Bug #54488 [Bgs]: SIGSEGV in zend_assign_to_variable

2011-10-31 Thread pajoye 
Edit report at https://bugs.php.net/bug.php?id=54488edit=1

 ID: 54488
 Updated by: paj...@php.net
 Reported by:dbetz at df dot eu
 Summary:SIGSEGV in zend_assign_to_variable
 Status: Bogus
 Type:   Bug
 Package:FPM related
 Operating System:   Gentoo
 PHP Version:5.3.6
 Assigned To:fat
 Block user comment: N
 Private report: N

 New Comment:

@dbetz at df dot eu

Please provide a way to reproduce this problem (aka not randomly). That means 
to 
debug a little bit to see what happens in your app while it crashes. using 
vBulletin as a base to fix such crashes is not an option for us.

Thanks for your understanding,


Previous Comments:

[2011-07-22 05:20:45] dbetz at df dot eu

Hello,

after some time without problems now i get many segfaults:

Program received signal SIGSEGV, Segmentation fault.
_zend_mm_alloc_int (heap=0x8a65570, size=52) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_alloc.c:1835
1835/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_alloc.c: 
No such file or directory.
in /root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_alloc.c
(gdb) bt full
#0  _zend_mm_alloc_int (heap=0x8a65570, size=52) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_alloc.c:1835
bitmap = value optimized out
best_fit = value optimized out
true_size = 60
block_size = value optimized out
remaining_size = value optimized out
segment_size = value optimized out
segment = value optimized out
keep_rest = value optimized out
#1  0x08450e8c in _zend_hash_quick_add_or_update (ht=0x94a6144, arKey=0x94a2ecc 
plaintext_parser, nKeyLength=17, h=3773187690, pData=0x94a2eb8,
nDataSize=4, pDest=0xb4dfd1f8, flag=1) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_hash.c:315
p = 0x0
#2  0x08451386 in zend_hash_copy (target=0x94a6144, source=0x92a7994, 
pCopyConstructor=0x8443f90 zval_add_ref, tmp=0xb4dfd238, size=4)
at /root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_hash.c:787
p = 0x94a2eac
new_entry = 0x94a2e08
#3  0x0844407f in _zval_copy_ctor_func (zvalue=0x935eb10) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_variables.c:134
tmp = 0x5b
original_ht = 0x92a7994
#4  0x0844487d in _zval_copy_ctor (type=8, format=0x89b9f2c Use of undefined 
constant %s - assumed '%s')
at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_variables.h:45
No locals.
#5  zend_error (type=8, format=0x89b9f2c Use of undefined constant %s - 
assumed '%s')
at /root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend.c:1078
retval = value optimized out
z_error_type = 0x93ccd28
z_error_message = 0x94a49d8
z_error_filename = 0x935cd3c
z_error_lineno = 0x935cd88
z_context = 0x935eb10
error_filename = 0x949feec 
/kunden/145279_85737/liveforen/domaingo/includes/functions_newpost.php(668) : 
eval()'d code
error_lineno = 43
orig_user_error_handler = value optimized out
in_compilation = value optimized out
saved_class_entry = value optimized out
#6  0x0846a0d6 in ZEND_FETCH_CONSTANT_SPEC_UNUSED_CONST_HANDLER 
(execute_data=0x8bca78c)
at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_vm_execute.h:17844
actual = 0x94a5574 postid
opline = 0x94a825c
#7  0x0846eaee in execute (op_array=0x8e24980) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_vm_execute.h:107
ret = value optimized out
execute_data = 0x8bca78c
nested = 1 '\001'
original_in_execution = 0 '\000'
#8  0x084443e6 in zend_execute_scripts (type=8, retval=0x0, file_count=3) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend.c:1195
i = 1
file_handle = 0xb4e01790
orig_op_array = 0x0
orig_retval_ptr_ptr = 0x0
#9  0x083f2bd6 in php_execute_script (primary_file=0xb4e01790) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/main/main.c:2284
realfile = 
èãß´C\021M\b\000\060X¢ÿÿÿÿ\000\000\000\000#\217B\bô\020+\tÀ\\Ú£ÀÏ*\tlõß´å\235X\001\065~\r\000\030äß´©RL\b\003\000\000\000\bäß´\b\000\000\000\000\000\000\000pU¦\bn|A£\001\005\000\001\000\000\000\000\001\000\000\000lõß´¸.\027\t\220\002\000\000pU¦\b¸.\027\tHäß´#\217B\b\210ÓN£\002\000\000\000\001\000\000\000däß´\001ôß´\000\000\000\000¸ÓN£»Ô?\bl/\027\t\020\000\000\000\002\000\000\000/ÁL£\200ÓN£È\032\002\000¸ÓN£ô¿N£\200ÓN£Ð\000+\t\230äß´|¢A£..---Type
 return to continue, or q return to quit---
.
__orig_bailout = 0xb4e01640
__bailout = {{__jmpbuf = {-1260382320, 153810792, -1260391280, 
-1260391208, 2072411008, -1166720775}, __mask_was_saved

Bug #54488 [Bgs]: SIGSEGV in zend_assign_to_variable

2011-07-22 Thread dbetz at df dot eu 
Edit report at https://bugs.php.net/bug.php?id=54488edit=1

 ID: 54488
 User updated by:dbetz at df dot eu
 Reported by:dbetz at df dot eu
 Summary:SIGSEGV in zend_assign_to_variable
 Status: Bogus
 Type:   Bug
 Package:FPM related
 Operating System:   Gentoo
 PHP Version:5.3.6
 Assigned To:fat
 Block user comment: N
 Private report: N

 New Comment:

Hello,

after some time without problems now i get many segfaults:

Program received signal SIGSEGV, Segmentation fault.
_zend_mm_alloc_int (heap=0x8a65570, size=52) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_alloc.c:1835
1835/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_alloc.c: 
No such file or directory.
in /root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_alloc.c
(gdb) bt full
#0  _zend_mm_alloc_int (heap=0x8a65570, size=52) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_alloc.c:1835
bitmap = value optimized out
best_fit = value optimized out
true_size = 60
block_size = value optimized out
remaining_size = value optimized out
segment_size = value optimized out
segment = value optimized out
keep_rest = value optimized out
#1  0x08450e8c in _zend_hash_quick_add_or_update (ht=0x94a6144, arKey=0x94a2ecc 
plaintext_parser, nKeyLength=17, h=3773187690, pData=0x94a2eb8,
nDataSize=4, pDest=0xb4dfd1f8, flag=1) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_hash.c:315
p = 0x0
#2  0x08451386 in zend_hash_copy (target=0x94a6144, source=0x92a7994, 
pCopyConstructor=0x8443f90 zval_add_ref, tmp=0xb4dfd238, size=4)
at /root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_hash.c:787
p = 0x94a2eac
new_entry = 0x94a2e08
#3  0x0844407f in _zval_copy_ctor_func (zvalue=0x935eb10) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_variables.c:134
tmp = 0x5b
original_ht = 0x92a7994
#4  0x0844487d in _zval_copy_ctor (type=8, format=0x89b9f2c Use of undefined 
constant %s - assumed '%s')
at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_variables.h:45
No locals.
#5  zend_error (type=8, format=0x89b9f2c Use of undefined constant %s - 
assumed '%s')
at /root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend.c:1078
retval = value optimized out
z_error_type = 0x93ccd28
z_error_message = 0x94a49d8
z_error_filename = 0x935cd3c
z_error_lineno = 0x935cd88
z_context = 0x935eb10
error_filename = 0x949feec 
/kunden/145279_85737/liveforen/domaingo/includes/functions_newpost.php(668) : 
eval()'d code
error_lineno = 43
orig_user_error_handler = value optimized out
in_compilation = value optimized out
saved_class_entry = value optimized out
#6  0x0846a0d6 in ZEND_FETCH_CONSTANT_SPEC_UNUSED_CONST_HANDLER 
(execute_data=0x8bca78c)
at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_vm_execute.h:17844
actual = 0x94a5574 postid
opline = 0x94a825c
#7  0x0846eaee in execute (op_array=0x8e24980) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend_vm_execute.h:107
ret = value optimized out
execute_data = 0x8bca78c
nested = 1 '\001'
original_in_execution = 0 '\000'
#8  0x084443e6 in zend_execute_scripts (type=8, retval=0x0, file_count=3) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/Zend/zend.c:1195
i = 1
file_handle = 0xb4e01790
orig_op_array = 0x0
orig_retval_ptr_ptr = 0x0
#9  0x083f2bd6 in php_execute_script (primary_file=0xb4e01790) at 
/root/compile/php-5.3-fpm/snaps/php5.3-201107150430/main/main.c:2284
realfile = 
èãß´C\021M\b\000\060X¢ÿÿÿÿ\000\000\000\000#\217B\bô\020+\tÀ\\Ú£ÀÏ*\tlõß´å\235X\001\065~\r\000\030äß´©RL\b\003\000\000\000\bäß´\b\000\000\000\000\000\000\000pU¦\bn|A£\001\005\000\001\000\000\000\000\001\000\000\000lõß´¸.\027\t\220\002\000\000pU¦\b¸.\027\tHäß´#\217B\b\210ÓN£\002\000\000\000\001\000\000\000däß´\001ôß´\000\000\000\000¸ÓN£»Ô?\bl/\027\t\020\000\000\000\002\000\000\000/ÁL£\200ÓN£È\032\002\000¸ÓN£ô¿N£\200ÓN£Ð\000+\t\230äß´|¢A£..---Type
 return to continue, or q return to quit---
.
__orig_bailout = 0xb4e01640
__bailout = {{__jmpbuf = {-1260382320, 153810792, -1260391280, 
-1260391208, 2072411008, -1166720775}, __mask_was_saved = 0, __saved_mask = {
  __val = {0, 41205, 0, 4096, 96, 0, 1308693440, 0, 1307472900, 0, 
1308693441, 0, 852891, 0, 153900944, 148950944, 153813200, 3034576088,
138386641, 3, 4, 3034575952, 1, 153812952, 3034584640, 
3034575976, 153813428, 153810792, 149062664, 3034576088, 2076760960, 2305
prepend_file_p = 0x0
append_file_p = value optimized out