More informative C Zend API #4

Girgias · 2020-08-16T23:01:52Z

This is an attempt to streamline the Zend engine API.

Functions which only return SUCCESS and don't need to return such a value due to other engine API are changed to void

Functions which return the values SUCCESS or FAILURE exclusively are changed to return the corresponding enum ZEND_RESULT_CODE

Functions returning/accepting a boolean value are clearly marked so.

…rd/tests/array/bug77135.phpt failure).

* PHP-7.3: Fix HTTP response status code

* PHP-7.4: Fix HTTP response status code

* PHP-7.3: 7.3.23 is next

* PHP-7.4: 7.3.23 is next

…restore_error_handling())

…hange

…coding: chunked"

* PHP-7.3: Fix #47021: SoapClient stumbles over WSDL delivered with "Transfer-Encoding: chunked"

* PHP-7.4: Fix #47021: SoapClient stumbles over WSDL delivered with "Transfer-Encoding: chunked"

Closes phpGH-6010

…rst operand and it may be used later in VM or different trace.

User-defined functions can't have multiple parameters with the same name. Don't do that for var_dump/debug_zval_dump. Consistently use array $array to match docs Fix typo in UPGRADING Fixes phpGH-6015

…r_scanning()

…tring

Might be due to EXT_CALL zend_is_true, r0 in zend_jit_x86.dasc line 7932

Girgias · 2020-09-04T12:31:53Z

This has been merged upstream.

1. For statement "$a->change($a = array("a" => range(1, 5)));", the following opcodes will be generated: 0002 ASSIGN CV0($a) V1 0003 INIT_METHOD_CALL 1 CV0($a) string("change") 0004 INIT_NS_FCALL_BY_NAME 2 string("A\range") 0005 SEND_VAL_EX int(1) 1 0006 SEND_VAL_EX int(5) 2 0007 V1 = DO_FCALL_BY_NAME The updates in function zend_jit_init_fcall(), zend_jit_send_val() and zend_jit_do_fcall() are made to support INIT_NS_FCALL_BY_NAME, SEND_VAL_EX and DO_FCALL_BY_NAME respectively. 2. For method $change(), opcode RECV is used to obtain the argument: 0000 #1.CV0($config) [rc1, rcn, array of [any, ref]] = RECV 1 Accordingly the updates in functions zend_jit_recv() and zend_jit_verify_arg_type() are made. 3. For statement "array_keys($config["a"])", the following opcodes will be generated: 0001 INIT_NS_FCALL_BY_NAME 1 string("A\array_keys") 0002 CHECK_FUNC_ARG 1 0003 #3.V1 [ref, rc1, rcn, any] = FETCH_DIM_FUNC_ARG #1.CV0($config) ... -> #2.CV0($config) [rc1, rcn, ... 0004 SEND_FUNC_ARG #3.V1 [ref, rc1, rcn, any] 1 0005 #4.V1 [ref, rc1, rcn, any] = DO_FCALL_BY_NAME CHECK_FUNC_ARG and SEND_FUNC_ARG are not supported before. See the updates in functions zend_jit_check_func_arg() and zend_jit_send_var(). Besides, a new path is covered in macro OBJ_RELEASE when leaving.

The following opcodes would be generated for $foo: 0000 #2.CV0($test) [bool] RANGE[0..1] = RECV 1 0001 #3.CV1($x) [long] RANGE[MIN..MAX] = RECV 2 0002 JMPZ #2.CV0($test) [bool] RANGE[0..1] BB4 0003 #4.T2 [bool] ... = IS_SMALLER_OR_EQUAL int(1) #3.CV1($x) ... 0004 JMP BB5 ... The updates in function zend_jit_verify_arg_type() are made to support RECV opcode. The updates in function zend_jit_bool_jmpznz() are made to support JMPZ opcode. New path is covered in functions zend_jit_cmp() and zend_jit_cmp_long_long() for IS_SMALLER_OR_EQUAL opcode.

Opcodes for $test are: BB0: 0000 #1.CV0($char_code) [rc1, rcn, any] = RECV 1 BB1: 0001 #2.T1 [rc1, ...] = BW_AND #1.CV0($char_code) ... 0002 #3.T2 [bool] RANGE[0..1] = BOOL_NOT #2.T1 [rc1, ...] 0003 #4.T1 [bool] RANGE[0..1] = IS_EQUAL #1.CV0($char_code) ... 0004 JMPZ #4.T1 [bool] RANGE[0..1] BB3 ... New path is covered in function zend_jit_long_math_helper() for opcode BW_AND. New path is covered in function zend_jit_bool_jmpznz() for opcode BOOL_NOT. Major changes lie in functions zend_jit_cmp(), zend_jit_cmp_slow() and zend_jit_check_exception_undef_result() to support opocdes IS_EQUAL and JMPZ.

even without sanitizers, it is reproducible but with the following ``` <?php $g = gmp_init(256); var_dump(gmp_pow($g, PHP_INT_MAX)); ``` we get this ``` AddressSanitizer:DEADLYSIGNAL ================================================================= ==286922==ERROR: AddressSanitizer: FPE on unknown address 0x03e8000460ca (pc 0x7faf6c69de5c bp 0x400000000000004 sp 0x7ffe9843c740 T0) #0 0x7faf6c69de5c in __pthread_kill_implementation nptl/pthread_kill.c:44 #1 0x7faf6c649c81 in __GI_raise ../sysdeps/posix/raise.c:26 #2 0x7faf6db9386c in __gmp_exception (/lib/x86_64-linux-gnu/libgmp.so.10+0xd86c) (BuildId: 1af68a49fe041a5bb48a2915c3d47541f713bb38) #3 0x7faf6db938d3 in __gmp_overflow_in_mpz (/lib/x86_64-linux-gnu/libgmp.so.10+0xd8d3) (BuildId: 1af68a49fe041a5bb48a2915c3d47541f713bb38) #4 0x7faf6dbac95c in __gmpz_realloc (/lib/x86_64-linux-gnu/libgmp.so.10+0x2695c) (BuildId: 1af68a49fe041a5bb48a2915c3d47541f713bb38) #5 0x7faf6dba9038 in __gmpz_n_pow_ui (/lib/x86_64-linux-gnu/libgmp.so.10+0x23038) (BuildId: 1af68a49fe041a5bb48a2915c3d47541f713bb38) #6 0x5565ae1ccd9f in zif_gmp_pow /home/dcarlier/Contribs/php-src/ext/gmp/gmp.c:1286 #7 0x5565aee96ea9 in ZEND_DO_ICALL_SPEC_RETVAL_USED_HANDLER /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:1312 #8 0x5565af144320 in execute_ex /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:56075 #9 0x5565af160f07 in zend_execute /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:60439 #10 0x5565aed6fafe in zend_execute_scripts /home/dcarlier/Contribs/php-src/Zend/zend.c:1842 #11 0x5565aeae70a8 in php_execute_script /home/dcarlier/Contribs/php-src/main/main.c:2578 #12 0x5565af532f4e in do_cli /home/dcarlier/Contribs/php-src/sapi/cli/php_cli.c:964 #13 0x5565af535877 in main /home/dcarlier/Contribs/php-src/sapi/cli/php_cli.c:1334 #14 0x7faf6c633d67 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58 #15 0x7faf6c633e24 in __libc_start_main_impl ../csu/libc-start.c:360 #16 0x5565adc04040 in _start (/home/dcarlier/Contribs/php-src/sapi/cli/php+0x2604040) (BuildId: 949049955bdf8b7197390b1978a1dfc3ef6fdf38) AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: FPE nptl/pthread_kill.c:44 in __pthread_kill_implementation ==286922==ABORTING ```

even without sanitizers, it is reproducible but with the following ``` <?php $g = gmp_init(256); var_dump(gmp_pow($g, PHP_INT_MAX)); ``` we get this ``` AddressSanitizer:DEADLYSIGNAL ================================================================= ==286922==ERROR: AddressSanitizer: FPE on unknown address 0x03e8000460ca (pc 0x7faf6c69de5c bp 0x400000000000004 sp 0x7ffe9843c740 T0) #0 0x7faf6c69de5c in __pthread_kill_implementation nptl/pthread_kill.c:44 #1 0x7faf6c649c81 in __GI_raise ../sysdeps/posix/raise.c:26 #2 0x7faf6db9386c in __gmp_exception (/lib/x86_64-linux-gnu/libgmp.so.10+0xd86c) (BuildId: 1af68a49fe041a5bb48a2915c3d47541f713bb38) #3 0x7faf6db938d3 in __gmp_overflow_in_mpz (/lib/x86_64-linux-gnu/libgmp.so.10+0xd8d3) (BuildId: 1af68a49fe041a5bb48a2915c3d47541f713bb38) #4 0x7faf6dbac95c in __gmpz_realloc (/lib/x86_64-linux-gnu/libgmp.so.10+0x2695c) (BuildId: 1af68a49fe041a5bb48a2915c3d47541f713bb38) #5 0x7faf6dba9038 in __gmpz_n_pow_ui (/lib/x86_64-linux-gnu/libgmp.so.10+0x23038) (BuildId: 1af68a49fe041a5bb48a2915c3d47541f713bb38) #6 0x5565ae1ccd9f in zif_gmp_pow /home/dcarlier/Contribs/php-src/ext/gmp/gmp.c:1286 #7 0x5565aee96ea9 in ZEND_DO_ICALL_SPEC_RETVAL_USED_HANDLER /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:1312 #8 0x5565af144320 in execute_ex /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:56075 #9 0x5565af160f07 in zend_execute /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:60439 #10 0x5565aed6fafe in zend_execute_scripts /home/dcarlier/Contribs/php-src/Zend/zend.c:1842 #11 0x5565aeae70a8 in php_execute_script /home/dcarlier/Contribs/php-src/main/main.c:2578 #12 0x5565af532f4e in do_cli /home/dcarlier/Contribs/php-src/sapi/cli/php_cli.c:964 #13 0x5565af535877 in main /home/dcarlier/Contribs/php-src/sapi/cli/php_cli.c:1334 #14 0x7faf6c633d67 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58 #15 0x7faf6c633e24 in __libc_start_main_impl ../csu/libc-start.c:360 #16 0x5565adc04040 in _start (/home/dcarlier/Contribs/php-src/sapi/cli/php+0x2604040) (BuildId: 949049955bdf8b7197390b1978a1dfc3ef6fdf38) AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: FPE nptl/pthread_kill.c:44 in __pthread_kill_implementation ==286922==ABORTING ``` close phpGH-16384

``` ext/gd/libgd/gd.c:2275:14: runtime error: signed integer overflow: 2147483647 + 1 cannot be represented in type 'int' #0 0x5d6a2103e1db in php_gd_gdImageCopy /home/dcarlier/Contribs/php-src/ext/gd/libgd/gd.c:2275 #1 0x5d6a210a2b63 in gdImageCrop /home/dcarlier/Contribs/php-src/ext/gd/libgd/gd_crop.c:57 #2 0x5d6a21018ca4 in zif_imagecrop /home/dcarlier/Contribs/php-src/ext/gd/gd.c:3575 #3 0x5d6a21e46e7a in ZEND_DO_ICALL_SPEC_RETVAL_USED_HANDLER /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:1337 #4 0x5d6a221188da in execute_ex /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:57246 #5 0x5d6a221366bd in zend_execute /home/dcarlier/Contribs/php-src/Zend/zend_vm_execute.h:61634 #6 0x5d6a21d107a6 in zend_execute_scripts /home/dcarlier/Contribs/php-src/Zend/zend.c:1895 #7 0x5d6a21a63409 in php_execute_script /home/dcarlier/Contribs/php-src/main/main.c:2529 #8 0x5d6a22516d5e in do_cli /home/dcarlier/Contribs/php-src/sapi/cli/php_cli.c:966 #9 0x5d6a2251981d in main /home/dcarlier/Contribs/php-src/sapi/cli/php_cli.c:1341 #10 0x7f10d002a3b7 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58 #11 0x7f10d002a47a in __libc_start_main_impl ../csu/libc-start.c:360 #12 0x5d6a20a06da4 in _start (/home/dcarlier/Contribs/php-src/sapi/cli/php+0x2806da4) (BuildId: d9a79c7e0e4872311439d7313cb3a81fe04190a2) ``` close phpGH-18006

dstogov and others added 28 commits August 17, 2020 13:50

Properly patch jmp tables

8202b4e

Removed outdated/duplicated code

a02237d

Promote warnings in ext/zip

72383cc

Fixed JIT for indirectly recursive traces

28e24e7

JIT for ZEND_ISSET_ISEMPTY_CV

afc93e4

Fixed support for possible indirect variable modification (ext/standa…

32052e7

…rd/tests/array/bug77135.phpt failure).

Fixed trace type inference for FE_FETCH_R/RW

3343eb6

Fixed support for named arguments

fd0b57d

JIT extension may be NULL

5d94ff8

Fix HTTP response status code

1ae80f8

Merge branch 'PHP-7.3' into PHP-7.4

3e8172d

* PHP-7.3: Fix HTTP response status code

Merge branch 'PHP-7.4' into master

c8e6f05

* PHP-7.4: Fix HTTP response status code

Prepare for 7.4.11

499bf91

Merge branch 'PHP-7.4' into master

ac97e4b

7.3.23 is next

ff14b7a

Merge branch 'PHP-7.3' into PHP-7.4

48d7125

* PHP-7.3: 7.3.23 is next

Merge branch 'PHP-7.4' into master

2d32ddb

* PHP-7.4: 7.3.23 is next

Fixed bug #79987 (Memory leak in SplFileInfo because of missing zend_…

8c90002

…restore_error_handling())

Don't add guard for empty()

6f36b20

Fix #79988: new reserved keyword match is a backward incompatible c…

4514afc

…hange

Update NEWS for PHP 8.0.0beta2

9b4abd0

Update NEWS for 8.0.0beta3

c905717

Fix #47021: SoapClient stumbles over WSDL delivered with "Transfer-En…

f7c43b8

…coding: chunked"

Merge branch 'PHP-7.3' into PHP-7.4

3877172

* PHP-7.3: Fix #47021: SoapClient stumbles over WSDL delivered with "Transfer-Encoding: chunked"

Merge branch 'PHP-7.4'

cf3fb14

* PHP-7.4: Fix #47021: SoapClient stumbles over WSDL delivered with "Transfer-Encoding: chunked"

Promote warnings to exceptions in ext/pspell

bf9ef51

Closes phpGH-6010

Fixed register allocation for CASE instruction. CASE don't destroy fi…

f2d8488

…rst operand and it may be used later in VM or different trace.

Check for exception after $this destruction

f559c78

Girgias force-pushed the better-c-zend-api branch from ac89db5 to d8a6c89 Compare August 18, 2020 18:25

Fix more basic function stubs

9883fec

User-defined functions can't have multiple parameters with the same name. Don't do that for var_dump/debug_zval_dump. Consistently use array $array to match docs Fix typo in UPGRADING Fixes phpGH-6015

Girgias added 20 commits August 26, 2020 19:16

Fix ZIP after zend_list_close() voidification

6d9a6c7

Fix Tokenizer extension after voidification of zend_prepare_string_fo…

f93e105

…r_scanning()

Fix PHP_FUNCTION(highlight_string) after voidification of highlight_s…

f4e9196

…tring

Boolify zend_virtual_cwd.c

36b9243

Boolify zend_weakref.c

bcfa1f9

Boolify zend_VM

7f20490

Zend_API.h slight teak

ce59e42

Fix zend_extension incompatible function pointer

32149e4

Fix zend_stream function to be compatible for Zend LList

0001c4b

Fix zend_module_entry enum due to zend_API changes

06c5779

Fix incompatible pointer error for Zend object handlers.

45aef0f

Fix OpCache

4f8829a

Shot in the dark to fix the JIT

d276dce

Typedef ZEND_RESULT_CODE to zend_result

39cc10b

Use zend_result instead of ZEND_RESULT_CODE

b548cdb

Attempt to fix some variable types in VM due to JIT failures

bbc67c4

Partial revert of 'Shot in the dark to fix JIT'

a953eaa

Other change to see if this is root cause of JIT failure

3bc1ce8

Might be due to EXT_CALL zend_is_true, r0 in zend_jit_x86.dasc line 7932

Fix spurious change

85dc37f

Update UPGRADING.INTERNALS

9ffcda2

Girgias force-pushed the better-c-zend-api branch from fccf5f8 to 9ffcda2 Compare August 26, 2020 17:22

Girgias closed this Sep 4, 2020

Girgias deleted the better-c-zend-api branch September 4, 2020 12:31

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

More informative C Zend API #4

More informative C Zend API #4

Girgias commented Aug 16, 2020

Girgias commented Sep 4, 2020

More informative C Zend API #4

More informative C Zend API #4

Conversation

Girgias commented Aug 16, 2020

Girgias commented Sep 4, 2020