From: aashley at optimiser dot com Operating system: Linux PHP version: 5CVS-2004-04-05 (dev) PHP Bug Type: Reproducible crash Bug description: list($a, $b) = $var = function() seg faults
Description: ------------ When testing our site in PHP5 I can across a repeatable segmentation fault whenever the HTML_QuickForm_Controller::run() function was called. The problem was tracked to line 131 of Controller.php in HTML_QuickForm_Controller 1.0.2. The problem occured in both PHP-5.0.0-RC1 and the php5-200404041830 snapshot. I have unfortunatly been unable to create a simpler test case that causes the problem however it is readily repeatable in HTML_QuickForm_Controller. Reproduce code: --------------- Problem Line 131: list($page, $action) = $this->_actionName = $this->getActionName(); Changing the line to this prevents this problem from occuring. $this->_actionName = $this->getActionName(); list($page, $action) = $this->_actionName; Expected result: ---------------- $page and $action are set to the first and second items in the array respectivly Actual result: -------------- segmentation fault. #0 0x40849f31 in zend_fetch_dim_r_handler (execute_data=0xbfffcdb0, opline=0x413d5814, op_array=0x413d35e4) at /root/php5-200404041830/Zend/zend_execute.c:58 #1 0x408485e8 in execute (op_array=0x413d35e4) at /root/php5-200404041830/Zend/zend_execute.c:1391 #2 0x4084be09 in zend_do_fcall_common_helper (execute_data=0xbfffd330, opline=0x413d28d0, op_array=0x413b8dbc) at /root/php5-200404041830/Zend/zend_execute.c:2728 #3 0x4084c113 in zend_do_fcall_by_name_handler (execute_data=0xbfffcc2c, opline=0x0, op_array=0x0) at /root/php5-200404041830/Zend/zend_execute.c:2810 #4 0x408485e8 in execute (op_array=0x413b8dbc) at /root/php5-200404041830/Zend/zend_execute.c:1391 #5 0x40829bff in zend_execute_scripts (type=8, retval=0x0, file_count=3) at /root/php5-200404041830/Zend/zend.c:1057 #6 0x407efc9f in php_execute_script (primary_file=0xbffff5e0) at /root/php5-200404041830/main/main.c:1630 #7 0x40853954 in php_handler (r=0x82510f8) at /root/php5-200404041830/sapi/apache2handler/sapi_apache2.c:556 #8 0x080692e1 in ap_invoke_handler () #9 0x080664bf in ap_process_request () #10 0x08060e27 in _start () -- Edit bug report at http://bugs.php.net/?id=27876&edit=1 -- Try a CVS snapshot (php4): http://bugs.php.net/fix.php?id=27876&r=trysnapshot4 Try a CVS snapshot (php5): http://bugs.php.net/fix.php?id=27876&r=trysnapshot5 Fixed in CVS: http://bugs.php.net/fix.php?id=27876&r=fixedcvs Fixed in release: http://bugs.php.net/fix.php?id=27876&r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=27876&r=needtrace Need Reproduce Script: http://bugs.php.net/fix.php?id=27876&r=needscript Try newer version: http://bugs.php.net/fix.php?id=27876&r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=27876&r=support Expected behavior: http://bugs.php.net/fix.php?id=27876&r=notwrong Not enough info: http://bugs.php.net/fix.php?id=27876&r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=27876&r=submittedtwice register_globals: http://bugs.php.net/fix.php?id=27876&r=globals PHP 3 support discontinued: http://bugs.php.net/fix.php?id=27876&r=php3 Daylight Savings: http://bugs.php.net/fix.php?id=27876&r=dst IIS Stability: http://bugs.php.net/fix.php?id=27876&r=isapi Install GNU Sed: http://bugs.php.net/fix.php?id=27876&r=gnused Floating point limitations: http://bugs.php.net/fix.php?id=27876&r=float