PHP weak type safety issues-PHP类库-php.cn

Home

类库下载

PHP类库

PHP weak type safety issues

高洛峰

Oct 10, 2016 am 09:51 AM

1. Type conversion problem

 intval();
 
    var_dump(intval(&#39;1asdfasd&#39;));  //1
    var_dump(intval(&#39;awqw12&#39;));  //0
    var_dump(intval(array()));    //0
    var_dump(intval(array(&#39;foo&#39;,&#39;val&#39;))); //1
    var_dump(intval(0x1A)); //26  十六进制转换
    var_dump(intval(&#39;asdfqwer&#39;)); //0

intval If the converted value is a string, no error will be returned, but 0 will be returned. If the converted value is an array, there are two situations. When the converted value is an empty array, it will be returned. 0, otherwise it will return 1

Note: PHP uses 32-bit memory to save an integer. 32-bit can represent 4294967296 numbers. If it is signed, it is -2147483647 to 2147483648;

2. The problem of looseness of built-in functions

switch();
 
     $i=&#39;3adcd&#39;;
     switch($i){
              case 1:
                     echo &#39;i is 1&#39;;
                     break;
              case 2:
                     echo &#39;i is 2&#39;;
                     break;
              case 3:
                     echo &#39;i is 3&#39;;
                     break;
              default:
                    echo &#39;i is default&#39;;
                    break;
     }

The above results will enter switch case 3. Why is this happening? If switch is a numeric type case, switch will convert the parameters into int class. Therefore, when executing the above, $i will be typed first. Conversion, the conversion result is 3, so. . .

in_array();
    $arr = [0,1,2,3,&#39;test&#39;];
    var_dump(in_array(&#39;abd&#39;,$arr));    // true
    var_dump(in_array(&#39;1bc&#39;,$arr));    // true

Why is the above execution result like this? Later, through querying the manual, the official statement is that in_array defaults to a loose comparison method, which only compares whether the values are equal, but does not compare whether the types of the values are the same, so the above For this result, you can set the third parameter of the in_array function. Setting it to True is a strict comparison method.

The above are things that we need to pay attention to in our daily development.

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Hot AI Tools

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress images for free

Clothoff.io

AI clothes remover

Video Face Swap

Swap faces in any video effortlessly with our completely free AI face swap tool!

Hot Article

Assassin's Creed Shadows: Seashell Riddle Solution

3 weeks agoByDDD

What's New in Windows 11 KB5054979 & How to Fix Update Issues

2 weeks agoByDDD

Assassin's Creed Shadows - How To Find The Blacksmith And Unlock Weapon And Armour Customisation

1 months agoByDDD

Where to find the Crane Control Keycard in Atomfall

3 weeks agoByDDD

Roblox: Dead Rails - How To Complete Every Challenge

3 weeks agoByDDD

Hot Tools

VSCode Windows 64-bit Download

A free and powerful IDE editor launched by Microsoft

DVWA

Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, to help web developers better understand the process of securing web applications, and to help teachers/students teach/learn in a classroom environment Web application security. The goal of DVWA is to practice some of the most common web vulnerabilities through a simple and straightforward interface, with varying degrees of difficulty. Please note that this software