microsoft · wupq2022 · Dec 9, 2025 · Copilot · Mar 3, 2026
diff --git a/include/utils.h b/include/utils.h
@@ -1,9 +1,10 @@
-// Copyright (c) Microsoft Corporation. All rights reserved.
+// Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT license.
 
 #pragma once
 
 #include <errno.h>
+#include <stdlib.h>  // for posix_memalign
 
 #include "common_includes.h"
 
@@ -259,7 +260,15 @@ inline void alloc_aligned(void **ptr, size_t size, size_t align)
     if (IS_ALIGNED(size, align) == 0)
         report_misalignment_of_requested_size(align);
 #ifndef _WINDOWS
-    *ptr = ::aligned_alloc(align, size);
+    // Use posix_memalign instead of aligned_alloc for tcmalloc compatibility.
+    // posix_memalign is more compatible with tcmalloc and avoids "invalid pointer" errors
+    // when freeing memory allocated with aligned_alloc and freed with tcmalloc's free().
+    int ret = posix_memalign(ptr, align, size);
+    if (ret != 0)
+    {
+        *ptr = nullptr;
-    // Use posix_memalign instead of aligned_alloc for tcmalloc compatibility.
-    // posix_memalign is more compatible with tcmalloc and avoids "invalid pointer" errors
-    // when freeing memory allocated with aligned_alloc and freed with tcmalloc's free().
-    int ret = posix_memalign(ptr, align, size);
-    if (ret != 0)
-    {
-        *ptr = nullptr;
+    // Normalize and validate alignment for posix_memalign.
+    // posix_memalign requires that the alignment be a power of two and
+    // a multiple of sizeof(void*), and typically at least sizeof(void*).
+    size_t effective_align = align;
+    if (effective_align < sizeof(void *))
+        effective_align = sizeof(void *);
+
+    bool align_is_valid = (effective_align != 0) &&
+                          ((effective_align & (effective_align - 1)) == 0) &&
+                          (effective_align % sizeof(void *) == 0);
+
+    if (!align_is_valid)
+    {
+        std::stringstream stream;
+        stream << "Invalid alignment (" << align
+               << ") requested for aligned allocation. Alignment must be a power-of-two "
+               << "multiple of " << sizeof(void *) << ".";
+        print_error_and_terminate(stream);
+    }
+
+    // Use posix_memalign instead of aligned_alloc for tcmalloc compatibility.
+    // posix_memalign is more compatible with tcmalloc and avoids "invalid pointer" errors
+    // when freeing memory allocated with aligned_alloc and freed with tcmalloc's free().
+    int ret = posix_memalign(ptr, effective_align, size);
+    if (ret != 0)
+    {
+        *ptr = nullptr;
+        if (ret == EINVAL)
+        {
+            std::stringstream stream;
+            stream << "posix_memalign failed with EINVAL for alignment " << align
+                   << " (effective alignment " << effective_align
+                   << "). Alignment must be a power-of-two multiple of " << sizeof(void *) << ".";
+            print_error_and_terminate(stream);
+        }
-    // Use posix_memalign instead of aligned_alloc for tcmalloc compatibility.
-    // posix_memalign is more compatible with tcmalloc and avoids "invalid pointer" errors
-    // when freeing memory allocated with aligned_alloc and freed with tcmalloc's free().
-    int ret = posix_memalign(ptr, align, size);
-    if (ret != 0)
-    {
-        *ptr = nullptr;
+    // Normalize and validate alignment for posix_memalign.
+    // posix_memalign requires that the alignment be a power of two and
+    // a multiple of sizeof(void*), and typically at least sizeof(void*).
+    size_t effective_align = align;
+    if (effective_align < sizeof(void *))
+        effective_align = sizeof(void *);
+
+    bool align_is_valid = (effective_align != 0) &&
+                          ((effective_align & (effective_align - 1)) == 0) &&
+                          (effective_align % sizeof(void *) == 0);
+
+    if (!align_is_valid)
+    {
+        std::stringstream stream;
+        stream << "Invalid alignment (" << align
+               << ") requested for aligned allocation. Alignment must be a power-of-two "
+               << "multiple of " << sizeof(void *) << ".";
+        print_error_and_terminate(stream);
+    }
+
+    // Use posix_memalign instead of aligned_alloc for tcmalloc compatibility.
+    // posix_memalign is more compatible with tcmalloc and avoids "invalid pointer" errors
+    // when freeing memory allocated with aligned_alloc and freed with tcmalloc's free().
+    int ret = posix_memalign(ptr, effective_align, size);
+    if (ret != 0)
+    {
+        *ptr = nullptr;
+        if (ret == EINVAL)
+        {
+            std::stringstream stream;
+            stream << "posix_memalign failed with EINVAL for alignment " << align
+                   << " (effective alignment " << effective_align
+                   << "). Alignment must be a power-of-two multiple of " << sizeof(void *) << ".";
+            print_error_and_terminate(stream);
+        }
+        report_memory_allocation_failure();
+    }
 #else
     *ptr = ::_aligned_malloc(size, align); // note the swapped arguments!
 #endif