PoC: Add SensitiveParameter attribute

TimWolla · TimWolla · commit e69261372f2f · 2022-01-27T12:35:15.000+01:00
diff --git a/Zend/tests/function_arguments/sensitive_parameter.phpt b/Zend/tests/function_arguments/sensitive_parameter.phpt
@@ -0,0 +1,50 @@
+--TEST--
+SensitiveParameter attribute suppresses the single sensitive argument.
+--FILE--
+<?php
+
+function test(#[SensitiveParameter] $sensitive)
+{
+	debug_print_backtrace();
+	var_dump(debug_backtrace());
+	var_dump((new Exception)->getTrace());
+}
+
+test('sensitive');
+?>
+--EXPECTF--
+#0 %ssensitive_parameter.php(10): test(Object(SensitiveParameter))
+array(1) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter.php"
+    ["line"]=>
+    int(10)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(1) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
+array(1) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter.php"
+    ["line"]=>
+    int(10)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(1) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
diff --git a/Zend/tests/function_arguments/sensitive_parameter_multiple_arguments.phpt b/Zend/tests/function_arguments/sensitive_parameter_multiple_arguments.phpt
@@ -0,0 +1,64 @@
+--TEST--
+SensitiveParameter attribute suppresses the correct sensitive arguments.
+--FILE--
+<?php
+
+function test(
+	#[SensitiveParameter] $sensitive1 = null,
+	$non_sensitive = null,
+	#[SensitiveParameter] $sensitive2 = null,
+)
+{
+	debug_print_backtrace();
+	var_dump(debug_backtrace());
+	var_dump((new Exception)->getTrace());
+}
+
+test('sensitive1', 'non_sensitive', 'sensitive2');
+?>
+--EXPECTF--
+#0 %ssensitive_parameter_multiple_arguments.php(14): test(Object(SensitiveParameter), 'non_sensitive', Object(SensitiveParameter))
+array(1) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_multiple_arguments.php"
+    ["line"]=>
+    int(14)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [1]=>
+      string(13) "non_sensitive"
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
+array(1) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_multiple_arguments.php"
+    ["line"]=>
+    int(14)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [1]=>
+      string(13) "non_sensitive"
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
diff --git a/Zend/tests/function_arguments/sensitive_parameter_named_arguments.phpt b/Zend/tests/function_arguments/sensitive_parameter_named_arguments.phpt
@@ -0,0 +1,64 @@
+--TEST--
+SensitiveParameter attribute handles named arguments.
+--FILE--
+<?php
+
+function test(
+	#[SensitiveParameter] $sensitive1 = null,
+	$non_sensitive = null,
+	#[SensitiveParameter] $sensitive2 = null,
+)
+{
+	debug_print_backtrace();
+	var_dump(debug_backtrace());
+	var_dump((new Exception)->getTrace());
+}
+
+test(non_sensitive: 'non_sensitive', sensitive2: 'sensitive2');
+?>
+--EXPECTF--
+#0 %ssensitive_parameter_named_arguments.php(14): test(Object(SensitiveParameter), 'non_sensitive', Object(SensitiveParameter))
+array(1) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_named_arguments.php"
+    ["line"]=>
+    int(14)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [1]=>
+      string(13) "non_sensitive"
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
+array(1) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_named_arguments.php"
+    ["line"]=>
+    int(14)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [1]=>
+      string(13) "non_sensitive"
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
diff --git a/Zend/tests/function_arguments/sensitive_parameter_nested_calls.phpt b/Zend/tests/function_arguments/sensitive_parameter_nested_calls.phpt
@@ -0,0 +1,114 @@
+--TEST--
+SensitiveParameter attribute handles nested function calls.
+--FILE--
+<?php
+
+function test(
+	#[SensitiveParameter] $sensitive1 = null,
+	$non_sensitive = null,
+	#[SensitiveParameter] $sensitive2 = null,
+)
+{
+	debug_print_backtrace();
+	var_dump(debug_backtrace());
+	var_dump((new Exception)->getTrace());
+}
+
+function wrapper(
+	$non_sensitive = null,
+	#[SensitiveParameter] $sensitive1 = null,
+	#[SensitiveParameter] $sensitive2 = null,
+)
+{
+	test($non_sensitive, $sensitive1, $sensitive2);
+}
+
+wrapper('foo', 'bar', 'baz');
+?>
+--EXPECTF--
+#0 %ssensitive_parameter_nested_calls.php(20): test(Object(SensitiveParameter), 'bar', Object(SensitiveParameter))
+#1 %ssensitive_parameter_nested_calls.php(23): wrapper('foo', Object(SensitiveParameter), Object(SensitiveParameter))
+array(2) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_nested_calls.php"
+    ["line"]=>
+    int(20)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [1]=>
+      string(3) "bar"
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+  [1]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_nested_calls.php"
+    ["line"]=>
+    int(23)
+    ["function"]=>
+    string(7) "wrapper"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      string(3) "foo"
+      [1]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
+array(2) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_nested_calls.php"
+    ["line"]=>
+    int(20)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [1]=>
+      string(3) "bar"
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+  [1]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_nested_calls.php"
+    ["line"]=>
+    int(23)
+    ["function"]=>
+    string(7) "wrapper"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      string(3) "foo"
+      [1]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
diff --git a/Zend/tests/function_arguments/sensitive_parameter_variadic_arguments.phpt b/Zend/tests/function_arguments/sensitive_parameter_variadic_arguments.phpt
@@ -0,0 +1,64 @@
+--TEST--
+SensitiveParameter attribute handles variadic arguments.
+--FILE--
+<?php
+
+function test(
+	#[SensitiveParameter] ...$args
+)
+{
+	debug_print_backtrace();
+	var_dump(debug_backtrace());
+	var_dump((new Exception)->getTrace());
+}
+
+test('foo', 'bar', 'baz');
+?>
+--EXPECTF--
+#0 %ssensitive_parameter_variadic_arguments.php(12): test(Object(SensitiveParameter), Object(SensitiveParameter), Object(SensitiveParameter))
+array(1) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_variadic_arguments.php"
+    ["line"]=>
+    int(12)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [1]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
+array(1) {
+  [0]=>
+  array(4) {
+    ["file"]=>
+    string(%d) "%ssensitive_parameter_variadic_arguments.php"
+    ["line"]=>
+    int(12)
+    ["function"]=>
+    string(4) "test"
+    ["args"]=>
+    array(3) {
+      [0]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [1]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+      [2]=>
+      object(SensitiveParameter)#%d (0) {
+      }
+    }
+  }
+}
diff --git a/Zend/zend_attributes.c b/Zend/zend_attributes.c
@@ -26,6 +26,7 @@
 ZEND_API zend_class_entry *zend_ce_attribute;
 ZEND_API zend_class_entry *zend_ce_return_type_will_change_attribute;
 ZEND_API zend_class_entry *zend_ce_allow_dynamic_properties;
+ZEND_API zend_class_entry *zend_ce_sensitive_parameter;
 
 static HashTable internal_attributes;
 
@@ -91,6 +92,11 @@ ZEND_METHOD(AllowDynamicProperties, __construct)
 	ZEND_PARSE_PARAMETERS_NONE();
 }
 
+ZEND_METHOD(SensitiveParameter, __construct)
+{
+	ZEND_PARSE_PARAMETERS_NONE();
+}
+
 static zend_attribute *get_attribute(HashTable *attributes, zend_string *lcname, uint32_t offset)
 {
 	if (attributes) {
@@ -310,6 +316,9 @@ void zend_register_attribute_ce(void)
 	zend_ce_allow_dynamic_properties = register_class_AllowDynamicProperties();
 	attr = zend_internal_attribute_register(zend_ce_allow_dynamic_properties, ZEND_ATTRIBUTE_TARGET_CLASS);
 	attr->validator = validate_allow_dynamic_properties;
+
+	zend_ce_sensitive_parameter = register_class_SensitiveParameter();
+	attr = zend_internal_attribute_register(zend_ce_allow_dynamic_properties, ZEND_ATTRIBUTE_TARGET_PARAMETER);
 }
 
 void zend_attributes_shutdown(void)
diff --git a/Zend/zend_attributes.h b/Zend/zend_attributes.h
@@ -41,6 +41,7 @@ BEGIN_EXTERN_C()
 
 extern ZEND_API zend_class_entry *zend_ce_attribute;
 extern ZEND_API zend_class_entry *zend_ce_allow_dynamic_properties;
+extern ZEND_API zend_class_entry *zend_ce_sensitive_parameter;
 
 typedef struct {
 	zend_string *name;
diff --git a/Zend/zend_attributes.stub.php b/Zend/zend_attributes.stub.php
diff --git a/Zend/zend_attributes_arginfo.h b/Zend/zend_attributes_arginfo.h
diff --git a/Zend/zend_builtin_functions.c b/Zend/zend_builtin_functions.c
