Fix GH-10801: Named arguments in CTE functions cause a segfault #10811
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Fixes phpGH-10801 Named arguments are not supported by the constant evaluation routine, in the sense that they are ignored. This causes two issues: - It causes a crash because not all oplines belonging to the call are removed, which results in SEND_VA{L,R} which should've been removed. - It causes semantic issues (demonstrated in the test case). This case never worked anyway, leading to crashes or incorrect behaviour, so just prevent CTE of calls with named parameters for now. We can choose to support it later, but introducing support for this in a stable branch seems too dangerous. This patch does not change the removal of SEND_* opcodes in remove_call because the crash bug can't be triggered anymore with this patch as there are no named parameters anymore and no variadic CTE functions exist.
|
From user perspective, I expect no behavioural/CTE change when I use named parameters. |
|
There was a behavioural change prior to this PR because the support for named parameters was not there but the optimizer expected it to work. |
iluuu1994
approved these changes
Mar 9, 2023
nielsdos
added a commit
to nielsdos/php-src
that referenced
this pull request
Mar 11, 2023
In phpGH-10811 I disabled compile-time-eval for function calls with named arguments because it was completely unsupported and thus would therefore crash or give semantically wrong results. This patch undoes the disabling and implements the necessary components to support CTE for named arguments. Since named arguments are a bit of a special case for the VM, I also had to add some special handling for the SCCP pass. I also had to tweak how the call removal code worked such that the named arguments, which are not in num_args, are also removed, as well as the CHECK_UNDEF_ARGS opline.
nielsdos
added a commit
to nielsdos/php-src
that referenced
this pull request
Mar 11, 2023
In phpGH-10811 I disabled compile-time-eval for function calls with named arguments because it was completely unsupported and thus would therefore crash or give semantically wrong results. This patch undoes the disabling and implements the necessary components to support CTE for named arguments. Since named arguments are a bit of a special case for the VM, I also had to add some special handling for the SCCP pass. I also had to tweak how the call removal code worked such that the named arguments, which are not in num_args, are also removed, as well as the CHECK_UNDEF_ARGS opline.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes GH-10801
Named arguments are not supported by the constant evaluation routine, in the sense that they are ignored. This causes two issues:
This case never worked anyway, leading to crashes or incorrect behaviour, so just prevent CTE of calls with named parameters for now. We can choose to support it later, but introducing support for this in a stable branch seems too dangerous.
This patch does not change the removal of SEND_* opcodes in remove_call because the crash bug can't be triggered anymore with this patch as there are no named parameters anymore and no variadic CTE functions exist.
Question
I do have the patch already on my machine to support named arguments & variadics in the
remove_callfunction, which solves bullet point 1. If we're interested in supporting named arguments in CTE, I can write the code to actually pass the named arguments during CTE, which would solve bullet point 2. This would make CTE possible with named arguments. Is this something we want?