Movatterモバイル変換

php/php-srcPublic

NotificationsYou must be signed in to change notification settings
Fork8k
Star39.5k

SEGV ext/opcache/jit/zend_jit_vm_helpers.c #17257

New issue

Closed

SEGV ext/opcache/jit/zend_jit_vm_helpers.c#17257

Labels

BugCategory: JITExtension: opcacheStatus: Verified

Description

YuanchengJiang

opened

on Dec 24, 2024

Description

The following code:

<?php$functions =get_defined_functions();$callbacks =$functions['user'];foreach ($callbacksas$callback) {ob_start($callback);ob_end_flush();}functionget_const() {}functiontest() {var_dump(call_user_func('get_const',$x));}test();try {session_unset();}catch (Exception$e) {echo($e); }

Resulted in this output:

/home/phpfuzz/WorkSpace/flowfusion/php-src/ext/opcache/jit/zend_jit_vm_helpers.c:138:15: runtime error: applying zero offset to null pointerSUMMARY: UndefinedBehaviorSanitizer: undefined-behavior /home/phpfuzz/WorkSpace/flowfusion/php-src/ext/opcache/jit/zend_jit_vm_helpers.c:138:15

To reproduce:

-d "opcache.jit_hot_func=1" -d "zend_extension=/home/phpfuzz/WorkSpace/flowfusion/php-src/modules/opcache.so" -d "opcache.enable_cli=1" -d "opcache.jit=1254"

PHP Version

nightly

Operating System

No response

Metadata

Assignees

No one assigned

Labels

BugCategory: JITExtension: opcacheStatus: Verified

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

SEGV ext/opcache/jit/zend_jit_vm_helpers.c #17257

Description

Description

PHP Version

Operating System

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions