/src/php-src/Zend/zend_objects_API.c
Line | Count | Source |
1 | | /* |
2 | | +----------------------------------------------------------------------+ |
3 | | | Zend Engine | |
4 | | +----------------------------------------------------------------------+ |
5 | | | Copyright © Zend Technologies Ltd., a subsidiary company of | |
6 | | | Perforce Software, Inc., and Contributors. | |
7 | | +----------------------------------------------------------------------+ |
8 | | | This source file is subject to the Modified BSD License that is | |
9 | | | bundled with this package in the file LICENSE, and is available | |
10 | | | through the World Wide Web at <https://www.php.net/license/>. | |
11 | | | | |
12 | | | SPDX-License-Identifier: BSD-3-Clause | |
13 | | +----------------------------------------------------------------------+ |
14 | | | Authors: Andi Gutmans <andi@php.net> | |
15 | | | Zeev Suraski <zeev@php.net> | |
16 | | | Dmitry Stogov <dmitry@php.net> | |
17 | | +----------------------------------------------------------------------+ |
18 | | */ |
19 | | |
20 | | #include "zend.h" |
21 | | #include "zend_globals.h" |
22 | | #include "zend_variables.h" |
23 | | #include "zend_API.h" |
24 | | #include "zend_objects_API.h" |
25 | | #include "zend_fibers.h" |
26 | | |
27 | | ZEND_API void ZEND_FASTCALL zend_objects_store_init(zend_objects_store *objects, uint32_t init_size) |
28 | 38.8k | { |
29 | 38.8k | objects->object_buckets = (zend_object **) emalloc(init_size * sizeof(zend_object*)); |
30 | 38.8k | objects->top = 1; /* Skip 0 so that handles are true */ |
31 | 38.8k | objects->size = init_size; |
32 | 38.8k | objects->free_list_head = -1; |
33 | 38.8k | memset(&objects->object_buckets[0], 0, sizeof(zend_object*)); |
34 | 38.8k | } |
35 | | |
36 | | ZEND_API void ZEND_FASTCALL zend_objects_store_destroy(zend_objects_store *objects) |
37 | 38.8k | { |
38 | 38.8k | efree(objects->object_buckets); |
39 | 38.8k | objects->object_buckets = NULL; |
40 | 38.8k | } |
41 | | |
42 | | ZEND_API void ZEND_FASTCALL zend_objects_store_call_destructors(zend_objects_store *objects) |
43 | 38.8k | { |
44 | 38.8k | EG(flags) |= EG_FLAGS_OBJECT_STORE_NO_REUSE; |
45 | 38.8k | if (objects->top > 1) { |
46 | 428k | for (uint32_t i = 1; i < objects->top; i++) { |
47 | 392k | zend_object *obj = objects->object_buckets[i]; |
48 | 392k | if (IS_OBJ_VALID(obj)) { |
49 | 0 | if (!(OBJ_FLAGS(obj) & IS_OBJ_DESTRUCTOR_CALLED)) { |
50 | 0 | GC_ADD_FLAGS(obj, IS_OBJ_DESTRUCTOR_CALLED); |
51 | |
|
52 | 0 | if (obj->handlers->dtor_obj != zend_objects_destroy_object |
53 | 0 | || obj->ce->destructor) { |
54 | 0 | GC_ADDREF(obj); |
55 | 0 | obj->handlers->dtor_obj(obj); |
56 | 0 | GC_DELREF(obj); |
57 | 0 | } |
58 | 0 | } |
59 | 0 | } |
60 | 392k | } |
61 | 36.0k | } |
62 | 38.8k | } |
63 | | |
64 | | ZEND_API void ZEND_FASTCALL zend_objects_store_mark_destructed(zend_objects_store *objects) |
65 | 0 | { |
66 | 0 | if (objects->object_buckets && objects->top > 1) { |
67 | 0 | zend_object **obj_ptr = objects->object_buckets + 1; |
68 | 0 | zend_object **end = objects->object_buckets + objects->top; |
69 | |
|
70 | 0 | do { |
71 | 0 | zend_object *obj = *obj_ptr; |
72 | |
|
73 | 0 | if (IS_OBJ_VALID(obj)) { |
74 | 0 | GC_ADD_FLAGS(obj, IS_OBJ_DESTRUCTOR_CALLED); |
75 | 0 | } |
76 | 0 | obj_ptr++; |
77 | 0 | } while (obj_ptr != end); |
78 | 0 | } |
79 | 0 | } |
80 | | |
81 | | ZEND_API void ZEND_FASTCALL zend_objects_store_free_object_storage(zend_objects_store *objects, bool fast_shutdown) |
82 | 38.8k | { |
83 | 38.8k | zend_object **obj_ptr, **end, *obj; |
84 | | |
85 | 38.8k | if (objects->top <= 1) { |
86 | 2.82k | return; |
87 | 2.82k | } |
88 | | |
89 | | /* Free object contents, but don't free objects themselves, so they show up as leaks. |
90 | | * Also add a ref to all objects, so the object can't be freed by something else later. */ |
91 | 36.0k | end = objects->object_buckets + 1; |
92 | 36.0k | obj_ptr = objects->object_buckets + objects->top; |
93 | | |
94 | 36.0k | if (fast_shutdown) { |
95 | 0 | do { |
96 | 0 | obj_ptr--; |
97 | 0 | obj = *obj_ptr; |
98 | 0 | if (IS_OBJ_VALID(obj)) { |
99 | 0 | if (!(OBJ_FLAGS(obj) & IS_OBJ_FREE_CALLED)) { |
100 | 0 | GC_ADD_FLAGS(obj, IS_OBJ_FREE_CALLED); |
101 | 0 | if (obj->handlers->free_obj != zend_object_std_dtor |
102 | 0 | || (OBJ_FLAGS(obj) & IS_OBJ_WEAKLY_REFERENCED) |
103 | 0 | ) { |
104 | 0 | GC_ADDREF(obj); |
105 | 0 | obj->handlers->free_obj(obj); |
106 | 0 | } |
107 | 0 | } |
108 | 0 | } |
109 | 0 | } while (obj_ptr != end); |
110 | 36.0k | } else { |
111 | 392k | do { |
112 | 392k | obj_ptr--; |
113 | 392k | obj = *obj_ptr; |
114 | 392k | if (IS_OBJ_VALID(obj)) { |
115 | 0 | if (!(OBJ_FLAGS(obj) & IS_OBJ_FREE_CALLED)) { |
116 | 0 | GC_ADD_FLAGS(obj, IS_OBJ_FREE_CALLED); |
117 | 0 | GC_ADDREF(obj); |
118 | 0 | obj->handlers->free_obj(obj); |
119 | 0 | } |
120 | 0 | } |
121 | 392k | } while (obj_ptr != end); |
122 | 36.0k | } |
123 | 36.0k | } |
124 | | |
125 | | |
126 | | /* Store objects API */ |
127 | | static ZEND_COLD zend_never_inline void ZEND_FASTCALL zend_objects_store_put_cold(zend_object *object) |
128 | 153 | { |
129 | 153 | uint32_t new_size = 2 * EG(objects_store).size; |
130 | | |
131 | 153 | EG(objects_store).object_buckets = (zend_object **) erealloc(EG(objects_store).object_buckets, new_size * sizeof(zend_object*)); |
132 | | /* Assign size after realloc, in case it fails */ |
133 | 153 | EG(objects_store).size = new_size; |
134 | 153 | uint32_t handle = EG(objects_store).top++; |
135 | 153 | object->handle = handle; |
136 | 153 | EG(objects_store).object_buckets[handle] = object; |
137 | 153 | } |
138 | | |
139 | | ZEND_API void ZEND_FASTCALL zend_objects_store_put(zend_object *object) |
140 | 392k | { |
141 | 392k | uint32_t handle; |
142 | | |
143 | | /* When in shutdown sequence - do not reuse previously freed handles, to make sure |
144 | | * the dtors for newly created objects are called in zend_objects_store_call_destructors() loop |
145 | | */ |
146 | 392k | if (EG(objects_store).free_list_head != -1 && EXPECTED(!(EG(flags) & EG_FLAGS_OBJECT_STORE_NO_REUSE))) { |
147 | 93 | handle = EG(objects_store).free_list_head; |
148 | 93 | EG(objects_store).free_list_head = GET_OBJ_BUCKET_NUMBER(EG(objects_store).object_buckets[handle]); |
149 | 392k | } else if (UNEXPECTED(EG(objects_store).top == EG(objects_store).size)) { |
150 | 153 | zend_objects_store_put_cold(object); |
151 | 153 | return; |
152 | 391k | } else { |
153 | 391k | handle = EG(objects_store).top++; |
154 | 391k | } |
155 | 392k | object->handle = handle; |
156 | 392k | EG(objects_store).object_buckets[handle] = object; |
157 | 392k | } |
158 | | |
159 | | ZEND_API void ZEND_FASTCALL zend_objects_store_del(zend_object *object) /* {{{ */ |
160 | 372k | { |
161 | 372k | ZEND_ASSERT(GC_REFCOUNT(object) == 0); |
162 | | |
163 | | /* GC might have released this object already. */ |
164 | 372k | if (UNEXPECTED(GC_TYPE(object) == IS_NULL)) { |
165 | 317 | return; |
166 | 317 | } |
167 | | |
168 | | /* Make sure we hold a reference count during the destructor call |
169 | | otherwise, when the destructor ends the storage might be freed |
170 | | when the refcount reaches 0 a second time |
171 | | */ |
172 | 372k | if (!(OBJ_FLAGS(object) & IS_OBJ_DESTRUCTOR_CALLED)) { |
173 | 254k | GC_ADD_FLAGS(object, IS_OBJ_DESTRUCTOR_CALLED); |
174 | | |
175 | 254k | if (object->handlers->dtor_obj != zend_objects_destroy_object |
176 | 254k | || object->ce->destructor) { |
177 | 0 | GC_SET_REFCOUNT(object, 1); |
178 | 0 | object->handlers->dtor_obj(object); |
179 | 0 | GC_DELREF(object); |
180 | 0 | } |
181 | 254k | } |
182 | | |
183 | 372k | if (GC_REFCOUNT(object) == 0) { |
184 | 372k | uint32_t handle = object->handle; |
185 | 372k | void *ptr; |
186 | | |
187 | 372k | ZEND_ASSERT(EG(objects_store).object_buckets != NULL); |
188 | 372k | ZEND_ASSERT(IS_OBJ_VALID(EG(objects_store).object_buckets[handle])); |
189 | 372k | EG(objects_store).object_buckets[handle] = SET_OBJ_INVALID(object); |
190 | 372k | if (!(OBJ_FLAGS(object) & IS_OBJ_FREE_CALLED)) { |
191 | 372k | GC_ADD_FLAGS(object, IS_OBJ_FREE_CALLED); |
192 | 372k | GC_SET_REFCOUNT(object, 1); |
193 | 372k | object->handlers->free_obj(object); |
194 | 372k | } |
195 | 372k | ptr = ((char*)object) - object->handlers->offset; |
196 | 372k | GC_REMOVE_FROM_BUFFER(object); |
197 | 372k | efree(ptr); |
198 | 372k | ZEND_OBJECTS_STORE_ADD_TO_FREE_LIST(handle); |
199 | 372k | } |
200 | 372k | } |
201 | | /* }}} */ |
202 | | |
203 | | ZEND_API ZEND_COLD zend_property_info *zend_get_property_info_for_slot_slow(zend_object *obj, zval *slot) |
204 | 0 | { |
205 | 0 | uintptr_t offset = OBJ_PROP_SLOT_TO_OFFSET(obj, slot); |
206 | 0 | zend_property_info *prop_info; |
207 | 0 | ZEND_HASH_MAP_FOREACH_PTR(&obj->ce->properties_info, prop_info) { |
208 | 0 | if (prop_info->offset == offset) { |
209 | 0 | return prop_info; |
210 | 0 | } |
211 | 0 | } ZEND_HASH_FOREACH_END(); |
212 | 0 | return NULL; |
213 | 0 | } |