Hello. I am back. We have moved all the vhosted clients from this system
to another Ubuntu 8.04 and this problem has not resurfaced since then.
These systems are very, very similar in their configurations. Both are
primarily web servers. Its been now 28 days, and that is probably a good
sign that
Didn't help. The error is back again today (without extension).
--
canary mismatch on efree()
https://bugs.launchpad.net/bugs/503396
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in ubuntu.
--
Ubuntu-server-bugs mailing list
Hal,
are we speaking about php5-suhosin package or just plain libapache2-mod-
php5 and your sentence I've removed suhosin means that you have
recompiled php5 from source and quilt-deleted suhosin patch from series?
Those are two different things.
Ondrej
--
canary mismatch on efree()
Sorry, I removed the php5-suhosin package for now. I'd really like to
get it back, but I need to have things stabilized for a while for the
client's sake.
--
canary mismatch on efree()
https://bugs.launchpad.net/bugs/503396
You received this bug notification because you are a member of Ubuntu
It's fine with me :), and I understand your concern...I've worked for
webhosting company some time ago.
I was just asking if you have just removed php5-suhosin (extension) or
if you recompiled php5 to disable suhosin patch.
http://www.hardened-php.net/suhosin/download.html
If you have just
Yes, I thought I had seen that in my googling. And I really hope, this
helps isolate the problem (for everybody's sake).
If there are other ideas on things to try, I am open to those. Just
keeping in mind this is in a production environment so I have some
limitations.
Thanks.
--
canary
Another episode of this happened last night, about 4.5 hours after
rebooting to install the new kernel. This is a much shorter timeframe
between episodes. I don't know if this is a fluke or something else.
Same pattern though: the exact same line in the exact same file on the
same site. Again,
Are you able to reproduce this bug under controlled environment? On
testing machine, inside KVM, etc.?
I know that I may be asking too much, but could you try running PHP with
suhosin under valgrind?
--
canary mismatch on efree()
https://bugs.launchpad.net/bugs/503396
You received this bug
I have not been able to reproduce this problem outside of the current
production environment. And I can't realistically try to run php under
valgrind since these are paying clients, and I can't risk their sites
stability, etc.
The other problem with reproducing this is that it takes some time to
We had another episode of this today. The previous configuration changes
didn't help, obviously. The client mildly freaked. I am removing suhosin
for the time being. I hate to do it ... but ...
If I have time, I will try the updated kernel today.
--
canary mismatch on efree()
I've installed the latest kernel. Then had a change of heart, and put
sushosin back. Maybe the reboot brings good ju-ju.
--
canary mismatch on efree()
https://bugs.launchpad.net/bugs/503396
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to
Looks like a common issue when running PHP with suhosin:
http://www.suspekt.org/2008/10/12/suhosin-canary-mismatch-on-efree-heap-overflow-detected/
http://bugs.php.net/bug.php?id=44872
** Bug watch added: bugs.php.net/ #44872
http://bugs.php.net/bug.php?id=44872
** Changed in: php5 (Ubuntu)
Thierry, yes, thanks, I had actually come across both of these.
A couple of points: On the first link ... this same site ran fine on
another 8.04 system with a very similar configuration for 8-9 months
without this error. Secondly, if I have hit a php bug that is
corrupting memory (ie suhosin
Hal, is your system fully upgraded?
Where does the difference between kernel versions come from?
I remember there was some security upgrade in libpcre last year...
Ondrej
--
canary mismatch on efree()
https://bugs.launchpad.net/bugs/503396
You received this bug notification because you are a
The server is updated, except for some packages held back, which
includes a newer kernel. libpcre is up to date. I haven't done the
kernel upgrade (yet), because of the reboot, and the server is remote
from where I am (and /me worry over such things :). I will do that soon,
just in case it is
As far as I remember, the session encryption bug was related to new
version of php (in karmic?).
Another shot in the dark - is there different setting in
MaxRequestsPerChild setting in apache2? Could you set it to some
arbitrary number, so apache2 child gets reloaded once in a while? (I
know it's
Ondřej, both systems were already set to 1000 MaxRequestsPerChild.
--
canary mismatch on efree()
https://bugs.launchpad.net/bugs/503396
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in ubuntu.
--
Ubuntu-server-bugs mailing list
Is there a difference in the architecture? There are some bugs in PHP
triggered by 64-bit (amd64) arch.
--
canary mismatch on efree()
https://bugs.launchpad.net/bugs/503396
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in ubuntu.
Thanks. Not 64bit. Here are the kernels:
Problematic system:
# uname -a
Linux Garth 2.6.24-16-server #1 SMP Thu Apr 10 13:58:00 UTC 2008 i686 GNU/Linux
Previous system:
# uname -a
Linux ratt 2.6.24-24-server #1 SMP Tue Aug 18 17:46:20 UTC 2009 i686 GNU/Linux
--
canary mismatch on efree()
19 matches
Mail list logo
