Skip to content

Add the Uri\Rfc3986\Uri class to ext/uri without wither support #18836

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 7 commits into
base: master
Choose a base branch
from
Draft

Add the Uri\Rfc3986\Uri class to ext/uri without wither support #18836

wants to merge 7 commits into from
+1,896 −139

Conversation

kocsismate
Copy link
Member

@kocsismate kocsismate commented Jun 11, 2025
edited
Loading

There are a few WIP parts but the PR can already be reviewed.

Relates to #14461 and https://wiki.php.net/rfc/url_parsing_api

@kocsismate kocsismate requested a review from dstogov as a code owner June 11, 2025 17:57
@kocsismate kocsismate requested review from TimWolla and nielsdos and removed request for dstogov June 11, 2025 17:58
@kocsismate kocsismate marked this pull request as draft June 11, 2025 17:58
@kocsismate kocsismate changed the title Add Uri\Rfc3986\Uri class to ext/uri Add the Uri\Rfc3986\Uri class to ext/uri without wither support Jun 11, 2025
kocsismate
kocsismate commented Jun 11, 2025
View reviewed changes
kocsismate
kocsismate commented Jun 11, 2025
View reviewed changes
kocsismate
kocsismate commented Jun 11, 2025
View reviewed changes
nielsdos
nielsdos requested changes Jun 11, 2025
View reviewed changes
Copy link
Member

@nielsdos nielsdos left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cursory glance, I see there's some todos wrt memory management as well so maybe I'll wait a bit on that

TimWolla
TimWolla reviewed Jun 11, 2025
View reviewed changes
Copy link
Member

@TimWolla TimWolla left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some first remarks from just looking at the diff on GitHub.

ext/uri/php_uriparser.c
UriUriA *uri, zend_string *uri_str,
UriUriA *normalized_uri, zend_string *normalized_uri_str
) {
uriparser_uris_t *uriparser_uris = emalloc(sizeof(uriparser_uris_t));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
uriparser_uris_t *uriparser_uris = emalloc(sizeof(uriparser_uris_t));
uriparser_uris_t *uriparser_uris = emalloc(sizeof(*uriparser_uris));

Prevents the two types from going out of sync (same elsewhere).

TimWolla
TimWolla reviewed Jun 11, 2025
View reviewed changes
@kocsismate kocsismate mentioned this pull request Jun 11, 2025
Open
TimWolla
TimWolla reviewed Jun 12, 2025
View reviewed changes
ext/uri/php_uriparser.c
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Something I'm only noticing now: I think this should rather be called ext/uri/parser_rfc3986.c and php_lexbor.c would be ext/uri/parser_whatwg.c. The php_uriparser.c name is confusing to me, because uriparser is an extremely generic term.

To give another comparison with ext/random, since it is architecturally similar: Each engine has its own engine_enginename.c file, e.g. engine_xoshiro256starstar.c.

ext/uri/php_uriparser.c
efree(uriparser_uris);
}

const uri_handler_t uriparser_uri_handler = {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

And similarly the public symbols in the file should also be prefixed with php_uri_. Just uriparser_ can conflict with the uriparser library itself.

Here I would suggest php_uri_rfc3986_handler.

But I'm also happy to leave this to a follow-up to not introduce too much churn.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, this and the file renaming is something that I'm happy to do after most parts are merged.

TimWolla
TimWolla reviewed Jun 12, 2025
View reviewed changes
ext/uri/php_uriparser.c
uriparser_copy_text_range(&uriparser_uri->query, &new_uriparser_uri->query, false);
uriparser_copy_text_range(&uriparser_uri->fragment, &new_uriparser_uri->fragment, false);
new_uriparser_uri->absolutePath = uriparser_uri->absolutePath;
new_uriparser_uri->owner = true;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
new_uriparser_uri->owner = true;
new_uriparser_uri->owner = URI_TRUE;

ext/uri/php_uriparser.c
}
}

static UriUriA *uriparser_copy_uri(UriUriA *uriparser_uri) // TODO add to uriparser
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this can just be:

UriUriA *copy = emalloc(sizeof(*copy));
memcpy(copy, uriparser_uri, sizeof(*copy));
uriMakeOwnerA(copy);

return copy;

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I had to add this deep copy method back then because this method didn't work, it caused use-after-frees. I would have to investigate the root cause again (I forgot the exact problem over the course of a few months), but it's because of the path component for sure.

READ of size 8 at 0x6030000502a0 thread T0
    #0 0x00010376f4d8 in uriFreeUriMembersMmA UriParse.c:2338
    #1 0x0001037709e4 in uriFreeUriMembersA UriParse.c:2256
    #2 0x000103712f1c in uriparser_free_uri php_uriparser.c:526
...

I may try to find out the exact problem again sometime soon.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The issue appears that the contents of each individual PathSegment are copied, but not the path segments themselves.

TimWolla
TimWolla reviewed Jun 12, 2025
View reviewed changes
ext/uri/php_uriparser.h Outdated
Comment on lines 26 to 31
typedef struct uriparser_uris_t {
UriUriA *uri;
zend_string *uri_str;
UriUriA *normalized_uri;
zend_string *normalized_uri_str;
} uriparser_uris_t;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
typedef struct uriparser_uris_t {
UriUriA *uri;
zend_string *uri_str;
UriUriA *normalized_uri;
zend_string *normalized_uri_str;
} uriparser_uris_t;
typedef struct uriparser_uris_t {
UriUriA uri;
zend_string *uri_str;
UriUriA normalized_uri;
zend_string *normalized_uri_str;
} uriparser_uris_t;

From what I see, the uriparser library does not allocate UriUriA structs itself, but requires you to pass in an OUT-pointer. Thus we can just stack-allocate it / embed it into another struct.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The uri field is a good candidate indeed, but the normalized_uri field is initialized on demand (by uriparser_read_uri). So we would have to track its initialization status by a separate bool field because UriUriA doesn't provide any indication. Is it still desirable to allocate on stack even if it causes some maintainability degradation?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is it still desirable to allocate on stack even if it causes some maintainability degradation?

I feel that a separate bool would also be simpler on the maintenance, since you would have less allocs / frees to deal with, but use whatever “feels comfortable”.

ext/uri/php_uriparser.c Outdated
Comment on lines 369 to 416
UriUriA *uriparser_uri = emalloc(sizeof(UriUriA));

/* uriparser keeps the originally passed in string, while lexbor may allocate a new one. */
zend_string *original_uri_str = zend_string_init(ZSTR_VAL(uri_str), ZSTR_LEN(uri_str), false);
if (ZSTR_LEN(original_uri_str) == 0 ||
uriParseSingleUriExA(uriparser_uri, ZSTR_VAL(original_uri_str), ZSTR_VAL(original_uri_str) + ZSTR_LEN(original_uri_str), NULL) != URI_SUCCESS
) {
efree(uriparser_uri);
zend_string_release_ex(original_uri_str, false);
if (!silent) {
throw_invalid_uri_exception();
}

return NULL;
}

if (uriparser_base_urls == NULL) {
return uriparser_create_uris(uriparser_uri, original_uri_str, NULL, NULL);
}

UriUriA *uriparser_base_url = uriparser_copy_uri(uriparser_base_urls->uri);

UriUriA *absolute_uri = emalloc(sizeof(UriUriA));

if (uriAddBaseUriExA(absolute_uri, uriparser_uri, uriparser_base_url, URI_RESOLVE_STRICTLY) != URI_SUCCESS) {
zend_string_release_ex(original_uri_str, false);
uriFreeUriMembersA(uriparser_uri);
efree(uriparser_uri);
uriFreeUriMembersA(uriparser_base_url);
efree(uriparser_base_url);
efree(absolute_uri);

if (!silent) {
throw_invalid_uri_exception();
}

return NULL;
}

/* TODO fix freeing: if the following code runs, then we'll have use-after-free-s because uriparser doesn't
copy the input. If we don't run the following code, then we'll have memory leaks...
uriFreeUriMembersA(uriparser_base_url);
efree(uriparser_base_url);
uriFreeUriMembersA(uriparser_uri);
efree(uriparser_uri);
*/

return uriparser_create_uris(absolute_uri, original_uri_str, NULL, NULL);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Rough untested suggestion. Basically: Keep the UriUriA object stack-allocated for as long as possible.

Suggested change
UriUriA *uriparser_uri = emalloc(sizeof(UriUriA));
/* uriparser keeps the originally passed in string, while lexbor may allocate a new one. */
zend_string *original_uri_str = zend_string_init(ZSTR_VAL(uri_str), ZSTR_LEN(uri_str), false);
if (ZSTR_LEN(original_uri_str) == 0 ||
uriParseSingleUriExA(uriparser_uri, ZSTR_VAL(original_uri_str), ZSTR_VAL(original_uri_str) + ZSTR_LEN(original_uri_str), NULL) != URI_SUCCESS
) {
efree(uriparser_uri);
zend_string_release_ex(original_uri_str, false);
if (!silent) {
throw_invalid_uri_exception();
}
return NULL;
}
if (uriparser_base_urls == NULL) {
return uriparser_create_uris(uriparser_uri, original_uri_str, NULL, NULL);
}
UriUriA *uriparser_base_url = uriparser_copy_uri(uriparser_base_urls->uri);
UriUriA *absolute_uri = emalloc(sizeof(UriUriA));
if (uriAddBaseUriExA(absolute_uri, uriparser_uri, uriparser_base_url, URI_RESOLVE_STRICTLY) != URI_SUCCESS) {
zend_string_release_ex(original_uri_str, false);
uriFreeUriMembersA(uriparser_uri);
efree(uriparser_uri);
uriFreeUriMembersA(uriparser_base_url);
efree(uriparser_base_url);
efree(absolute_uri);
if (!silent) {
throw_invalid_uri_exception();
}
return NULL;
}
/* TODO fix freeing: if the following code runs, then we'll have use-after-free-s because uriparser doesn't
copy the input. If we don't run the following code, then we'll have memory leaks...
uriFreeUriMembersA(uriparser_base_url);
efree(uriparser_base_url);
uriFreeUriMembersA(uriparser_uri);
efree(uriparser_uri);
*/
return uriparser_create_uris(absolute_uri, original_uri_str, NULL, NULL);
UriUriA uriparser_uri;
/* uriparser keeps the originally passed in string, while lexbor may allocate a new one. */
zend_string *original_uri_str = zend_string_init(ZSTR_VAL(uri_str), ZSTR_LEN(uri_str), false);
if (ZSTR_LEN(original_uri_str) == 0 ||
uriParseSingleUriExA(&uriparser_uri, ZSTR_VAL(original_uri_str), ZSTR_VAL(original_uri_str) + ZSTR_LEN(original_uri_str), NULL) != URI_SUCCESS
) {
zend_string_release_ex(original_uri_str, false);
if (!silent) {
throw_invalid_uri_exception();
}
return NULL;
}
if (uriparser_base_urls == NULL) {
return uriparser_create_uris(&uriparser_uri, original_uri_str, NULL, NULL);
}
UriUriA absolute_uri;
if (uriAddBaseUriExA(&absolute_uri, uriparser_uri, &uriparser_base_urls->uri, URI_RESOLVE_STRICTLY) != URI_SUCCESS) {
zend_string_release_ex(original_uri_str, false);
uriFreeUriMembersA(uriparser_uri);
uriFreeUriMembersA(uriparser_base_url);
if (!silent) {
throw_invalid_uri_exception();
}
return NULL;
}
/* TODO fix freeing: if the following code runs, then we'll have use-after-free-s because uriparser doesn't
copy the input. If we don't run the following code, then we'll have memory leaks...
uriFreeUriMembersA(uriparser_base_url);
efree(uriparser_base_url);
uriFreeUriMembersA(uriparser_uri);
efree(uriparser_uri);
*/
return uriparser_create_uris(&absolute_uri, original_uri_str, NULL, NULL);

DanielEScherzer
DanielEScherzer reviewed Jun 12, 2025
View reviewed changes
@TimWolla

This comment was marked as resolved.

Sign in to view
kocsismate and others added 2 commits June 14, 2025 13:55
@kocsismate
Copy link
Member Author

The following patch fixes the leaks / memory management for me:

@TimWolla Thanks for the patch, it's awesome! TBH I didn't even think about using the UriMakeOwnerA() function, because I wanted to avoid its performance penalty. But you are right, this is the right call, it simplifies the code so much. I love it!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TimWolla TimWolla TimWolla left review comments

@nielsdos nielsdos nielsdos requested changes

@DanielEScherzer DanielEScherzer DanielEScherzer left review comments

Assignees
No one assigned
Labels
ABI break Category: Build System Category: Engine Extension: uri
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@kocsismate @TimWolla @nielsdos @DanielEScherzer