Debian Bug report logs -
#543525
php5-cgi causes segmention fault
Reported by: Felix Lenders <f.lenders@stud.uni-heidelberg.de>
Date: Tue, 25 Aug 2009 15:21:07 UTC
Severity: serious
Found in version php5/5.2.10.dfsg.1-2
Fixed in version php5/5.2.11.dfsg.1-1
Done: Raphael Geissert <geissert@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#543525; Package php5-cgi.
(Tue, 25 Aug 2009 15:21:11 GMT) (full text, mbox, link).
Acknowledgement sent
to Felix Lenders <f.lenders@stud.uni-heidelberg.de>:
New Bug report received and forwarded. Copy sent to Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>.
(Tue, 25 Aug 2009 15:21:11 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: php5-cgi
Version: 5.2.10.dfsg.1-2
Severity: important
Hello,
after the last php update 4 or 5 days ago in testing, serendipity (version from debian testing) causes 500 errors which results from segfaults in
php5-cgi. With php-dbg I backtraced it:
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0xb77886e0 (LWP 30628)]
0x082da6b0 in _zend_hash_add_or_update (ht=0xa1ae2c4, arKey=0xa1a78b0 "FCGI_ROLE", nKeyLength=<error type>, pData=0xbff3a224, nDataSize=<error
type>,
pDest=0xbff3a220, flag=1) at /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.c:447
447 /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.c: No such file or directory.
in /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.c
(gdb) bt
#0 0x082da6b0 in _zend_hash_add_or_update (ht=0xa1ae2c4, arKey=0xa1a78b0 "FCGI_ROLE", nKeyLength=<error type>, pData=0xbff3a224,
nDataSize=<error type>, pDest=0xbff3a220, flag=1) at /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.c:447
#1 0x08292394 in php_register_variable_ex (var_name=0xa1de268 "FCGI_ROLE", val=0xbff3a288, track_vars_array=0xa1ae7e4)
at /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.h:341
#2 0x080faaea in php_sapi_filter (arg=4, var=0xa1de268 "FCGI_ROLE", val=0xa1de254, val_len=<error type>, new_val_len=0xbff3a334)
at /tmp/buildd/php5-5.2.10.dfsg.1/ext/filter/filter.c:396
#3 0xb67a7787 in suhosin_input_filter_wrapper () from /usr/lib/php5/20060613+lfs/suhosin.so
#4 0x08348244 in cgi_php_import_environment_variables (array_ptr=0xa1a68b8) at /tmp/buildd/php5-5.2.10.dfsg.1/sapi/cgi/cgi_main.c:618
#5 0x08291718 in php_auto_globals_create_env (name=0x8355813 "_ENV", name_len=<error type>) at
/tmp/buildd/php5-5.2.10.dfsg.1/main/php_variables.c:820
#6 0x08293378 in php_hash_environment () at /tmp/buildd/php5-5.2.10.dfsg.1/main/php_variables.c:711
#7 0x08283ad5 in php_request_startup () at /tmp/buildd/php5-5.2.10.dfsg.1/main/main.c:1309
#8 0x083472a9 in main (argc=1, argv=0xbff3c8a4) at /tmp/buildd/php5-5.2.10.dfsg.1/sapi/cgi/cgi_main.c:1916
(gdb) cont
Continuing.
This only happens with serendipity, roundcube and gallery2 work fine and only occured after the last php update. Which further information do you
need?
Thank you,
Felix
-- System Information:
Debian Release: 5.0.2
APT prefers stable
APT policy: (500, 'stable'), (101, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages php5-cgi depends on:
ii libbz2-1.0 1.0.5-1 high-quality block-sorting file co
ii libc6 2.9-23 GNU C Library: Shared libraries
ii libcomerr2 1.41.3-1 common error description library
ii libdb4.7 4.7.25-7 Berkeley v4.7 Database Libraries [
ii libgssapi-krb5-2 1.7dfsg~beta3-1 MIT Kerberos runtime libraries - k
ii libk5crypto3 1.7dfsg~beta3-1 MIT Kerberos runtime libraries - C
ii libkrb5-3 1.7dfsg~beta3-1 MIT Kerberos runtime libraries
ii libmagic1 4.26-1 File type determination library us
ii libpcre3 7.8-2+b1 Perl 5 Compatible Regular Expressi
ii libssl0.9.8 0.9.8g-15+lenny1 SSL shared libraries
ii libxml2 2.6.32.dfsg-5+lenny1 GNOME XML library
ii mime-support 3.44-1 MIME files 'mime.types' & 'mailcap
ii php5-common 5.2.10.dfsg.1-2 Common files for packages built fr
ii tzdata 2009g-0lenny1 time zone and daylight-saving time
ii ucf 3.0016 Update Configuration File: preserv
ii zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime
php5-cgi recommends no packages.
Versions of packages php5-cgi suggests:
ii php-pear 5.2.10.dfsg.1-2 PEAR - PHP Extension and Applicati
-- no debconf information
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#543525; Package php5-cgi.
(Tue, 25 Aug 2009 15:45:21 GMT) (full text, mbox, link).
Acknowledgement sent
to Ondřej Surý <ondrej@debian.org>:
Extra info received and forwarded to list. Copy sent to Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>.
(Tue, 25 Aug 2009 15:45:22 GMT) (full text, mbox, link).
Message #10 received at 543525@bugs.debian.org (full text, mbox, reply):
forcemerge 535770 543525
thank you
Felix,
thank you for your bug report, this was already reported in #542514
(http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=542514)
We are looking onto this. At least we have nice backtrace now, thanks.
Ondrej.
On Tue, Aug 25, 2009 at 17:01, Felix
Lenders<f.lenders@stud.uni-heidelberg.de> wrote:
> Package: php5-cgi
> Version: 5.2.10.dfsg.1-2
> Severity: important
>
> Hello,
>
> after the last php update 4 or 5 days ago in testing, serendipity (version from debian testing) causes 500 errors which results from segfaults in
> php5-cgi. With php-dbg I backtraced it:
>
> Program received signal SIGSEGV, Segmentation fault.
> [Switching to Thread 0xb77886e0 (LWP 30628)]
> 0x082da6b0 in _zend_hash_add_or_update (ht=0xa1ae2c4, arKey=0xa1a78b0 "FCGI_ROLE", nKeyLength=<error type>, pData=0xbff3a224, nDataSize=<error
> type>,
> pDest=0xbff3a220, flag=1) at /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.c:447
> 447 /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.c: No such file or directory.
> in /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.c
> (gdb) bt
> #0 0x082da6b0 in _zend_hash_add_or_update (ht=0xa1ae2c4, arKey=0xa1a78b0 "FCGI_ROLE", nKeyLength=<error type>, pData=0xbff3a224,
> nDataSize=<error type>, pDest=0xbff3a220, flag=1) at /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.c:447
> #1 0x08292394 in php_register_variable_ex (var_name=0xa1de268 "FCGI_ROLE", val=0xbff3a288, track_vars_array=0xa1ae7e4)
> at /tmp/buildd/php5-5.2.10.dfsg.1/Zend/zend_hash.h:341
> #2 0x080faaea in php_sapi_filter (arg=4, var=0xa1de268 "FCGI_ROLE", val=0xa1de254, val_len=<error type>, new_val_len=0xbff3a334)
> at /tmp/buildd/php5-5.2.10.dfsg.1/ext/filter/filter.c:396
> #3 0xb67a7787 in suhosin_input_filter_wrapper () from /usr/lib/php5/20060613+lfs/suhosin.so
> #4 0x08348244 in cgi_php_import_environment_variables (array_ptr=0xa1a68b8) at /tmp/buildd/php5-5.2.10.dfsg.1/sapi/cgi/cgi_main.c:618
> #5 0x08291718 in php_auto_globals_create_env (name=0x8355813 "_ENV", name_len=<error type>) at
> /tmp/buildd/php5-5.2.10.dfsg.1/main/php_variables.c:820
> #6 0x08293378 in php_hash_environment () at /tmp/buildd/php5-5.2.10.dfsg.1/main/php_variables.c:711
> #7 0x08283ad5 in php_request_startup () at /tmp/buildd/php5-5.2.10.dfsg.1/main/main.c:1309
> #8 0x083472a9 in main (argc=1, argv=0xbff3c8a4) at /tmp/buildd/php5-5.2.10.dfsg.1/sapi/cgi/cgi_main.c:1916
> (gdb) cont
> Continuing.
>
> This only happens with serendipity, roundcube and gallery2 work fine and only occured after the last php update. Which further information do you
> need?
>
> Thank you,
> Felix
>
> -- System Information:
> Debian Release: 5.0.2
> APT prefers stable
> APT policy: (500, 'stable'), (101, 'testing')
> Architecture: i386 (i686)
>
> Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores)
> Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/bash
>
> Versions of packages php5-cgi depends on:
> ii libbz2-1.0 1.0.5-1 high-quality block-sorting file co
> ii libc6 2.9-23 GNU C Library: Shared libraries
> ii libcomerr2 1.41.3-1 common error description library
> ii libdb4.7 4.7.25-7 Berkeley v4.7 Database Libraries [
> ii libgssapi-krb5-2 1.7dfsg~beta3-1 MIT Kerberos runtime libraries - k
> ii libk5crypto3 1.7dfsg~beta3-1 MIT Kerberos runtime libraries - C
> ii libkrb5-3 1.7dfsg~beta3-1 MIT Kerberos runtime libraries
> ii libmagic1 4.26-1 File type determination library us
> ii libpcre3 7.8-2+b1 Perl 5 Compatible Regular Expressi
> ii libssl0.9.8 0.9.8g-15+lenny1 SSL shared libraries
> ii libxml2 2.6.32.dfsg-5+lenny1 GNOME XML library
> ii mime-support 3.44-1 MIME files 'mime.types' & 'mailcap
> ii php5-common 5.2.10.dfsg.1-2 Common files for packages built fr
> ii tzdata 2009g-0lenny1 time zone and daylight-saving time
> ii ucf 3.0016 Update Configuration File: preserv
> ii zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime
>
> php5-cgi recommends no packages.
>
> Versions of packages php5-cgi suggests:
> ii php-pear 5.2.10.dfsg.1-2 PEAR - PHP Extension and Applicati
>
> -- no debconf information
>
>
>
> _______________________________________________
> pkg-php-maint mailing list
> pkg-php-maint@lists.alioth.debian.org
> http://lists.alioth.debian.org/mailman/listinfo/pkg-php-maint
>
--
Ondřej Surý <ondrej@sury.org>
http://blog.rfc1925.org/
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#543525; Package php5-cgi.
(Fri, 02 Oct 2009 08:33:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Micha Lenk <micha@debian.org>:
Extra info received and forwarded to list. Copy sent to Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>.
(Fri, 02 Oct 2009 08:33:03 GMT) (full text, mbox, link).
Message #15 received at 543525@bugs.debian.org (full text, mbox, reply):
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
found 543525 5.2.6.dfsg.1-1+lenny3
severity 543525 serious
thanks
Hi,
I'm using php5-cgi on Debian Lenny and observed segfaults too:
[637211.377712] php-cgi[24470]: segfault at 7f15d1554ed0 ip 7f15d1554ed0
sp 41220128 error 14 in libkeyutils-1.2.so[7f15d5bbb000+2000]
[722604.981005] php-cgi[10677]: segfault at 7f6f72bc1ed0 ip 7f6f72bc1ed0
sp 40a82128 error 14 in libXdmcp.so.6.0.0[7f6f747bd000+5000]
Unfortunately I can't reproduce this right now.
Regards
Micha
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAkrFueEACgkQWN0/4pnhQbQvKwCfcFEbk6DbQN7gEYZ9UbQKiSgZ
GXkAoNK9Fw9c7KPY9u2XgPRz0VGz6df6
=dqQ2
-----END PGP SIGNATURE-----
Bug Marked as found in versions 5.2.6.dfsg.1-1+lenny3.
Request was from Micha Lenk <micha@debian.org>
to control@bugs.debian.org.
(Fri, 02 Oct 2009 08:33:04 GMT) (full text, mbox, link).
Severity set to 'serious' from 'important'
Request was from Micha Lenk <micha@debian.org>
to control@bugs.debian.org.
(Fri, 02 Oct 2009 08:33:05 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#543525; Package php5-cgi.
(Sat, 03 Oct 2009 19:51:02 GMT) (full text, mbox, link).
Message #22 received at 543525@bugs.debian.org (full text, mbox, reply):
clone 543525 -1
severity -1 important
tag -1 moreinfo
notfound 543525 5.2.6.dfsg.1-1+lenny3
notfound -1 5.2.10.dfsg.1-2
thanks
On Friday 02 October 2009 03:29:27 Micha Lenk wrote:
> found 543525 5.2.6.dfsg.1-1+lenny3
> severity 543525 serious
> thanks
>
> Hi,
>
> I'm using php5-cgi on Debian Lenny and observed segfaults too:
>
> [637211.377712] php-cgi[24470]: segfault at 7f15d1554ed0 ip 7f15d1554ed0
> sp 41220128 error 14 in libkeyutils-1.2.so[7f15d5bbb000+2000]
> [722604.981005] php-cgi[10677]: segfault at 7f6f72bc1ed0 ip 7f6f72bc1ed0
> sp 40a82128 error 14 in libXdmcp.so.6.0.0[7f6f747bd000+5000]
a) those segfaults are unrelated to 543525
b) the first segfault could be related to the kerberos functions, but I don't
see how the second one is related to php5 (not even via php5-gd); are you
using any custom or locally built extension?
>
> Unfortunately I can't reproduce this right now.
>
Please provide backtraces.
Regards,
--
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net
Bug 543525 cloned as bug 549492.
Request was from Raphael Geissert <geissert@debian.org>
to control@bugs.debian.org.
(Sat, 03 Oct 2009 19:51:03 GMT) (full text, mbox, link).
Bug No longer marked as found in versions 5.2.6.dfsg.1-1+lenny3.
Request was from Raphael Geissert <geissert@debian.org>
to control@bugs.debian.org.
(Sat, 03 Oct 2009 19:51:07 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#543525; Package php5-cgi.
(Sat, 03 Oct 2009 20:00:13 GMT) (full text, mbox, link).
Message #29 received at 543525@bugs.debian.org (full text, mbox, reply):
Hi everyone,
Could you please test the 5.2.11 packages and check whether it keeps
segfaulting or not?
Thanks in advance.
Cheers,
--
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net
Message sent on
to Felix Lenders <f.lenders@stud.uni-heidelberg.de>:
Bug#543525.
(Sat, 03 Oct 2009 20:00:16 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#543525; Package php5-cgi.
(Sun, 04 Oct 2009 11:06:19 GMT) (full text, mbox, link).
Acknowledgement sent
to Bernat Arlandis i Mañó <berarma@ya.com>:
Extra info received and forwarded to list. Copy sent to Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>.
(Sun, 04 Oct 2009 11:06:19 GMT) (full text, mbox, link).
Message #37 received at 543525@bugs.debian.org (full text, mbox, reply):
Raphael Geissert escrigué:
> Hi everyone,
>
> Could you please test the 5.2.11 packages and check whether it keeps
> segfaulting or not?
>
> Thanks in advance.
>
> Cheers,
>
It seems like it doesn't segfault anymore, no problems so far. Tested
with Apache2 2.2.13-2 and PHP 5.2.11.dfsg.1-1
Thanks.
Best regards.
--
Bernat Arlandis i Mañó
Message sent on
to Felix Lenders <f.lenders@stud.uni-heidelberg.de>:
Bug#543525.
(Sun, 04 Oct 2009 11:06:40 GMT) (full text, mbox, link).
Reply sent
to Raphael Geissert <geissert@debian.org>:
You have taken responsibility.
(Fri, 09 Oct 2009 14:51:07 GMT) (full text, mbox, link).
Notification sent
to Felix Lenders <f.lenders@stud.uni-heidelberg.de>:
Bug acknowledged by developer.
(Fri, 09 Oct 2009 14:51:07 GMT) (full text, mbox, link).
Message #45 received at 543525-done@bugs.debian.org (full text, mbox, reply):
Source: php5
Source-Version: 5.2.11.dfsg.1-1
Hi,
Since the only response to my last mail was favourable in the sense that the
issue was fixed in .11, I'm closing this report.
Cheers,
--
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sat, 07 Nov 2009 07:33:28 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Sun Jul 2 03:42:36 2023;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.