PHP  
 PHP_5_6
downloads | QA | documentation | faq | getting help | mailing lists | reporting bugs | php.net sites | links | my php.net 
 

Valgrind Report for Zend/tests/bug64896.phpt ('Bug #64896 (Segfault with gc_collect_cycles using unserialize on certain objects)')

Script

1: <?php
2: $bar 
NULL;
3: class 
bad
4:
{
5:     private 
$_private = array();
6:
7:     public function 
__construct()
8:     {
9:         
$this->_private[] = 'php';
10:     }
11:
12:     public function 
__destruct()
13:     {
14:         global 
$bar;
15:         
$bar $this;
16:     }
17: }
18:
19:
$foo = new stdclass;
20:
$foo->foo $foo;
21:
$foo->bad = new bad;
22:
23:
gc_disable();
24:
25:
unserialize(serialize($foo));
26:
gc_collect_cycles();
27:
var_dump($bar); 
28:
/*  will output:
29: object(bad)#4 (1) {
30:   ["_private":"bad":private]=>
31:   &UNKNOWN:0
32: }
33: */
34:
?>
35:

Report

==20184== Invalid read of size 1
==20184==    at 0xCCD8A1: php_var_dump (var.c:99)
==20184==    by 0xCCD811: php_object_property_dump (var.c:82)
==20184==    by 0xF10425: zend_hash_apply_with_arguments (zend_hash.c:701)
==20184==    by 0xCCE18E: php_var_dump (var.c:146)
==20184==    by 0xCCE4A0: zif_var_dump (var.c:183)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==  Address 0x153ea4b4 is 20 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 
==20184== Invalid read of size 1
==20184==    at 0xCCD994: zval_isref_p (zend.h:415)
==20184==    by 0xCCD994: php_var_dump (var.c:104)
==20184==    by 0xCCD811: php_object_property_dump (var.c:82)
==20184==    by 0xF10425: zend_hash_apply_with_arguments (zend_hash.c:701)
==20184==    by 0xCCE18E: php_var_dump (var.c:146)
==20184==    by 0xCCE4A0: zif_var_dump (var.c:183)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==  Address 0x153ea4b5 is 21 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 
==20184== Invalid read of size 4
==20184==    at 0xECF8C3: zval_delref_p (zend.h:411)
==20184==    by 0xECF8C3: i_zval_ptr_dtor (zend_execute.h:76)
==20184==    by 0xECF8C3: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0FA39: zend_hash_destroy (zend_hash.c:548)
==20184==    by 0xF44F44: zend_object_std_dtor (zend_objects.c:44)
==20184==    by 0xF456A8: zend_objects_free_object_storage (zend_objects.c:137)
==20184==    by 0xF54C5E: zend_objects_store_del_ref_by_handle_ex (zend_objects_API.c:226)
==20184==    by 0xF547F8: zend_objects_store_del_ref (zend_objects_API.c:178)
==20184==    by 0xEEF617: _zval_dtor_func (zend_variables.c:57)
==20184==    by 0xECF965: _zval_dtor (zend_variables.h:35)
==20184==    by 0xECF965: i_zval_ptr_dtor (zend_execute.h:79)
==20184==    by 0xECF965: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0D298: i_zend_hash_bucket_delete (zend_hash.c:182)
==20184==    by 0xF0D298: zend_hash_bucket_delete (zend_hash.c:192)
==20184==    by 0xF10658: zend_hash_reverse_apply (zend_hash.c:733)
==20184==    by 0xECEA5C: shutdown_destructors (zend_execute_API.c:214)
==20184==    by 0xEF2EDA: zend_call_destructors (zend.c:944)
==20184==  Address 0x153ea4b0 is 16 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 
==20184== Invalid write of size 4
==20184==    at 0xECF8CD: zval_delref_p (zend.h:411)
==20184==    by 0xECF8CD: i_zval_ptr_dtor (zend_execute.h:76)
==20184==    by 0xECF8CD: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0FA39: zend_hash_destroy (zend_hash.c:548)
==20184==    by 0xF44F44: zend_object_std_dtor (zend_objects.c:44)
==20184==    by 0xF456A8: zend_objects_free_object_storage (zend_objects.c:137)
==20184==    by 0xF54C5E: zend_objects_store_del_ref_by_handle_ex (zend_objects_API.c:226)
==20184==    by 0xF547F8: zend_objects_store_del_ref (zend_objects_API.c:178)
==20184==    by 0xEEF617: _zval_dtor_func (zend_variables.c:57)
==20184==    by 0xECF965: _zval_dtor (zend_variables.h:35)
==20184==    by 0xECF965: i_zval_ptr_dtor (zend_execute.h:79)
==20184==    by 0xECF965: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0D298: i_zend_hash_bucket_delete (zend_hash.c:182)
==20184==    by 0xF0D298: zend_hash_bucket_delete (zend_hash.c:192)
==20184==    by 0xF10658: zend_hash_reverse_apply (zend_hash.c:733)
==20184==    by 0xECEA5C: shutdown_destructors (zend_execute_API.c:214)
==20184==    by 0xEF2EDA: zend_call_destructors (zend.c:944)
==20184==  Address 0x153ea4b0 is 16 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 
==20184== Invalid read of size 4
==20184==    at 0xECF8D4: zval_delref_p (zend.h:411)
==20184==    by 0xECF8D4: i_zval_ptr_dtor (zend_execute.h:76)
==20184==    by 0xECF8D4: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0FA39: zend_hash_destroy (zend_hash.c:548)
==20184==    by 0xF44F44: zend_object_std_dtor (zend_objects.c:44)
==20184==    by 0xF456A8: zend_objects_free_object_storage (zend_objects.c:137)
==20184==    by 0xF54C5E: zend_objects_store_del_ref_by_handle_ex (zend_objects_API.c:226)
==20184==    by 0xF547F8: zend_objects_store_del_ref (zend_objects_API.c:178)
==20184==    by 0xEEF617: _zval_dtor_func (zend_variables.c:57)
==20184==    by 0xECF965: _zval_dtor (zend_variables.h:35)
==20184==    by 0xECF965: i_zval_ptr_dtor (zend_execute.h:79)
==20184==    by 0xECF965: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0D298: i_zend_hash_bucket_delete (zend_hash.c:182)
==20184==    by 0xF0D298: zend_hash_bucket_delete (zend_hash.c:192)
==20184==    by 0xF10658: zend_hash_reverse_apply (zend_hash.c:733)
==20184==    by 0xECEA5C: shutdown_destructors (zend_execute_API.c:214)
==20184==    by 0xEF2EDA: zend_call_destructors (zend.c:944)
==20184==  Address 0x153ea4b0 is 16 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 
==20184== Invalid read of size 4
==20184==    at 0xECF9B9: zval_refcount_p (zend.h:399)
==20184==    by 0xECF9B9: i_zval_ptr_dtor (zend_execute.h:82)
==20184==    by 0xECF9B9: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0FA39: zend_hash_destroy (zend_hash.c:548)
==20184==    by 0xF44F44: zend_object_std_dtor (zend_objects.c:44)
==20184==    by 0xF456A8: zend_objects_free_object_storage (zend_objects.c:137)
==20184==    by 0xF54C5E: zend_objects_store_del_ref_by_handle_ex (zend_objects_API.c:226)
==20184==    by 0xF547F8: zend_objects_store_del_ref (zend_objects_API.c:178)
==20184==    by 0xEEF617: _zval_dtor_func (zend_variables.c:57)
==20184==    by 0xECF965: _zval_dtor (zend_variables.h:35)
==20184==    by 0xECF965: i_zval_ptr_dtor (zend_execute.h:79)
==20184==    by 0xECF965: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0D298: i_zend_hash_bucket_delete (zend_hash.c:182)
==20184==    by 0xF0D298: zend_hash_bucket_delete (zend_hash.c:192)
==20184==    by 0xF10658: zend_hash_reverse_apply (zend_hash.c:733)
==20184==    by 0xECEA5C: shutdown_destructors (zend_execute_API.c:214)
==20184==    by 0xEF2EDA: zend_call_destructors (zend.c:944)
==20184==  Address 0x153ea4b0 is 16 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 
==20184== Invalid write of size 1
==20184==    at 0xECF9CD: zval_unset_isref_p (zend.h:423)
==20184==    by 0xECF9CD: i_zval_ptr_dtor (zend_execute.h:83)
==20184==    by 0xECF9CD: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0FA39: zend_hash_destroy (zend_hash.c:548)
==20184==    by 0xF44F44: zend_object_std_dtor (zend_objects.c:44)
==20184==    by 0xF456A8: zend_objects_free_object_storage (zend_objects.c:137)
==20184==    by 0xF54C5E: zend_objects_store_del_ref_by_handle_ex (zend_objects_API.c:226)
==20184==    by 0xF547F8: zend_objects_store_del_ref (zend_objects_API.c:178)
==20184==    by 0xEEF617: _zval_dtor_func (zend_variables.c:57)
==20184==    by 0xECF965: _zval_dtor (zend_variables.h:35)
==20184==    by 0xECF965: i_zval_ptr_dtor (zend_execute.h:79)
==20184==    by 0xECF965: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0D298: i_zend_hash_bucket_delete (zend_hash.c:182)
==20184==    by 0xF0D298: zend_hash_bucket_delete (zend_hash.c:192)
==20184==    by 0xF10658: zend_hash_reverse_apply (zend_hash.c:733)
==20184==    by 0xECEA5C: shutdown_destructors (zend_execute_API.c:214)
==20184==    by 0xEF2EDA: zend_call_destructors (zend.c:944)
==20184==  Address 0x153ea4b5 is 21 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 
==20184== Invalid read of size 1
==20184==    at 0xECF9EF: gc_zval_check_possible_root (zend_gc.h:182)
==20184==    by 0xECF9EF: i_zval_ptr_dtor (zend_execute.h:86)
==20184==    by 0xECF9EF: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0FA39: zend_hash_destroy (zend_hash.c:548)
==20184==    by 0xF44F44: zend_object_std_dtor (zend_objects.c:44)
==20184==    by 0xF456A8: zend_objects_free_object_storage (zend_objects.c:137)
==20184==    by 0xF54C5E: zend_objects_store_del_ref_by_handle_ex (zend_objects_API.c:226)
==20184==    by 0xF547F8: zend_objects_store_del_ref (zend_objects_API.c:178)
==20184==    by 0xEEF617: _zval_dtor_func (zend_variables.c:57)
==20184==    by 0xECF965: _zval_dtor (zend_variables.h:35)
==20184==    by 0xECF965: i_zval_ptr_dtor (zend_execute.h:79)
==20184==    by 0xECF965: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0D298: i_zend_hash_bucket_delete (zend_hash.c:182)
==20184==    by 0xF0D298: zend_hash_bucket_delete (zend_hash.c:192)
==20184==    by 0xF10658: zend_hash_reverse_apply (zend_hash.c:733)
==20184==    by 0xECEA5C: shutdown_destructors (zend_execute_API.c:214)
==20184==    by 0xEF2EDA: zend_call_destructors (zend.c:944)
==20184==  Address 0x153ea4b4 is 20 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 
==20184== Invalid read of size 1
==20184==    at 0xECFA0D: gc_zval_check_possible_root (zend_gc.h:182)
==20184==    by 0xECFA0D: i_zval_ptr_dtor (zend_execute.h:86)
==20184==    by 0xECFA0D: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0FA39: zend_hash_destroy (zend_hash.c:548)
==20184==    by 0xF44F44: zend_object_std_dtor (zend_objects.c:44)
==20184==    by 0xF456A8: zend_objects_free_object_storage (zend_objects.c:137)
==20184==    by 0xF54C5E: zend_objects_store_del_ref_by_handle_ex (zend_objects_API.c:226)
==20184==    by 0xF547F8: zend_objects_store_del_ref (zend_objects_API.c:178)
==20184==    by 0xEEF617: _zval_dtor_func (zend_variables.c:57)
==20184==    by 0xECF965: _zval_dtor (zend_variables.h:35)
==20184==    by 0xECF965: i_zval_ptr_dtor (zend_execute.h:79)
==20184==    by 0xECF965: _zval_ptr_dtor (zend_execute_API.c:424)
==20184==    by 0xF0D298: i_zend_hash_bucket_delete (zend_hash.c:182)
==20184==    by 0xF0D298: zend_hash_bucket_delete (zend_hash.c:192)
==20184==    by 0xF10658: zend_hash_reverse_apply (zend_hash.c:733)
==20184==    by 0xECEA5C: shutdown_destructors (zend_execute_API.c:214)
==20184==    by 0xEF2EDA: zend_call_destructors (zend.c:944)
==20184==  Address 0x153ea4b4 is 20 bytes inside a block of size 32 free'd
==20184==    at 0x4C27B94: free (vg_replace_malloc.c:529)
==20184==    by 0xE9E4E8: _efree (zend_alloc.c:2437)
==20184==    by 0xF379FF: gc_collect_cycles (zend_gc.c:846)
==20184==    by 0xF158BE: zif_gc_collect_cycles (zend_builtin_functions.c:361)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184==    by 0xF6050C: execute_ex (zend_vm_execute.h:363)
==20184==    by 0xF610AF: zend_execute (zend_vm_execute.h:388)
==20184==    by 0xEF4BFA: zend_execute_scripts (zend.c:1341)
==20184==    by 0xE111E1: php_execute_script (main.c:2613)
==20184==    by 0x10AF62E: do_cli (php_cli.c:998)
==20184==    by 0x10B0E27: main (php_cli.c:1382)
==20184==  Block was alloc'd at
==20184==    at 0x4C281BA: malloc (vg_replace_malloc.c:298)
==20184==    by 0xE9991F: __zend_malloc (zend_alloc.h:97)
==20184==    by 0xE9E450: _emalloc (zend_alloc.c:2427)
==20184==    by 0xCFCCF1: process_nested_data (var_unserializer.re:328)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCFCD4F: process_nested_data (var_unserializer.re:330)
==20184==    by 0xCFD5D0: object_common2 (var_unserializer.re:440)
==20184==    by 0xD005FF: php_var_unserialize (var_unserializer.re:854)
==20184==    by 0xCDE499: zif_unserialize (var.c:964)
==20184==    by 0xF62A86: zend_do_fcall_common_helper_SPEC (zend_vm_execute.h:558)
==20184==    by 0xF6E61C: ZEND_DO_FCALL_SPEC_CONST_HANDLER (zend_vm_execute.h:2602)
==20184== 

 

Generated at Wed, 04 Jan 2017 07:31:11 +0000 (15 days ago)

Copyright © 2005-2017 The PHP Group
All rights reserved.