From: f4ckm5 at web dot de Operating system: Windows Server 2003 SP2 32Bit PHP version: 5.3.0 PHP Bug Type: Reproducible crash Bug description: PHP Crashes on Freeing Mysqli Result Storage
Description: ------------ PHP Crashes on Freeing Mysqli Result Storage. It happens randomly on our production machine, when the Server is under medium to heavy load. I did a Win32 backtrace and captured 10 crashes in merely 5 minutes, each causing the apache httpd.exe worker process to restart. Reproduce code: --------------- I happens randomly under greater server load. I could not pin the error to some lines of code. It happens with all the 5.3 builds I tested official 5.3.0 as well as latest snapshot. It does not happen with 5.2.x at all. Expected result: ---------------- No crash during mysqli_result_free_storage. Actual result: -------------- Thread 196 - System ID 2848 Entry point msvcrt!_endthreadex+2f Create time 20.08.2009 08:57:01 Time spent in user mode 0 Days 0:0:1.312 Time spent in kernel mode 0 Days 0:0:0.421 Function Arg 1 Arg 2 Arg 3 Source php5ts!_zend_mm_free_int+139 012d8bb0 00030004 0071ff46 php5ts!_efree+36 012293e8 08b3fc40 00725357 php5ts!_zval_ptr_dtor+66 05565ecc 006ad300 08b3fc20 php5ts!zend_hash_destroy+27 08b3fb98 08b3fc20 015a1665 php5ts!zend_object_std_dtor+2b 08b3fc20 012d7970 08b3fc20 php_mysqli!mysqli_objects_free_storage+25 08b3fc20 012d7970 055331cc php_mysqli!mysqli_result_free_storage+28 08b3fc20 012d7970 012d7970 php5ts!zend_objects_store_del_ref_by_handle_ex+1b6 0000001d 015b1600 012d7970 php5ts!zend_objects_store_del_ref+1e 0919f470 012d7970 00000000 php5ts!_zval_dtor_func+76 0919f470 091ac5af 007252a6 php5ts!_zval_ptr_dtor+5b 091ac594 012d7970 00000000 php5ts!zend_hash_del_key_or_index+1c6 0566ac60 05557a50 00000007 php5ts!ZEND_UNSET_VAR_SPEC_CV_HANDLER+6c 046efbfc 012d7970 046efe78 php5ts!execute+29e 05573a98 012d7900 00000000 php5ts!zend_execute_scripts+f6 00000008 012d7970 00000000 php5ts!php_execute_script+22d 046efe78 012d7970 00000003 php5apache2_2!php_handler+5d0 058b48c8 00615988 058b48c8 libhttpd!ap_run_handler+21 058b48c8 058b48c8 058b48c8 libhttpd!ap_invoke_handler+ae 00000000 056330d0 046eff3c libhttpd!ap_die+29e 058b48c8 00000000 0065fb90 libhttpd!ap_get_request_note+1ccc 056330d0 056330d0 056330d0 libhttpd!ap_run_process_connection+21 056330d0 0062b208 046eff84 libhttpd!ap_process_connection+33 056330d0 012cf9c0 00000000 libhttpd!ap_regkey_value_remove+c7c 056330c8 00000000 00000000 msvcrt!_endthreadex+a3 012a7358 00000000 00000000 kernel32!BaseThreadStart+34 77b9b4bc 012a7358 00000000 PHP5TS!_ZEND_MM_FREE_INT+139In httpd__PID__444__Date__08_20_2009__Time_08_57_29AM__615__First chance exception 0XC0000005.dmp the assembly instruction at php5ts!_zend_mm_free_int+139 in C:\PHP\php5ts.dll from The PHP Group has caused an access violation exception (0xC0000005) when trying to read from memory location 0x00000010 on thread 196 Module Information Image Name: C:\PHP\php5ts.dll Symbol Type: PDB Base address: 0x006a0000 Time Stamp: Mon Jun 29 22:24:07 2009 Checksum: 0x00000000 Comments: COM DLL: False Company Name: The PHP Group ISAPIExtension: False File Description: PHP Script Interpreter ISAPIFilter: False File Version: 5.3.0 Managed DLL: False Internal Name: PHP Script Interpreter VB DLL: False Legal Copyright: Copyright © 1997-2009 The PHP Group Loaded Image Name: php5ts.dll Legal Trademarks: PHP Mapped Image Name: Original filename: php5ts.dll Module name: php5ts Private Build: Single Threaded: False Product Name: PHP Module Size: 5,44 MBytes Product Version: 5.3.0 Symbol File Name: C:\Dokumente und Einstellungen\Administrator.HML\Desktop\php-debug-pack-5.3.0-Win32-VC6-x86\php5ts.pdb Special Build: & -- Edit bug report at http://bugs.php.net/?id=49308&edit=1 -- Try a snapshot (PHP 5.2): http://bugs.php.net/fix.php?id=49308&r=trysnapshot52 Try a snapshot (PHP 5.3): http://bugs.php.net/fix.php?id=49308&r=trysnapshot53 Try a snapshot (PHP 6.0): http://bugs.php.net/fix.php?id=49308&r=trysnapshot60 Fixed in SVN: http://bugs.php.net/fix.php?id=49308&r=fixed Fixed in SVN and need be documented: http://bugs.php.net/fix.php?id=49308&r=needdocs Fixed in release: http://bugs.php.net/fix.php?id=49308&r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=49308&r=needtrace Need Reproduce Script: http://bugs.php.net/fix.php?id=49308&r=needscript Try newer version: http://bugs.php.net/fix.php?id=49308&r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=49308&r=support Expected behavior: http://bugs.php.net/fix.php?id=49308&r=notwrong Not enough info: http://bugs.php.net/fix.php?id=49308&r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=49308&r=submittedtwice register_globals: http://bugs.php.net/fix.php?id=49308&r=globals PHP 4 support discontinued: http://bugs.php.net/fix.php?id=49308&r=php4 Daylight Savings: http://bugs.php.net/fix.php?id=49308&r=dst IIS Stability: http://bugs.php.net/fix.php?id=49308&r=isapi Install GNU Sed: http://bugs.php.net/fix.php?id=49308&r=gnused Floating point limitations: http://bugs.php.net/fix.php?id=49308&r=float No Zend Extensions: http://bugs.php.net/fix.php?id=49308&r=nozend MySQL Configuration Error: http://bugs.php.net/fix.php?id=49308&r=mysqlcfg