[php-maint] Bug#543177: php5 segfault in php_realpath

Raoul Bhatia [IPAX] r.bhatia at ipax.at
Tue Dec 22 09:09:30 UTC 2009 

are there any news on this issue available?

i have applied the mysql updates 5.0.51a-24+lenny2+spu1.
the scripts that where mentioned there are running without any issue,
so i can confirm that these mysql updates solve bug 513204.

the php_realpath segfault still occurs.

a recent backtrace:
> Program terminated with signal 11, Segmentation fault.
> [New process 22366]
> #0  php_realpath (path=0x2a8b268 "/data/www/k000354/web/embcv.at/libraries/joomla/registry/format.php", resolved=Cannot access memory at address 0x7fff2e01afd8
> ) at /tmp/buildd/php5-5.2.6.dfsg.1/TSRM/tsrm_virtual_cwd.c:278
> 278             char cwd[MAXPATHLEN];
> (gdb) bt
> #0  php_realpath (path=0x2a8b268 "/data/www/k000354/web/embcv.at/libraries/joomla/registry/format.php", resolved=Cannot access memory at address 0x7fff2e01afd8
> ) at /tmp/buildd/php5-5.2.6.dfsg.1/TSRM/tsrm_virtual_cwd.c:278
> #1  0x0000000000621258 in virtual_file_ex (state=0x7fff2e021190, path=0x2a8b268 "/data/www/k000354/web/embcv.at/libraries/joomla/registry/format.php", verify_path=0x100007068, use_realpath=1879060080)
>     at /tmp/buildd/php5-5.2.6.dfsg.1/TSRM/tsrm_virtual_cwd.c:732
> #2  0x0000000000629503 in expand_filepath (filepath=0x2a8b268 "/data/www/k000354/web/embcv.at/libraries/joomla/registry/format.php", real_path=0x7fff2e0251e0 "")
>     at /tmp/buildd/php5-5.2.6.dfsg.1/main/fopen_wrappers.c:667
> #3  0x0000000000629b68 in php_check_specific_open_basedir (basedir=0x2a96338 "/usr/share/php/", path=0x2a8b268 "/data/www/k000354/web/embcv.at/libraries/joomla/registry/format.php")
>     at /tmp/buildd/php5-5.2.6.dfsg.1/main/fopen_wrappers.c:112
> #4  0x0000000000629ed9 in php_check_open_basedir_ex (path=0x2a8b268 "/data/www/k000354/web/embcv.at/libraries/joomla/registry/format.php", warn=1936025970)
>     at /tmp/buildd/php5-5.2.6.dfsg.1/main/fopen_wrappers.c:261
> #5  0x00000000005b7c7d in php_stat (filename=0x2a8b268 "/data/www/k000354/web/embcv.at/libraries/joomla/registry/format.php", filename_length=771875136, type=12, return_value=0x2a8ccc0)
>     at /tmp/buildd/php5-5.2.6.dfsg.1/ext/standard/filestat.c:753
> #6  0x00000000005b8aa4 in zif_is_file (ht=44610152, return_value=0x2a8ccc0, return_value_ptr=0xffffffff00000000, this_ptr=0x30102fe300706870, return_value_used=0)
>     at /tmp/buildd/php5-5.2.6.dfsg.1/ext/standard/filestat.c:1068
> #7  0x00000000006a10ed in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e0287d0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:200
> #8  0x000000000068c624 in execute (op_array=0x2990460) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #9  0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e028b00) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #10 0x000000000068c624 in execute (op_array=0x2987298) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #11 0x0000000000696a32 in ZEND_INCLUDE_OR_EVAL_SPEC_VAR_HANDLER (execute_data=0x7fff2e028e80) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:7759
> #12 0x000000000068c624 in execute (op_array=0x29a0c20) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #13 0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e029080) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #14 0x000000000068c624 in execute (op_array=0x29b4610) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #15 0x000000000065bf15 in zend_call_function (fci=0x7fff2e0292b0, fci_cache=0x29f05c0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_execute_API.c:1013
> #16 0x000000000065cc6c in zend_lookup_class_ex (name=Cannot access memory at address 0x80002e029298
> ) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_execute_API.c:1120
> #17 0x000000000065ce53 in zend_fetch_class (class_name=0x29f0a10 "JRegistry", class_name_len=9, fetch_type=1) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_execute_API.c:1528
> #18 0x000000000068966f in ZEND_FETCH_CLASS_SPEC_CONST_HANDLER (execute_data=0x7fff2e029630) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:650
> #19 0x000000000068c624 in execute (op_array=0x29f05c0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #20 0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e0299d0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #21 0x000000000068c624 in execute (op_array=0x298ea08) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #22 0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e029d50) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #23 0x000000000068c624 in execute (op_array=0x2a87038) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #24 0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e02a4a0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #25 0x000000000068c624 in execute (op_array=0x2a07830) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #26 0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e02a6f0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #27 0x000000000068c624 in execute (op_array=0x2a783a0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #28 0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e02ae30) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #29 0x000000000068c624 in execute (op_array=0x2a0a038) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #30 0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e02b180) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #31 0x000000000068c624 in execute (op_array=0x298e6a0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #32 0x00000000006a09fe in zend_do_fcall_common_helper_SPEC (execute_data=0x7fff2e02bed0) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:234
> #33 0x000000000068c624 in execute (op_array=0x2986318) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend_vm_execute.h:92
> #34 0x0000000000668418 in zend_execute_scripts (type=32767, retval=0x0, file_count=771932152) at /tmp/buildd/php5-5.2.6.dfsg.1/Zend/zend.c:1215
> #35 0x0000000000622c88 in php_execute_script (primary_file=Cannot access memory at address 0x80002e02af60
> ) at /tmp/buildd/php5-5.2.6.dfsg.1/main/main.c:2028
> #36 0x00000000006e065d in main (argc=771950488, argv=0x7fff2e02e390) at /tmp/buildd/php5-5.2.6.dfsg.1/sapi/cgi/cgi_main.c:1954

cheers,
raoul

More information about the pkg-php-maint mailing list