#47930 [NEW]: ext/filter crashes when module startup bails out

Wed, 08 Apr 2009 16:01:15 -0700 

From:             stas at zend dot com
Operating system: Linux
PHP version:      5.3.0RC1
PHP Bug Type:     Reproducible crash
Bug description:  ext/filter crashes when module startup bails out

Description:
------------
1. If one of the modules startup bails out, that leads to aborting the
startup sequence and PG(modules_activated) be 0.
This, in turn, precludes running RSHUTDOWN functions on modules.

2. ext/filter allocates IF_G(get_array), etc. in the course of the request
startup, and if RSHUTDOWN is not called, they are not cleaned up.

3. Since ext/filter does not initialize IF_G arrays, on the next request
uncleaned value will be used. Since these arrays are no longer pointing to
a valid memory (which was cleaned on the end of the previous request), this
will result in a crash. 

Reproduce code:
---------------
1. Create extension that uses zend_bailout in RINIT.
2. Run two requests while ext/filter is present and turned on
3. Crash! 


-- 
Edit bug report at http://bugs.php.net/?id=47930&edit=1
-- 
Try a CVS snapshot (PHP 5.2):        
http://bugs.php.net/fix.php?id=47930&r=trysnapshot52
Try a CVS snapshot (PHP 5.3):        
http://bugs.php.net/fix.php?id=47930&r=trysnapshot53
Try a CVS snapshot (PHP 6.0):        
http://bugs.php.net/fix.php?id=47930&r=trysnapshot60
Fixed in CVS:                        
http://bugs.php.net/fix.php?id=47930&r=fixedcvs
Fixed in CVS and need be documented: 
http://bugs.php.net/fix.php?id=47930&r=needdocs
Fixed in release:                    
http://bugs.php.net/fix.php?id=47930&r=alreadyfixed
Need backtrace:                      
http://bugs.php.net/fix.php?id=47930&r=needtrace
Need Reproduce Script:               
http://bugs.php.net/fix.php?id=47930&r=needscript
Try newer version:                   
http://bugs.php.net/fix.php?id=47930&r=oldversion
Not developer issue:                 
http://bugs.php.net/fix.php?id=47930&r=support
Expected behavior:                   
http://bugs.php.net/fix.php?id=47930&r=notwrong
Not enough info:                     
http://bugs.php.net/fix.php?id=47930&r=notenoughinfo
Submitted twice:                     
http://bugs.php.net/fix.php?id=47930&r=submittedtwice
register_globals:                    
http://bugs.php.net/fix.php?id=47930&r=globals
PHP 4 support discontinued:          http://bugs.php.net/fix.php?id=47930&r=php4
Daylight Savings:                    http://bugs.php.net/fix.php?id=47930&r=dst
IIS Stability:                       
http://bugs.php.net/fix.php?id=47930&r=isapi
Install GNU Sed:                     
http://bugs.php.net/fix.php?id=47930&r=gnused
Floating point limitations:          
http://bugs.php.net/fix.php?id=47930&r=float
No Zend Extensions:                  
http://bugs.php.net/fix.php?id=47930&r=nozend
MySQL Configuration Error:           
http://bugs.php.net/fix.php?id=47930&r=mysqlcfg

Reply via email to