Skip to content

Fix GH-11874: intl causing segfault in docker images #17343

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Fix GH-11874: intl causing segfault in docker images #17343

wants to merge 1 commit into from

Conversation

nielsdos
Copy link
Member

@nielsdos nielsdos commented Jan 3, 2025
edited
Loading

The segfault happens because zoi->wrapping_obj points to an object that has been freed. This wrapping_obj is set in IntlIterator_from_StringEnumeration(). Notice how the refcount is not increased in this function. By switching to ZVAL_OBJ_COPY, the segfault disappears.

We also need to move the responsibility of destroying the iterator to the iterator itself and keep the object data destruction in the object destruction. Otherwise we now leak memory. The existing code used a weird recursive destruction between the iterator and object that was too hard to understand to be honest. This patch simplifies everything and in the process gets rid of the leak.

Iterators that are embedded are now responsible for their own memory cleanup.

@nielsdos
Fix phpGH-11874: intl causing segfault in docker images
5b53786 
The segfault happens because zoi->wrapping_obj points to an object that has been freed.
This wrapping_obj is set in IntlIterator_from_StringEnumeration().
Notice how the refcount is not increased in this function.
By switching to ZVAL_OBJ_COPY, the segfault disappears.

We also need to move the responsibility of destroying the iterator to
the iterator itself and keep the object data destruction in the object
destruction. The existing code used a weird recursive destruction
between the iterator and object that was too hard to understand to be
honest. This patch simplifies everything and in the process gets rid of
the leak.

Iterators that are embedded are now responsible for their own
memory cleanup.
@nielsdos nielsdos linked an issue Jan 3, 2025 that may be closed by this pull request
intl causing segfault in docker images #11874
Closed
@nielsdos nielsdos marked this pull request as ready for review January 3, 2025 16:14
@nielsdos nielsdos requested a review from devnexen as a code owner January 3, 2025 16:14
devnexen
devnexen approved these changes Jan 3, 2025
View reviewed changes
Copy link
Member

@devnexen devnexen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@nielsdos nielsdos closed this in a970eef Jan 3, 2025
nielsdos added a commit to nielsdos/php-src that referenced this pull request Jan 4, 2025
@nielsdos
Handle GC cycles properly in intl iterators
19e0f35 
This is a follow-up on phpGH-17343 to implement GC cycle management.
Previously the objects lived too long due to the strong cycle.
This patch adds get_gc handlers to break the cycle.
@nielsdos nielsdos mentioned this pull request Jan 4, 2025
Closed
nielsdos added a commit that referenced this pull request Jan 4, 2025
@nielsdos
Handle GC cycles properly in intl iterators
ee2faaa 
This is a follow-up on GH-17343 to implement GC cycle management.
Previously the objects lived too long due to the strong cycle.
This patch adds get_gc handlers to break the cycle.

Closes GH-17355.
charmitro pushed a commit to wasix-org/php that referenced this pull request Mar 13, 2025
@nielsdos @charmitro
Fix phpGH-11874: intl causing segfault in docker images
11f1465 
The segfault happens because zoi->wrapping_obj points to an object that has been freed.
This wrapping_obj is set in IntlIterator_from_StringEnumeration().
Notice how the refcount is not increased in this function.
By switching to ZVAL_OBJ_COPY, the segfault disappears.

We also need to move the responsibility of destroying the iterator to
the iterator itself and keep the object data destruction in the object
destruction. The existing code used a weird recursive destruction
between the iterator and object that was too hard to understand to be
honest. This patch simplifies everything and in the process gets rid of
the leak.

Iterators that are embedded are now responsible for their own
memory cleanup.

Closes phpGH-17343.
charmitro pushed a commit to wasix-org/php that referenced this pull request Mar 13, 2025
@nielsdos @charmitro
Handle GC cycles properly in intl iterators
7dfdd29 
This is a follow-up on phpGH-17343 to implement GC cycle management.
Previously the objects lived too long due to the strong cycle.
This patch adds get_gc handlers to break the cycle.

Closes phpGH-17355.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@devnexen devnexen devnexen approved these changes

Assignees
No one assigned
Labels
Extension: intl
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

intl causing segfault in docker images
2 participants
@nielsdos @devnexen