segmentation fault in streams

[chongwick]

Description

The following code:

<?
$v_249663 = 'data://text/plain;base64,';
$v_249664 = 'Foo bar baz';
$v_249665 = base64_encode($v_249664,);
$v_249666 = $v_249663 . $v_249665;
$v_249675 = FILTER_VALIDATE_INT;
$v_249668 = fopen($v_249666,$v_249675,);
$v_249669 = 'zlib.deflate';
$v_249680 = 2;
$v_249671 = stream_filter_append($v_249668,$v_249669,$v_249680,);
$v_249672 = stream_get_contents($v_249668,);
$v_249673 = gzinflate($v_249672,);

Resulted in this output:

AddressSanitizer:DEADLYSIGNAL
=================================================================
==2635409==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x000000000000 bp 0x7ffc7b0cd0f0 sp 0x7ffc7b0ccd78 T0)
==2635409==Hint: pc points to the zero page.
==2635409==The signal is caused by a READ memory access.
==2635409==Hint: address points to the zero page.
    #0 0x0  (<unknown module>)
    #1 0x1489f97dd51f  (/lib/x86_64-linux-gnu/libc.so.6+0x4251f)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (<unknown module>)
==2635409==ABORTING

PHP Version

nightly

Operating System

20.04

[chongwick]

Is this one covered by #19685?

[devnexen]

I doubt it, the one you refer to is about bzip2 extension.

[devnexen]

I do not know much about streams but the write function pointer is null in this case. I ll try to have a look.