[6.x] Serialization of models on PHP 7.4 with compatibility with PHP 7.3 and below #30605
Conversation
dkulyk
changed the title
| )); | ||
| if (! array_key_exists($name, $values)) { | ||
| continue; | ||
| } |
There was a problem hiding this comment.
This part will unfortunately break jobs which are already queued. If any app is upgraded with these changes those jobs won't be able to unserialize anymore.
There was a problem hiding this comment.
Why?
In previous implementation anything won't be able unserialize anymore.
There was a problem hiding this comment.
PHP <7.4 does not use __serialize. If you will upgrade only Laravel php still used __slee/__wakeup.
There was a problem hiding this comment.
Because any already queued job will still have their model identifiers set on the properties. If you upgrade to php 7.4 then your queued jobs will break while with the current implementation you can upgrade to php 7.4 smoothly.
We can do the unserialize thing in a year or two perhaps when we know most people have transitioned to php 7.4
There was a problem hiding this comment.
... then php pass all properties to __unserialize as array. See #30604 (comment)
There was a problem hiding this comment.
I've added serialization structure test.
In PHP 7.4 and PHP <7.3 serialized objects are identical.
There was a problem hiding this comment.
Ah thanks for that. If @taylorotwell is okay with it then this PR is fine by me.
driesvints
changed the title
|
@dkulyk thanks for this! One concern atm with regards to BC for existing queued jobs. |
| if ($property->isPrivate()) { | ||
| $name = "\0{$class}\0{$name}"; | ||
| } elseif ($property->isProtected()) { | ||
| $name = "\0*\0{$name}"; |
There was a problem hiding this comment.
PHP adds \0*\0 for protected and \0className\0 for private properties in serialization.
serialization_objects_test, zend_mangle_property_name and usage 1, 2
There was a problem hiding this comment.
It's needed for backward compatibility with php7.3 workers.
A php7.3 serialize command will produce this name in the serialized array so by naming it this way a 7.3 worker can work together with a 7.4 worker (as long as it's not using typed properties).
|
One thing I noticed: the parent classes private variable are lost this way: take the following code (which is basically the same without the model wrapping): use ReflectionClass;
class A extends C
{
use B;
private $a = 1;
protected $b = 2;
public $c = 3;
public function __serialize()
{
$values = [];
$properties = (new ReflectionClass($this))->getProperties();
$class = get_class($this);
foreach ($properties as $property) {
if ($property->isStatic()) {
continue;
}
$name = $property->getName();
if ($property->isPrivate()) {
$name = "\0{$class}\0{$name}";
} elseif ($property->isProtected()) {
$name = "\0*\0{$name}";
}
$property->setAccessible(true);
$values[$name] = $property->getValue($this);
}
return $values;
}
}
trait B{
private $d = 4;
}
class C{
private $e = 5;
}calling calling Meaning the C::e variable were lost in the serialization process. A possible solution would be to travel up to the root class and get all the private properties: public function __serialize()
{
$values = [];
$reflectionClass = new ReflectionClass($this);
$properties = ($reflectionClass)->getProperties();
$class = $reflectionClass->getName;
foreach ($properties as $property) {
if ($property->isStatic()) {
continue;
}
$name = $property->getName();
if ($property->isPrivate()) {
$name = "\0{$class}\0{$name}";
} elseif ($property->isProtected()) {
$name = "\0*\0{$name}";
}
$property->setAccessible(true);
$values[$name] = $property->getValue($this);
}
while ($reflectionClass = $reflectionClass->getParentClass()) {
$class = $reflectionClass->getName;
foreach ($reflectionClass->getProperties(ReflectionProperty::IS_PRIVATE) as $property) {
$name = $property->getName();
$name = "\0{$class}\0{$name}";
$property->setAccessible(true);
$values[$name] = $property->getValue($this);
}
}
return $values;
} |
|
|
@dkulyk I sent a possible solution, of course the serialization logic need to be changed to the correct one Also some performance measurements should be done, maybe somehow cache the serializeable property names if needed. |
But it can be implemented in __serialize |
|
I only tested the latter so there is a chance the other one never worked. Tested with current implementation, it does indeed remove parent private variables, maybe it would be preferred to keep the exact working (as it can be implemented in a way more optimized fashion). |
|
Probably the best way would be to drop private variable support altogether in v7.x, that would allow to access parameters with On first run class public and protected properties are cached, on each subsequent call it is only pulled form the cache. Also private variables could be used after this to handle internal non-serializable stuff. |
|
@netpok excellent point. Maybe it's indeed better to only serialize |
|
This PR implements same behavior like for PHP 7.3. If @taylorotwell will decided what need remove private properties or add from parent classes - I'll change it. |
|
@dkulyk that's true 👍 |
This is rewrited #30604 with using __serialize/__unserialize
Tests are leaved from #30604
This implementation no needed of additional property and backward compatibility with older version of PHP(<7.4)