[Bug 223079] New: Reproducible PHP crash with ionCube loader
https://bugzilla.novell.com/show_bug.cgi?id=223079 Summary: Reproducible PHP crash with ionCube loader Product: SUSE Linux 10.1 Version: Final Platform: x86-64 OS/Version: SuSE Linux 10.1 Status: NEW Severity: Major Priority: P5 - None Component: Other AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: irving@prostructure.com QAContact: qa@suse.de I am not able to use the ionCube loader on OpenSUSE 10.1 and SLES 10, it causes PHP to crash every time. This tool is essentially a loader of obfuscated PHP files, which I need in order to run some PHP code I purchased from another vendor. I am able to reproduce this on: SLES 10 x86-64 OpenSUSE 10.1 x86-64 OpenSUSE 10.1 x86 (all are up to patch at the time of writing, 11/21/2006) PHP version: # rpm -qi php5 Name : php5 Relocations: (not relocatable) Version : 5.1.2 Vendor: SUSE LINUX Products GmbH, Nuernberg, Germany Release : 29.22 Build Date: Tue 07 Nov 2006 06:42:13 AM PST Install Date: Fri 17 Nov 2006 08:45:34 AM PST Build Host: eisler.suse.de Group : Productivity/Networking/Web/Servers Source RPM: php5-5.1.2-29.22.src.rpm Size : 3072051 License: Other uncritical OpenSource License, Other License(s), see package Signature : DSA/SHA1, Tue 07 Nov 2006 06:51:45 AM PST, Key ID a84edae89c800aca Packager : http://bugs.opensuse.org URL : http://www.php.net Summary : PHP5 Core Files The ioncube loader can be downloaded from here: http://www.ioncube.com/loaders.php I will attach a test case that was provided from ionCube. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 ------- Comment #1 from irving@prostructure.com 2006-11-21 14:46 MST ------- Created an attachment (id=106471) --> (https://bugzilla.novell.com/attachment.cgi?id=106471&action=view) Test-case from ioncube complete with ioncube loader v3.1.24 To run the test case, untar the tarball, then: 1) # cd ioncube-testcase/encoded/test1/ 2) # php5 -f casetest.php func1<br> /home/irving/ioncube-testcase/encoded/test1/casetest.php Segmentation fault -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 mhorvath@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team- |anosek@novell.com |screening@forge.provo.novell| |.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 mmarek@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mmarek@novell.com Status|NEW |RESOLVED Resolution| |INVALID ------- Comment #2 from mmarek@novell.com 2006-11-22 08:29 MST ------- We can't do much about 3rd-party binary-only php extensions. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 irving@prostructure.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|INVALID | ------- Comment #3 from irving@prostructure.com 2006-11-22 11:15 MST ------- Michal, I understand your knee-jerk reaction to binary-only modules, I can't blame you. However, let me rephrase my wording and lets see if we can work out a compromise. I believe that a bug was introduced by Novell/SUSE into the PHP package, because this module works great with *ALL* stock PHP versions, as well as the Gold release of OpenSUSE 10.1. The bug/change was introduced in a security update. Here's what I found in my testing: php5-5.1.2-27: works # 10.1 Gold php5-5.1.2-29.4: works # Jun 13 update php5-5.1.2-29.14: segfault # Sep 03 update php5-5.1.2-29.19: segfault # Oct 06 update php5-5.1.2-29.22: segfault # Nov 07 update My testing shows that the php5-5.1.2-29.14 update introduced the change which causes the segfault when this module is loaded. If this was an intentional API/ABI change, is there any documentation about the change and what ISVs need to do? The developer of the ionCube is willing to work with us on this. I don't think it is fair to punish him because he, as an ISV, needs to publish a binary-only module. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 judas_iscariote@shorewall.net changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |RESOLVED Resolution| |WONTFIX ------- Comment #4 from judas_iscariote@shorewall.net 2006-11-22 16:54 MST ------- yes, the ABI changed. sorry. To figure what the changes are see the src rpm. If you need a different solution please try php 5.2.0 from the build service. we do not support third party, binary extensions at all. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 ------- Comment #5 from mmarek@novell.com 2006-11-23 01:22 MST ------- (In reply to comment #3)
The developer of the ionCube is willing to work with us on this. I don't think it is fair to punish him because he, as an ISV, needs to publish a binary-only module.
OK, if the author of ionCube provides a patch for our php package that fixes the segfault and doesn't reopen any security issue, then we will consider it for the next update. Without the sources, we are helpless. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 bcavalieri@lumensoftware.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED OS/Version|SuSE Linux 10.1 |SLES 10 Resolution|WONTFIX | ------- Comment #6 from bcavalieri@lumensoftware.com 2006-12-06 22:35 MST ------- This also affects SLES 10. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 ------- Comment #7 from bcavalieri@lumensoftware.com 2006-12-07 09:19 MST ------- I have also opened this with the Novell Support Center, and referenced this ticket. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 ------- Comment #14 from rholder@novell.com 2007-03-04 11:30 MST ------- The third party vendor (ionCube) has the advantage of having all source code. Our code and theirs. They also have our changelog, and list of patches over time. They can use this info plus source code debuggers to find the problem spot much easier than we can. The customer seemed to indicate at one point that ionCube is willing to work on this. Once we have pinpointed the issue, and if it is deemed as bad ABI/API breakage, then we but this info in the bug report and notify PM. Or maybe the vendor is able to fix something in their code. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 Aigars.Krjanins@zakaz.lv changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |Aigars.Krjanins@zakaz.lv ------- Comment #16 from Aigars.Krjanins@zakaz.lv 2007-05-18 14:21 MST ------- php5.1.2-29.25.3 also gives segfault. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 ------- Comment #17 from Aigars.Krjanins@zakaz.lv 2007-05-18 17:08 MST ------- I managed to fix this error by upgrading to packages in here: http://repos.opensuse.org/server:/php/server_apache_SuSE_Linux_10.1/i586/ So this php5.2.2-37.1 is not affected! -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079 ------- Comment #18 from judas_iscariote@shorewall.net 2007-05-18 18:11 MST ------- (In reply to comment #17)
I managed to fix this error by upgrading to packages in here:
http://repos.opensuse.org/server:/php/server_apache_SuSE_Linux_10.1/i586/
So this php5.2.2-37.1 is not affected!
if you used that exact repo, then you needed to upgrade apache as well. if upgrading apache is not desired, you have to use http://repos.opensuse.org/server:/php/SUSE_Linux_10.1/ and sure that works, because you will not be using the same PHP version that this report is about nor the same ioncube binary extension. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=223079#c19
Cristian Rodriguez
https://bugzilla.novell.com/show_bug.cgi?id=223079
Ales Nosek
https://bugzilla.novell.com/show_bug.cgi?id=223079
User crrodriguez@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=223079#c21
Cristian Rodriguez
participants (1)
-
bugzilla_noreply@novell.com