Segmentation fault at Zend/zend_vm_execute.h:4057

[YuanchengJiang]

Description

The following code:

<?php
class C {
public $a {
get { return $this->a; }
}
}
function test(string $fusion, object $obj) {
var_dump($obj->a);
var_dump($obj);
}
$reflector = new ReflectionClass(C::class);
$obj = $reflector->newLazyGhost(function ($obj) {
});
test('Ghost', $obj);

Resulted in this output:

Zend/zend_vm_execute.h:4057:8: runtime error: load of misaligned address 0x7f18e886918f for type 'void *', which requires 8 byte alignment
0x7f18e886918f: note: pointer points here

To reproduce: JIT 1011

PHP Version

nightly

Operating System

ubuntu 22.04

[arnaud-lb]

@YuanchengJiang I was not able to reproduce this one. Could you share more details about how you run this code, and the commit hash of the php build? I'm running the code with the following command on an ASAN or MSAN build:

USE_ZEND_ALLOC=0 sapi/cli/php -n -dzend_extension=$(pwd)/modules/opcache.so -dopcache.enable_cli=1 -dopcache.jit_buffer_size=100m -dopcache.jit=1011 test.php

[nielsdos]

I predict this is going to be a duplicate of #16578, checking now...

[nielsdos]

You need to activate the cache slot by duplicating the test calll, then it reproduces.
This is indeed a duplicate of #16578 which was in itself a duplicate of #15834: avoiding the simple_get cache slot avoids this issue.