Mark parameter in ext/standard as sensitive

TimWolla · TimWolla · commit 8368db06eebf · 2022-06-12T20:30:14.000+02:00
No changes to the stubs required, password_hash and password_verify were added
to the initial version of the stub support.
diff --git a/ext/standard/basic_functions.stub.php b/ext/standard/basic_functions.stub.php
@@ -1636,8 +1636,8 @@ function unpack(string $format, string $string, int $offset = 0): array|false {}
 function password_get_info(string $hash): array {}
 
 /**
- * @refcount 1
  * @sensitive-param $password
+ * @refcount 1
  */
 function password_hash(string $password, string|int|null $algo, array $options = []): string {}
 
diff --git a/ext/standard/basic_functions_arginfo.h b/ext/standard/basic_functions_arginfo.h
diff --git a/ext/standard/tests/password/password_hash_sensitive_parameter.phpt b/ext/standard/tests/password/password_hash_sensitive_parameter.phpt
@@ -0,0 +1,24 @@
+--TEST--
+Test that the password parameter is marked sensitive.
+--FILE--
+<?php
+try {
+    var_dump(password_hash("foo"));
+} catch (\Throwable $e) {
+    echo $e, PHP_EOL;
+}
+try {
+    var_dump(password_hash("foo", "Invalid"));
+} catch (\Throwable $e) {
+    echo $e, PHP_EOL;
+}
+?>
+--EXPECTF--
+ArgumentCountError: password_hash() expects at least 2 arguments, 1 given in %spassword_hash_sensitive_parameter.php:3
+Stack trace:
+#0 %spassword_hash_sensitive_parameter.php(3): password_hash(Object(SensitiveParameterValue))
+#1 {main}
+ValueError: password_hash(): Argument #2 ($algo) must be a valid password hashing algorithm in%spassword_hash_sensitive_parameter.php:8
+Stack trace:
+#0 %spassword_hash_sensitive_parameter.php(8): password_hash(Object(SensitiveParameterValue), 'Invalid')
+#1 {main}
