Skip to content

Improve return type of base64_decode() #4492

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
jlherren wants to merge 1 commit into
base: 2.1.x
Choose a base branch
from
Open

Improve return type of base64_decode() #4492

jlherren wants to merge 1 commit into from
+51 −23

Conversation

@jlherren
Copy link
Contributor

@jlherren jlherren commented Oct 27, 2025

Fix handling of non-bools as $strict parameter and omit false from return type when $string is valid base64.

This is useful when constant binary strings are required in code, e.g.:

$emptyZipFile = base64_decode('UEsFBgAAAAAAAAAAAAAAAAAAAAAAAA==', true);

Related to phpstan/phpstan#7866

@jlherren
Improve return type of base64_decode()
1b54776 
- Detect when the result cannot be false
- Correctly treat non-boolean $strict parameter
@ondrejmirtes
Copy link
Member

ondrejmirtes commented Jan 26, 2026

This improves things a bit too much as it breaks analysis of PHPStan itself 😀 The base64 call inside the codebase meant to obfuscate a string so that we don't need to baseline related errors. But now we can un-obfuscate it and actually baseline the errors.

staabm
staabm reviewed Jan 27, 2026
View reviewed changes
src/Type/Php/Base64DecodeDynamicFunctionReturnTypeExtension.php
$isValidBase64 = TrinaryLogic::lazyExtremeIdentity(
$constantStrings,
static function (ConstantStringType $constantString): TrinaryLogic {
$isValid = base64_decode($constantString->getValue(), true) !== false;
Copy link
Contributor

@staabm staabm Jan 27, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

base64-decoding any string from within the codebase could skyrocket memory needed by phpstan analysis.

e.g. some codebases contain multi-megabyte base64 representations of images

Copy link
Member

@ondrejmirtes ondrejmirtes Jan 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah, I'm inclining not doing this at all.

Copy link
Contributor Author

@jlherren jlherren Jan 27, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would a length-limit help?

Copy link
Member

@ondrejmirtes ondrejmirtes Feb 10, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm really not sure why would we want to decode literal strings passed to this method at all.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ondrejmirtes ondrejmirtes ondrejmirtes left review comments

@staabm staabm staabm left review comments

@VincentLanglet VincentLanglet VincentLanglet left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@jlherren @ondrejmirtes @staabm @VincentLanglet