Edit report at https://bugs.php.net/bug.php?id=43834&edit=1
ID: 43834
Comment by: neweracracker at gmail dot com
Reported by: jaco at jump dot co dot za
Summary: zend_mm_shutdown - Apache Crash
Status: No Feedback
Type: Bug
Package: Scripting Engine problem
Operating System: Windows 2003
PHP Version: 5.2CVS-2008-01-14 (snap)
Block user comment: N
Private report: N
New Comment:
A workaround to this issue is to create an environment variable named
USE_ZEND_ALLOC and set it to "0" (without quotes).
Previous Comments:
------------------------------------------------------------------------
[2012-01-30 17:26:50] neweracracker at gmail dot com
I can also reproduce this bug, this happens when php code is ran under high
concurrency.
Apache bench utility could be used to reproduce this,
Apache must be configured to use 32 ThreadsPerChild in order for this to be
reproducible with fewer concurrent connections.
Test Script:
<?php
$link = mysqli_connect('127.0.0.1','root','password');
mysqli_close($link);
echo 'OK';
?>
Apache bench:
ab -n 1000 -c 500 http://127.0.0.1/test.php
------------------------------------------------------------------------
[2010-04-11 00:42:18] qq12345 at web dot de
For me the same:
Since update to PHP 5.3.1 in conjunction with Apache 2.2.14
We have only 100 page impressions per day.
By random per day around 4 crashes.
Modul: php5ts.dll
In the dump:
Funktion: php5ts!zend_mm_shutdown
00dcc1b1 45 inc ebp
00dcc1b2 14ba adc al,0xba
00dcc1b4 0100 add [eax],eax
00dcc1b6 0000 add [eax],al
00dcc1b8 8bcf mov ecx,edi
00dcc1ba d3e2 shl edx,cl
00dcc1bc f7d2 not edx
00dcc1be 23c2 and eax,edx
00dcc1c0 894514 mov [ebp+0x14],eax
00dcc1c3 e90d010000 jmp php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc1c8 8b4f18 mov ecx,[edi+0x18]
00dcc1cb 33c0 xor eax,eax
00dcc1cd 85c9 test ecx,ecx
00dcc1cf 0f95c0 setne al
00dcc1d2 8b4c8714 mov ecx,[edi+eax*4+0x14]
00dcc1d6 8d448714 lea eax,[edi+eax*4+0x14]
00dcc1da 85c9 test ecx,ecx
00dcc1dc 741a jz php5ts!zend_mm_shutdown+0xf88
(00dcc1f8)
00dcc1de 8bf9 mov edi,ecx
00dcc1e0 8bd0 mov edx,eax
00dcc1e2 33c9 xor ecx,ecx
00dcc1e4 8b4718 mov eax,[edi+0x18]
00dcc1e7 85c0 test eax,eax
00dcc1e9 0f95c1 setne cl
00dcc1ec 8d448f14 lea eax,[edi+ecx*4+0x14]
00dcc1f0 8b4c8f14 mov ecx,[edi+ecx*4+0x14]
00dcc1f4 85c9 test ecx,ecx
00dcc1f6 75e6 jnz php5ts!zend_mm_shutdown+0xf6e
(00dcc1de)
00dcc1f8 c70200000000 mov dword ptr [edx],0x0
00dcc1fe eb6a jmp php5ts!zend_mm_shutdown+0xffa
(00dcc26a)
FEHLER ->00dcc200 395f0c cmp [edi+0xc],ebx
ds:0023:0000000c=????????
00dcc203 7505 jnz php5ts!zend_mm_shutdown+0xf9a
(00dcc20a)
00dcc205 395908 cmp [ecx+0x8],ebx
00dcc208 7411 jz php5ts!zend_mm_shutdown+0xfab
(00dcc21b)
00dcc20a 68c4cc1301 push 0x113ccc4
00dcc20f e85cf6ffff call php5ts!zend_mm_shutdown+0x600
(00dcb870)
00dcc214 8b4c2418 mov ecx,[esp+0x18]
00dcc218 83c404 add esp,0x4
00dcc21b 894f0c mov [edi+0xc],ecx
00dcc21e 897908 mov [ecx+0x8],edi
00dcc221 8b03 mov eax,[ebx]
00dcc223 3d10010000 cmp eax,0x110
00dcc228 7339 jnb php5ts!zend_mm_shutdown+0xff3
(00dcc263)
00dcc22a 3bf9 cmp edi,ecx
00dcc22c 0f85a3000000 jne php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc232 c1e803 shr eax,0x3
00dcc235 83e802 sub eax,0x2
00dcc238 8b94c5d0000000 mov edx,[ebp+eax*8+0xd0]
00dcc23f 8b8cc5d4000000 mov ecx,[ebp+eax*8+0xd4]
00dcc246 3bd1 cmp edx,ecx
00dcc248 0f8587000000 jne php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc24e ba01000000 mov edx,0x1
00dcc253 8bc8 mov ecx,eax
00dcc255 8b4510 mov eax,[ebp+0x10]
00dcc258 d3e2 shl edx,cl
00dcc25a f7d2 not edx
00dcc25c 23c2 and eax,edx
00dcc25e 894510 mov [ebp+0x10],eax
00dcc261 eb72 jmp php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc263 8b4310 mov eax,[ebx+0x10]
00dcc266 85c0 test eax,eax
---------------------
Anwendungsausnahme aufgetreten:
Anwendung: ....\xampp\apache\bin\httpd.exe (pid=2804)
Wann: 31.03.2010 @ 04:58:57.478
Ausnahmenummer: c0000005 (Zugriffsverletzung)
Funktion: php5ts!zend_mm_shutdown
00dcc2a0 cc int 3
00dcc2a1 f5 cmc
00dcc2a2 ffff ???
00dcc2a4 83c404 add esp,0x4
00dcc2a7 8b5714 mov edx,[edi+0x14]
00dcc2aa 8d4714 lea eax,[edi+0x14]
00dcc2ad 894210 mov [edx+0x10],eax
00dcc2b0 8b4318 mov eax,[ebx+0x18]
00dcc2b3 83c718 add edi,0x18
00dcc2b6 85c0 test eax,eax
00dcc2b8 8907 mov [edi],eax
00dcc2ba 7419 jz php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc2bc 8b4810 mov ecx,[eax+0x10]
00dcc2bf 3901 cmp [ecx],eax
00dcc2c1 740d jz php5ts!zend_mm_shutdown+0x1060
(00dcc2d0)
00dcc2c3 68c4cc1301 push 0x113ccc4
00dcc2c8 e8a3f5ffff call php5ts!zend_mm_shutdown+0x600
(00dcb870)
00dcc2cd 83c404 add esp,0x4
00dcc2d0 8b17 mov edx,[edi]
00dcc2d2 897a10 mov [edx+0x10],edi
00dcc2d5 8b03 mov eax,[ebx]
00dcc2d7 8b4c2418 mov ecx,[esp+0x18]
00dcc2db 03c8 add ecx,eax
00dcc2dd 894c2418 mov [esp+0x18],ecx
00dcc2e1 8bf9 mov edi,ecx
00dcc2e3 8b4604 mov eax,[esi+0x4]
00dcc2e6 a801 test al,0x1
00dcc2e8 0f85a2010000 jne php5ts!zend_mm_shutdown+0x1220
(00dcc490)
00dcc2ee 24fc and al,0xfc
00dcc2f0 2bf0 sub esi,eax
FEHLER ->00dcc2f2 8b7e08 mov edi,[esi+0x8]
ds:0023:feea64cc=????????
00dcc2f5 8b5e0c mov ebx,[esi+0xc]
00dcc2f8 3bfe cmp edi,esi
00dcc2fa 0f85b3000000 jne php5ts!zend_mm_shutdown+0x1143
(00dcc3b3)
00dcc300 3bde cmp ebx,esi
00dcc302 740d jz php5ts!zend_mm_shutdown+0x10a1
(00dcc311)
00dcc304 68c4cc1301 push 0x113ccc4
00dcc309 e862f5ffff call php5ts!zend_mm_shutdown+0x600
(00dcb870)
00dcc30e 83c404 add esp,0x4
00dcc311 8b5618 mov edx,[esi+0x18]
00dcc314 33c9 xor ecx,ecx
00dcc316 85d2 test edx,edx
00dcc318 0f95c1 setne cl
00dcc31b 8b7c8e14 mov edi,[esi+ecx*4+0x14]
00dcc31f 8d548e14 lea edx,[esi+ecx*4+0x14]
00dcc323 85ff test edi,edi
00dcc325 7554 jnz php5ts!zend_mm_shutdown+0x110b
(00dcc37b)
00dcc327 8b16 mov edx,[esi]
00dcc329 89542414 mov [esp+0x14],edx
00dcc32d 0fbd442414 bsr eax,[esp+0x14]
00dcc332 8bf8 mov edi,eax
00dcc334 8b4610 mov eax,[esi+0x10]
00dcc337 3930 cmp [eax],esi
00dcc339 740d jz php5ts!zend_mm_shutdown+0x10d8
(00dcc348)
00dcc33b 68c4cc1301 push 0x113ccc4
00dcc340 e82bf5ffff call php5ts!zend_mm_shutdown+0x600
(00dcb870)
00dcc345 83c404 add esp,0x4
00dcc348 8b4e10 mov ecx,[esi+0x10]
00dcc34b 8d94bdd0010000 lea edx,[ebp+edi*4+0x1d0]
00dcc352 c70100000000 mov dword ptr [ecx],0x0
00dcc358 8b4610 mov eax,[esi+0x10]
---------------------------------
Anwendungsausnahme aufgetreten:
Anwendung: ...\xampp\apache\bin\httpd.exe (pid=3184)
Wann: 31.03.2010 @ 05:08:57.478
Ausnahmenummer: c0000005 (Zugriffsverletzung)
*** ERROR: Symbol file could not be found. Defaulted to export symbols for
C:\avinotec\xampp\php\php5ts.dll -
Funktion: php5ts!zend_mm_shutdown
00dcc1b1 45 inc ebp
00dcc1b2 14ba adc al,0xba
00dcc1b4 0100 add [eax],eax
00dcc1b6 0000 add [eax],al
00dcc1b8 8bcf mov ecx,edi
00dcc1ba d3e2 shl edx,cl
00dcc1bc f7d2 not edx
00dcc1be 23c2 and eax,edx
00dcc1c0 894514 mov [ebp+0x14],eax
00dcc1c3 e90d010000 jmp php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc1c8 8b4f18 mov ecx,[edi+0x18]
00dcc1cb 33c0 xor eax,eax
00dcc1cd 85c9 test ecx,ecx
00dcc1cf 0f95c0 setne al
00dcc1d2 8b4c8714 mov ecx,[edi+eax*4+0x14]
00dcc1d6 8d448714 lea eax,[edi+eax*4+0x14]
00dcc1da 85c9 test ecx,ecx
00dcc1dc 741a jz php5ts!zend_mm_shutdown+0xf88
(00dcc1f8)
00dcc1de 8bf9 mov edi,ecx
00dcc1e0 8bd0 mov edx,eax
00dcc1e2 33c9 xor ecx,ecx
00dcc1e4 8b4718 mov eax,[edi+0x18]
00dcc1e7 85c0 test eax,eax
00dcc1e9 0f95c1 setne cl
00dcc1ec 8d448f14 lea eax,[edi+ecx*4+0x14]
00dcc1f0 8b4c8f14 mov ecx,[edi+ecx*4+0x14]
00dcc1f4 85c9 test ecx,ecx
00dcc1f6 75e6 jnz php5ts!zend_mm_shutdown+0xf6e
(00dcc1de)
00dcc1f8 c70200000000 mov dword ptr [edx],0x0
00dcc1fe eb6a jmp php5ts!zend_mm_shutdown+0xffa
(00dcc26a)
FEHLER ->00dcc200 395f0c cmp [edi+0xc],ebx
ds:0023:00000010=????????
00dcc203 7505 jnz php5ts!zend_mm_shutdown+0xf9a
(00dcc20a)
00dcc205 395908 cmp [ecx+0x8],ebx
00dcc208 7411 jz php5ts!zend_mm_shutdown+0xfab
(00dcc21b)
00dcc20a 68c4cc1301 push 0x113ccc4
00dcc20f e85cf6ffff call php5ts!zend_mm_shutdown+0x600
(00dcb870)
00dcc214 8b4c2418 mov ecx,[esp+0x18]
00dcc218 83c404 add esp,0x4
00dcc21b 894f0c mov [edi+0xc],ecx
00dcc21e 897908 mov [ecx+0x8],edi
00dcc221 8b03 mov eax,[ebx]
00dcc223 3d10010000 cmp eax,0x110
00dcc228 7339 jnb php5ts!zend_mm_shutdown+0xff3
(00dcc263)
00dcc22a 3bf9 cmp edi,ecx
00dcc22c 0f85a3000000 jne php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc232 c1e803 shr eax,0x3
00dcc235 83e802 sub eax,0x2
00dcc238 8b94c5d0000000 mov edx,[ebp+eax*8+0xd0]
00dcc23f 8b8cc5d4000000 mov ecx,[ebp+eax*8+0xd4]
00dcc246 3bd1 cmp edx,ecx
00dcc248 0f8587000000 jne php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc24e ba01000000 mov edx,0x1
00dcc253 8bc8 mov ecx,eax
00dcc255 8b4510 mov eax,[ebp+0x10]
00dcc258 d3e2 shl edx,cl
00dcc25a f7d2 not edx
00dcc25c 23c2 and eax,edx
00dcc25e 894510 mov [ebp+0x10],eax
00dcc261 eb72 jmp php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc263 8b4310 mov eax,[ebx+0x10]
00dcc266 85c0 test eax,eax
---------------------------
Anwendungsausnahme aufgetreten:
Anwendung: ....\xampp\apache\bin\httpd.exe (pid=1392)
Wann: 31.03.2010 @ 10:28:57.510
Ausnahmenummer: c0000005 (Zugriffsverletzung)
Funktion: php5ts!zend_mm_shutdown
00dcc1b1 45 inc ebp
00dcc1b2 14ba adc al,0xba
00dcc1b4 0100 add [eax],eax
00dcc1b6 0000 add [eax],al
00dcc1b8 8bcf mov ecx,edi
00dcc1ba d3e2 shl edx,cl
00dcc1bc f7d2 not edx
00dcc1be 23c2 and eax,edx
00dcc1c0 894514 mov [ebp+0x14],eax
00dcc1c3 e90d010000 jmp php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc1c8 8b4f18 mov ecx,[edi+0x18]
00dcc1cb 33c0 xor eax,eax
00dcc1cd 85c9 test ecx,ecx
00dcc1cf 0f95c0 setne al
00dcc1d2 8b4c8714 mov ecx,[edi+eax*4+0x14]
00dcc1d6 8d448714 lea eax,[edi+eax*4+0x14]
00dcc1da 85c9 test ecx,ecx
00dcc1dc 741a jz php5ts!zend_mm_shutdown+0xf88
(00dcc1f8)
00dcc1de 8bf9 mov edi,ecx
00dcc1e0 8bd0 mov edx,eax
00dcc1e2 33c9 xor ecx,ecx
00dcc1e4 8b4718 mov eax,[edi+0x18]
00dcc1e7 85c0 test eax,eax
00dcc1e9 0f95c1 setne cl
00dcc1ec 8d448f14 lea eax,[edi+ecx*4+0x14]
00dcc1f0 8b4c8f14 mov ecx,[edi+ecx*4+0x14]
00dcc1f4 85c9 test ecx,ecx
00dcc1f6 75e6 jnz php5ts!zend_mm_shutdown+0xf6e
(00dcc1de)
00dcc1f8 c70200000000 mov dword ptr [edx],0x0
00dcc1fe eb6a jmp php5ts!zend_mm_shutdown+0xffa
(00dcc26a)
FEHLER ->00dcc200 395f0c cmp [edi+0xc],ebx
ds:0023:0000010c=????????
00dcc203 7505 jnz php5ts!zend_mm_shutdown+0xf9a
(00dcc20a)
00dcc205 395908 cmp [ecx+0x8],ebx
00dcc208 7411 jz php5ts!zend_mm_shutdown+0xfab
(00dcc21b)
00dcc20a 68c4cc1301 push 0x113ccc4
00dcc20f e85cf6ffff call php5ts!zend_mm_shutdown+0x600
(00dcb870)
00dcc214 8b4c2418 mov ecx,[esp+0x18]
00dcc218 83c404 add esp,0x4
00dcc21b 894f0c mov [edi+0xc],ecx
00dcc21e 897908 mov [ecx+0x8],edi
00dcc221 8b03 mov eax,[ebx]
00dcc223 3d10010000 cmp eax,0x110
00dcc228 7339 jnb php5ts!zend_mm_shutdown+0xff3
(00dcc263)
00dcc22a 3bf9 cmp edi,ecx
00dcc22c 0f85a3000000 jne php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc232 c1e803 shr eax,0x3
00dcc235 83e802 sub eax,0x2
00dcc238 8b94c5d0000000 mov edx,[ebp+eax*8+0xd0]
00dcc23f 8b8cc5d4000000 mov ecx,[ebp+eax*8+0xd4]
00dcc246 3bd1 cmp edx,ecx
00dcc248 0f8587000000 jne php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc24e ba01000000 mov edx,0x1
00dcc253 8bc8 mov ecx,eax
00dcc255 8b4510 mov eax,[ebp+0x10]
00dcc258 d3e2 shl edx,cl
00dcc25a f7d2 not edx
00dcc25c 23c2 and eax,edx
00dcc25e 894510 mov [ebp+0x10],eax
00dcc261 eb72 jmp php5ts!zend_mm_shutdown+0x1065
(00dcc2d5)
00dcc263 8b4310 mov eax,[ebx+0x10]
00dcc266 85c0 test eax,eax
------------------
Apache/2.2.14 (Win32) mod_ssl/2.2.14 OpenSSL/0.9.8l
PHP Version 5.3.1
------------------------------------------------------------------------
The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
https://bugs.php.net/bug.php?id=43834
--
Edit this bug report at https://bugs.php.net/bug.php?id=43834&edit=1
