PHP  
 PHP_HEAD
downloads | QA | documentation | faq | getting help | mailing lists | reporting bugs | php.net sites | links | my php.net 
 

Valgrind Report for sapi/phpdbg/tests/bug73794.phpt ('Bug #73794 (Crash (out of memory) when using run and # command separator)')

Script

1: <?php
2:
echo $argv[1];
3:
?>
4:

Report

==18123== Invalid write of size 1
==18123==    at 0x13541D6: phpdbg_do_run (phpdbg_prompt.c:904)
==18123==    by 0x137D292: phpdbg_internal_stack_execute (phpdbg_cmd.c:680)
==18123==    by 0x137D69D: phpdbg_stack_execute (phpdbg_cmd.c:733)
==18123==    by 0x13589CF: phpdbg_interactive (phpdbg_prompt.c:1631)
==18123==    by 0x134484B: main (phpdbg.c:1996)
==18123==  Address 0x14f16261 is 0 bytes after a block of size 1 alloc'd
==18123==    at 0x4C291FA: malloc (vg_replace_malloc.c:298)
==18123==    by 0x10654A8: __zend_malloc (zend_alloc.c:2884)
==18123==    by 0x106141A: _emalloc (zend_alloc.c:2484)
==18123==    by 0x1353B62: phpdbg_do_run (phpdbg_prompt.c:841)
==18123==    by 0x137D292: phpdbg_internal_stack_execute (phpdbg_cmd.c:680)
==18123==    by 0x137D69D: phpdbg_stack_execute (phpdbg_cmd.c:733)
==18123==    by 0x13589CF: phpdbg_interactive (phpdbg_prompt.c:1631)
==18123==    by 0x134484B: main (phpdbg.c:1996)
==18123== 
==18123== Conditional jump or move depends on uninitialised value(s)
==18123==    at 0x4C2A868: __strlen_sse42 (vg_replace_strmem.c:462)
==18123==    by 0xFD8365: php_build_argv (php_variables.c:571)
==18123==    by 0x13543AA: phpdbg_do_run (phpdbg_prompt.c:921)
==18123==    by 0x137D292: phpdbg_internal_stack_execute (phpdbg_cmd.c:680)
==18123==    by 0x137D69D: phpdbg_stack_execute (phpdbg_cmd.c:733)
==18123==    by 0x13589CF: phpdbg_interactive (phpdbg_prompt.c:1631)
==18123==    by 0x134484B: main (phpdbg.c:1996)
==18123== 
==18123== Invalid read of size 1
==18123==    at 0x10A6449: zend_string_release (zend_string.h:284)
==18123==    by 0x10A6449: destroy_op_array (zend_opcode.c:402)
==18123==    by 0x133C0FB: php_phpdbg_destroy_file_source (phpdbg.c:131)
==18123==    by 0x110226C: zend_hash_destroy (zend_hash.c:1296)
==18123==    by 0x1345422: main (phpdbg.c:2155)
==18123==  Address 0x14f14905 is 5 bytes inside a block of size 32 free'd
==18123==    at 0x4C28BD4: free (vg_replace_malloc.c:529)
==18123==    by 0x1389750: phpdbg_watch_efree (phpdbg_watch.c:1170)
==18123==    by 0x106173D: _efree (zend_alloc.c:2499)
==18123==    by 0x114A26B: _str_dtor (zend_string.c:55)
==18123==    by 0x110226C: zend_hash_destroy (zend_hash.c:1296)
==18123==    by 0x114CB54: zend_interned_strings_deactivate (zend_string.c:265)
==18123==    by 0xFB6F7F: php_request_shutdown (main.c:1788)
==18123==    by 0x1344DBD: main (phpdbg.c:2093)
==18123==  Block was alloc'd at
==18123==    at 0x4C291FA: malloc (vg_replace_malloc.c:298)
==18123==    by 0x10654A8: __zend_malloc (zend_alloc.c:2884)
==18123==    by 0x106141A: _emalloc (zend_alloc.c:2484)
==18123==    by 0x1027244: zend_string_alloc (zend_string.h:136)
==18123==    by 0x1027244: zend_string_init (zend_string.h:172)
==18123==    by 0x1027244: lex_scan (zend_language_scanner.l:1869)
==18123==    by 0x106D699: zendlex (zend_compile.c:1708)
==18123==    by 0x100D1B7: zendparse (zend_language_parser.c:4912)
==18123==    by 0x101909B: zend_compile (zend_language_scanner.l:585)
==18123==    by 0x1019477: compile_file (zend_language_scanner.l:635)
==18123==    by 0xB82035: phar_compile_file (phar.c:3339)
==18123==    by 0x136E705: phpdbg_compile_file (phpdbg_list.c:274)
==18123==    by 0x136EC46: phpdbg_init_compile_file (phpdbg_list.c:317)
==18123==    by 0x135206E: phpdbg_compile (phpdbg_prompt.c:600)
==18123== 

 

Generated at Sun, 12 Nov 2017 21:17:35 +0000 (10 days ago)

Copyright © 2005-2017 The PHP Group
All rights reserved.