Paths

Table of Contentst

Differential D19985

Harden "Filesystem::readRandomInteger()" against misuse and builtin failure
ClosedPublic
Actions

Authored by epriestley on Jan 16 2019, 8:40 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Sun, Apr 28, 6:45 AM

	Unknown Object (File)
	Thu, Apr 25, 12:41 AM

	Unknown Object (File)
	Thu, Apr 11, 5:16 AM

	Unknown Object (File)
	Mar 11 2024, 2:24 AM

	Unknown Object (File)
	Jan 3 2024, 9:48 PM

	Unknown Object (File)
	Jan 3 2024, 6:07 AM

	Unknown Object (File)
	Dec 31 2023, 6:47 PM

	Unknown Object (File)
	Dec 30 2023, 6:19 PM

View All 61 Files

Subscribers

None

Details

Reviewers

Commits

rPHU14f30f7b6767: Harden "Filesystem::readRandomInteger()" against misuse and builtin failure

Summary

See D19981. Make more of an effort to make sure that nothing unexpected-but-in-our-control can go awry here.

Test Plan

See unit tests.

Diff Detail

Repository

Branch

mfa25

Lint

Lint Passed

Unit

Tests Passed

Build Status

Buildable 21548
Build 29369: Run Core Tests
Build 29368: arc lint + arc unit

Event Timeline

epriestley created this revision.Jan 16 2019, 8:40 PM

Harbormaster returned this revision to the author for changes because remote builds failed.Jan 16 2019, 8:41 PM

Harbormaster failed remote builds in B21547: Diff 47695!

Looks like PHP_INT_MIN wasn't introduced until PHP 7.

Remove PHP_INT_MIN test that only works on PHP 7.0.0 or newer.
Add a check for mt_getrandmax() before hitting the MT code.

Harbormaster completed remote builds in B21548: Diff 47696.Jan 16 2019, 8:51 PM

epriestley requested review of this revision.Jan 16 2019, 8:51 PM

epriestley added inline comments.Jan 16 2019, 8:52 PM

src/filesystem/Filesystem.php
576–579	This specific test came out of the "Notes" section in the `mt_rand()` documentation. I think the implementation is: generate a value, normalize it to `[0, max - min]`, then add `min` -- so it's only the difference between `min` and `max` that matters, not the actual value of `min` or `max`.

amckinley accepted this revision.Jan 16 2019, 8:53 PM

This revision is now accepted and ready to land.Jan 16 2019, 8:53 PM

Closed by commit rPHU14f30f7b6767: Harden "Filesystem::readRandomInteger()" against misuse and builtin failure (authored by epriestley). · Explain WhyJan 16 2019, 8:56 PM

This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

Path

Size

src/

filesystem/

28 lines

__tests__/

FilesystemTestCase.php

38 lines

Diff 47696

src/filesystem/Filesystem.php

Loading...

src/filesystem/tests/FilesystemTestCase.php

Loading...