/src/php-src/Zend/zend_property_hooks.c

Source
/*
   +----------------------------------------------------------------------+
   | Zend Engine                                                          |
   +----------------------------------------------------------------------+
   | Copyright © Zend Technologies Ltd., a subsidiary company of          |
   |     Perforce Software, Inc., and Contributors.                       |
   +----------------------------------------------------------------------+
   | This source file is subject to the Modified BSD License that is      |
   | bundled with this package in the file LICENSE, and is available      |
   | through the World Wide Web at <https://www.php.net/license/>.        |
   |                                                                      |
   | SPDX-License-Identifier: BSD-3-Clause                                |
   +----------------------------------------------------------------------+
   | Authors: Ilija Tovilo <ilutov@php.net>                               |
   +----------------------------------------------------------------------+
*/

#include "zend.h"
#include "zend_API.h"
#include "zend_hash.h"
#include "zend_lazy_objects.h"
#include "zend_property_hooks.h"

typedef struct {
  zend_object_iterator it;
  bool by_ref;
  bool declared_props_done;
  zval declared_props;
  bool dynamic_props_done;
  uint32_t dynamic_prop_offset;
  uint32_t dynamic_prop_it;
  zval current_key;
  zval current_data;
} zend_hooked_object_iterator;

static zend_result zho_it_valid(zend_object_iterator *iter);
static void zho_it_move_forward(zend_object_iterator *iter);

static uint32_t zho_find_dynamic_prop_offset(zend_array *properties)
{
  uint32_t offset = 0;
  zval *value;

  ZEND_HASH_MAP_FOREACH_VAL(properties, value) {
    if (Z_TYPE_P(value) != IS_INDIRECT) {
      break;
    }
    offset++;
  } ZEND_HASH_FOREACH_END();

  return offset;
}

static zend_array *zho_build_properties_ex(zend_object *zobj, bool check_access, bool force_ptr, bool include_dynamic_props)
{
  zend_class_entry *ce = zobj->ce;
  zend_array *properties = zend_new_array(include_dynamic_props && zobj->properties
    ? zend_hash_num_elements(zobj->properties)
    : ce->default_properties_count);
  zend_hash_real_init_mixed(properties);

  /* Build list of parents */
  int32_t parent_count = 0;
  for (zend_class_entry *pce = ce; pce; pce = pce->parent) {
    parent_count++;
  }
  zend_class_entry **parents = emalloc(sizeof(zend_class_entry*) * parent_count);
  int32_t i = 0;
  for (zend_class_entry *pce = ce; pce; pce = pce->parent) {
    parents[i++] = pce;
  }

  /* Iterate parents top to bottom */
  i--;
  for (; i >= 0; i--) {
    zend_class_entry *pce = parents[i];

    zend_property_info *prop_info;
    ZEND_HASH_MAP_FOREACH_PTR(&pce->properties_info, prop_info) {
      if (prop_info->flags & ZEND_ACC_STATIC) {
        continue;
      }
      zend_string *property_name = prop_info->name;
      /* When promoting properties from protected to public, use the unmangled name to preserve order. */
      if (prop_info->flags & ZEND_ACC_PROTECTED) {
        const char *tmp = zend_get_unmangled_property_name(property_name);
        zend_string *unmangled_name = zend_string_init(tmp, strlen(tmp), false);
        zend_property_info *child_prop_info = zend_hash_find_ptr(&ce->properties_info, unmangled_name);
        if (child_prop_info && (child_prop_info->flags & ZEND_ACC_PUBLIC)) {
          property_name = unmangled_name;
        } else {
          zend_string_release(unmangled_name);
        }
      }
      if (check_access && zend_check_property_access(zobj, property_name, false) == FAILURE) {
        goto skip_property;
      }
      if (prop_info->hooks || force_ptr) {
        zend_hash_update_ptr(properties, property_name, prop_info);
      } else {
        if (UNEXPECTED(Z_TYPE_P(OBJ_PROP(zobj, prop_info->offset)) == IS_UNDEF)) {
          HT_FLAGS(properties) |= HASH_FLAG_HAS_EMPTY_IND;
        }
        zval *tmp = zend_hash_lookup(properties, property_name);
        ZVAL_INDIRECT(tmp, OBJ_PROP(zobj, prop_info->offset));
      }
skip_property:
      if (property_name != prop_info->name) {
        zend_string_release(property_name);
      }
    } ZEND_HASH_FOREACH_END();
  }

  efree(parents);

  if (include_dynamic_props && zobj->properties) {
    zend_string *prop_name;
    zval *prop_value;
    ZEND_HASH_FOREACH_STR_KEY_VAL(zobj->properties, prop_name, prop_value) {
      if (Z_TYPE_P(prop_value) == IS_INDIRECT) {
        continue;
      }
      zval *tmp = zend_hash_add_new(properties, prop_name, prop_value);
      Z_TRY_ADDREF_P(tmp);
    } ZEND_HASH_FOREACH_END();
  }

  return properties;
}

ZEND_API zend_array *zend_hooked_object_build_properties(zend_object *zobj)
{
  if (UNEXPECTED(zend_lazy_object_must_init(zobj))) {
    zobj = zend_lazy_object_init(zobj);
    if (UNEXPECTED(!zobj)) {
      return (zend_array*) &zend_empty_array;
    }
  }

  return zho_build_properties_ex(zobj, false, false, true);
}

static void zho_dynamic_it_init(zend_hooked_object_iterator *hooked_iter)
{
  zend_object *zobj = Z_OBJ_P(&hooked_iter->it.data);
  zend_array *properties = zobj->handlers->get_properties(zobj);
  hooked_iter->dynamic_props_done = false;
  hooked_iter->dynamic_prop_offset = zho_find_dynamic_prop_offset(properties);
  hooked_iter->dynamic_prop_it = zend_hash_iterator_add(properties, hooked_iter->dynamic_prop_offset);
}

static void zho_it_get_current_key(zend_object_iterator *iter, zval *key);

static void zho_declared_it_fetch_current(zend_object_iterator *iter)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;
  zend_object *zobj = Z_OBJ_P(&iter->data);
  zend_array *properties = Z_ARR(hooked_iter->declared_props);

  zend_property_info *prop_info = Z_PTR_P(zend_hash_get_current_data(properties));
  if (prop_info->hooks) {
    zend_function *get = prop_info->hooks[ZEND_PROPERTY_HOOK_GET];
    if (!get && (prop_info->flags & ZEND_ACC_VIRTUAL)) {
      return;
    }
    if (hooked_iter->by_ref
     && (get == NULL
      || !(get->common.fn_flags & ZEND_ACC_RETURN_REFERENCE))) {
      zend_throw_error(NULL, "Cannot create reference to property %s::$%s",
        ZSTR_VAL(zobj->ce->name), zend_get_unmangled_property_name(prop_info->name));
      return;
    }
    zend_string *unmangled_name = prop_info->name;
    if (ZSTR_VAL(unmangled_name)[0] == '\0') {
      const char *tmp = zend_get_unmangled_property_name(unmangled_name);
      unmangled_name = zend_string_init(tmp, strlen(tmp), false);
    }
    zval *value = zend_read_property_ex(prop_info->ce, zobj, unmangled_name, /* silent */ true, &hooked_iter->current_data);
    if (unmangled_name != prop_info->name) {
      zend_string_release(unmangled_name);
    }
    if (value == &EG(uninitialized_zval)) {
      return;
    } else if (value != &hooked_iter->current_data) {
      ZVAL_COPY(&hooked_iter->current_data, value);
    }
  } else {
    zval *property = OBJ_PROP(zobj, prop_info->offset);
    ZVAL_DEINDIRECT(property);
    if (Z_TYPE_P(property) == IS_UNDEF) {
      return;
    }
    if (!hooked_iter->by_ref) {
      ZVAL_DEREF(property);
    } else if (Z_TYPE_P(property) != IS_REFERENCE) {
      if (UNEXPECTED(prop_info->flags & ZEND_ACC_READONLY)) {
        zend_throw_error(NULL,
          "Cannot acquire reference to readonly property %s::$%s",
          ZSTR_VAL(prop_info->ce->name), zend_get_unmangled_property_name(prop_info->name));
        return;
      }
      ZVAL_MAKE_REF(property);
      if (ZEND_TYPE_IS_SET(prop_info->type)) {
        ZEND_REF_ADD_TYPE_SOURCE(Z_REF_P(property), prop_info);
      }
    }
    ZVAL_COPY(&hooked_iter->current_data, property);
  }

  if (ZSTR_VAL(prop_info->name)[0] == '\0') {
    const char *tmp = zend_get_unmangled_property_name(prop_info->name);
    ZVAL_STR(&hooked_iter->current_key, zend_string_init(tmp, strlen(tmp), false));
  } else {
    ZVAL_STR_COPY(&hooked_iter->current_key, prop_info->name);
  }
}

static void zho_dynamic_it_fetch_current(zend_object_iterator *iter)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;
  zend_array *properties = Z_OBJ(iter->data)->properties;
  HashPosition pos = zend_hash_iterator_pos(hooked_iter->dynamic_prop_it, properties);

  if (pos >= properties->nNumUsed) {
    hooked_iter->dynamic_props_done = true;
    return;
  }

  Bucket *bucket = properties->arData + pos;

  if (UNEXPECTED(Z_TYPE(bucket->val) == IS_UNDEF)) {
    return;
  }

  zend_object *zobj = Z_OBJ_P(&hooked_iter->it.data);
  if (bucket->key && zend_check_property_access(zobj, bucket->key, true) != SUCCESS) {
    return;
  }

  if (hooked_iter->by_ref && Z_TYPE(bucket->val) != IS_REFERENCE) {
    ZVAL_MAKE_REF(&bucket->val);
  }
  ZVAL_COPY(&hooked_iter->current_data, &bucket->val);

  if (bucket->key) {
    ZVAL_STR_COPY(&hooked_iter->current_key, bucket->key);
  } else {
    ZVAL_LONG(&hooked_iter->current_key, bucket->h);
  }
}

static void zho_it_fetch_current(zend_object_iterator *iter)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;
  if (Z_TYPE(hooked_iter->current_data) != IS_UNDEF) {
    return;
  }

  while (true) {
    if (!hooked_iter->declared_props_done) {
      zho_declared_it_fetch_current(iter);
    } else if (!hooked_iter->dynamic_props_done) {
      zho_dynamic_it_fetch_current(iter);
    } else {
      break;
    }
    if (Z_TYPE(hooked_iter->current_data) != IS_UNDEF || EG(exception)) {
      break;
    }
    zho_it_move_forward(iter);
  }
}

static void zho_it_dtor(zend_object_iterator *iter)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;
  zval_ptr_dtor(&iter->data);
  zval_ptr_dtor(&hooked_iter->declared_props);
  zval_ptr_dtor_nogc(&hooked_iter->current_key);
  zval_ptr_dtor(&hooked_iter->current_data);
  zend_hash_iterator_del(hooked_iter->dynamic_prop_it);
}

static zend_result zho_it_valid(zend_object_iterator *iter)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;
  zho_it_fetch_current(iter);
  return Z_TYPE(hooked_iter->current_data) != IS_UNDEF ? SUCCESS : FAILURE;
}

static zval *zho_it_get_current_data(zend_object_iterator *iter)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;
  zho_it_fetch_current(iter);
  return &hooked_iter->current_data;
}

static void zho_it_get_current_key(zend_object_iterator *iter, zval *key)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;
  zho_it_fetch_current(iter);
  ZVAL_COPY(key, &hooked_iter->current_key);
}

static void zho_it_move_forward(zend_object_iterator *iter)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;

  zval_ptr_dtor(&hooked_iter->current_data);
  ZVAL_UNDEF(&hooked_iter->current_data);
  zval_ptr_dtor_nogc(&hooked_iter->current_key);
  ZVAL_UNDEF(&hooked_iter->current_key);

  if (!hooked_iter->declared_props_done) {
    zend_array *properties = Z_ARR(hooked_iter->declared_props);
    zend_hash_move_forward(properties);
    if (zend_hash_has_more_elements(properties) != SUCCESS) {
      hooked_iter->declared_props_done = true;
    }
  } else if (!hooked_iter->dynamic_props_done) {
    zend_array *properties = Z_OBJ(iter->data)->properties;
    HashPosition pos = zend_hash_iterator_pos(hooked_iter->dynamic_prop_it, properties);
    pos++;
    EG(ht_iterators)[hooked_iter->dynamic_prop_it].pos = pos;
  }
}

static void zho_it_rewind(zend_object_iterator *iter)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;

  zval_ptr_dtor(&hooked_iter->current_data);
  ZVAL_UNDEF(&hooked_iter->current_data);
  zval_ptr_dtor_nogc(&hooked_iter->current_key);
  ZVAL_UNDEF(&hooked_iter->current_key);

  zend_array *properties = Z_ARR(hooked_iter->declared_props);
  zend_hash_internal_pointer_reset(properties);
  hooked_iter->declared_props_done = !zend_hash_num_elements(properties);
  hooked_iter->dynamic_props_done = false;
  EG(ht_iterators)[hooked_iter->dynamic_prop_it].pos = hooked_iter->dynamic_prop_offset;
}

static HashTable *zho_it_get_gc(zend_object_iterator *iter, zval **table, int *n)
{
  zend_hooked_object_iterator *hooked_iter = (zend_hooked_object_iterator*)iter;
  zend_get_gc_buffer *gc_buffer = zend_get_gc_buffer_create();
  zend_get_gc_buffer_add_zval(gc_buffer, &iter->data);
  zend_get_gc_buffer_add_zval(gc_buffer, &hooked_iter->declared_props);
  zend_get_gc_buffer_add_zval(gc_buffer, &hooked_iter->current_data);
  zend_get_gc_buffer_use(gc_buffer, table, n);
  return NULL;
}

static const zend_object_iterator_funcs zend_hooked_object_it_funcs = {
  zho_it_dtor,
  zho_it_valid,
  zho_it_get_current_data,
  zho_it_get_current_key,
  zho_it_move_forward,
  zho_it_rewind,
  NULL,
  zho_it_get_gc,
};

ZEND_API zend_object_iterator *zend_hooked_object_get_iterator(zend_class_entry *ce, zval *object, int by_ref)
{
  zend_object *zobj = Z_OBJ_P(object);
  if (UNEXPECTED(zend_lazy_object_must_init(zobj))) {
    zobj = zend_lazy_object_init(zobj);
    if (UNEXPECTED(!zobj)) {
      return NULL;
    }
  }

  zend_hooked_object_iterator *iterator = emalloc(sizeof(zend_hooked_object_iterator));
  zend_iterator_init(&iterator->it);

  ZVAL_OBJ_COPY(&iterator->it.data, zobj);
  iterator->it.funcs = &zend_hooked_object_it_funcs;
  iterator->by_ref = by_ref;
  zend_array *properties = zho_build_properties_ex(zobj, true, true, false);
  ZVAL_ARR(&iterator->declared_props, properties);
  iterator->declared_props_done = !zend_hash_num_elements(properties);
  zho_dynamic_it_init(iterator);
  ZVAL_UNDEF(&iterator->current_key);
  ZVAL_UNDEF(&iterator->current_data);

  return &iterator->it;
}

Coverage Report

Created: 2026-06-02 06:40

Line	Count	Source
1		/*
2		+----------------------------------------------------------------------+
3		\| Zend Engine \|
4		+----------------------------------------------------------------------+
5		\| Copyright © Zend Technologies Ltd., a subsidiary company of \|
6		\| Perforce Software, Inc., and Contributors. \|
7		+----------------------------------------------------------------------+
8		\| This source file is subject to the Modified BSD License that is \|
9		\| bundled with this package in the file LICENSE, and is available \|
10		\| through the World Wide Web at <https://www.php.net/license/>. \|
11		\| \|
12		\| SPDX-License-Identifier: BSD-3-Clause \|
13		+----------------------------------------------------------------------+
14		\| Authors: Ilija Tovilo <ilutov@php.net> \|
15		+----------------------------------------------------------------------+
16		*/
17
18		#include "zend.h"
19		#include "zend_API.h"
20		#include "zend_hash.h"
21		#include "zend_lazy_objects.h"
22		#include "zend_property_hooks.h"
23
24		typedef struct {
25		zend_object_iterator it;
26		bool by_ref;
27		bool declared_props_done;
28		zval declared_props;
29		bool dynamic_props_done;
30		uint32_t dynamic_prop_offset;
31		uint32_t dynamic_prop_it;
32		zval current_key;
33		zval current_data;
34		} zend_hooked_object_iterator;
35
36		static zend_result zho_it_valid(zend_object_iterator *iter);
37		static void zho_it_move_forward(zend_object_iterator *iter);
38
39		static uint32_t zho_find_dynamic_prop_offset(zend_array *properties)
40	130	{
41	130	uint32_t offset = 0;
42	130	zval *value;
43
44	952	ZEND_HASH_MAP_FOREACH_VAL(properties, value) {
45	952	if (Z_TYPE_P(value) != IS_INDIRECT) {
46	68	break;
47	68	}
48	246	offset++;
49	246	} ZEND_HASH_FOREACH_END();
50
51	130	return offset;
52	130	}
53
54		static zend_array zho_build_properties_ex(zend_object zobj, bool check_access, bool force_ptr, bool include_dynamic_props)
55	262	{
56	262	zend_class_entry *ce = zobj->ce;
57	262	zend_array *properties = zend_new_array(include_dynamic_props && zobj->properties
58	262	? zend_hash_num_elements(zobj->properties)
59	262	: ce->default_properties_count);
60	262	zend_hash_real_init_mixed(properties);
61
62		/* Build list of parents */
63	262	int32_t parent_count = 0;
64	608	for (zend_class_entry *pce = ce; pce; pce = pce->parent) {
65	346	parent_count++;
66	346	}
67	262	zend_class_entry *parents = emalloc(sizeof(zend_class_entry) * parent_count);
68	262	int32_t i = 0;
69	608	for (zend_class_entry *pce = ce; pce; pce = pce->parent) {
70	346	parents[i++] = pce;
71	346	}
72
73		/* Iterate parents top to bottom */
74	262	i--;
75	608	for (; i >= 0; i--) {
76	346	zend_class_entry *pce = parents[i];
77
78	346	zend_property_info *prop_info;
79	3.40k	ZEND_HASH_MAP_FOREACH_PTR(&pce->properties_info, prop_info) {
80	3.40k	if (prop_info->flags & ZEND_ACC_STATIC) {
81	0	continue;
82	0	}
83	1.35k	zend_string *property_name = prop_info->name;
84		/* When promoting properties from protected to public, use the unmangled name to preserve order. */
85	1.35k	if (prop_info->flags & ZEND_ACC_PROTECTED) {
86	6	const char *tmp = zend_get_unmangled_property_name(property_name);
87	6	zend_string *unmangled_name = zend_string_init(tmp, strlen(tmp), false);
88	6	zend_property_info *child_prop_info = zend_hash_find_ptr(&ce->properties_info, unmangled_name);
89	6	if (child_prop_info && (child_prop_info->flags & ZEND_ACC_PUBLIC)) {
90	2	property_name = unmangled_name;
91	4	} else {
92	4	zend_string_release(unmangled_name);
93	4	}
94	6	}
95	1.35k	if (check_access && zend_check_property_access(zobj, property_name, false) == FAILURE) {
96	122	goto skip_property;
97	122	}
98	1.23k	if (prop_info->hooks \|\| force_ptr) {
99	1.10k	zend_hash_update_ptr(properties, property_name, prop_info);
100	1.10k	} else {
101	134	if (UNEXPECTED(Z_TYPE_P(OBJ_PROP(zobj, prop_info->offset)) == IS_UNDEF)) {
102	64	HT_FLAGS(properties) \|= HASH_FLAG_HAS_EMPTY_IND;
103	64	}
104	134	zval *tmp = zend_hash_lookup(properties, property_name);
105	134	ZVAL_INDIRECT(tmp, OBJ_PROP(zobj, prop_info->offset));
106	134	}
107	1.35k	skip_property:
108	1.35k	if (property_name != prop_info->name) {
109	2	zend_string_release(property_name);
110	2	}
111	1.35k	} ZEND_HASH_FOREACH_END();
112	346	}
113
114	262	efree(parents);
115
116	262	if (include_dynamic_props && zobj->properties) {
117	122	zend_string *prop_name;
118	122	zval *prop_value;
119	1.07k	ZEND_HASH_FOREACH_STR_KEY_VAL(zobj->properties, prop_name, prop_value) {
120	1.07k	if (Z_TYPE_P(prop_value) == IS_INDIRECT) {
121	452	continue;
122	452	}
123	22	zval *tmp = zend_hash_add_new(properties, prop_name, prop_value);
124	22	Z_TRY_ADDREF_P(tmp);
125	22	} ZEND_HASH_FOREACH_END();
126	122	}
127
128	262	return properties;
129	262	}
130
131		ZEND_API zend_array zend_hooked_object_build_properties(zend_object zobj)
132	146	{
133	146	if (UNEXPECTED(zend_lazy_object_must_init(zobj))) {
134	24	zobj = zend_lazy_object_init(zobj);
135	24	if (UNEXPECTED(!zobj)) {
136	14	return (zend_array*) &zend_empty_array;
137	14	}
138	24	}
139
140	132	return zho_build_properties_ex(zobj, false, false, true);
141	146	}
142
143		static void zho_dynamic_it_init(zend_hooked_object_iterator *hooked_iter)
144	130	{
145	130	zend_object *zobj = Z_OBJ_P(&hooked_iter->it.data);
146	130	zend_array *properties = zobj->handlers->get_properties(zobj);
147	130	hooked_iter->dynamic_props_done = false;
148	130	hooked_iter->dynamic_prop_offset = zho_find_dynamic_prop_offset(properties);
149	130	hooked_iter->dynamic_prop_it = zend_hash_iterator_add(properties, hooked_iter->dynamic_prop_offset);
150	130	}
151
152		static void zho_it_get_current_key(zend_object_iterator iter, zval key);
153
154		static void zho_declared_it_fetch_current(zend_object_iterator *iter)
155	272	{
156	272	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
157	272	zend_object *zobj = Z_OBJ_P(&iter->data);
158	272	zend_array *properties = Z_ARR(hooked_iter->declared_props);
159
160	272	zend_property_info *prop_info = Z_PTR_P(zend_hash_get_current_data(properties));
161	272	if (prop_info->hooks) {
162	154	zend_function *get = prop_info->hooks[ZEND_PROPERTY_HOOK_GET];
163	154	if (!get && (prop_info->flags & ZEND_ACC_VIRTUAL)) {
164	16	return;
165	16	}
166	138	if (hooked_iter->by_ref
167	58	&& (get == NULL
168	58	\|\| !(get->common.fn_flags & ZEND_ACC_RETURN_REFERENCE))) {
169	2	zend_throw_error(NULL, "Cannot create reference to property %s::$%s",
170	2	ZSTR_VAL(zobj->ce->name), zend_get_unmangled_property_name(prop_info->name));
171	2	return;
172	2	}
173	136	zend_string *unmangled_name = prop_info->name;
174	136	if (ZSTR_VAL(unmangled_name)[0] == '\0') {
175	4	const char *tmp = zend_get_unmangled_property_name(unmangled_name);
176	4	unmangled_name = zend_string_init(tmp, strlen(tmp), false);
177	4	}
178	136	zval value = zend_read_property_ex(prop_info->ce, zobj, unmangled_name, / silent */ true, &hooked_iter->current_data);
179	136	if (unmangled_name != prop_info->name) {
180	4	zend_string_release(unmangled_name);
181	4	}
182	136	if (value == &EG(uninitialized_zval)) {
183	4	return;
184	132	} else if (value != &hooked_iter->current_data) {
185	2	ZVAL_COPY(&hooked_iter->current_data, value);
186	2	}
187	136	} else {
188	118	zval *property = OBJ_PROP(zobj, prop_info->offset);
189	118	ZVAL_DEINDIRECT(property);
190	118	if (Z_TYPE_P(property) == IS_UNDEF) {
191	8	return;
192	8	}
193	110	if (!hooked_iter->by_ref) {
194	54	ZVAL_DEREF(property);
195	56	} else if (Z_TYPE_P(property) != IS_REFERENCE) {
196	56	if (UNEXPECTED(prop_info->flags & ZEND_ACC_READONLY)) {
197	2	zend_throw_error(NULL,
198	2	"Cannot acquire reference to readonly property %s::$%s",
199	2	ZSTR_VAL(prop_info->ce->name), zend_get_unmangled_property_name(prop_info->name));
200	2	return;
201	2	}
202	54	ZVAL_MAKE_REF(property);
203	54	if (ZEND_TYPE_IS_SET(prop_info->type)) {
204	50	ZEND_REF_ADD_TYPE_SOURCE(Z_REF_P(property), prop_info);
205	50	}
206	54	}
207	108	ZVAL_COPY(&hooked_iter->current_data, property);
208	108	}
209
210	240	if (ZSTR_VAL(prop_info->name)[0] == '\0') {
211	6	const char *tmp = zend_get_unmangled_property_name(prop_info->name);
212	6	ZVAL_STR(&hooked_iter->current_key, zend_string_init(tmp, strlen(tmp), false));
213	234	} else {
214	234	ZVAL_STR_COPY(&hooked_iter->current_key, prop_info->name);
215	234	}
216	240	}
217
218		static void zho_dynamic_it_fetch_current(zend_object_iterator *iter)
219	260	{
220	260	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
221	260	zend_array *properties = Z_OBJ(iter->data)->properties;
222	260	HashPosition pos = zend_hash_iterator_pos(hooked_iter->dynamic_prop_it, properties);
223
224	260	if (pos >= properties->nNumUsed) {
225	122	hooked_iter->dynamic_props_done = true;
226	122	return;
227	122	}
228
229	138	Bucket *bucket = properties->arData + pos;
230
231	138	if (UNEXPECTED(Z_TYPE(bucket->val) == IS_UNDEF)) {
232	62	return;
233	62	}
234
235	76	zend_object *zobj = Z_OBJ_P(&hooked_iter->it.data);
236	76	if (bucket->key && zend_check_property_access(zobj, bucket->key, true) != SUCCESS) {
237	2	return;
238	2	}
239
240	74	if (hooked_iter->by_ref && Z_TYPE(bucket->val) != IS_REFERENCE) {
241	36	ZVAL_MAKE_REF(&bucket->val);
242	36	}
243	74	ZVAL_COPY(&hooked_iter->current_data, &bucket->val);
244
245	74	if (bucket->key) {
246	74	ZVAL_STR_COPY(&hooked_iter->current_key, bucket->key);
247	74	} else {
248	0	ZVAL_LONG(&hooked_iter->current_key, bucket->h);
249	0	}
250	74	}
251
252		static void zho_it_fetch_current(zend_object_iterator *iter)
253	1.05k	{
254	1.05k	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
255	1.05k	if (Z_TYPE(hooked_iter->current_data) != IS_UNDEF) {
256	616	return;
257	616	}
258
259	654	while (true) {
260	654	if (!hooked_iter->declared_props_done) {
261	272	zho_declared_it_fetch_current(iter);
262	382	} else if (!hooked_iter->dynamic_props_done) {
263	260	zho_dynamic_it_fetch_current(iter);
264	260	} else {
265	122	break;
266	122	}
267	532	if (Z_TYPE(hooked_iter->current_data) != IS_UNDEF \|\| EG(exception)) {
268	320	break;
269	320	}
270	212	zho_it_move_forward(iter);
271	212	}
272	442	}
273
274		static void zho_it_dtor(zend_object_iterator *iter)
275	130	{
276	130	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
277	130	zval_ptr_dtor(&iter->data);
278	130	zval_ptr_dtor(&hooked_iter->declared_props);
279	130	zval_ptr_dtor_nogc(&hooked_iter->current_key);
280	130	zval_ptr_dtor(&hooked_iter->current_data);
281	130	zend_hash_iterator_del(hooked_iter->dynamic_prop_it);
282	130	}
283
284		static zend_result zho_it_valid(zend_object_iterator *iter)
285	442	{
286	442	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
287	442	zho_it_fetch_current(iter);
288	442	return Z_TYPE(hooked_iter->current_data) != IS_UNDEF ? SUCCESS : FAILURE;
289	442	}
290
291		static zval zho_it_get_current_data(zend_object_iterator iter)
292	314	{
293	314	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
294	314	zho_it_fetch_current(iter);
295	314	return &hooked_iter->current_data;
296	314	}
297
298		static void zho_it_get_current_key(zend_object_iterator iter, zval key)
299	302	{
300	302	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
301	302	zho_it_fetch_current(iter);
302	302	ZVAL_COPY(key, &hooked_iter->current_key);
303	302	}
304
305		static void zho_it_move_forward(zend_object_iterator *iter)
306	524	{
307	524	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
308
309	524	zval_ptr_dtor(&hooked_iter->current_data);
310	524	ZVAL_UNDEF(&hooked_iter->current_data);
311	524	zval_ptr_dtor_nogc(&hooked_iter->current_key);
312	524	ZVAL_UNDEF(&hooked_iter->current_key);
313
314	524	if (!hooked_iter->declared_props_done) {
315	264	zend_array *properties = Z_ARR(hooked_iter->declared_props);
316	264	zend_hash_move_forward(properties);
317	264	if (zend_hash_has_more_elements(properties) != SUCCESS) {
318	122	hooked_iter->declared_props_done = true;
319	122	}
320	264	} else if (!hooked_iter->dynamic_props_done) {
321	138	zend_array *properties = Z_OBJ(iter->data)->properties;
322	138	HashPosition pos = zend_hash_iterator_pos(hooked_iter->dynamic_prop_it, properties);
323	138	pos++;
324	138	EG(ht_iterators)[hooked_iter->dynamic_prop_it].pos = pos;
325	138	}
326	524	}
327
328		static void zho_it_rewind(zend_object_iterator *iter)
329	130	{
330	130	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
331
332	130	zval_ptr_dtor(&hooked_iter->current_data);
333	130	ZVAL_UNDEF(&hooked_iter->current_data);
334	130	zval_ptr_dtor_nogc(&hooked_iter->current_key);
335	130	ZVAL_UNDEF(&hooked_iter->current_key);
336
337	130	zend_array *properties = Z_ARR(hooked_iter->declared_props);
338	130	zend_hash_internal_pointer_reset(properties);
339	130	hooked_iter->declared_props_done = !zend_hash_num_elements(properties);
340	130	hooked_iter->dynamic_props_done = false;
341	130	EG(ht_iterators)[hooked_iter->dynamic_prop_it].pos = hooked_iter->dynamic_prop_offset;
342	130	}
343
344		static HashTable zho_it_get_gc(zend_object_iterator iter, zval *table, int n)
345	0	{
346	0	zend_hooked_object_iterator hooked_iter = (zend_hooked_object_iterator)iter;
347	0	zend_get_gc_buffer *gc_buffer = zend_get_gc_buffer_create();
348	0	zend_get_gc_buffer_add_zval(gc_buffer, &iter->data);
349	0	zend_get_gc_buffer_add_zval(gc_buffer, &hooked_iter->declared_props);
350	0	zend_get_gc_buffer_add_zval(gc_buffer, &hooked_iter->current_data);
351	0	zend_get_gc_buffer_use(gc_buffer, table, n);
352	0	return NULL;
353	0	}
354
355		static const zend_object_iterator_funcs zend_hooked_object_it_funcs = {
356		zho_it_dtor,
357		zho_it_valid,
358		zho_it_get_current_data,
359		zho_it_get_current_key,
360		zho_it_move_forward,
361		zho_it_rewind,
362		NULL,
363		zho_it_get_gc,
364		};
365
366		ZEND_API zend_object_iterator zend_hooked_object_get_iterator(zend_class_entry ce, zval *object, int by_ref)
367	134	{
368	134	zend_object *zobj = Z_OBJ_P(object);
369	134	if (UNEXPECTED(zend_lazy_object_must_init(zobj))) {
370	78	zobj = zend_lazy_object_init(zobj);
371	78	if (UNEXPECTED(!zobj)) {
372	4	return NULL;
373	4	}
374	78	}
375
376	130	zend_hooked_object_iterator *iterator = emalloc(sizeof(zend_hooked_object_iterator));
377	130	zend_iterator_init(&iterator->it);
378
379	130	ZVAL_OBJ_COPY(&iterator->it.data, zobj);
380	130	iterator->it.funcs = &zend_hooked_object_it_funcs;
381	130	iterator->by_ref = by_ref;
382	130	zend_array *properties = zho_build_properties_ex(zobj, true, true, false);
383	130	ZVAL_ARR(&iterator->declared_props, properties);
384	130	iterator->declared_props_done = !zend_hash_num_elements(properties);
385	130	zho_dynamic_it_init(iterator);
386	130	ZVAL_UNDEF(&iterator->current_key);
387	130	ZVAL_UNDEF(&iterator->current_data);
388
389	130	return &iterator->it;
390	134	}