PHPBuilder.com, the best resource for PHP tutorials, templates, PHP manuals, content management systems, scripts, classes and more.

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Hiermenus
DatabaseJournal
Technology Jobs

IT
Developer
Internet News
Small Business
Personal Technology
International

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

Covalent Extends Apache 2.0 to Microsoft ASP.NET
ShopWorX - Support for Windows
PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1
Network Risk Assessment
Full-Featured, Java-Based Apache GUI

Partners & Affiliates

The Ternary Conditional Operator
Microsoft SQL Server from PHP on Linux
In Case You Missed It...The Week of June 20, 2005
In Case You Missed It... September 2006
Sending Email from your PHP Applications

[PHP-DEV] Re: PHP dies on URL fopen From: J Smith (dark_panda <email protected>)
Date: 07/31/01

Next message: cynic <email protected>: "[PHP-DEV] Bug #12476 Updated: a function that splits a string into equal parts while retaining whole words"
Previous message: jeroen <email protected>: "[PHP-DEV] Bug #12011 Updated: Safe_mode poor documentation"
In reply to: Stanislav Malyshev: "[PHP-DEV] PHP dies on URL fopen"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Stanislav Malyshev wrote:

> Recently, PHP started to segfault for me on URL fopen, e.g.:
> fopen("http://www.host.com","r") brings immediate segfault.
>
> Investigation showed that the problem happens in php_sock_fgets_internal
> (file fsock.c), in the first SEARCHCR() statement and is because when sock
> parameter is passed to php_sock_fgets_internal, both readbuf and readpos
> are 0, and SEARCHCR does p = READPTR(sock), which makes p be 0 too, and
> then uses *p != '\n' as a condition.
> Could anybody who know the code look at this and check what has gone
> wrong?
>

Here's what I came up with:

What it was (latest CVS I have, fsock.c revision 1.74):

#define SEARCHCR() do { \
for (p = READPTR(sock), pe = p + MIN(TOREAD(sock), maxlen); \

*p != '\n'; ) if (++p >= pe) { p = NULL; break; }
\

} while (0)

What I did instead:

#define SEARCHCR() \
    if (MIN(TOREAD(sock), maxlen) == 0) \
        p = NULL; \
    else { \

for (p = READPTR(sock), pe = p + MIN(TOREAD(sock), maxlen); *p !=
'\n'; p++) { \

            if (p >= pe) { \
                p = NULL; \
                break; \
            } \
        } \
    }

That seems to work nicely. Looks like crap, but it works. It also fires
off some warnings about comparing READPTR(sock) to 0 since you're
comparing a pointer address to an integer, but that shouldn't be a big deal.

A patch follows if anybody's interested.

btw, this is my first ever patch submitted for PHP, so if it totally sucks,
be kind.

Patch:

--- ext/standard/fsock.c Tue Jul 31 17:27:42 2001
+++ ext/standard/newfsock.c Tue Jul 31 17:34:31 2001
@@ -89,10 +89,18 @@
efree(key); \
}

-#define SEARCHCR() do { \
- for (p = READPTR(sock), pe = p + MIN(TOREAD(sock), maxlen); \
- *p != '\n'; ) if (++p >= pe) { p = NULL; break; } \
-} while (0)
+#define SEARCHCR() \
+ if (MIN(TOREAD(sock), maxlen) == 0) \
+ p = NULL; \
+ else { \
+ for (p = READPTR(sock), pe = p + MIN(TOREAD(sock),maxlen);
*p != '\n'; p++) { \
+ if (p >= pe) { \
+ p = NULL; \
+ break; \
+ } \
+ } \
+ }
+

-- 
PHP Development Mailing List <http://www.php.net/>
To unsubscribe, e-mail: php-dev-unsubscribe <email protected>
For additional commands, e-mail: php-dev-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>

Next message: cynic <email protected>: "[PHP-DEV] Bug #12476 Updated: a function that splits a string into equal parts while retaining whole words"
Previous message: jeroen <email protected>: "[PHP-DEV] Bug #12011 Updated: Safe_mode poor documentation"
In reply to: Stanislav Malyshev: "[PHP-DEV] PHP dies on URL fopen"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]