ext/gettext/gettext.c: handle NULLs from bindtextdomain()

orlitzky · charmitro · commit 20ab60d186d5 · 2025-03-13T19:29:15.000+02:00
According to POSIX, bindtextdomain() returns "the implementation- defined default directory pathname used by the gettext family of functions" when its second parameter is NULL (i.e. when you are querying the directory corresponding to some text domain and that directory has not yet been set). Its PHP counterpart is feeding that result direclty to RETURN_STRING, but this can go wrong in two ways: 1. If an error occurs, even POSIX-compliant implementations may return NULL. 2. At least one non-compliant implementation (musl) lacks a default directory and returns NULL whenever the domain has not yet been bound. In either of those cases, PHP segfaults on the NULL string. In this commit we check for the NULL, and RETURN_FALSE when it happens rather than crashing. This partially addresses GH php#13696
diff --git a/ext/gettext/gettext.c b/ext/gettext/gettext.c
@@ -15,7 +15,7 @@
  */
 
 #ifdef HAVE_CONFIG_H
-#include <config.h>
+#include "config.h"
 #endif
 
 #include "php.h"
@@ -54,9 +54,6 @@ ZEND_GET_MODULE(php_gettext)
 	if (UNEXPECTED(domain_len > PHP_GETTEXT_MAX_DOMAIN_LENGTH)) { \
 		zend_argument_value_error(_arg_num, "is too long"); \
 		RETURN_THROWS(); \
-	} else if (domain_len == 0) { \
-		zend_argument_must_not_be_empty_error(_arg_num); \
-		RETURN_THROWS(); \
 	}
 
 #define PHP_GETTEXT_LENGTH_CHECK(_arg_num, check_len) \
@@ -65,12 +62,6 @@ ZEND_GET_MODULE(php_gettext)
 		RETURN_THROWS(); \
 	}
 
-#define PHP_DCGETTEXT_CATEGORY_CHECK(_arg_num, category) \
-	if (category == LC_ALL) { \
-		zend_argument_value_error(_arg_num, "cannot be LC_ALL"); \
-		RETURN_THROWS(); \
-	}
-
 PHP_MINFO_FUNCTION(php_gettext)
 {
 	php_info_print_table_start();
@@ -81,20 +72,15 @@ PHP_MINFO_FUNCTION(php_gettext)
 /* {{{ Set the textdomain to "domain". Returns the current domain */
 PHP_FUNCTION(textdomain)
 {
-	char *domain_name = NULL, *retval = NULL;
+	char *domain_name = NULL, *retval;
 	zend_string *domain = NULL;
 
-	ZEND_PARSE_PARAMETERS_START(0, 1)
-		Z_PARAM_OPTIONAL
-		Z_PARAM_STR_OR_NULL(domain)
-	ZEND_PARSE_PARAMETERS_END();
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "S!", &domain) == FAILURE) {
+		RETURN_THROWS();
+	}
 
-	if (domain != NULL) {
+	if (domain != NULL && ZSTR_LEN(domain) != 0 && !zend_string_equals_literal(domain, "0")) {
 		PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, ZSTR_LEN(domain))
-		if (zend_string_equals_literal(domain, "0")) {
-			zend_argument_value_error(1, "cannot be zero");
-			RETURN_THROWS();
-		}
 		domain_name = ZSTR_VAL(domain);
 	}
 
@@ -107,7 +93,7 @@ PHP_FUNCTION(textdomain)
 /* {{{ Return the translation of msgid for the current domain, or msgid unaltered if a translation does not exist */
 PHP_FUNCTION(gettext)
 {
-	char *msgstr = NULL;
+	char *msgstr;
 	zend_string *msgid;
 
 	ZEND_PARSE_PARAMETERS_START(1, 1)
@@ -128,13 +114,12 @@ PHP_FUNCTION(gettext)
 /* {{{ Return the translation of msgid for domain_name, or msgid unaltered if a translation does not exist */
 PHP_FUNCTION(dgettext)
 {
-	char *msgstr = NULL;
+	char *msgstr;
 	zend_string *domain, *msgid;
 
-	ZEND_PARSE_PARAMETERS_START(2, 2)
-		Z_PARAM_STR(domain)
-		Z_PARAM_STR(msgid)
-	ZEND_PARSE_PARAMETERS_END();
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "SS", &domain, &msgid) == FAILURE)	{
+		RETURN_THROWS();
+	}
 
 	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, ZSTR_LEN(domain))
 	PHP_GETTEXT_LENGTH_CHECK(2, ZSTR_LEN(msgid))
@@ -152,19 +137,19 @@ PHP_FUNCTION(dgettext)
 /* {{{ Return the translation of msgid for domain_name and category, or msgid unaltered if a translation does not exist */
 PHP_FUNCTION(dcgettext)
 {
-	char *msgstr = NULL;
+	char *msgstr;
 	zend_string *domain, *msgid;
 	zend_long category;
 
-	ZEND_PARSE_PARAMETERS_START(3, 3)
-		Z_PARAM_STR(domain)
-		Z_PARAM_STR(msgid)
-		Z_PARAM_LONG(category)
-	ZEND_PARSE_PARAMETERS_END();
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "SSl", &domain, &msgid, &category) == FAILURE) {
+		RETURN_THROWS();
+	}
 
 	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, ZSTR_LEN(domain))
 	PHP_GETTEXT_LENGTH_CHECK(2, ZSTR_LEN(msgid))
-	PHP_DCGETTEXT_CATEGORY_CHECK(3, category)
+	if (category == LC_ALL) {
+		RETURN_STR_COPY(msgid);
+	}
 
 	msgstr = dcgettext(ZSTR_VAL(domain), ZSTR_VAL(msgid), category);
 
@@ -179,19 +164,33 @@ PHP_FUNCTION(dcgettext)
 /* {{{ Bind to the text domain domain_name, looking for translations in dir. Returns the current domain */
 PHP_FUNCTION(bindtextdomain)
 {
-	zend_string *domain, *dir = NULL;
-	char *retval, dir_name[MAXPATHLEN];
+	char *domain;
+	size_t domain_len;
+	zend_string *dir = NULL;
+	char *retval, dir_name[MAXPATHLEN], *btd_result;
 
-	ZEND_PARSE_PARAMETERS_START(1, 2)
-		Z_PARAM_STR(domain)
-		Z_PARAM_OPTIONAL
-		Z_PARAM_STR_OR_NULL(dir)
-	ZEND_PARSE_PARAMETERS_END();
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "sS!", &domain, &domain_len, &dir) == FAILURE) {
+		RETURN_THROWS();
+	}
 
-	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, ZSTR_LEN(domain))
+	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, domain_len)
+
+	if (domain[0] == '\0') {
+		zend_argument_value_error(1, "cannot be empty");
+		RETURN_THROWS();
+	}
 
 	if (dir == NULL) {
-		RETURN_STRING(bindtextdomain(ZSTR_VAL(domain), NULL));
+		btd_result = bindtextdomain(domain, NULL);
+		if (btd_result == NULL) {
+			/* POSIX-compliant implementations can return
+			 * NULL if an error occured. On musl you will
+			 * also get NULL if the domain is not yet
+			 * bound, because musl has no default directory
+			 * to return in that case. */
+			 RETURN_FALSE;
+		}
+		RETURN_STRING(btd_result);
 	}
 
 	if (ZSTR_LEN(dir) != 0 && !zend_string_equals_literal(dir, "0")) {
@@ -202,7 +201,7 @@ PHP_FUNCTION(bindtextdomain)
 		RETURN_FALSE;
 	}
 
-	retval = bindtextdomain(ZSTR_VAL(domain), dir_name);
+	retval = bindtextdomain(domain, dir_name);
 
 	RETURN_STRING(retval);
 }
@@ -212,20 +211,18 @@ PHP_FUNCTION(bindtextdomain)
 /* {{{ Plural version of gettext() */
 PHP_FUNCTION(ngettext)
 {
-	char *msgstr = NULL;
-	zend_string *msgid1, *msgid2;
+	char *msgid1, *msgid2, *msgstr;
+	size_t msgid1_len, msgid2_len;
 	zend_long count;
 
-	ZEND_PARSE_PARAMETERS_START(3, 3)
-		Z_PARAM_STR(msgid1)
-		Z_PARAM_STR(msgid2)
-		Z_PARAM_LONG(count)
-	ZEND_PARSE_PARAMETERS_END();
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "ssl", &msgid1, &msgid1_len, &msgid2, &msgid2_len, &count) == FAILURE) {
+		RETURN_THROWS();
+	}
 
-	PHP_GETTEXT_LENGTH_CHECK(1, ZSTR_LEN(msgid1))
-	PHP_GETTEXT_LENGTH_CHECK(2, ZSTR_LEN(msgid2))
+	PHP_GETTEXT_LENGTH_CHECK(1, msgid1_len)
+	PHP_GETTEXT_LENGTH_CHECK(2, msgid2_len)
 
-	msgstr = ngettext(ZSTR_VAL(msgid1), ZSTR_VAL(msgid2), count);
+	msgstr = ngettext(msgid1, msgid2, count);
 
 	ZEND_ASSERT(msgstr);
 	RETURN_STRING(msgstr);
@@ -237,22 +234,20 @@ PHP_FUNCTION(ngettext)
 /* {{{ Plural version of dgettext() */
 PHP_FUNCTION(dngettext)
 {
-	char *msgstr = NULL;
-	zend_string *domain, *msgid1, *msgid2;
+	char *domain, *msgid1, *msgid2, *msgstr = NULL;
+	size_t domain_len, msgid1_len, msgid2_len;
 	zend_long count;
 
-	ZEND_PARSE_PARAMETERS_START(4, 4)
-		Z_PARAM_STR(domain)
-		Z_PARAM_STR(msgid1)
-		Z_PARAM_STR(msgid2)
-		Z_PARAM_LONG(count)
-	ZEND_PARSE_PARAMETERS_END();
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "sssl", &domain, &domain_len,
+		&msgid1, &msgid1_len, &msgid2, &msgid2_len, &count) == FAILURE) {
+		RETURN_THROWS();
+	}
 
-	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, ZSTR_LEN(domain))
-	PHP_GETTEXT_LENGTH_CHECK(2, ZSTR_LEN(msgid1))
-	PHP_GETTEXT_LENGTH_CHECK(3, ZSTR_LEN(msgid2))
+	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, domain_len)
+	PHP_GETTEXT_LENGTH_CHECK(2, msgid1_len)
+	PHP_GETTEXT_LENGTH_CHECK(3, msgid2_len)
 
-	msgstr = dngettext(ZSTR_VAL(domain), ZSTR_VAL(msgid1), ZSTR_VAL(msgid2), count);
+	msgstr = dngettext(domain, msgid1, msgid2, count);
 
 	ZEND_ASSERT(msgstr);
 	RETURN_STRING(msgstr);
@@ -264,26 +259,25 @@ PHP_FUNCTION(dngettext)
 /* {{{ Plural version of dcgettext() */
 PHP_FUNCTION(dcngettext)
 {
-	char *msgstr = NULL;
-	zend_string *domain, *msgid1, *msgid2;
+	char *domain, *msgid1, *msgid2, *msgstr = NULL;
+	size_t domain_len, msgid1_len, msgid2_len;
 	zend_long count, category;
 
 	RETVAL_FALSE;
 
-	ZEND_PARSE_PARAMETERS_START(5, 5)
-		Z_PARAM_STR(domain)
-		Z_PARAM_STR(msgid1)
-		Z_PARAM_STR(msgid2)
-		Z_PARAM_LONG(count)
-		Z_PARAM_LONG(category)
-	ZEND_PARSE_PARAMETERS_END();
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "sssll", &domain, &domain_len,
+		&msgid1, &msgid1_len, &msgid2, &msgid2_len, &count, &category) == FAILURE) {
+		RETURN_THROWS();
+	}
 
-	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, ZSTR_LEN(domain))
-	PHP_GETTEXT_LENGTH_CHECK(2, ZSTR_LEN(msgid1))
-	PHP_GETTEXT_LENGTH_CHECK(3, ZSTR_LEN(msgid2))
-	PHP_DCGETTEXT_CATEGORY_CHECK(5, category)
+	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, domain_len)
+	PHP_GETTEXT_LENGTH_CHECK(2, msgid1_len)
+	PHP_GETTEXT_LENGTH_CHECK(3, msgid2_len)
+	if (category == LC_ALL) {
+		RETURN_STRING(msgid1);
+	}
 
-	msgstr = dcngettext(ZSTR_VAL(domain), ZSTR_VAL(msgid1), ZSTR_VAL(msgid2), count, category);
+	msgstr = dcngettext(domain, msgid1, msgid2, count, category);
 
 	ZEND_ASSERT(msgstr);
 	RETURN_STRING(msgstr);
@@ -296,18 +290,16 @@ PHP_FUNCTION(dcngettext)
 /* {{{ Specify the character encoding in which the messages from the DOMAIN message catalog will be returned. */
 PHP_FUNCTION(bind_textdomain_codeset)
 {
-	char *retval = NULL;
-	zend_string *domain, *codeset = NULL;
+	char *domain, *codeset = NULL, *retval = NULL;
+	size_t domain_len, codeset_len;
 
-	ZEND_PARSE_PARAMETERS_START(1, 2)
-		Z_PARAM_STR(domain)
-		Z_PARAM_OPTIONAL
-		Z_PARAM_STR_OR_NULL(codeset)
-	ZEND_PARSE_PARAMETERS_END();
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "ss!", &domain, &domain_len, &codeset, &codeset_len) == FAILURE) {
+		RETURN_THROWS();
+	}
 
-	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, ZSTR_LEN(domain))
+	PHP_GETTEXT_DOMAIN_LENGTH_CHECK(1, domain_len)
 
-	retval = bind_textdomain_codeset(ZSTR_VAL(domain), codeset ? ZSTR_VAL(codeset) : NULL);
+	retval = bind_textdomain_codeset(domain, codeset);
 
 	if (!retval) {
 		RETURN_FALSE;
