Skip to content

ext/pdo_firebird: Fixed GH-18276 - persistent connection - "zend_mm_heap corrupted" with setAttribute() #18280

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 4 commits into from
Closed

ext/pdo_firebird: Fixed GH-18276 - persistent connection - "zend_mm_heap corrupted" with setAttribute() #18280

wants to merge 4 commits into from

Conversation

SakiTakamachi
Copy link
Member

@SakiTakamachi SakiTakamachi commented Apr 8, 2025
edited
Loading

fixes #18276

The structure has changed slightly on master, so I don’t plan to apply the change the third commit to master.
I’ll follow up with a separate PR for changes targeting master.

@SakiTakamachi SakiTakamachi force-pushed the fix/gh18276_3 branch 3 times, most recently from e175d97 to bd8ad0e Compare April 8, 2025 14:32
@SakiTakamachi
Copy link
Member Author

Ah, the cause appears to be a mixture of persistent and non-persistent memory.

It's too late now so I'll fix it tomorrow.

@SakiTakamachi SakiTakamachi marked this pull request as ready for review April 9, 2025 01:22
@SakiTakamachi SakiTakamachi requested a review from nielsdos April 9, 2025 01:22
nielsdos
nielsdos requested changes Apr 9, 2025
View reviewed changes
ext/pdo_firebird/firebird_driver.c Outdated
@@ -492,13 +492,16 @@ static void firebird_handle_closer(pdo_dbh_t *dbh) /* {{{ */
}

if (H->date_format) {
efree(H->date_format);
pefree(H->date_format, dbh->is_persistent);
H->date_format = NULL;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Since you're freeing the entire structure anyway below, you don't need to set the pointers for these 3 fields to NULL.

ext/pdo_firebird/firebird_driver.c
@@ -881,9 +884,10 @@ static bool firebird_handle_set_attribute(pdo_dbh_t *dbh, zend_long attr, zval *
return false;
}
if (H->date_format) {
efree(H->date_format);
pefree(H->date_format, dbh->is_persistent);
H->date_format = NULL;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm okay with these being set to NULL because technically we could bail out if the pestrdup below fails.

ext/pdo_firebird/firebird_driver.c Outdated
}
spprintf(&H->date_format, 0, "%s", ZSTR_VAL(str));
H->date_format = pestrdup(ZSTR_VAL(str), dbh->is_persistent);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Since we know the length, you should use pestrndup instead and pass in ZSTR_LEN(str) as well (same below).

ext/pdo_firebird/tests/gh18276.phpt
PDO::ATTR_PERSISTENT => true,
],
);
// Avoid interned
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

str_repeat is special cased in the SCCP optimization pass if you have a constant number as a second argument, and so you'll still get an interned string here.
You need to do this: str_repeat('my string', random_int(1, 1));

@SakiTakamachi SakiTakamachi mentioned this pull request Apr 10, 2025
Closed
@SakiTakamachi
Copy link
Member Author

@nielsdos
Fixed :)

SakiTakamachi added a commit to SakiTakamachi/php-src that referenced this pull request Apr 11, 2025
@SakiTakamachi
followup in master for php#18280
9e4f0f5
@SakiTakamachi SakiTakamachi mentioned this pull request Apr 11, 2025
Closed
SakiTakamachi added a commit to SakiTakamachi/php-src that referenced this pull request Apr 11, 2025
@SakiTakamachi
followup in master for php#18280
4969b98
SakiTakamachi added a commit that referenced this pull request Apr 15, 2025
@SakiTakamachi
Merge branch 'PHP-8.3' into PHP-8.4
bd9f03a 
* PHP-8.3:
  Fixed GH-18276 - persistent connection - "zend_mm_heap corrupted" with setAttribute() (#18280) Closes #18280 Fixes #18276
SakiTakamachi added a commit that referenced this pull request Apr 15, 2025
@SakiTakamachi
followup in master for #18280 (#18302)
0f5372d 
Closes #18302
SakiTakamachi added a commit that referenced this pull request Apr 15, 2025
@SakiTakamachi
Merge branch 'PHP-8.4'
3b87093 
* PHP-8.4:
  Fixed GH-18276 - persistent connection - "zend_mm_heap corrupted" with setAttribute() (#18280) Closes #18280 Fixes #18276
@SakiTakamachi SakiTakamachi deleted the fix/gh18276_3 branch April 15, 2025 00:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nielsdos nielsdos nielsdos approved these changes

Assignees
No one assigned
Labels
Extension: pdo_firebird
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@SakiTakamachi @nielsdos