Skip to content

sqlite3: fix internal return type violation in escapeString()#22026

Open
ndossche wants to merge 1 commit into
php:PHP-8.4from
ndossche:clesss-37
Open

sqlite3: fix internal return type violation in escapeString()#22026
ndossche wants to merge 1 commit into
php:PHP-8.4from
ndossche:clesss-37

Conversation

@ndossche
Copy link
Copy Markdown
Member

@ndossche ndossche commented May 12, 2026

If this call fails due to an internal libsqlite3 error, then the function will return NULL (as that's the default value set by the VM). However, the function is marked with a non-nullable string return type. Therefore this will result in a type violation and a fatal error in debug mode.
Either we solve it by making the function nullable or throw. I chose the latter as it is less of a footgun.

Found by a static-dynamic analyser I'm developing.

@ndossche
sqlite3: fix internal return type violation in escapeString()
ab368bb 
If this call fails due to an internal libsqlite3 error, then the
function will return NULL (as that's the default value set by the VM).
However, the function is marked with a non-nullable string return type.
Therefore this will result in a type violation and a fatal error in
debug mode.
Either we solve it by making the function nullable or throw.
I chose the latter as it is less of a footgun.
@ndossche ndossche requested a review from devnexen May 13, 2026 10:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@devnexen devnexen Awaiting requested review from devnexen

Assignees

No one assigned

Labels

Extension: sqlite3

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ndossche