zend_atoi/zend_atol cleanup #4132
Conversation
| @@ -149,7 +149,7 @@ static ZEND_INI_MH(OnUpdateAssertions) /* {{{ */ | |||
|
|
|||
| p = (zend_long *) (base+(size_t) mh_arg1); | |||
|
|
|||
| val = zend_atol(ZSTR_VAL(new_value), ZSTR_LEN(new_value)); | |||
| val = ZEND_STRTOL(ZSTR_VAL(new_value), NULL, 0); | |||
There was a problem hiding this comment.
Happy to split 'em up, sure.
Zend/zend_operators.c
Outdated
| } | ||
| } | ||
| return retval; | ||
| zend_error(E_WARNING, "Invalid numeric string '%s', interpreting as '%s%s'", ZSTR_VAL(strcopy), ZSTR_VAL(numonly), suffixstr); |
There was a problem hiding this comment.
Maybe use %.*s here with explicitly passed length to avoid those string copies? Can also use %c instead of the suffixstr.
There was a problem hiding this comment.
Ah, right. %.*s was the format I was trying to recall. Thanks.
On the suffixstr one, I don't want an empty space introduced when it's \0.
|
What happens if you pass just Some tests would be nice :) Otherwise this looks good. |
The same thing that happened before. ZEND_STRTOL() gives us
Yeah, in my email to internals I mentioned that tests are coming, I just wanted to get the conversation going first. |
| @@ -828,7 +828,7 @@ int zend_startup(zend_utility_functions *utility_functions) /* {{{ */ | |||
| { | |||
| char *tmp = getenv("USE_ZEND_DTRACE"); | |||
|
|
|||
| if (tmp && zend_atoi(tmp, 0)) { | |||
| if (tmp && ZEND_STRTOL(tmp, NULL, 0)) { | |||
There was a problem hiding this comment.
Shouldn't the base argument to ZEND_STRTOL be 10 (elsewhere as well)?
There was a problem hiding this comment.
For these changes I chose not to make any unnecessary changes.
If we set "10" here, then ONLY base 10 strings will be respected.
That's probably fine for most of these sites, but I don't have a pressing need to say "You can't use octal/hex".
There was a problem hiding this comment.
Ah, indeed. I thought zend_atoi() would only accept base-10 numbers (the misnomer is rather confusing).
|
Will this make INI memory_limit more strict? E.g. |
Yes and no. It'll warn on bad values, but it'll still accept them.
It's a value, but it's a terrible one. :) Specifically, you'd get: |
Zend/tests/zend_atol.phpt
Outdated
| $leadingWS, $sign, $midWS, $exp, $trailingWS); | ||
| var_dump($setting); | ||
|
|
||
| // Technically, negative values don't make sense for socket timout, |
There was a problem hiding this comment.
Minor typo? timout -> timeout
zend_ato[il]() don't *just* do number parsing. They also check for a 'K', 'M', or 'G' at the end of the string, and multiply the parsed value out accordingly. None of these use cases actually call for this behavior, so invoke ZEND_STRTOL() separately.
zend_ato[il]() don't just do number parsing. They also check for a 'K', 'M', or 'G' at the end of the string, and multiply the parsed value out accordingly. Unfortunately, they ignore any other non-numerics between the numeric component and the last character in the string. This means that numbers such as the following are both valid and non-intuitive in their final output. * "123KMG" is interpreted as "123G" -> 132070244352 * "123G " is interpreted as "123 " -> 123 * "123GB" is interpreted as "123B" -> 123 * "123 I like tacos." is also interpreted as "123." -> 123 This diff primarily adds warnings for these cases when the output would be a potentially unexpected, and unhelpful value. Additionally, with these changes, zend_atoi() is no longer used in php-src, but I left it as a valid API for 3rd party extensions. Note that I did make it a proxy to zend_atol() since deferring the truncation till the end is effectively the same as truncation during multiplication, but this avoid code duplication. I think we should consider removing zend_atoi() entirely (perhaps in 8.0?) and rename zend_atol() to something reflecting it's KMG specific behavior.
|
I like this change @sgolemon do you mind if I take over ? |
zend_atol() parses integers with size suffixes (like "128M"). Here zend_atol() is replaced with ZEND_ATOL() when the intent was not to parse a size or quantity. This builds on 989205e and phpGH-4132.
zend_atol() parses integers with size suffixes (like "128M"). Here zend_atol() is replaced with ZEND_ATOL() when the intent was not to parse a size or quantity. This builds on 989205e and phpGH-4132.
zend_atol() parses integers with size suffixes (like "128M"). Here zend_atol() is replaced with ZEND_ATOL() when the intent was not to parse a size or quantity. This builds on 989205e and phpGH-4132.
| break; | ||
| default: | ||
| /* Unknown suffix */ | ||
| zend_error(E_WARNING, "Invalid numeric string '%.*s', interpreting as '%.*s'", |
There was a problem hiding this comment.
Not sure about the warning message ("Invalid numeric string"). Should that be more like "invalid suffix"? Same a few lines below.
|
There are several PRs floating around right now that deal with this area:
I suspect that #7788 supersedes this PR and #7951 might even negate the need for it. Thoughts on closing this one? |
|
Yeah, this PR should already have been closed. |
zend_ato[il]() don't just do number parsing.
They also check for a 'K', 'M', or 'G' at the end of the string,
and multiply the parsed value out accordingly.
Unfortunately, they ignore any other non-numerics between the
numeric component and the last character in the string.
This means that numbers such as the following are both valid
and non-intuitive in their final output.
This diff primarily adds warnings for these cases when the output
would be a potentially unexpected, and unhelpful value.
Additionally, several places in php-src use these functions
despite not actually wanting their KMG behavior such as
session.upload_progress.freq which will happily parse "1 banana"
as a valid value.
For these settings, I've switched them to ZEND_STRTOL which preserves
their existing /intended/ behavior.
We should probably reexamine that second bullet point separately.
Lastly, with these changes, zend_atoi() is no longer used in php-src,
but I left it as a valid API for 3rd party extensions.
Note that I did make it a proxy to zend_atol() since deferring the
truncation till the end is effectively the same as truncation during
multiplication, but this avoid code duplication.
I think we should consider removing zend_atoi() entirely (perhaps in 8.0?)
and rename zend_atol() to something reflecting it's KMG specific behavior.