[php-maint] Bug#213557: marked as done (php4 segfaults when register_globals is set to on)

Debian Bug Tracking System owner at bugs.debian.org
Sat Aug 13 11:18:06 UTC 2005 

Your message dated Sat, 13 Aug 2005 13:01:12 +0200
with message-id <1123930872.12147.39.camel at maple.active24.cz>
and subject line Fixed (at least) in php4 4.4.0-1
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 1 Oct 2003 06:51:45 +0000
>From arturcz at hell.pl Wed Oct 01 01:51:43 2003
Return-path: <arturcz at hell.pl>
Received: from pz130.internetdsl.tpnet.pl (kfstudio.com.pl) [80.55.25.130] 
	by master.debian.org with esmtp (Exim 3.35 1 (Debian))
	id 1A4apr-0007IM-00; Wed, 01 Oct 2003 01:51:43 -0500
Received: from arturcz by foo.kfstudio with local (Exim 4.22)
	id 1A4apq-0000D2-5O; Wed, 01 Oct 2003 08:51:42 +0200
Date: Wed, 1 Oct 2003 08:51:42 +0200
From: "Artur R. Czechowski" <arturcz at hell.pl>
To: Debian Bug Tracking System <submit at bugs.debian.org>
Subject: Apache/php4 segfaults randomly
Message-ID: <20031001065142.GA743 at kfstudio.com.pl>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-2
Content-Disposition: inline
X-Reportbug-Version: 2.31
Organization: none
X-Operating-System: Linux foo 2.4.22-2
X-URL: http://hell.pl/arturcz/
User-Agent: Mutt/1.5.4i
Sender: "Artur R. Czechowski" <arturcz at kfstudio.com.pl>
Delivered-To: submit at bugs.debian.org
X-Spam-Status: No, hits=-5.0 required=4.0
	tests=HAS_PACKAGE
	version=2.53-bugs.debian.org_2003_9_21
X-Spam-Level: 
X-Spam-Checker-Version: SpamAssassin 2.53-bugs.debian.org_2003_9_21 (1.174.2.15-2003-03-30-exp)

Package: php4
Version: 4:4.3.2+rc3-6
Severity: important

Apache with php4 segfaults randomly. Running in gdb like:

gdb apache
(gdb) run -X

gives a result:

Program received signal SIGSEGV, Segmentation fault.
0x401fa8df in mallopt () from /lib/libc.so.6
(gdb) bt
#0  0x401fa8df in mallopt () from /lib/libc.so.6
#1  0x401f96ff in free () from /lib/libc.so.6
#2  0x403e7501 in shutdown_memory_manager ()
   from /usr/lib/apache/1.3/libphp4.so
#3  0x403cbb4c in php_request_shutdown () from
/usr/lib/apache/1.3/libphp4.so

Program received signal SIGSEGV, Segmentation fault.
0x403e756c in shutdown_memory_manager () from
/usr/lib/apache/1.3/libphp4.so
(gdb) bt
#0  0x403e756c in shutdown_memory_manager ()
   from /usr/lib/apache/1.3/libphp4.so
#1  0x403cbb4c in php_request_shutdown () from
/usr/lib/apache/1.3/libphp4.so

There is rather no hardware problem. I can replicate this bug on
different box, both using unstable and the same packages.
I know, that there is a small amount of information in this bugreport.
If it is sufficient for you that's great. If not I'll do more debug.
I'm trying to select a minimal PHP code to replicate this bug to provide
it to you.
Any suggestion what else can I do to track this bug welcomed.

I provide you a two backtraces. Only difference in environment is that
in first case there was only php4 package (without extentions), in
second one there was also php4-gd2. This behavior is replicable.

There is no coredump (ulimit -c set to unlimited for soft and hard).

Regards
	Artur

-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux foo 2.4.22-2 #4 Mon Sep 29 13:23:24 CEST 2003 i686
Locale: LANG=C, LC_CTYPE=pl_PL

Versions of packages php4 depends on:
ii  apache-common                 1.3.27.1-3 Support files for all Apache webse
ii  debconf                       1.3.14     Debian configuration management sy
ii  libbz2-1.0                    1.0.2-1    A high-quality block-sorting file 
ii  libc6                         2.3.2-8    GNU C Library: Shared libraries an
ii  libdb4.1                      4.1.25-6   Berkeley v4.1 Database Libraries [
ii  libexpat1                     1.95.6-6   XML parsing C library - runtime li
ii  libmm13                       1.3.0-1    Shared memory library - runtime
ii  libpam0g                      0.76-14    Pluggable Authentication Modules l
ii  libpcre3                      4.3-3      Philip Hazel's Perl 5 Compatible R
ii  mime-support                  3.23-1     MIME files 'mime.types' & 'mailcap
ii  zlib1g                        1:1.1.4-15 compression library - runtime

-- debconf information:
  php4/run_apacheconfig: true
  php4/run_apache_sslconfig: true
  php4/update_apache_php_ini: true

---------------------------------------
Received: (at 213557-done) by bugs.debian.org; 13 Aug 2005 11:01:01 +0000
>From ondrej at sury.org Sat Aug 13 04:01:01 2005
Return-path: <ondrej at sury.org>
Received: from mail.active24.cz [81.95.104.4] 
	by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
	id 1E3tl7-00045q-00; Sat, 13 Aug 2005 04:01:01 -0700
Received: from [192.168.1.2] (r4v190.chello.upc.cz [84.42.149.190])
	by mail.active24.cz (Postfix) with ESMTP id 516BA28000AF
	for <213557-done at bugs.debian.org>; Sat, 13 Aug 2005 13:04:25 +0200 (CEST)
Subject: Fixed (at least) in php4 4.4.0-1
From: Ondrej Sury <ondrej at sury.org>
To: 213557-done at bugs.debian.org
Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-vn+z6xBzs+pDQBRvoKMy"
Date: Sat, 13 Aug 2005 13:01:12 +0200
Message-Id: <1123930872.12147.39.camel at maple.active24.cz>
Mime-Version: 1.0
X-Mailer: Evolution 2.3.7 
Delivered-To: 213557-done at bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-3.0 required=4.0 tests=BAYES_00 autolearn=no 
	version=2.60-bugs.debian.org_2005_01_02


--=-vn+z6xBzs+pDQBRvoKMy
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

Hi,

just tested this with libapache2-mod-php4 and libapache2-mod-php5 (in
sid) and this script no longer segfaults apache.

I will test it on sarge, but it won't be fixed in sarge anyway, because
it happen only on rare circumstances and it's not security related.

Ondrej
--=20
Ondrej Sury <ondrej at sury.org>

--=-vn+z6xBzs+pDQBRvoKMy
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQBC/dL49OZqfMIN8nMRAnWGAJ4ymfHMxpPmiivnROynbv8mXXehBQCfbwlc
oYs6MJyWtfI667Z4Z1e2ibw=
=Hrqn
-----END PGP SIGNATURE-----

--=-vn+z6xBzs+pDQBRvoKMy--

More information about the pkg-php-maint mailing list