ID: 26765
Updated by: [EMAIL PROTECTED]
Reported By: alex_mailbox53 at yahoo dot com
Status: Critical
Bug Type: Zend Engine 2 problem
Operating System: *
PHP Version: 5CVS-2004-02-08
New Comment:
And several more notes follow.
- It seems circular references are now properly handled
with the new destructor code recently brought into the
engine by Zeev.
- As you know, in php5 objects are assigned to variables
by reference, so it'd be a fair comparison if the
script goes like this:
<?php
class foo {
var $bar = false;
var $parent = false;
function foo() {
$this->bar = &new bar($this);
}
function __destruct() {
echo "object ".__CLASS__." is being
destroyed.\n";
}
}
class bar {
var $foo = false;
var $items = array();
function bar(&$foo) {
$this->foo = &$foo;
}
function add(&$item) {
$this->items[] = &$item;
$item->parent = &$this->foo;
}
function __destruct() {
echo "object ".__CLASS__." is being
destroyed.\n";
}
}
$t = &new foo();
$t->bar->add(new foo());
var_dump($t);
?>
This yields
object foo is being destroyed.
object bar is being destroyed.
object foo is being destroyed.
object bar is being destroyed.
It looks like these objects have been destroyed twice...
- I wasn't able to reproduce the segfault even though I
changed var_dump() to print_r().
Previous Comments:
------------------------------------------------------------------------
[2004-02-08 21:43:31] [EMAIL PROTECTED]
The leaks are caused by circular references. So the only
remaining issue is the segfault bug.
Perhaps related to bug #25975
------------------------------------------------------------------------
[2004-02-08 11:51:51] [EMAIL PROTECTED]
Here is the backtrace when print_r() is used:
[Switching to Thread 16384 (LWP 27314)]
0x082cd5a8 in zend_std_compare_objects (o1=0x40e4306c, o2=0xbfffd580)
at /usr/src/web/php/php5/Zend/zend_object_handlers.c:843
843 if (zobj1->ce != zobj2->ce) {
(gdb) bt
#0 0x082cd5a8 in zend_std_compare_objects (o1=0x40e4306c,
o2=0xbfffd580)
at /usr/src/web/php/php5/Zend/zend_object_handlers.c:843
#1 0x082bba58 in zend_print_zval_r_ex (write_func=0x8285769
<php_body_write_wrapper>, expr=0x40e4306c, indent=0)
at /usr/src/web/php/php5/Zend/zend.c:366
#2 0x082bb99b in zend_print_zval_r (expr=0x40e4306c, indent=0) at
/usr/src/web/php/php5/Zend/zend.c:342
#3 0x0820b566 in zif_print_r (ht=1, return_value=0x40e439d4,
this_ptr=0x0, return_value_used=0)
at /usr/src/web/php/php5/ext/standard/basic_functions.c:2570
#4 0x082dd654 in zend_do_fcall_common_helper (execute_data=0xbfffd7c0,
opline=0x40e42f54, op_array=0x40e42674)
at /usr/src/web/php/php5/Zend/zend_execute.c:2558
#5 0x082ddc8a in zend_do_fcall_handler (execute_data=0xbfffd7c0,
opline=0x40e42f54, op_array=0x40e42674)
at /usr/src/web/php/php5/Zend/zend_execute.c:2700
#6 0x082da498 in execute (op_array=0x40e42674) at
/usr/src/web/php/php5/Zend/zend_execute.c:1272
#7 0x082bcad3 in zend_execute_scripts (type=8, retval=0x0,
file_count=3) at /usr/src/web/php/php5/Zend/zend.c:1051
#8 0x08285fd8 in php_execute_script (primary_file=0xbffffbc0) at
/usr/src/web/php/php5/main/main.c:1641
#9 0x080b776c in main (argc=2, argv=0xbffffc54) at
/usr/src/web/php/php5/sapi/cli/php_cli.c:941
------------------------------------------------------------------------
[2004-02-04 20:42:09] [EMAIL PROTECTED]
Latest CVS checkout of HEAD today doesn't show any leaks anymore, but
the output is still incorrect. (or it's incorrect with PHP 4, who knows
:).
And changing that var_dump() -> print_r() causes segfault..
------------------------------------------------------------------------
[2004-01-11 10:46:12] [EMAIL PROTECTED]
I played around and tested what happens with PHP 4..this has nothing to
do with serialization, following works fine
in PHP 4, in PHP 5 it causes several memleaks and the resulting object
is not quite correct:
<?php
class SFTemplate {
var $content;
var $parent;
function SFTemplate() {
$this->content = new SFTemplateContent($this);
}
}
class SFTemplateContent {
var $template;
var $items = array();
function SFTemplateContent($tpl) {
$this->template = $tpl;
}
function add($item) {
$this->items[] = $item;
$item->parent = $this->template;
}
}
$t = new SFTemplate();
$t->content->add(new SFTemplate());
var_dump($t);
?>
------------------------------------------------------------------------
[2004-01-02 07:15:15] alex_mailbox53 at yahoo dot com
Description:
------------
The following code displays only one serialized object, but
should display two:
class SFTemplate {
public $content;
public $parent;
function __construct() { $this->content = new
SFTemplateContent($this); }
}
class SFTemplateContent {
protected $template;
protected $items = array();
function __construct($tpl) { $this->template = $tpl; }
function add($item) {
$this->items[] = $item;
$item->parent = $this->template;
}
}
$t = new SFTemplate();
$t->content->add(new SFTemplate());
print_r(unserialize(serialize($t)));
print '<hr>';
$t->content->add(new SFTemplate());
print_r(unserialize(serialize($t)));
Adding more objects to SFTemplateContent object prevents
object from deserialization. With 1 object in items array it works
ok.
Expected result:
----------------
two dumps of deserialized objects
Actual result:
--------------
one dump
------------------------------------------------------------------------
--
Edit this bug report at http://bugs.php.net/?id=26765&edit=1
