Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Segfault in Phalcon\Session\Adapter\Files #13520

Closed
AmazingDreams opened this issue Oct 11, 2018 · 2 comments
Closed

Segfault in Phalcon\Session\Adapter\Files #13520

AmazingDreams opened this issue Oct 11, 2018 · 2 comments
Assignees
@sergeyklay

Comments

@AmazingDreams
Copy link
Contributor

AmazingDreams commented Oct 11, 2018
edited
Loading

Expected and Actual Behavior

I am trying to use the \Phalcon\Session\Adapter\Files() in cli (phpunit), but I get a segfault. I expect not te get a segfault.

  • Phalcon 3.4.0 and 3.4.1
  • Tested on php 7.2.10, 7.1.22, 7.0.32, 5.6.38, 5.5.38
  • Fails on 7.x, succeeds on 5.x
  • Failing methods: get, set, remove
  • Other methods don't cause a segfault, not even has

Steps to reproduce

Please see the following repository for reproduction script: https://github.com/AmazingDreams/phalcon-session-bug

bug.php

<?php
$v = phpversion()." - ".\Phalcon\Version::get();

echo "Running test for ".$v.PHP_EOL;

$session = new \Phalcon\Session\Adapter\Files();
echo "Session instantiated".PHP_EOL;

$session->start();
echo "Session started".PHP_EOL;

$session->set('test', 'test');
echo "Session key set".PHP_EOL;

echo "\033[32m ".$v." EXITED SUCCESSFULLY\033[0m".PHP_EOL;

Makefile

run:
        -@docker run -v ${PWD}:/usr/src/app -w /usr/src/app mileschou/phalcon:7.2-cli php bug.php
        -@docker run -v ${PWD}:/usr/src/app -w /usr/src/app mileschou/phalcon:7.1-cli php bug.php
        -@docker run -v ${PWD}:/usr/src/app -w /usr/src/app mileschou/phalcon:7.0-cli php bug.php
        -@docker run -v ${PWD}:/usr/src/app -w /usr/src/app mileschou/phalcon:5.6-cli php bug.php
        -@docker run -v ${PWD}:/usr/src/app -w /usr/src/app mileschou/phalcon:5.5-cli php bug.php

Output

Running test for 7.2.10 - 3.4.0
Session instantiated
Session started
Makefile:2: recipe for target 'run' failed
make: [run] Error 139 (genegeerd)
Running test for 7.1.22 - 3.4.0
Session instantiated
Session started
Makefile:2: recipe for target 'run' failed
make: [run] Error 139 (genegeerd)
Running test for 7.0.32 - 3.4.0
Session instantiated
Session started
Makefile:2: recipe for target 'run' failed
make: [run] Error 139 (genegeerd)
Running test for 5.6.38 - 3.4.0
Session instantiated
Session started
Session key set
 5.6.38 - 3.4.0 EXITED SUCCESSFULLY
Running test for 5.5.38 - 3.4.0
Session instantiated
Session started
Session key set
 5.5.38 - 3.4.0 EXITED SUCCESSFULLY

Valgrind (make valgrind):

==1== Invalid read of size 1                                                                                                                                                                                       
==1==    at 0xEE7143A: zephir_array_update_zval (in /usr/local/lib/php/extensions/no-debug-non-zts-20170718/phalcon.so)                                                                                            
==1==    by 0xEF0A8BF: zim_Phalcon_Session_Adapter_set (in /usr/local/lib/php/extensions/no-debug-non-zts-20170718/phalcon.so)                                                                                     
==1==    by 0x6AB8CB: execute_ex (in /usr/local/bin/php)                                                                                                                                                           
==1==    by 0x6ABC93: zend_execute (in /usr/local/bin/php)                                                                                                                                                         
==1==    by 0x5FB042: zend_execute_scripts (in /usr/local/bin/php)                                                                                                                                                 
==1==    by 0x5965F7: php_execute_script (in /usr/local/bin/php)                                                                                                                                                   
==1==    by 0x6AE01E: ??? (in /usr/local/bin/php)                                                                                                                                                                  
==1==    by 0x25D2D8: ??? (in /usr/local/bin/php)                                                                                                                                                                  
==1==    by 0x73B12E0: (below main) (libc-start.c:291)                                                                                                                                                             
==1==  Address 0x8 is not stack'd, malloc'd or (recently) free'd                                                                                                                                                   
==1==                                                                                                                                                                                                              
==1==                                                                                                                                                                                                              
==1== Process terminating with default action of signal 11 (SIGSEGV): dumping core                                                                                                                                 
==1==  Access not within mapped region at address 0x8                                                                                                                                                              
==1==    at 0xEE7143A: zephir_array_update_zval (in /usr/local/lib/php/extensions/no-debug-non-zts-20170718/phalcon.so)                                                                                            
==1==    by 0xEF0A8BF: zim_Phalcon_Session_Adapter_set (in /usr/local/lib/php/extensions/no-debug-non-zts-20170718/phalcon.so)                                                                                     
==1==    by 0x6AB8CB: execute_ex (in /usr/local/bin/php)                                                                                                                                                           
==1==    by 0x6ABC93: zend_execute (in /usr/local/bin/php)                                                                                                                                                         
==1==    by 0x5FB042: zend_execute_scripts (in /usr/local/bin/php)                                                                                                                                                 
==1==    by 0x5965F7: php_execute_script (in /usr/local/bin/php)                                                                                                                                                   
==1==    by 0x6AE01E: ??? (in /usr/local/bin/php)                                                                                                                                                                  
==1==    by 0x25D2D8: ??? (in /usr/local/bin/php)                                                                                                                                                                  
==1==    by 0x73B12E0: (below main) (libc-start.c:291)                                                                                                                                                             
==1==  If you believe this happened as a result of a stack                                                                                                                                                         
==1==  overflow in your program's main thread (unlikely but                                                                                                                                                        
==1==  possible), you can try to increase the size of the                                                                                                                                                          
==1==  main thread stack using the --main-stacksize= flag.                                                                                                                                                         
==1==  The main thread stack size used in this run was 8388608.
@JABirchall
Copy link

On windows the segfault happens when setting a session variable

https://i.imgur.com/VaHvaKr.png

@ekmst ekmst mentioned this issue Jan 8, 2019
Closed
3 tasks
sergeyklay added a commit that referenced this issue Jan 8, 2019
@sergeyklay
Update change log to add link to the #13520
d2d264d
@ekmst ekmst mentioned this issue Jan 9, 2019
Merged
3 tasks
sergeyklay added a commit that referenced this issue Jan 9, 2019
@sergeyklay
Update change log to add link to the #13520
1558d4c
@sergeyklay
Copy link
Contributor

sergeyklay commented Jan 9, 2019
edited
Loading

Fixed in the 4.0.x branch. Feel free to open a new issue if the problem appears again. Thank you for contributing.

@niden niden added the 4.0 label Jun 21, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sergeyklay sergeyklay

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@AmazingDreams @niden @sergeyklay @JABirchall