Online PHP editor | perf for fKQAc

<?php class ErrorHandler { /*** The core: how to redact only sensitive parts *** ****************************************************/ // Redacting values happens either per key in an array element or name in an object property... public static $sMatchIndex= '#pass|time#i'; // ...or per function name. Both are PCRE patterns to match just any text. public static $sMatchFunction= '#connect$|login#i'; // Should every STRING data type be hidden? This is set anew per iterated stack trace function. private static $bRedactAllStrings= FALSE; // Handle a variable as per its data type, so an array or an object is recursively checked against // STRINGs, too. Side effect: make STRINGs look like literals. This method should be used on: // - every array element value, // - every object property value, // - optionally on every array element key (to later distinguish numeric indexes from textual). public static function as_per_type ( $vValue // Variable of any data type. , &$sType // Recognized data type; is needed later, too. , $vKey= '' // Potential array index to test for password-like name. ) { $sType= gettype( $vValue ); switch( $sType ) { case 'array': // Each key and value can have different data types. return self:: recurse_array( $vValue ); case 'object': // Each property can have different data types. return self:: recurse_object( $vValue ); case 'string': // Either all STRING values should be redacted, or the key has a name hinting for a password. if( self:: $bRedactAllStrings ) { return '**REDACTED_PER_FUNCTION**'; } else if( $vKey&& preg_match( self:: $sMatchIndex, $vKey ) ) { return '**REDACTED_PER_INDEX**'; } else return "'$vValue'"; // Original text, but as literal. default: // BOOLEAN, INTEGER, DOUBLE, RESOURCE, NULL and others: won't have passwords. return $vValue; } } // Handle a class instance's properties as per their data types, which can be arrays or objects again. public static function recurse_object ( $oInput // Object with any properties. ) { $aObj= get_object_vars( $oInput ); // Get all property names as array. $aOutput= array(); foreach( $aObj as $iObj=> $vObj ) { $vValue= self:: as_per_type( $oInput-> $iObj, $sType, $iObj ); $aOutput["$iObj ($sType)"]= $vValue; // Array key hints at value data type. } return $aOutput; } // Handle all array elements as per their data types, which can be objects or arrays again. public static function recurse_array ( $aInput // Array with any elements. ) { $aOutput= array(); foreach( $aInput as $iKey=> $vValue ) { $sKey= self:: as_per_type( $iKey, $sTypeKey ); // Element keys need no redaction... $sValue= self:: as_per_type( $vValue, $sTypeValue, $iKey ); // ...but values do. // Objects are converted to arrays by us, loosing the information of which class they were. // So we append the class name to the type hint in the array element key. if( $sTypeValue== 'object' ) $sTypeValue.= ' '. get_class( $vValue ); $aOutput["$sKey ($sTypeValue)"]= $sValue; // Array key hints at value data type. } return $aOutput; } // Parse the stack trace to redact potentially sensitive texts. public static function redact_backtrace ( $aTrace // Stack trace array to be parsed. ) { foreach( $aTrace as $iFunc=> $aFunc ) { self:: $bRedactAllStrings= FALSE; // Yet this is no sensitive function being called. // If this is a class instance we only need to redact by property name. if( isset( $aFunc['object'] ) ) { $aTrace[$iFunc]['object']= self:: recurse_object( $aTrace[$iFunc]['object'] ); } // Should the function's name match we'll recursively redact ANY string. if( isset( $aFunc['function'] ) ) { self:: $bRedactAllStrings= preg_match( self:: $sMatchFunction, $aFunc['function'] ); } // Now parse all parameters to potentially redact chosen ones. if( isset( $aFunc['args'] ) ) { $aTrace[$iFunc]['args']= self:: recurse_array( $aTrace[$iFunc]['args'] ); } } return $aTrace; } /*** Functional example: seeing the redacted data *** ****************************************************/ // Write log messages to wherever we want to. private static $bHeadersSent= FALSE; public static function err_log ( $aLog // Array to be saved. ) { if( !self:: $bHeadersSent ) { header( 'content-type: text/plain' ); // Don't let browser interpret output as HTML, preserve spaces. self:: $bHeadersSent= TRUE; // Only send header once. } print_r( $aLog ); // Imagine this being our log file. } /*** Demo: actually handling errors to get stack traces *** **********************************************************/ // Handler for uncaught errors. public static function err_handler ( $iError // See https://www.php.net/manual/en/errorfunc.constants.php , $sText // Error message. , $sFile // PHP file which was parsed. , $iLine // Line of error in PHP file. ) { // First one is this function, and we won't need this ever $aTrace= debug_backtrace(); unset( $aTrace[0] ); self:: err_log ( array ( 'where' => 'Error handler' , 'file' => $sFile , 'line' => $iLine , 'code' => $iError , 'msg' => $sText , 'trace' => self:: redact_backtrace( $aTrace ) ) ); } // Handler for uncaught exceptions. public static function exc_handler ( $e // Exception ) { self:: err_log ( array ( 'where' => 'Exception handler' , 'file' => $e-> getFile() , 'line' => $e-> getLine() , 'code' => $e-> getCode() , 'msg' => $e-> getMessage() , 'trace' => self:: redact_backtrace( $e-> getTrace() ) , 'class' => get_class( $e ) ) ); } } // For register_shutdown_function() a stack trace is not available. set_error_handler ( array( 'ErrorHandler', 'err_handler' ), E_ALL ); set_exception_handler ( array( 'ErrorHandler', 'exc_handler' ) ); /*** Demo: creating errors *** *****************************/ class Example { public $iNumber = 12345; // Integers won't be redacted. public $sPassword = 'secret'; // The property name should hint at a password. public $sInfo = 'a password?'; // No chance to identify this as password. public function login( $sUser, $sPass ) { echo( array() ); // Notice: Array to string conversion. } public function test( $a, $b ) { $this-> login( 'username', 'password' ); // Deeper nesting, recognition by function name. unset( $a['obj'] ); // Seeing the object once is enough for demonstration purposes. 1/ 0; // Error: Division by zero. 1+ $x; // Error: Undefined variable. throw new Exception( 'TestException' ); // Unhandled exception. } } // Building a rather complex parameter, using as many data types as possible. $aFirst= array ( 'string' => 'Text' , 'int' => 42 , 'float' => 3.1415 , 'bool' => TRUE , 'array' => array ( 'key' => 'value' , 'db_password' => 'adminadmin' // Array in array: should be redacted as per key text. ) , 'obj' => new DateTime // So we get an actual class instance. , 'pass' => '12345' // Should be redacted as per key text. , 110 => 'ordinal index' ); // Simple parameter: array with ordinal indexes only. $aSecond= array ( 'no index identifying a password' , 'username' ); // Outcome: // WHERE | REDACTION // --------------------------------|---------- // Example-> login() | // - $oTest-> sPassword | Index // - $sUser (1st function param) | Function // - $sPass (2nd function param) | Function // Example-> test() | // - $oTest-> sPassword | Index // - $a['array']['db_password'] | Index // - $a['obj']-> timezone | Index // - $a['pass'] | Index $oTest= new Example; $oTest-> test( $aFirst, $aSecond );

Version	System time (s)	User time (s)	Memory (MiB)
8.4.13	0.013	0.009	18.31
8.4.12	0.009	0.009	20.81
8.4.11	0.009	0.008	19.08
8.4.10	0.011	0.009	18.16
8.4.9	0.011	0.010	20.52
8.4.8	0.009	0.011	18.94
8.4.7	0.006	0.009	20.74
8.4.6	0.015	0.005	20.44
8.4.5	0.007	0.010	18.73
8.4.4	0.017	0.003	18.29
8.4.3	0.013	0.006	22.40
8.4.2	0.010	0.010	22.43
8.4.1	0.005	0.005	23.90
8.3.26	0.010	0.010	16.96
8.3.25	0.009	0.008	18.94
8.3.24	0.011	0.009	17.21
8.3.23	0.011	0.010	17.14
8.3.22	0.015	0.004	19.08
8.3.21	0.008	0.007	16.94
8.3.20	0.006	0.004	17.15
8.3.19	0.014	0.005	17.49
8.3.18	0.010	0.010	19.00
8.3.17	0.009	0.009	20.66
8.3.16	0.010	0.010	17.25
8.3.15	0.009	0.000	17.44
8.3.14	0.010	0.010	19.34
8.3.13	0.006	0.003	18.71
8.3.12	0.009	0.000	20.68
8.3.11	0.004	0.007	17.26
8.3.10	0.004	0.004	17.40
8.3.9	0.000	0.008	26.77
8.3.8	0.003	0.006	18.80
8.3.7	0.000	0.015	17.13
8.3.6	0.009	0.006	18.58
8.3.5	0.007	0.015	17.24
8.3.4	0.004	0.011	21.95
8.3.3	0.009	0.006	20.29
8.3.2	0.004	0.004	24.18
8.3.1	0.000	0.008	24.66
8.3.0	0.005	0.002	26.16
8.2.29	0.015	0.007	20.40
8.2.28	0.012	0.009	18.68
8.2.27	0.009	0.009	17.45
8.2.26	0.009	0.009	17.10
8.2.25	0.008	0.008	17.20
8.2.24	0.004	0.004	18.87
8.2.23	0.004	0.004	20.94
8.2.22	0.006	0.003	24.06
8.2.21	0.006	0.013	26.77
8.2.20	0.006	0.003	17.25
8.2.19	0.017	0.010	18.55
8.2.18	0.010	0.010	16.98
8.2.17	0.003	0.016	19.46
8.2.16	0.007	0.010	22.96
8.2.15	0.008	0.000	25.66
8.2.14	0.000	0.009	24.66
8.2.13	0.005	0.003	26.16
8.2.12	0.000	0.007	21.25
8.2.11	0.007	0.003	20.64
8.2.10	0.003	0.006	20.41
8.1.33	0.009	0.012	16.98
8.1.32	0.005	0.006	16.78
8.1.31	0.007	0.011	16.88
8.1.30	0.003	0.006	18.07
8.1.29	0.004	0.004	30.84
8.1.28	0.016	0.006	25.92
8.1.27	0.000	0.009	24.66
8.1.26	0.007	0.003	26.35
8.1.25	0.008	0.000	28.09
8.1.24	0.004	0.007	19.12
8.1.23	0.009	0.000	18.79
7.0.33	0.015	0.006	18.29
5.6.40	0.008	0.004	79.33