  0x401acba4 in php_fopen_with_path (filename=0xbffff954 
    mode=0x806813f "\203\b\211\205u\030\213E\215\024", path=0xbffff968 
"\2309\231\032@\234\020\b", opened_path=0x401a8edc)
    at fopen-wrappers.c:405
#7  0x401a8f43 in php_init_handler (s=0x810d39c, p=0x0) at mod_php4.c:706
#8  0x401a9939 in php_if_virtual (ht=135320476, return_value=0x0, this_ptr=0x0, 
return_value_used=1075485032) at php_apache.c:302
#9  0x401a997e in php_if_virtual (ht=135320476, return_value=0x1, this_ptr=0x1f4, 
return_value_used=23) at php_apache.c:302
#10 0x806c173 in ?? ()
#11 0x807f9a9 in ?? ()
#12 0x807fa0c in ?? ()
#13 0x807728e in ?? ()
#14 0x807741c in ?? ()
#15 0x8077579 in ?? ()
#16 0x8077ba6 in ?? ()
#17 0x8078333 in ?? ()
#18 0x400809eb in __libc_start_main (main=0x8077fec, argc=3, argv=0xbffffb34, 
init=0x804ecd0, fini=0x80ac6d0, rtld_fini=0x4000af10 <_dl_fini>, 
    stack_end=0xbffffb2c) at ../sysdeps/generic/libc-start.c:92

Edit Bug report at:

PHP Development Mailing List <>
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to