Revert "ext/gmp: Fix segfault when null is encountered on an overloaded operator"

Girgias · Girgias · commit a4bc271bfa80 · 2024-10-25T18:01:50.000+01:00
This reverts commit 9cea1a2.
diff --git a/ext/gmp/gmp.c b/ext/gmp/gmp.c
@@ -199,7 +199,7 @@ typedef void (*gmp_binary_ui_op_t)(mpz_ptr, mpz_srcptr, gmp_ulong);
 typedef void (*gmp_binary_op2_t)(mpz_ptr, mpz_ptr, mpz_srcptr, mpz_srcptr);
 typedef gmp_ulong (*gmp_binary_ui_op2_t)(mpz_ptr, mpz_ptr, mpz_srcptr, gmp_ulong);
 
-static inline zend_result gmp_zval_binary_ui_op(zval *return_value, zval *a_arg, zval *b_arg, gmp_binary_op_t gmp_op, gmp_binary_ui_op_t gmp_ui_op, bool check_b_zero, bool is_operator);
+static inline void gmp_zval_binary_ui_op(zval *return_value, zval *a_arg, zval *b_arg, gmp_binary_op_t gmp_op, gmp_binary_ui_op_t gmp_ui_op, bool check_b_zero, bool is_operator);
 static inline void gmp_zval_binary_ui_op2(zval *return_value, zval *a_arg, zval *b_arg, gmp_binary_op2_t gmp_op, gmp_binary_ui_op2_t gmp_ui_op, int check_b_zero);
 static inline void gmp_zval_unary_op(zval *return_value, zval *a_arg, gmp_unary_op_t gmp_op);
 
@@ -356,7 +356,10 @@ static void shift_operator_helper(gmp_binary_ui_op_t op, zval *return_value, zva
 }
 
 #define DO_BINARY_UI_OP_EX(op, uop, check_b_zero) \
-	return gmp_zval_binary_ui_op(result, op1, op2, op, uop, check_b_zero, /* is_operator */ true);
+	gmp_zval_binary_ui_op( \
+		result, op1, op2, op, uop, check_b_zero, /* is_operator */ true); \
+	if (UNEXPECTED(EG(exception))) { return FAILURE; } \
+	return SUCCESS;
 
 #define DO_BINARY_UI_OP(op) DO_BINARY_UI_OP_EX(op, op ## _ui, 0)
 #define DO_BINARY_OP(op) DO_BINARY_UI_OP_EX(op, NULL, 0)
@@ -434,7 +437,7 @@ static int gmp_compare(zval *op1, zval *op2) /* {{{ */
 	/* An error/exception occurs if one of the operands is not a numeric string
 	 * or an object which is different from GMP */
 	if (EG(exception)) {
-		return ZEND_UNCOMPARABLE;
+		return 1;
 	}
 	/* result can only be a zend_long if gmp_cmp hasn't thrown an Error */
 	ZEND_ASSERT(Z_TYPE(result) == IS_LONG);
@@ -616,16 +619,7 @@ static zend_result convert_to_gmp(mpz_t gmpnumber, zval *val, zend_long base, ui
 	case IS_STRING: {
 		return convert_zstr_to_gmp(gmpnumber, Z_STR_P(val), base, arg_pos);
 	}
-	case IS_NULL:
-		/* For operator overloading just reject null */
-		if (arg_pos == 0) {
-			return FAILURE;
-		}
-		ZEND_FALLTHROUGH;
-	case IS_DOUBLE:
-	case IS_FALSE:
-	case IS_TRUE:
-	{
+	default: {
 		zend_long lval;
 		if (!zend_parse_arg_long_slow(val, &lval, arg_pos)) {
 			if (arg_pos == 0) {
@@ -641,12 +635,6 @@ static zend_result convert_to_gmp(mpz_t gmpnumber, zval *val, zend_long base, ui
 		mpz_set_si(gmpnumber, lval);
 		return SUCCESS;
 	}
-	default:
-		if (arg_pos != 0) {
-			zend_argument_type_error(arg_pos,
-				"must be of type GMP|string|int, %s given", zend_zval_type_name(val));
-		}
-		return FAILURE;
 	}
 }
 /* }}} */
@@ -714,45 +702,18 @@ static void gmp_cmp(zval *return_value, zval *a_arg, zval *b_arg, bool is_operat
 /* {{{ gmp_zval_binary_ui_op
    Execute GMP binary operation.
 */
-static inline zend_result gmp_zval_binary_ui_op(zval *return_value, zval *a_arg, zval *b_arg, gmp_binary_op_t gmp_op, gmp_binary_ui_op_t gmp_ui_op, bool check_b_zero, bool is_operator)
+static inline void gmp_zval_binary_ui_op(zval *return_value, zval *a_arg, zval *b_arg, gmp_binary_op_t gmp_op, gmp_binary_ui_op_t gmp_ui_op, bool check_b_zero, bool is_operator)
 {
 	mpz_ptr gmpnum_a, gmpnum_b, gmpnum_result;
 	gmp_temp_t temp_a, temp_b;
 
-	/* Inline version of FETCH_GMP_ZVAL(gmpnum_a, a_arg, temp_a, is_operator ? 0 : 1);
-	 * because we cannot use RETURN_THROWS() here */
-	if (IS_GMP(a_arg)) {
-		gmpnum_a = GET_GMP_FROM_ZVAL(a_arg);
-		temp_a.is_used = 0;
-	} else {
-		mpz_init(temp_a.num);
-		if (convert_to_gmp(temp_a.num, a_arg, 0, is_operator ? 0 : 1) == FAILURE) {
-			mpz_clear(temp_a.num);
-			return FAILURE;
-		}
-		temp_a.is_used = 1;
-		gmpnum_a = temp_a.num;
-	}
+	FETCH_GMP_ZVAL(gmpnum_a, a_arg, temp_a, is_operator ? 0 : 1);
 
 	if (gmp_ui_op && Z_TYPE_P(b_arg) == IS_LONG && Z_LVAL_P(b_arg) >= 0) {
 		gmpnum_b = NULL;
 		temp_b.is_used = 0;
 	} else {
-		/* Inline version of FETCH_GMP_ZVAL_DEP(gmpnum_b, b_arg, temp_b, temp_a, is_operator ? 0 : 2);
-		 * because we cannot use RETURN_THROWS() here */
-		if (IS_GMP(b_arg)) {
-			gmpnum_b = GET_GMP_FROM_ZVAL(b_arg);
-			temp_b.is_used = 0;
-		} else {
-			mpz_init(temp_b.num);
-			if (convert_to_gmp(temp_b.num, b_arg, 0, is_operator ? 0 : 2) == FAILURE) {
-				mpz_clear(temp_b.num);
-				FREE_GMP_TEMP(temp_a);
-				return FAILURE;
-			}
-			temp_b.is_used = 1;
-			gmpnum_b = temp_b.num;
-		}
+		FETCH_GMP_ZVAL_DEP(gmpnum_b, b_arg, temp_b, temp_a, is_operator ? 0 : 2);
 	}
 
 	if (check_b_zero) {
@@ -771,7 +732,7 @@ static inline zend_result gmp_zval_binary_ui_op(zval *return_value, zval *a_arg,
 			}
 			FREE_GMP_TEMP(temp_a);
 			FREE_GMP_TEMP(temp_b);
-			return FAILURE;
+			RETURN_THROWS();
 		}
 	}
 
@@ -785,7 +746,6 @@ static inline zend_result gmp_zval_binary_ui_op(zval *return_value, zval *a_arg,
 
 	FREE_GMP_TEMP(temp_a);
 	FREE_GMP_TEMP(temp_b);
-	return SUCCESS;
 }
 /* }}} */
 
diff --git a/ext/gmp/tests/overloading_with_array.phpt b/ext/gmp/tests/overloading_with_array.phpt
@@ -71,18 +71,18 @@ try {
 
 ?>
 --EXPECT--
-TypeError: Unsupported operand types: GMP + array
-TypeError: Unsupported operand types: GMP - array
-TypeError: Unsupported operand types: GMP * array
-TypeError: Unsupported operand types: GMP / array
-TypeError: Unsupported operand types: GMP % array
+TypeError: Number must be of type GMP|string|int, array given
+TypeError: Number must be of type GMP|string|int, array given
+TypeError: Number must be of type GMP|string|int, array given
+TypeError: Number must be of type GMP|string|int, array given
+TypeError: Number must be of type GMP|string|int, array given
 object(GMP)#3 (1) {
   ["num"]=>
   string(1) "1"
 }
-TypeError: Unsupported operand types: GMP | array
-TypeError: Unsupported operand types: GMP & array
-TypeError: Unsupported operand types: GMP ^ array
+TypeError: Number must be of type GMP|string|int, array given
+TypeError: Number must be of type GMP|string|int, array given
+TypeError: Number must be of type GMP|string|int, array given
 object(GMP)#2 (1) {
   ["num"]=>
   string(2) "42"
diff --git a/ext/gmp/tests/overloading_with_null.phpt b/ext/gmp/tests/overloading_with_null.phpt
@@ -2,6 +2,8 @@
 GMP operator overloading does not support null
 --EXTENSIONS--
 gmp
+--XFAIL--
+Test showcasing segfaulting behaviour
 --FILE--
 <?php
 
@@ -71,23 +73,4 @@ try {
 
 ?>
 --EXPECT--
-int(42)
-int(42)
-int(0)
-DivisionByZeroError: Division by zero
-DivisionByZeroError: Modulo by zero
-object(GMP)#2 (1) {
-  ["num"]=>
-  string(1) "1"
-}
-int(42)
-int(0)
-int(42)
-object(GMP)#2 (1) {
-  ["num"]=>
-  string(2) "42"
-}
-object(GMP)#2 (1) {
-  ["num"]=>
-  string(2) "42"
-}
+SEGFAULT
diff --git a/ext/gmp/tests/overloading_with_object_not_stringable.phpt b/ext/gmp/tests/overloading_with_object_not_stringable.phpt
@@ -72,20 +72,20 @@ try {
 
 ?>
 --EXPECTF--
-TypeError: Unsupported operand types: GMP + stdClass
-TypeError: Unsupported operand types: GMP - stdClass
-TypeError: Unsupported operand types: GMP * stdClass
-TypeError: Unsupported operand types: GMP / stdClass
-TypeError: Unsupported operand types: GMP % stdClass
+TypeError: Number must be of type GMP|string|int, stdClass given
+TypeError: Number must be of type GMP|string|int, stdClass given
+TypeError: Number must be of type GMP|string|int, stdClass given
+TypeError: Number must be of type GMP|string|int, stdClass given
+TypeError: Number must be of type GMP|string|int, stdClass given
 
 Warning: Object of class stdClass could not be converted to int in %s on line %d
 object(GMP)#4 (1) {
   ["num"]=>
   string(2) "42"
 }
-TypeError: Unsupported operand types: GMP | stdClass
-TypeError: Unsupported operand types: GMP & stdClass
-TypeError: Unsupported operand types: GMP ^ stdClass
+TypeError: Number must be of type GMP|string|int, stdClass given
+TypeError: Number must be of type GMP|string|int, stdClass given
+TypeError: Number must be of type GMP|string|int, stdClass given
 
 Warning: Object of class stdClass could not be converted to int in %s on line %d
 object(GMP)#3 (1) {
diff --git a/ext/gmp/tests/overloading_with_object_stringable.phpt b/ext/gmp/tests/overloading_with_object_stringable.phpt
@@ -78,20 +78,20 @@ try {
 
 ?>
 --EXPECTF--
-TypeError: Unsupported operand types: GMP + T
-TypeError: Unsupported operand types: GMP - T
-TypeError: Unsupported operand types: GMP * T
-TypeError: Unsupported operand types: GMP / T
-TypeError: Unsupported operand types: GMP % T
+TypeError: Number must be of type GMP|string|int, T given
+TypeError: Number must be of type GMP|string|int, T given
+TypeError: Number must be of type GMP|string|int, T given
+TypeError: Number must be of type GMP|string|int, T given
+TypeError: Number must be of type GMP|string|int, T given
 
 Warning: Object of class T could not be converted to int in %s on line %d
 object(GMP)#4 (1) {
   ["num"]=>
   string(2) "42"
 }
-TypeError: Unsupported operand types: GMP | T
-TypeError: Unsupported operand types: GMP & T
-TypeError: Unsupported operand types: GMP ^ T
+TypeError: Number must be of type GMP|string|int, T given
+TypeError: Number must be of type GMP|string|int, T given
+TypeError: Number must be of type GMP|string|int, T given
 
 Warning: Object of class T could not be converted to int in %s on line %d
 object(GMP)#3 (1) {
diff --git a/ext/gmp/tests/overloading_with_resource.phpt b/ext/gmp/tests/overloading_with_resource.phpt
@@ -71,18 +71,18 @@ try {
 
 ?>
 --EXPECT--
-TypeError: Unsupported operand types: GMP + resource
-TypeError: Unsupported operand types: GMP - resource
-TypeError: Unsupported operand types: GMP * resource
-TypeError: Unsupported operand types: GMP / resource
-TypeError: Unsupported operand types: GMP % resource
+TypeError: Number must be of type GMP|string|int, resource given
+TypeError: Number must be of type GMP|string|int, resource given
+TypeError: Number must be of type GMP|string|int, resource given
+TypeError: Number must be of type GMP|string|int, resource given
+TypeError: Number must be of type GMP|string|int, resource given
 object(GMP)#3 (1) {
   ["num"]=>
   string(5) "74088"
 }
-TypeError: Unsupported operand types: GMP | resource
-TypeError: Unsupported operand types: GMP & resource
-TypeError: Unsupported operand types: GMP ^ resource
+TypeError: Number must be of type GMP|string|int, resource given
+TypeError: Number must be of type GMP|string|int, resource given
+TypeError: Number must be of type GMP|string|int, resource given
 object(GMP)#2 (1) {
   ["num"]=>
   string(3) "336"
