Upgrade to psalm 6, test on PHP 8.4

Author: sad-spirit

.github/workflows/continuous-integration.yml

@@ -14,13 +14,13 @@ jobs:
       fail-fast: false
       matrix:
         operating-system: ['ubuntu-latest']
-        php-version: ['5.6', '7.0', '7.1', '7.2', '7.3', '7.4', '8.0', '8.1', '8.2', '8.3']
+        php-version: [ '5.6', '7.0', '7.1', '7.2', '7.3', '7.4', '8.0', '8.1', '8.2', '8.3', '8.4' ]
 
     name: CI on ${{ matrix.operating-system }} with PHP ${{ matrix.php-version }}
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
 
       - name: Setup PHP
         uses: shivammathur/setup-php@v2
@@ -35,7 +35,7 @@ jobs:
           echo "dir=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT
 
       - name: Cache dependencies
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         with:
           path: ${{ steps.composer-cache.outputs.dir }}
           key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }}

.github/workflows/static-analysis.yml

@@ -14,11 +14,11 @@ jobs:
     strategy:
       matrix:
         operating-system: [ 'ubuntu-latest' ]
-        php-version: [ '7.4', '8.2' ]
+        php-version: [ '8.2' ]
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
 
       - name: Install PHP
         uses: shivammathur/setup-php@v2
@@ -33,7 +33,7 @@ jobs:
           echo "dir=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT
 
       - name: Cache dependencies
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         with:
           path: ${{ steps.composer-cache.outputs.dir }}
           key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }}
@@ -46,7 +46,7 @@ jobs:
 
       - name: Install psalm and pear/Log
         run: |
-          composer require --dev "vimeo/psalm:^5.15" "pear/log:^1"
+          composer require --dev "vimeo/psalm:^6" "pear/log:^1"
 
       - name: Run a static analysis with vimeo/psalm
         run: |

HTTP/Request2.php

@@ -41,6 +41,8 @@
  */
 class HTTP_Request2 implements SplSubject
 {
+    const VERSION = '2.7.0';
+
     /**
      * #@+
      * Constants for HTTP request methods
@@ -233,10 +235,11 @@ public function __construct(
         if (!empty($method)) {
             $this->setMethod($method);
         }
-        $this->setHeader(
-            'user-agent', 'HTTP_Request2/2.6.0 ' .
-            '(https://github.com/pear/HTTP_Request2) PHP/' . phpversion()
-        );
+        $this->setHeader('user-agent', sprintf(
+            'HTTP_Request2/%s (https://github.com/pear/HTTP_Request2) PHP/%s',
+            self::VERSION,
+            phpversion() ?: '6.0'
+        ));
     }
 
     /**
@@ -640,7 +643,7 @@ public function getBody()
             if (0 === strpos($this->headers['content-type'], 'application/x-www-form-urlencoded')) {
                 $body = http_build_query($this->postParams, '', '&');
                 if (!$this->getConfig('use_brackets')) {
-                    $body = preg_replace('/%5B\d+%5D=/', '=', $body);
+                    $body = (string)preg_replace('/%5B\d+%5D=/', '=', $body);
                 }
                 // support RFC 3986 by not encoding '~' symbol (request #15368)
                 return str_replace('%7E', '~', $body);

HTTP/Request2/Adapter.php

@@ -106,7 +106,11 @@ protected function calculateRequestLength(&$headers)
         if (is_string($this->requestBody)) {
             $this->contentLength = strlen($this->requestBody);
         } elseif (is_resource($this->requestBody)) {
-            $stat = fstat($this->requestBody);
+            if (false === $stat = fstat($this->requestBody)) {
+                throw new HTTP_Request2_LogicException(
+                    "fstat() call failed", HTTP_Request2_Exception::READ_ERROR
+                );
+            }
             $this->contentLength = $stat['size'];
             rewind($this->requestBody);
         } else {

HTTP/Request2/Adapter/Curl.php

@@ -238,7 +238,9 @@ public function getInfo()
      */
     protected function createCurlHandle()
     {
-        $ch = curl_init();
+        if (false === $ch = curl_init()) {
+            throw new HTTP_Request2_Exception("Failed to initialize a cURL session");
+        }
 
         curl_setopt_array(
             $ch, [
@@ -441,7 +443,7 @@ protected function workaroundPhpBug47204($ch, &$headers)
                 $fp = $this->requestBody;
                 $this->requestBody = '';
                 while (!feof($fp)) {
-                    $this->requestBody .= fread($fp, 16384);
+                    $this->requestBody .= (string)fread($fp, 16384);
                 }
             }
             // curl hangs up if content-length is present
@@ -473,9 +475,9 @@ protected function callbackReadBody($ch, $fd, $length)
             return '';
         }
         if (is_string($this->requestBody)) {
-            $string = substr($this->requestBody, $this->position, $length);
+            $string = (string)substr($this->requestBody, $this->position, $length);
         } elseif (is_resource($this->requestBody)) {
-            $string = fread($this->requestBody, $length);
+            $string = (string)fread($this->requestBody, $length);
         } else {
             $string = $this->requestBody->read($length);
         }

HTTP/Request2/Adapter/Mock.php

@@ -129,7 +129,7 @@ public function addResponse($response, $url = null)
      */
     public static function createResponseFromString($str)
     {
-        $parts       = preg_split('!(\r?\n){2}!m', $str, 2);
+        $parts       = preg_split('!(\r?\n){2}!m', $str, 2) ?: [''];
         $headerLines = explode("\n", $parts[0]);
         $response    = new HTTP_Request2_Response(array_shift($headerLines));
         foreach ($headerLines as $headerLine) {
@@ -152,14 +152,14 @@ public static function createResponseFromString($str)
      */
     public static function createResponseFromFile($fp)
     {
-        $response = new HTTP_Request2_Response(fgets($fp));
+        $response = new HTTP_Request2_Response((string)fgets($fp));
         do {
-            $headerLine = fgets($fp);
+            $headerLine = (string)fgets($fp);
             $response->parseHeaderLine($headerLine);
         } while ('' != trim($headerLine));
 
         while (!feof($fp)) {
-            $response->appendBody(fread($fp, 8192));
+            $response->appendBody((string)fread($fp, 8192));
         }
         return $response;
     }

HTTP/Request2/Adapter/Socket.php

@@ -270,7 +270,7 @@ protected function connect()
                         $options['ssl']['peer_name']        = $reqHost;
 
                     } else {
-                        $options['ssl'][substr($name, 4)] = $value;
+                        $options['ssl'][(string)substr($name, 4)] = $value;
                     }
                 }
             }
@@ -504,18 +504,18 @@ protected function shouldUseServerDigestAuth(HTTP_Request2_Response $response)
 
         $url    = $this->request->getUrl();
         $scheme = (string)$url->getScheme();
-        $host   = $scheme . '://' . $url->getHost();
+        $host   = $scheme . '://' . (string)$url->getHost();
         if ($port = $url->getPort()) {
             if ((0 === strcasecmp($scheme, 'http') && 80 != $port)
                 || (0 === strcasecmp($scheme, 'https') && 443 != $port)
             ) {
-                $host .= ':' . $port;
+                $host .= ':' . (string)$port;
             }
         }
 
         if (!empty($challenge['domain'])) {
             $prefixes = [];
-            foreach (preg_split('/\\s+/', $challenge['domain']) as $prefix) {
+            foreach (preg_split('/\\s+/', $challenge['domain']) ?: [] as $prefix) {
                 // don't bother with different servers
                 if ('/' == substr($prefix, 0, 1)) {
                     $prefixes[] = $host . $prefix;
@@ -699,7 +699,7 @@ protected function createDigestResponse($user, $password, $url, &$challenge)
         if (false !== ($q = strpos($url, '?'))
             && $this->request->getConfig('digest_compat_ie')
         ) {
-            $url = substr($url, 0, $q);
+            $url = (string)substr($url, 0, $q);
         }
 
         $a1 = md5($user . ':' . $challenge['realm'] . ':' . $password);
@@ -713,7 +713,7 @@ protected function createDigestResponse($user, $password, $url, &$challenge)
             if (empty($challenge['nc'])) {
                 $challenge['nc'] = 1;
             }
-            $nc     = sprintf('%08x', $challenge['nc']++);
+            $nc     = (string)sprintf('%08x', $challenge['nc']++);
             $digest = md5(
                 $a1 . ':' . $challenge['nonce'] . ':' . $nc . ':' .
                 $challenge['cnonce'] . ':auth:' . $a2
@@ -756,10 +756,9 @@ protected function addAuthorizationHeader(&$headers, $requestHost, $requestUrl)
 
         case HTTP_Request2::AUTH_DIGEST:
             unset($this->serverChallenge);
-            $fullUrl = ('/' == $requestUrl[0])?
-                       $this->request->getUrl()->getScheme() . '://' .
-                        $requestHost . $requestUrl:
-                       $requestUrl;
+            $fullUrl = '/' == $requestUrl[0]
+                ? (string)$this->request->getUrl()->getScheme() . '://' . $requestHost . $requestUrl
+                : $requestUrl;
             foreach (array_keys(self::$challenges) as $key) {
                 if ($key == substr($fullUrl, 0, strlen($key))) {
                     $headers['authorization'] = $this->createDigestResponse(
@@ -841,9 +840,10 @@ protected function prepareHeaders()
         $connect = HTTP_Request2::METHOD_CONNECT == $this->request->getMethod();
         $host    = (string)$url->getHost();
 
-        $defaultPort = 0 === strcasecmp((string)$url->getScheme(), 'https')? 443: 80;
-        if (($port = $url->getPort()) && $port != $defaultPort || $connect) {
-            $host .= ':' . (empty($port)? $defaultPort: $port);
+        $customPort  = (string)$url->getPort();
+        $defaultPort = 0 === strcasecmp((string)$url->getScheme(), 'https') ? '443' : '80';
+        if ('' !== $customPort && $defaultPort !== $customPort || $connect) {
+            $host .= ':' . ($customPort ?: $defaultPort);
         }
         // Do not overwrite explicitly set 'Host' header, see bug #16146
         if (!isset($headers['host'])) {
@@ -860,11 +860,11 @@ protected function prepareHeaders()
             ) {
                 $requestUrl = '';
             } else {
-                $requestUrl = $url->getScheme() . '://' . $host;
+                $requestUrl = (string)$url->getScheme() . '://' . $host;
             }
-            $path        = $url->getPath();
-            $query       = $url->getQuery();
-            $requestUrl .= (empty($path)? '/': $path) . (empty($query)? '': '?' . $query);
+            $path        = (string)$url->getPath();
+            $query       = (string)$url->getQuery();
+            $requestUrl .= ('' === $path ? '/' : $path) . ('' === $query ? '' : '?' . $query);
         }
 
         if ('1.1' == $this->request->getConfig('protocol_version')
@@ -990,9 +990,9 @@ protected function writeBody()
         $chunked    = isset($headers['transfer-encoding']);
         while ($position < $this->contentLength) {
             if (is_string($this->requestBody)) {
-                $str = substr($this->requestBody, $position, $bufferSize);
+                $str = (string)substr($this->requestBody, $position, $bufferSize);
             } elseif (is_resource($this->requestBody)) {
-                $str = fread($this->requestBody, $bufferSize);
+                $str = (string)fread($this->requestBody, $bufferSize);
             } else {
                 $str = $this->requestBody->read($bufferSize);
             }

HTTP/Request2/CookieJar.php

@@ -195,7 +195,7 @@ protected function checkAndUpdateFields(array $cookie, Net_URL2 $setter = null)
 
         if ($setter && !$this->domainMatch((string)$setter->getHost(), $cookie['domain'])) {
             throw new HTTP_Request2_MessageException(
-                "Domain " . $setter->getHost() . " cannot set cookies for "
+                "Domain " . (string)$setter->getHost() . " cannot set cookies for "
                 . $cookie['domain']
             );
         }
@@ -433,13 +433,13 @@ public function __serialize()
     /**
      * Constructs the object from serialized string
      *
-     * @param string $serialized string representation
+     * @param string $data string representation
      *
      * @return void
      */
-    public function unserialize($serialized)
+    public function unserialize($data)
     {
-        $this->__unserialize(unserialize($serialized));
+        $this->__unserialize(unserialize($data));
     }
 
     /**
@@ -524,10 +524,12 @@ public static function getRegisteredDomain($domain)
         if (empty(self::$psl)) {
             $path = '@data_dir@' . DIRECTORY_SEPARATOR . 'HTTP_Request2';
             if (0 === strpos($path, '@' . 'data_dir@')) {
-                $path = realpath(
-                    __DIR__ . DIRECTORY_SEPARATOR . '..'
-                    . DIRECTORY_SEPARATOR . '..' . DIRECTORY_SEPARATOR . 'data'
-                );
+                if (false === $path = realpath(__DIR__ . '/../../data')) {
+                    throw new HTTP_Request2_LogicException(
+                        "Unable to locate directory containing Public Suffix List",
+                        HTTP_Request2_Exception::READ_ERROR
+                    );
+                }
             }
             self::$psl = include_once $path . DIRECTORY_SEPARATOR . 'public-suffix-list.php';
         }

HTTP/Request2/MultipartBody.php

@@ -166,17 +166,17 @@ public function read($length)
                 $param = sprintf(
                     $this->_headerParam, $boundary, $this->_params[$this->_pos[0]][0]
                 ) . $this->_params[$this->_pos[0]][1] . "\r\n";
-                $ret    .= substr($param, $this->_pos[1], $length);
+                $ret    .= (string)substr($param, $this->_pos[1], $length);
                 $length -= min(strlen($param) - $this->_pos[1], $length);
 
             } elseif ($this->_pos[0] < $paramCount + $uploadCount) {
                 $pos    = $this->_pos[0] - $paramCount;
-                $header = sprintf(
+                $header = (string)sprintf(
                     $this->_headerUpload, $boundary, $this->_uploads[$pos]['name'],
                     $this->_uploads[$pos]['filename'], $this->_uploads[$pos]['type']
                 );
                 if ($this->_pos[1] < strlen($header)) {
-                    $ret    .= substr($header, $this->_pos[1], $length);
+                    $ret    .= (string)substr($header, $this->_pos[1], $length);
                     $length -= min(strlen($header) - $this->_pos[1], $length);
                 }
                 $filePos  = max(0, $this->_pos[1] - strlen($header));
@@ -194,13 +194,13 @@ public function read($length)
                 if ($length > 0) {
                     $start   = $this->_pos[1] + ($oldLength - $length) -
                                strlen($header) - $this->_uploads[$pos]['size'];
-                    $ret    .= substr("\r\n", $start, $length);
+                    $ret    .= (string)substr("\r\n", $start, $length);
                     $length -= min(2 - $start, $length);
                 }
 
             } else {
                 $closing  = '--' . $boundary . "--\r\n";
-                $ret     .= substr($closing, $this->_pos[1], $length);
+                $ret     .= (string)substr($closing, $this->_pos[1], $length);
                 $length  -= min(strlen($closing) - $this->_pos[1], $length);
             }
             if ($length > 0) {

HTTP/Request2/Observer/Log.php

@@ -111,8 +111,11 @@ public function __construct($target = 'php://output', array $events = [])
         }
         if (is_resource($target) || $target instanceof Log) {
             $this->target = $target;
-        } elseif (false === ($this->target = @fopen($target, 'ab'))) {
-            throw new HTTP_Request2_Exception("Unable to open '{$target}'");
+        } else {
+            if (false === $fp = @fopen($target, 'ab')) {
+                throw new HTTP_Request2_Exception("Unable to open '{$target}'");
+            }
+            $this->target = $fp;
         }
     }