[PHP-DEV] Bug #13875: Apache 1.3.22 will start outputing Segmentation fault (11)'s in error_log and slowly die then crash, up to 12 hours before the crash too, passthru function?.

[getdown]

From:             [EMAIL PROTECTED]
Operating system: Linux 2.4.12-ac1 Glibc 2.2.4 GCC 2.95.3
PHP version:      4.0.6
PHP Bug Type:     Reproducible crash
Bug description:  Apache 1.3.22 will start outputing Segmentation fault (11)'s in 
error_log and slowly die then crash, up to 12 hours before the crash too, passthru 
function?.

I cannot reproduce this bug 'on the fly', it just happens often when
running
a gzip process on the server that takes up most of the CPU, then
apache+php
will have the Segmentation fault (11)'s in the log.  It often won't die
there, or crash, but will still work and later start really spewing the
errors which then the server is inaccessable.  It will then often crash
after doing that for awhile, it seems to need a person accessing the php
pages during the high CPU load to start the 'downward spiral'.  I have 
a backtrace, it seems to be something to do with the passthru function,
since that is so far the place it always shows on the backtraces.  The
passthru function is being used to execute perl scripts on the webserver,
outputing html formatted text, there are arguments to those scripts too
which sometimes are not defined, which I don't think would be the
problem,
but am not sure.  I can do more debugging, but may need instructions,
this is the first time I have done anything with gdb.

Details are below, thanks in advance,
Chris Kennedy <[EMAIL PROTECTED]>

PHP: version 4.0.6
--with-apache=/u1/sys/src/APACHE/apache_1.3.22
--with-yp
--with-mysql=/opt/mysql
--with-gdbm
--with-config-file-path=/opt/apache/conf
--enable-debug
--enable-ftp
--with-imap
--enable-trans-sid
--enable-calendar
--with-zlib
--with-ldap

APACHE: version 1.3.22
--prefix=/opt/apache
--activate-module=src/modules/php4/libphp4.a
--activate-module=src/modules/standard/mod_frontpage.c
--activate-module=src/modules/ssl/libssl.a

(gdb) run -X
Starting program: /opt/apache/bin/httpd -X
(gdb) bt

#0  0x40008a25 in _dl_lookup_versioned_symbol () from /lib/ld-linux.so.2
#1  0x4000b1fa in fixup () from /lib/ld-linux.so.2
#2  0x4000b3c0 in _dl_runtime_resolve () from /lib/ld-linux.so.2
#3  0x80f6bb7 in php_if_passthru (ht=1, return_value=0x837fac4,
this_ptr=0x0,
    return_value_used=0) at exec.c:315
#4  0x818a21a in execute (op_array=0x8351dbc) at ./zend_execute.c:1504
#5  0x8150434 in zend_execute_scripts (type=8, file_count=3) at
zend.c:752
#6  0x80a76ff in php_execute_script (primary_file=0xbffff908) at
main.c:1206
#7  0x816137c in apache_php_module_main (r=0x8330144,
display_source_mode=0)
    at sapi_apache.c:89
#8  0x80a4372 in send_php (r=0x8330144, display_source_mode=0,
    filename=0x8331c7c "/var/www/html/moninter/index.php") at
mod_php4.c:536
#9  0x80a43aa in send_parsed_php (r=0x8330144) at mod_php4.c:547
#10 0x8194de9 in ap_invoke_handler (r=0x8330144) at http_config.c:517
#11 0x81aa20f in process_request_internal (r=0x8330144) at
http_request.c:1311
#12 0x81aa27a in ap_process_request (r=0x8330144) at http_request.c:1327
#13 0x81a1050 in child_main (child_num_arg=0) at http_main.c:4555
#14 0x81a1235 in make_child (s=0x82c78c4, slot=0, now=1004390980)
    at http_main.c:4668
#15 0x81a13b6 in startup_children (number_to_start=5) at http_main.c:4750
#16 0x81a1a4d in standalone_main (argc=2, argv=0xbffffbe4) at
http_main.c:5055
#17 0x81a22cc in main (argc=2, argv=0xbffffbe4) at http_main.c:5415
#18 0x40241551 in __libc_start_main () from //lib/libc.so.6

> bt full
#0  0x40008a25 in _dl_lookup_versioned_symbol () from /lib/ld-linux.so.2
No symbol table info available.
#1  0x4000b1fa in fixup () from /lib/ld-linux.so.2
No symbol table info available.
#2  0x4000b3c0 in _dl_runtime_resolve () from /lib/ld-linux.so.2
No symbol table info available.
#3  0x80f6bb7 in php_if_passthru (ht=1, return_value=0x837fac4,
this_ptr=0x0,
    return_value_used=0) at exec.c:315
        arg1 = (pval **) 0x833d63c
        arg2 = (pval **) 0xc
        arg_count = 1
        ret = -1073747940
#4  0x818a21a in execute (op_array=0x8351dbc) at ./zend_execute.c:1504
        original_return_value = (zval **) 0x8390154
        return_value_used = 0
        opline = (zend_op *) 0x839013c
        end = (zend_op *) 0x8390574
        function_state = {function_symbol_table = 0x0, function =
0x82f9ad8,
  reserved = {0x82c33a8, 0xbffff908, 0x815aaf4, 0x0}}
        fbc = (zend_function *) 0x0
        object = {ptr = 0x0}
        Ts = (temp_variable *) 0xbfffe544
        original_in_execution = 0 '\000'
#5  0x8150434 in zend_execute_scripts (type=8, file_count=3) at
zend.c:752

        files = 0xbfffe874
        i = 1
        file_handle = (zend_file_handle *) 0xbffff908
        orig_op_array = (zend_op_array *) 0x0
#6  0x80a76ff in php_execute_script (primary_file=0xbffff908) at
main.c:1206
        prepend_file_p = (zend_file_handle *) 0x0
        append_file_p = (zend_file_handle *) 0x0
        prepend_file = {type = 210 'O',
  filename = 0x8010100 <Address 0x8010100 out of bounds>,
  opened_path = 0x821a173 "", handle = {fd = -1073743652, fp =
0xbffff8dc},
  free_filename = 184 ','}
        append_file = {type = 188 '<BC>',
  filename = 0x814fd08
"\203<C4>\020\211<EC>]A\220U\211<E5>\203<EC>\b<C7>\005
pened_path = 0x82c37c0 "5", handle = {fd = 135603192, fp = 0x81523f8},
  free_filename = 212 'O'}
        old_cwd = 0xbfffe884 "/root"
#7  0x816137c in apache_php_module_main (r=0x8330144,
display_source_mode=0)
    at sapi_apache.c:89
        file_handle = {type = 2 '\002',
  filename = 0x8331c7c "/var/www/html/moninter/index.php",
  opened_path = 0x8351fbc "P\212j", handle = {fd = 137698856, fp =
0x8351e28},
  free_filename = 0 '\000'}
#8  0x80a4372 in send_php (r=0x8330144, display_source_mode=0,
    filename=0x8331c7c "/var/www/html/moninter/index.php") at
mod_php4.c:536
        retval = 0
        per_dir_conf = (HashTable *) 0x832e038
#9  0x80a43aa in send_parsed_php (r=0x8330144) at mod_php4.c:547
No locals.
#10 0x8194de9 in ap_invoke_handler (r=0x8330144) at http_config.c:517
        handp = (fast_handler_rec *) 0x8334fac
        handler = 0x8331f2c "application/x-httpd-php"
        p = 0x0
        handler_len = 23
        result = 500
#11 0x81aa20f in process_request_internal (r=0x8330144) at
http_request.c:1311
        access_status = 0
#12 0x81aa27a in ap_process_request (r=0x8330144) at http_request.c:1327
        old_stat = 3
#13 0x81a1050 in child_main (child_num_arg=0) at http_main.c:4555
        conn_io = (BUFF *) 0x82ea6ac
        r = (request_rec *) 0x8330144
        clen = 16
        sa_server = {sa_family = 2,
  sa_data = "\000P\n\000\000<FF>\001\000\000$\017\000\000"}
"}
        lr = (listen_rec *) 0x0
#14 0x81a1235 in make_child (s=0x82c78c4, slot=0, now=1004390980)
    at http_main.c:4668
        pid = 0
#15 0x81a13b6 in startup_children (number_to_start=5) at http_main.c:4750
        i = 0
        now = 1004390980
#16 0x81a1a4d in standalone_main (argc=2, argv=0xbffffbe4) at
http_main.c:5055
        remaining_children_to_start = 5
#17 0x81a22cc in main (argc=2, argv=0xbffffbe4) at http_main.c:5415
        c = -1
        sock_in = 1073787840
        sock_out = 1077208412
        s = 0xbffffcca "httpd"
#18 0x40241551 in __libc_start_main () from //lib/libc.so.6
 

-- 
Edit bug report at: http://bugs.php.net/?id=13875&edit=1


-- 
PHP Development Mailing List <http://www.php.net/>
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]