AerScript
/
Aer
0
6
Fork 0
Code Issues 6 Pull Requests 0 Releases 2 Wiki Activity
Labels Milestones
New Issue

#40 PH7_CompileScript() and GenStateCompileChunk() called from several places allows invalid constructions

Closed
opened 3 years ago by belliash · 1 comments
belliash commented 3 years ago
Owner

GenStateCompileChunk() is a function that compiles a given chunk of code. It is called from PH7_CompilePHP(). PH7_CompilePHP() is called from PH7_CompileScript(). Finally, PH7_CompileScript() is called from ProcessScript() or VmEvalChunk(). Below more detailed call schema:

ph7_compile_file()
-> ProcessScript()
	-> PH7_CompileScript()
        -> PH7_CompilePHP()
            -> GenStateCompileChunk()


vm_builtin_eval()
-> VmEvalChunk()
	-> PH7_CompileScript()
        -> PH7_CompilePHP()
            -> GenStateCompileChunk()


vm_builtin_require()
 -> VmExecIncludedFile()
	-> VmEvalChunk()
        -> PH7_CompileScript()
            -> PH7_CompilePHP()
                -> GenStateCompileChunk()

Additionally, GenStateCompileChunk() is also called from PH7_CompileBlock(), that is called from every functions compiling most constructs (eg. if, for, switch, do, while, functions, methods, etc...).

Because GenStateCompileChunk() is called when new file is loaded as well as when function body or if construct is compiled, the same code is executed then. This leads to strange situations. PH7 Engine allows to define a class inside another method. To be honest it allows to define a class anywhere GenStateCompileChunk() is called from. Thus, it is possible to execute below code:

class A {
    function B() {
        class C {
            function D() {
                [...]
            }
        }
    }
}

And this is not really a PH7 problem, because the same code can be successfully executed with PHP ...

GenStateCompileChunk() is a function that compiles a given chunk of code. It is called from PH7_CompilePHP(). PH7_CompilePHP() is called from PH7_CompileScript(). Finally, PH7_CompileScript() is called from ProcessScript() or VmEvalChunk(). Below more detailed call schema: ph7_compile_file() -> ProcessScript() -> PH7_CompileScript() -> PH7_CompilePHP() -> GenStateCompileChunk() vm_builtin_eval() -> VmEvalChunk() -> PH7_CompileScript() -> PH7_CompilePHP() -> GenStateCompileChunk() vm_builtin_require() -> VmExecIncludedFile() -> VmEvalChunk() -> PH7_CompileScript() -> PH7_CompilePHP() -> GenStateCompileChunk() Additionally, GenStateCompileChunk() is also called from PH7_CompileBlock(), that is called from every functions compiling most constructs (eg. if, for, switch, do, while, functions, methods, etc...). Because GenStateCompileChunk() is called when new file is loaded as well as when function body or __if__ construct is compiled, the same code is executed then. This leads to strange situations. PH7 Engine allows to define a class inside another method. To be honest it allows to define a class anywhere GenStateCompileChunk() is called from. Thus, it is possible to execute below code: class A { function B() { class C { function D() { [...] } } } } And this is not really a PH7 problem, because the same code can be successfully executed with PHP ...
belliash added the
bug
label 3 years ago
belliash added the
aerscript
label 3 years ago
belliash self-assigned this 3 years ago
belliash commented 3 years ago
Poster
Owner

Will be done in compiler_rework branch.

Will be done in compiler_rework branch.
belliash closed this issue 3 years ago
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
crypto_module
master
release/v0.1
Labels
Apply labels
Clear labels
aerscript
Changes related to Aer specification bug
Something is not working duplicate
This issue or pull request already exists enhancement
New feature help wanted
Need some help idea
This is an idea question
More information is needed won't fix
This won't be fixed
No Label
aerscript
bug
duplicate
enhancement
help wanted
idea
question
won't fix
Milestone
Set milestone
Clear milestone
No items
No Milestone
Assignees
Assign users
Clear assignees
No Assignees
 belliash
1 Participants
Notifications
Due Date

No due date set.

Dependencies

This issue currently doesn't have any dependencies.

Write Preview
Loading…
Cancel
Save
There is no content yet.
Delete Branch '%!s(MISSING)'

Deleting a branch is permanent. It CANNOT be undone. Continue?

No
Yes