Disallow version_compare() $operator abbreviations

cmb69 · cmb69 · commit 2b7eb0e26a18 · 2020-12-13T23:55:33.000+01:00
`version_compare()` does a sloppy check for the `$operators` argument which allows arbitrary abbreviations of the supported operators to be accepted. This is both undocumented and unexpected, and could lead to subtle BC breaks, if the order of the comparisions will be changed. Therefore we change to strict comparisons. Closes GH-6510.
diff --git a/UPGRADING b/UPGRADING
@@ -19,6 +19,9 @@ PHP 8.1 UPGRADE NOTES
 1. Backward Incompatible Changes
 ========================================
 
+- Standard:
+  . version_compare() no longer accepts undocumented operator abbreviations.
+
 ========================================
 2. New Features
 ========================================
diff --git a/ext/standard/tests/versioning/version_compare_op_abbrev.phpt b/ext/standard/tests/versioning/version_compare_op_abbrev.phpt
@@ -0,0 +1,21 @@
+--TEST--
+version_compare() no longer supports operator abbreviations
+--FILE--
+<?php
+$abbrevs = ['', 'l', 'g', 'e', '!', 'n'];
+foreach ($abbrevs as $op) {
+    try {
+        version_compare('1', '2', $op);
+        echo "'$op' succeeded\n";
+    } catch (ValueError $err) {
+        echo "'$op' failed\n";
+    }
+}
+?>
+--EXPECT--
+'' failed
+'l' failed
+'g' failed
+'e' failed
+'!' failed
+'n' failed
diff --git a/ext/standard/versioning.c b/ext/standard/versioning.c
@@ -203,37 +203,38 @@ php_version_compare(const char *orig_ver1, const char *orig_ver2)
 
 PHP_FUNCTION(version_compare)
 {
-	char *v1, *v2, *op = NULL;
-	size_t v1_len, v2_len, op_len = 0;
+	char *v1, *v2;
+	zend_string *op = NULL;
+	size_t v1_len, v2_len;
 	int compare;
 
 	ZEND_PARSE_PARAMETERS_START(2, 3)
 		Z_PARAM_STRING(v1, v1_len)
 		Z_PARAM_STRING(v2, v2_len)
 		Z_PARAM_OPTIONAL
-		Z_PARAM_STRING_OR_NULL(op, op_len)
+		Z_PARAM_STR_OR_NULL(op)
 	ZEND_PARSE_PARAMETERS_END();
 
 	compare = php_version_compare(v1, v2);
 	if (!op) {
 		RETURN_LONG(compare);
 	}
-	if (!strncmp(op, "<", op_len) || !strncmp(op, "lt", op_len)) {
+	if (zend_string_equals_literal(op, "<") || zend_string_equals_literal(op, "lt")) {
 		RETURN_BOOL(compare == -1);
 	}
-	if (!strncmp(op, "<=", op_len) || !strncmp(op, "le", op_len)) {
+	if (zend_string_equals_literal(op, "<=") || zend_string_equals_literal(op, "le")) {
 		RETURN_BOOL(compare != 1);
 	}
-	if (!strncmp(op, ">", op_len) || !strncmp(op, "gt", op_len)) {
+	if (zend_string_equals_literal(op, ">") || zend_string_equals_literal(op, "gt")) {
 		RETURN_BOOL(compare == 1);
 	}
-	if (!strncmp(op, ">=", op_len) || !strncmp(op, "ge", op_len)) {
+	if (zend_string_equals_literal(op, ">=") || zend_string_equals_literal(op, "ge")) {
 		RETURN_BOOL(compare != -1);
 	}
-	if (!strncmp(op, "==", op_len) || !strncmp(op, "=", op_len) || !strncmp(op, "eq", op_len)) {
+	if (zend_string_equals_literal(op, "==") || zend_string_equals_literal(op, "=") || zend_string_equals_literal(op, "eq")) {
 		RETURN_BOOL(compare == 0);
 	}
-	if (!strncmp(op, "!=", op_len) || !strncmp(op, "<>", op_len) || !strncmp(op, "ne", op_len)) {
+	if (zend_string_equals_literal(op, "!=") || zend_string_equals_literal(op, "<>") || zend_string_equals_literal(op, "ne")) {
 		RETURN_BOOL(compare != 0);
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -203,37 +203,38 @@ php_version_compare(const char orig_ver1, const char orig_ver2)`
`203`	`203`
`204`	`204`	`PHP_FUNCTION(version_compare)`
`205`	`205`	`{`
`206`		`- char v1, v2, *op = NULL;`
`207`		`- size_t v1_len, v2_len, op_len = 0;`
	`206`	`+ char v1, v2;`
	`207`	`+ zend_string *op = NULL;`
	`208`	`+ size_t v1_len, v2_len;`
`208`	`209`	`int compare;`
`209`	`210`
`210`	`211`	`ZEND_PARSE_PARAMETERS_START(2, 3)`
`211`	`212`	`Z_PARAM_STRING(v1, v1_len)`
`212`	`213`	`Z_PARAM_STRING(v2, v2_len)`
`213`	`214`	`Z_PARAM_OPTIONAL`
`214`		`- Z_PARAM_STRING_OR_NULL(op, op_len)`
	`215`	`+ Z_PARAM_STR_OR_NULL(op)`
`215`	`216`	`ZEND_PARSE_PARAMETERS_END();`
`216`	`217`
`217`	`218`	`compare = php_version_compare(v1, v2);`
`218`	`219`	`if (!op) {`
`219`	`220`	`RETURN_LONG(compare);`
`220`	`221`	`}`
`221`		`- if (!strncmp(op, "<", op_len) \|\| !strncmp(op, "lt", op_len)) {`
	`222`	`+ if (zend_string_equals_literal(op, "<") \|\| zend_string_equals_literal(op, "lt")) {`
`222`	`223`	`RETURN_BOOL(compare == -1);`
`223`	`224`	`}`
`224`		`- if (!strncmp(op, "<=", op_len) \|\| !strncmp(op, "le", op_len)) {`
	`225`	`+ if (zend_string_equals_literal(op, "<=") \|\| zend_string_equals_literal(op, "le")) {`
`225`	`226`	`RETURN_BOOL(compare != 1);`
`226`	`227`	`}`
`227`		`- if (!strncmp(op, ">", op_len) \|\| !strncmp(op, "gt", op_len)) {`
	`228`	`+ if (zend_string_equals_literal(op, ">") \|\| zend_string_equals_literal(op, "gt")) {`
`228`	`229`	`RETURN_BOOL(compare == 1);`
`229`	`230`	`}`
`230`		`- if (!strncmp(op, ">=", op_len) \|\| !strncmp(op, "ge", op_len)) {`
	`231`	`+ if (zend_string_equals_literal(op, ">=") \|\| zend_string_equals_literal(op, "ge")) {`
`231`	`232`	`RETURN_BOOL(compare != -1);`
`232`	`233`	`}`
`233`		`- if (!strncmp(op, "==", op_len) \|\| !strncmp(op, "=", op_len) \|\| !strncmp(op, "eq", op_len)) {`
	`234`	`+ if (zend_string_equals_literal(op, "==") \|\| zend_string_equals_literal(op, "=") \|\| zend_string_equals_literal(op, "eq")) {`
`234`	`235`	`RETURN_BOOL(compare == 0);`
`235`	`236`	`}`
`236`		`- if (!strncmp(op, "!=", op_len) \|\| !strncmp(op, "<>", op_len) \|\| !strncmp(op, "ne", op_len)) {`
	`237`	`+ if (zend_string_equals_literal(op, "!=") \|\| zend_string_equals_literal(op, "<>") \|\| zend_string_equals_literal(op, "ne")) {`
`237`	`238`	`RETURN_BOOL(compare != 0);`
`238`	`239`	`}`
`239`	`240`