Hi,
I ported Hardened-PHP to PHP5 yesterday night and got into the problem that there were some crashes. While one of the crashes is a problem in the port (at least I guess so), the other one was a detected double efree() in __set__get_001.phpt
I tracked this double free down to
static void zend_post_incdec_property(...)
where z is passed to
Z_OBJ_HT_P(object)->write_property(object, property, z TSRMLS_CC);
within this function z is freed and
if (z->refcount == 0) {
zval_dtor(z);
FREE_ZVAL(z);
}will free it again.
I fixed this by adding a z->refcount++ after *retval = *z; but I do not know if this is the correct place, because I am not really into ZE2 internals.
Stefan Esser
-- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
