From: [EMAIL PROTECTED]
Operating system: linux
PHP version: 4.2.0
PHP Bug Type: Session related
Bug description: segfault reading from session
I sent bugreport earler about problems wish
session_register. Now seems that the problem is even
worse.
when the session date grows large (over 6k), there is
segfault in php code.
here is a strace
<snip>
read(42, "<?\n// Foo_portal \"tab-c\" compati"..., 8192) =
8192
brk(0x822b000) = 0x822b000
brk(0x822f000) = 0x822f000
brk(0x8233000) = 0x8233000
brk(0x8243000) = 0x8243000
read(42, "f=\"f_\".$gi.\"_other\";\n global"..., 8192)
= 8192
brk(0x8253000) = 0x8253000
old_mmap(NULL, 249856, PROT_READ|PROT_WRITE,
MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x40590000
mremap(0x40590000, 249856, 69632, MREMAP_MAYMOVE) =
0x40590000
brk(0x8263000) = 0x8263000
read(42, "me][$gi][\'fkey\']=array(\n\t\t\t\t\t "...,
8192) = 8192
old_mmap(NULL, 249856, PROT_READ|PROT_WRITE,
MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x405a1000
mremap(0x405a1000, 249856, 86016, MREMAP_MAYMOVE) =
0x405a1000
read(42, " }else{\n $this->display_fo"..., 8192) =
4726
read(42, "", 4096) = 0
read(42, "", 8192) = 0
ioctl(42, TCGETS, 0xbfffb628) = -1 ENOTTY
(Inappropriate ioctl for device)
close(42) = 0
munmap(0x40017000, 4096) = 0
lstat64(0xbfff9b4c, 0xbfffab94) = 0
lstat64(0xbfff9b4c, 0xbfffab94) = 0
open("/tmp/sess_dabfee3e9012da897012f24db5f753d0", O_RDWR)
= 42
flock(42, LOCK_EX) = 0
fstat64(0x2a, 0xbfffcc5c) = 0
pread(42, "tab|O:13:\"dynamic_table\":11:{s:6"..., 6133,
0) = 6133
--- SIGSEGV (Segmentation fault) ---
chdir("/usr") = 0
rt_sigaction(SIGSEGV, {SIG_DFL}, {SIG_DFL}, 8) = 0
getpid() = 27838
kill(27838, SIGSEGV) = 0
sigreturn() = ? (mask now [])
--- SIGSEGV (Segmentation fault) ---
Session file seems ok. Here is [session] section from
php.ini
[Session]
session.save_handler = files
session.save_path = /tmp
session.use_cookies = 1
session.name = SID
session.auto_start = 0
session.cookie_lifetime = 0
session.cookie_path = /
session.cookie_domain =
session.serialize_handler = php
session.gc_probability = 1
session.gc_maxlifetime = 5440
session.referer_check =
session.entropy_length = 0
session.entropy_file =
; session.entropy_length = 16
; session.entropy_file = /dev/urandom
session.cache_limiter = nocache
session.cache_expire = 380
session.use_trans_sid = 1
url_rewriter.tags =
"a=href,area=href,frame=src,input=src,form=fakeentry"
yesterday i noticed that server returns zero sized entry,
so i updated form 4.1.2/apache.1.3.20 to
php4.2.0rc4/apach2.0.35 but the problem remains. 4.1.2
worked fine before, i don't know what happened.
romans
--
Edit bug report at http://bugs.php.net/?id=16646&edit=1
--
Fixed in CVS: http://bugs.php.net/fix.php?id=16646&r=fixedcvs
Fixed in release: http://bugs.php.net/fix.php?id=16646&r=alreadyfixed
Need backtrace: http://bugs.php.net/fix.php?id=16646&r=needtrace
Try newer version: http://bugs.php.net/fix.php?id=16646&r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=16646&r=support
Expected behavior: http://bugs.php.net/fix.php?id=16646&r=notwrong
Not enough info: http://bugs.php.net/fix.php?id=16646&r=notenoughinfo
Submitted twice: http://bugs.php.net/fix.php?id=16646&r=submittedtwice
