PHP 7.1 - Address PHPSadness #28?

9 years ago by Scott Arciszewski — view source

unread

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com

9 years ago by Sherif Ramadan — view source

unread

That's exactly what isset() does. isset/empty never raise errors.

On Tue, Aug 25, 2015 at 11:09 PM, Scott Arciszewski scott@paragonie.com
wrote:

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com

9 years ago by Scott Arciszewski — view source

unread

On Tue, Aug 25, 2015 at 11:11 PM, Sherif Ramadan
theanomaly.is@gmail.com wrote:

That's exactly what isset() does. isset/empty never raise errors.

On Tue, Aug 25, 2015 at 11:09 PM, Scott Arciszewski scott@paragonie.com
wrote:

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises https://paragonie.com

--

http://phpsadness.com/sad/28
https://3v4l.org/2vrKG

Not quite.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com

9 years ago by Sherif Ramadan — view source

unread

Yes, because all undefined variables in PHP are implicitly null. As far as
PHP is concerned, if it's null, it's by definition not defined. Also,
still not seeing where a NOTICE is involved here? Those functions never
give errors.

What is the usefulness of a function that merely returns true when a
variable is null?

On Tue, Aug 25, 2015 at 11:13 PM, Scott Arciszewski scott@paragonie.com
wrote:

On Tue, Aug 25, 2015 at 11:11 PM, Sherif Ramadan
theanomaly.is@gmail.com wrote:

That's exactly what isset() does. isset/empty never raise errors.

On Tue, Aug 25, 2015 at 11:09 PM, Scott Arciszewski <scott@paragonie.com

wrote:

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises https://paragonie.com

--

http://phpsadness.com/sad/28
https://3v4l.org/2vrKG

Not quite.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com

9 years ago by Scott Arciszewski — view source

unread

Because $x exists.

https://3v4l.org/kUJtP
Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises

On Tue, Aug 25, 2015 at 11:16 PM, Sherif Ramadan
theanomaly.is@gmail.com wrote:

Yes, because all undefined variables in PHP are implicitly null. As far as
PHP is concerned, if it's null, it's by definition not defined. Also,
still not seeing where a NOTICE is involved here? Those functions never give
errors.

What is the usefulness of a function that merely returns true when a
variable is null?

On Tue, Aug 25, 2015 at 11:13 PM, Scott Arciszewski scott@paragonie.com
wrote:

On Tue, Aug 25, 2015 at 11:11 PM, Sherif Ramadan
theanomaly.is@gmail.com wrote:

That's exactly what isset() does. isset/empty never raise errors.

On Tue, Aug 25, 2015 at 11:09 PM, Scott Arciszewski
scott@paragonie.com
wrote:

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises https://paragonie.com

--

http://phpsadness.com/sad/28
https://3v4l.org/2vrKG

Not quite.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com

9 years ago by Sherif Ramadan — view source

unread

I get that it exists. I'm asking what is the usefulness of having a
function that tells you the variable is null? In theory this sounds great
and is actually very doable by checking the symbol table for the hash.
However, in practice, who actually has a use for this? Null is a special
value in PHP, so if you're assigning it to a variable explicitly you should
already know you've initialized that variable and can safely rely on if ($x
=== null) in your code.

I'm not confused about the differences. I'm questioning the usefulness of
such a function.

On Tue, Aug 25, 2015 at 11:18 PM, Scott Arciszewski scott@paragonie.com
wrote:

Because $x exists.

https://3v4l.org/kUJtP
Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises

On Tue, Aug 25, 2015 at 11:16 PM, Sherif Ramadan
theanomaly.is@gmail.com wrote:

Yes, because all undefined variables in PHP are implicitly null. As far
as
PHP is concerned, if it's null, it's by definition not defined. Also,
still not seeing where a NOTICE is involved here? Those functions never
give
errors.

What is the usefulness of a function that merely returns true when a
variable is null?

On Tue, Aug 25, 2015 at 11:13 PM, Scott Arciszewski <scott@paragonie.com

wrote:

On Tue, Aug 25, 2015 at 11:11 PM, Sherif Ramadan
theanomaly.is@gmail.com wrote:

That's exactly what isset() does. isset/empty never raise errors.

On Tue, Aug 25, 2015 at 11:09 PM, Scott Arciszewski
scott@paragonie.com
wrote:

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises https://paragonie.com

--

http://phpsadness.com/sad/28
https://3v4l.org/2vrKG

Not quite.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com

9 years ago by Marco Pivetta — view source

unread

You are probably looking for something like array_key_exists($varName,get_defined_vars());: https://3v4l.org/XagEA

Marco Pivetta

http://twitter.com/Ocramius

http://ocramius.github.com/

I get that it exists. I'm asking what is the usefulness of having a
function that tells you the variable is null? In theory this sounds great
and is actually very doable by checking the symbol table for the hash.
However, in practice, who actually has a use for this? Null is a special
value in PHP, so if you're assigning it to a variable explicitly you should
already know you've initialized that variable and can safely rely on if ($x
=== null) in your code.

I'm not confused about the differences. I'm questioning the usefulness of
such a function.

On Tue, Aug 25, 2015 at 11:18 PM, Scott Arciszewski scott@paragonie.com
wrote:

Because $x exists.

https://3v4l.org/kUJtP
Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises

On Tue, Aug 25, 2015 at 11:16 PM, Sherif Ramadan
theanomaly.is@gmail.com wrote:

Yes, because all undefined variables in PHP are implicitly null. As far
as
PHP is concerned, if it's null, it's by definition not defined. Also,
still not seeing where a NOTICE is involved here? Those functions never
give
errors.

What is the usefulness of a function that merely returns true when a
variable is null?

On Tue, Aug 25, 2015 at 11:13 PM, Scott Arciszewski <
scott@paragonie.com

wrote:

On Tue, Aug 25, 2015 at 11:11 PM, Sherif Ramadan
theanomaly.is@gmail.com wrote:

That's exactly what isset() does. isset/empty never raise errors.

On Tue, Aug 25, 2015 at 11:09 PM, Scott Arciszewski
scott@paragonie.com
wrote:

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if
the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it
off
until 7.1.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises https://paragonie.com

--

http://phpsadness.com/sad/28
https://3v4l.org/2vrKG

Not quite.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com

9 years ago by Stanislav Malyshev — view source

unread

Hi!

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

Not sure what the use case would be for this. For most practical
purposes, isset/empty look completely fine.

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

It is simple, but not everything that is simple should be done.
Especially when we talking about adding core functions.

--
Stas Malyshev
smalyshev@gmail.com

9 years ago by Craig Francis — view source

unread

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

Not sure what the use case would be for this. For most practical
purposes, isset/empty look completely fine.

As a web (not core) developer I've been bitten by this a couple of times.

Both were fairly quick to identify/fix, but enough to be a little annoying.

If you want some example of where I got this wrong...

I have a config array for defining the websites CSP header, it starts something like:

$csp_directives = array(
        'default-src'  => array("'none'"),
        'form-action'  => array("'self'"),
        'style-src'    => array("'self'"),
        'img-src'      => array("'self'"),
        'script-src'   => array("'self'"),
    );

Depending on the website I may then add a key to define the 'report-uri', or I may set it to NULL to say that I don't want one. If it remains unset (key does not exist), then the framework provides a default. At first I used an isset() check, forgetting that setting to NULL would not be seen as "set".

When creating a URL builder that allowed the query string to be passed in as an array. If it defaulted to the current URL (with its query string values), then the passed in array might tell it to explicitly remove certain values by setting them to NULL. When I first wrote this, I did an isset() check when adding the current URL's query string to the array of query string values (which take precedence).

Neither were major problems, just a slight annoyance (i.e. identified and fixed before I committed the code). But I'm normally using an isset() as the proposed exists() function would work.

Hi!

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

Not sure what the use case would be for this. For most practical
purposes, isset/empty look completely fine.

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

It is simple, but not everything that is simple should be done.
Especially when we talking about adding core functions.

--
Stas Malyshev
smalyshev@gmail.com

9 years ago by Rowan Collins — view source

unread

Craig Francis wrote on 26/08/2015 12:23:

If you want some example of where I got this wrong...

I have a config array [...]

When creating a URL builder that allowed the query string to be passed in as an array [...]

Neither were major problems, just a slight annoyance (i.e. identified and fixed before I committed the code). But I'm normally using an isset() as the proposed exists() function would work.

Both of these example involve not an undefined variable, but an
undefined array key, which is a much less controversial scenario.

Fortunately, the function you are looking for already exists:
http://php.net/array_key_exists

Regards,

Rowan Collins
[IMSoP]

9 years ago by Craig Francis — view source

unread

Fortunately, the function you are looking for already exists: http://php.net/array_key_exists

It does, although I seem to have edited that out of my reply... was trying to keep it short ;-)

At the moment I'm out of examples (bit busy at the moment), but I do know that when I'm doing an isset() check, I'm really wanting to know if the variable (or key) exists, where NULL may be a perfectly valid value.

So there is a slight annoyance (and typically a quick fix) to identify if the variable has just been set to NULL.

Craig Francis wrote on 26/08/2015 12:23:

If you want some example of where I got this wrong...

I have a config array [...]

When creating a URL builder that allowed the query string to be passed in as an array [...]

Neither were major problems, just a slight annoyance (i.e. identified and fixed before I committed the code). But I'm normally using an isset() as the proposed exists() function would work.

Both of these example involve not an undefined variable, but an undefined array key, which is a much less controversial scenario.

Fortunately, the function you are looking for already exists: http://php.net/array_key_exists

Regards,

Rowan Collins
[IMSoP]

9 years ago by Rowan Collins — view source

unread

Craig Francis wrote on 26/08/2015 14:53:

Fortunately, the function you are looking for already exists: http://php.net/array_key_exists
It does, although I seem to have edited that out of my reply... was trying to keep it short ;-)

You could have kept the reply even shorter by omitting examples for
which the language already provides the solution ;)

At the moment I'm out of examples (bit busy at the moment), but I do know that when I'm doing an isset() check, I'm really wanting to know if the variable (or key) exists

Stop. As soon as you say "or key" you completely defeat your argument.
The whole thing is ONLY worth discussing if you can come up with an
example of an actual variable having unknown existence.

where NULL may be a perfectly valid value.

It's not that NULL isn't a valid value; it's that "doesn't exist" isn't
a meaningful state for a variable. It's like checking if the current
line number is greater than 100, it shouldn't mean anything to the
compiled program. See the SO answer I linked earlier for more thought
experiments along these lines.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Craig Francis — view source

unread

Craig Francis wrote on 26/08/2015 14:53:

Fortunately, the function you are looking for already exists: http://php.net/array_key_exists
It does, although I seem to have edited that out of my reply... was trying to keep it short ;-)

You could have kept the reply even shorter by omitting examples for which the language already provides the solution ;)

I provide examples to help explain that I (and I suspect most developers) default to using isset which works on either.

Just because there is a function, which does not exactly roll off the tongue (plus the fun of the needle/haystack ordering issue), does not mean it gets used (even if it is the correct thing to use).

At the moment I'm out of examples (bit busy at the moment), but I do know that when I'm doing an isset() check, I'm really wanting to know if the variable (or key) exists

Stop. As soon as you say "or key" you completely defeat your argument. The whole thing is ONLY worth discussing if you can come up with an example of an actual variable having unknown existence.

I say "or key" because developers use the isset function on both $var and $var['key']... yes, I know they are different, but when you are coding in PHP an isset check is an isset check (well it isn't, because the variable may technically exist).

If this is a problem, maybe PHP should raise a notice when isset is used on arrays?

where NULL may be a perfectly valid value.

It's not that NULL isn't a valid value; it's that "doesn't exist" isn't a meaningful state for a variable. It's like checking if the current line number is greater than 100, it shouldn't mean anything to the compiled program. See the SO answer I linked earlier for more thought experiments along these lines.

I think you have been spending too much time in C.

Most of the PHP code bases I've worked on set variables to NULL at some point (and they are not calling unset, because that isn't the intention).

9 years ago by James Gilliland — view source

unread

On Wed, Aug 26, 2015 at 12:07 PM, Craig Francis craig@craigfrancis.co.uk
wrote:

Craig Francis wrote on 26/08/2015 14:53:

On 26 Aug 2015, at 12:36, Rowan Collins rowan.collins@gmail.com
wrote:

where NULL may be a perfectly valid value.

It's not that NULL isn't a valid value; it's that "doesn't exist" isn't
a meaningful state for a variable. It's like checking if the current line
number is greater than 100, it shouldn't mean anything to the compiled
program. See the SO answer I linked earlier for more thought experiments
along these lines.

I think you have been spending too much time in C.

Most of the PHP code bases I've worked on set variables to NULL at some
point (and they are not calling unset, because that isn't the intention).

I think there is a misunderstanding here that is drawing this out.
Assigning meaning to NULL in any language is wrong. That is why it should
be treated as if the variable didn't exist and isset is appropriate.

This is a common pitfall in database design as well where you can allow
NULL as a field value. Assigning meaning to to that NULL value can quickly
lead to problem.

9 years ago by Rowan Collins — view source

unread

Craig Francis wrote on 26/08/2015 18:07:

I provide examples to help explain that I (and I suspect most developers) default to using isset which works on either.

Just because there is a function, which does not exactly roll off the tongue (plus the fun of the needle/haystack ordering issue), does not mean it gets used (even if it is the correct thing to use).

That's all very well, but what is the Internals community supposed to do
about it? Does the documentation need to be improved to point out that
there is a better function to use for this case?

I say "or key" because developers use the isset function on both $var and $var['key']... yes, I know they are different, but when you are coding in PHP an isset check is an isset check (well it isn't, because the variable may technically exist).

If this is a problem, maybe PHP should raise a notice when isset is used on arrays?

It's only a problem in the same way that using file_exists() is a
problem when you actually wanted the functionality of is_readable() -
both functions exist, and it's not the language's responsibility to
guess which you meant.

where NULL may be a perfectly valid value.
It's not that NULL isn't a valid value; it's that "doesn't exist" isn't a meaningful state for a variable. It's like checking if the current line number is greater than 100, it shouldn't mean anything to the compiled program. See the SO answer I linked earlier for more thought experiments along these lines.

I think you have been spending too much time in C.

Most of the PHP code bases I've worked on set variables to NULL at some point (and they are not calling unset, because that isn't the intention).

Perhaps my double negative made it unclear, so I will restate: there is
nothing wrong with setting a variable to NULL. There is also nothing
wrong with calling unset() on a plain variable, e.g. to make it obvious
to readers of the code that this variable should not be used below this
point.

There IS something wrong with any code which needs to distinguish which
of those two things happened, at run-time, because such code would be
incredibly fragile and hard to follow.

You could, if you wanted, emulate a boolean variable by using $foo=null
for true, and unset($foo) for false, but why not simply have a boolean
variable?

[Incidentally, I know barely any C, but program PHP for a living.]

Regards,

Rowan Collins
[IMSoP]

9 years ago by Craig Francis — view source

unread

Hi Rowan, Ryan, James, Bishop, Stas, Lester,

I've been giving this some thought over the weekend, and I agree with what you are all saying, but I think there is an element of confusion in the PHP programming community that needs to be addressed (somehow).

Yes, we probably should not be giving special meaning to NULL, as James mentions (although I probably still will).

And to be fair, I still can't think of an example where isset() can be used on a standard variable. All my examples are really array based, and better addressed with array_key_exists() - where Rowan does a great job of explaining the different examples on stackoverflow:

http://stackoverflow.com/a/18646568/2908724

Trying to get to route of the confusion though, I think it might be down to how the code can be read. So if we take:

<?php
$a = 1;
$b = NULL;
var_dump($a);
var_dump($b);
var_dump($c);
var_dump(isset($a));
var_dump(isset($b));
var_dump(isset($c));
?>

Or using an array instead:

<?php
$v['a'] = 1;
$v['b'] = NULL;
var_dump($v['a']);
var_dump($v['b']);
var_dump($v['c']);
var_dump(isset($v['a']));
var_dump(isset($v['b']));
var_dump(isset($v['c']));
?>

In both cases (and ignoring the undefined variable error), we get:

int(1)
NULL
NULL

bool(true)
bool(false)
bool(false)

But if we ignore the manual for a minute:

http://php.net/isset

I think a good comparison to what that code reads as, vs what PHP does, can be summarised as:

Read as: The variable is set (exists).

Executed as: The variables value is set.

Where NULL is not considered a set value.

So when we have:

if (isset($v['a'])) {
}

It's not saying that the key 'a' is set (exists) on the array $v.

Instead its saying that the key 'a' has a set value (not NULL) on the array $v.

Where this is made more of a common problem because there are many array_* functions, and they rarely come to mind when your not thinking of an array like operation.

This situation might be improved by re-wording the manual a bit.

Having headings like "This also work[s] for elements in arrays", makes it sound all inclusive and the function to use.

Whereas I'm starting to get the feeling that isset() is actually a function that probably should be avoided (I'll skip this tangent for now).

Personally I still like the idea of an exists(), because I feel that is how many programmers treat and use the isset() function - simply because they do use NULL as a valid value, and either haven't read the manual, or forget the exception that is mentioned on line 1 (something I've done a couple of times).

Although I realise it will take many years before anyone can start using it.

Craig

Craig Francis wrote on 26/08/2015 18:07:

I provide examples to help explain that I (and I suspect most developers) default to using isset which works on either.

Just because there is a function, which does not exactly roll off the tongue (plus the fun of the needle/haystack ordering issue), does not mean it gets used (even if it is the correct thing to use).

That's all very well, but what is the Internals community supposed to do about it? Does the documentation need to be improved to point out that there is a better function to use for this case?

I say "or key" because developers use the isset function on both $var and $var['key']... yes, I know they are different, but when you are coding in PHP an isset check is an isset check (well it isn't, because the variable may technically exist).

If this is a problem, maybe PHP should raise a notice when isset is used on arrays?

It's only a problem in the same way that using file_exists() is a problem when you actually wanted the functionality of is_readable() - both functions exist, and it's not the language's responsibility to guess which you meant.

where NULL may be a perfectly valid value.
It's not that NULL isn't a valid value; it's that "doesn't exist" isn't a meaningful state for a variable. It's like checking if the current line number is greater than 100, it shouldn't mean anything to the compiled program. See the SO answer I linked earlier for more thought experiments along these lines.

I think you have been spending too much time in C.

Most of the PHP code bases I've worked on set variables to NULL at some point (and they are not calling unset, because that isn't the intention).

Perhaps my double negative made it unclear, so I will restate: there is nothing wrong with setting a variable to NULL. There is also nothing wrong with calling unset() on a plain variable, e.g. to make it obvious to readers of the code that this variable should not be used below this point.

There IS something wrong with any code which needs to distinguish which of those two things happened, at run-time, because such code would be incredibly fragile and hard to follow.

You could, if you wanted, emulate a boolean variable by using $foo=null for true, and unset($foo) for false, but why not simply have a boolean variable?

[Incidentally, I know barely any C, but program PHP for a living.]

Regards,

Rowan Collins
[IMSoP]

9 years ago by Scott Arciszewski — view source

unread

Hi Rowan, Ryan, James, Bishop, Stas, Lester,

I've been giving this some thought over the weekend, and I agree with what you are all saying, but I think there is an element of confusion in the PHP programming community that needs to be addressed (somehow).

Yes, we probably should not be giving special meaning to NULL, as James mentions (although I probably still will).

And to be fair, I still can't think of an example where isset() can be used on a standard variable. All my examples are really array based, and better addressed with array_key_exists() - where Rowan does a great job of explaining the different examples on stackoverflow:

http://stackoverflow.com/a/18646568/2908724

Trying to get to route of the confusion though, I think it might be down to how the code can be read. So if we take:

<?php
$a = 1;
$b = NULL;
var_dump($a);
var_dump($b);
var_dump($c);
var_dump(isset($a));
var_dump(isset($b));
var_dump(isset($c));
?>

Or using an array instead:

<?php
$v['a'] = 1;
$v['b'] = NULL;
var_dump($v['a']);
var_dump($v['b']);
var_dump($v['c']);
var_dump(isset($v['a']));
var_dump(isset($v['b']));
var_dump(isset($v['c']));
?>

In both cases (and ignoring the undefined variable error), we get:

int(1)
NULL
NULL

bool(true)
bool(false)
bool(false)

But if we ignore the manual for a minute:

http://php.net/isset

I think a good comparison to what that code reads as, vs what PHP does, can be summarised as:

Read as: The variable is set (exists).

Executed as: The variables value is set.

Where NULL is not considered a set value.

So when we have:

if (isset($v['a'])) {
}

It's not saying that the key 'a' is set (exists) on the array $v.

Instead its saying that the key 'a' has a set value (not NULL) on the array $v.

Where this is made more of a common problem because there are many array_* functions, and they rarely come to mind when your not thinking of an array like operation.

This situation might be improved by re-wording the manual a bit.

Having headings like "This also work[s] for elements in arrays", makes it sound all inclusive and the function to use.

Whereas I'm starting to get the feeling that isset() is actually a function that probably should be avoided (I'll skip this tangent for now).

Personally I still like the idea of an exists(), because I feel that is how many programmers treat and use the isset() function - simply because they do use NULL as a valid value, and either haven't read the manual, or forget the exception that is mentioned on line 1 (something I've done a couple of times).

Although I realise it will take many years before anyone can start using it.

Craig

Craig Francis wrote on 26/08/2015 18:07:

I provide examples to help explain that I (and I suspect most developers) default to using isset which works on either.

Just because there is a function, which does not exactly roll off the tongue (plus the fun of the needle/haystack ordering issue), does not mean it gets used (even if it is the correct thing to use).

That's all very well, but what is the Internals community supposed to do about it? Does the documentation need to be improved to point out that there is a better function to use for this case?

I say "or key" because developers use the isset function on both $var and $var['key']... yes, I know they are different, but when you are coding in PHP an isset check is an isset check (well it isn't, because the variable may technically exist).

If this is a problem, maybe PHP should raise a notice when isset is used on arrays?

It's only a problem in the same way that using file_exists() is a problem when you actually wanted the functionality of is_readable() - both functions exist, and it's not the language's responsibility to guess which you meant.

where NULL may be a perfectly valid value.
It's not that NULL isn't a valid value; it's that "doesn't exist" isn't a meaningful state for a variable. It's like checking if the current line number is greater than 100, it shouldn't mean anything to the compiled program. See the SO answer I linked earlier for more thought experiments along these lines.

I think you have been spending too much time in C.

Most of the PHP code bases I've worked on set variables to NULL at some point (and they are not calling unset, because that isn't the intention).

Perhaps my double negative made it unclear, so I will restate: there is nothing wrong with setting a variable to NULL. There is also nothing wrong with calling unset() on a plain variable, e.g. to make it obvious to readers of the code that this variable should not be used below this point.

There IS something wrong with any code which needs to distinguish which of those two things happened, at run-time, because such code would be incredibly fragile and hard to follow.

You could, if you wanted, emulate a boolean variable by using $foo=null for true, and unset($foo) for false, but why not simply have a boolean variable?

[Incidentally, I know barely any C, but program PHP for a living.]

Regards,

Rowan Collins
[IMSoP]

--

--

The pieces are already in place, if this is a desired feature we just
have to bring them together.

array_key_exists()
get_defined_vars()

I do agree that it would be years before anyone got to use it (either
7.1.0 or 8.0.0). I don't see that as a bad thing, this was low-hanging
fruit.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com

9 years ago by Lester Caine — view source

unread

Personally I still like the idea of an exists(), because I feel that is how many programmers treat and use the isset() function - simply because they do use NULL as a valid value, and either haven't read the manual, or forget the exception that is mentioned on line 1 (something I've done a couple of times).

Although I realise it will take many years before anyone can start using it.

For those of us starting from a base of SQL data, NULL has always been
'not set' and so a binary field can have three values 'yes', 'no' and
'don't know' so when that data is transferred into PHP it has always
been natural to maintain that distinction so NULL === not set.

That this data exists in an array in PHP is a natural development, but
the object orientated/class approach would be that the data is loaded
into an object and the values in that object are no longer considered as
array elements, but discrete variables with all the overheads of getters
and setters, so an 'isset' to check if the value HAS been converted from
NULL to a live value is what is NOW the preferred style of working?
While the older style of working would simply directly read the elements
of the array?

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Personally I still like the idea of an exists(), because I feel that is how many programmers treat and use the isset() function - simply because they do use NULL as a valid value, and either haven't read the manual, or forget the exception that is mentioned on line 1 (something I've done a couple of times).

I'm still not sure how exists() would be anything other than an alias
for array_key_exists().

Once again, this is NOT about "using NULL as a valid value"; it's about
"using a variable's NON-EXISTENCE as a valid state". I think that is the
fundamental mistake people make - they think the "quirk" is that isset()
returns false for a null value, when that is the most rational part of
it. The "quirk" is that you don't get a warning when passing a
completely undefined variable to isset().

Obviously, that's not something that's likely to change, but as you say,
what we are really testing is "the value pointed at by some identifier".
In an array, that identifier can be dynamic, but in plain variable
scope, that identifier is something you the programmer have defined long
before the program executed, so its existence is never in question.

Looked at that way, the handling of unitialised variables is just a
side-effect of the handling of NULLs, since all unitialised variables
have a default/implicit value of NULL.

Regards,

--
Rowan Collins
[IMSoP]

9 years ago by Craig Francis — view source

unread

I'm still not sure how exists() would be anything other than an alias for array_key_exists().

I think that is the case as well (ish).

But considering that isset() seems to be the function that is used most of the time, I want to consider why that is the case.

Before last week, if someone asked me to write some code to see if a variable (or key) exists, I would have simply used isset() without thinking (this being a problem if the variable was set to NULL).

Whereas, if I was told to check if the variable was NULL, I would do an "$a === NULL" or is_null().

It might just be due to the functions name length or usage, while wanting to avoid undefined variable notices:

<?php

$search = (isset($_GET['q']) ? $_GET['q'] : '');

$search = (array_key_exists('q', $_GET) ? $_GET['q'] : '');

?>

The second one does also represent the variable in a different way (grep for "$_GET['q']", where it only appears 3 times in that code).

And the second one does not really check for the existence of $_GET, which in this case is probably ok.

Craig

Personally I still like the idea of an exists(), because I feel that is how many programmers treat and use the isset() function - simply because they do use NULL as a valid value, and either haven't read the manual, or forget the exception that is mentioned on line 1 (something I've done a couple of times).

I'm still not sure how exists() would be anything other than an alias for array_key_exists().

Once again, this is NOT about "using NULL as a valid value"; it's about "using a variable's NON-EXISTENCE as a valid state". I think that is the fundamental mistake people make - they think the "quirk" is that isset() returns false for a null value, when that is the most rational part of it. The "quirk" is that you don't get a warning when passing a completely undefined variable to isset().

Obviously, that's not something that's likely to change, but as you say, what we are really testing is "the value pointed at by some identifier". In an array, that identifier can be dynamic, but in plain variable scope, that identifier is something you the programmer have defined long before the program executed, so its existence is never in question.

Looked at that way, the handling of unitialised variables is just a side-effect of the handling of NULLs, since all unitialised variables have a default/implicit value of NULL.

Regards,

--
Rowan Collins
[IMSoP]

9 years ago by Rowan Collins — view source

unread

Craig Francis wrote on 02/09/2015 10:06:

I'm still not sure how exists() would be anything other than an alias for array_key_exists().

I think that is the case as well (ish).

But considering that isset() seems to be the function that is used most of the time, I want to consider why that is the case.

Before last week, if someone asked me to write some code to see if a variable (or key) exists,

Again, you insist on drawing a false equivalence to the different
concepts of variable and array key. This makes the following sentence
really easy to dismiss:

I would have simply used isset() without thinking (this being a problem if the variable was set to NULL).

No, it wouldn't be a problem if a VARIABLE was set to null, because
there is no practical difference between an unset variable and one set
to null, so you never need to ask which you have.

It would be a problem if you were testing for the existence of an
array key. There should probably be a prominent link to
array_key_exists() and property_exists() on the isset() manual page

The second one does also represent the variable in a different way (grep for "$_GET['q']", where it only appears 3 times in that code).

This is a more reasonable point, and I was pondering whether it would be
possible to allow a more natural syntax.

It would probably require a lot of "magic" in the engine, though,
because it would have to parse exists($foo['bar']['baz']) in some
special way to know that it needed to first find the value of
$foo['bar'], and then do an existence check for key 'baz', rather than
just treating the whole thing as an expression to resolve before
exists() was called. Evaluating things like exists(foo()[ bar() ])
correctly might get messy, as would giving a meaningful result or error
if you wrote exists($foo['bar'] + 1).

And the second one does not really check for the existence of $_GET, which in this case is probably ok.

I'm not really sure what you mean by this.

In summary, I don't think any language change is needed here, but
documentation needs to be improved. I will have a go at drafting a new
intro for the isset() page when/if I get time.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Craig Francis — view source

unread

In summary, I don't think any language change is needed here, but documentation needs to be improved. I will have a go at drafting a new intro for the isset() page when/if I get time.

Maybe... personally I don't see why anyone would be performing operations such as:

exists($foo['bar'] + 1)

In the same way that isset($a + 1) results in a parse error.

But then again, I don't think it's a quirk that "you don't get a warning when passing a completely undefined variable to isset()", as I don't see isset() as a normal function.

If you do treat is as a normal function, you might as well be using is_null() or "=== NULL".

For example, I think its quite common for MVC style frameworks to check if a variable exists (with isset) in a View (e.g. checking if a paginator exists after printing the table of results).

With the exists($foo['bar']['baz']) example, I just see that as a simple: if $foo exists, and contains the key 'bar', and contains the key 'baz' (no need to check values).

Like isset() I see exists() as a special function that isn't passing a variable in, but PHP doing some analysis of the thing in the brackets.

Craig

Craig Francis wrote on 02/09/2015 10:06:

I'm still not sure how exists() would be anything other than an alias for array_key_exists().

I think that is the case as well (ish).

But considering that isset() seems to be the function that is used most of the time, I want to consider why that is the case.

Before last week, if someone asked me to write some code to see if a variable (or key) exists,

Again, you insist on drawing a false equivalence to the different concepts of variable and array key. This makes the following sentence really easy to dismiss:

I would have simply used isset() without thinking (this being a problem if the variable was set to NULL).

No, it wouldn't be a problem if a VARIABLE was set to null, because there is no practical difference between an unset variable and one set to null, so you never need to ask which you have.

It would be a problem if you were testing for the existence of an array key. There should probably be a prominent link to array_key_exists() and property_exists() on the isset() manual page

The second one does also represent the variable in a different way (grep for "$_GET['q']", where it only appears 3 times in that code).

This is a more reasonable point, and I was pondering whether it would be possible to allow a more natural syntax.

It would probably require a lot of "magic" in the engine, though, because it would have to parse exists($foo['bar']['baz']) in some special way to know that it needed to first find the value of $foo['bar'], and then do an existence check for key 'baz', rather than just treating the whole thing as an expression to resolve before exists() was called. Evaluating things like exists(foo()[ bar() ]) correctly might get messy, as would giving a meaningful result or error if you wrote exists($foo['bar'] + 1).

And the second one does not really check for the existence of $_GET, which in this case is probably ok.

I'm not really sure what you mean by this.

In summary, I don't think any language change is needed here, but documentation needs to be improved. I will have a go at drafting a new intro for the isset() page when/if I get time.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Rowan Collins — view source

unread

But then again, I don't think it's a quirk that "you don't get a
warning when passing a completely undefined variable to isset()", as I
don't see isset() as a normal function.

What I meant is that people seem to interpret isset() as having a special case for null values, and want that special case to go away. I was suggesting you could instead see it as a version of is_null with a special case to stop it complaining about non-existent variables. This makes sense, since in practice a "non-existent" variable (note: not array item or property) always has the value "null".

It's also a "quirk" in the sense that suppressing that warning for a plain variable is an odd thing to want - if you've assigned meaning to that variable you should be initialising it somewhere so that your code is more readable and less fragile.

With the exists($foo['bar']['baz']) example, I just see that as a
simple: if $foo exists, and contains the key 'bar', and contains the
key 'baz' (no need to check values).

Like isset() I see exists() as a special function that isn't passing a
variable in, but PHP doing some analysis of the thing in the brackets.

OK, thinking about it some more, I can see it would be convenient to have a special syntax for array_key_exists() which looked the same as a normal array-index access; basically some magic parser rule that turned exists($foo['bar']) into array_key_exists($foo, 'bar') Looking at the generated opcodes, that could indeed be quite similar to how isset() works internally.

If such a function/syntax were built, I would argue that a plain exists($foo) should be a parse error, because there is no key to check, only a single value - it would be equivalent to array_key_exists($foo, null) or array_key_exists(null, $foo). For that reason, it should probably have a name that made its purpose clearer, too, but I'm not sure what that would be.

I admit this does partly come down to pre-judging any code that would use empty($foo) as "bad", but the warning issued when you access an uninitialised variable already makes such a judgement. And if people are already confused by the relationship between isset() is_null(), empty(), etc, adding yet another variant is likely to hurt rather than help.

Regards,

Rowan Collins
[IMSoP]

9 years ago by lauri.kentta@gmail.com — view source

unread

If you've assigned meaning to that variable you should be initialising
it somewhere so that your code is more readable and less fragile.

+1

It would be nice to have variable declarations (such as var $foo or
TypeName $foo) and notices when using (especially assigning)
non-declared variables. They already did this for JavaScript...

--
Lauri Kenttä

9 years ago by Craig Francis — view source

unread

It's also a "quirk" in the sense that suppressing that warning for a plain variable is an odd thing to want - if you've assigned meaning to that variable you should be initialising it somewhere so that your code is more readable and less fragile.

I don't think it is an odd thing to suppress a warning for a plain variable.

For example, on a blog you may have a list of articles, which is used by both the admin and users, but the (MVC) controller might set an $add_url, so a link to add a new article can be displayed...

Controller:

if (IS_ADMIN) {
$this->set('add_url', '/admin/articles/add/');
}

View:

&lt;?php if (exists($add_url)) { ?>
<p><a href="&lt;?= html($add_url) ?>">Add article</a>
&lt;?php } ?>

Admittedly in this case the controller could be updated to something like the following:

$this->set('add_url', (IS_ADMIN ? '/admin/blog/add/' : NULL));

But it gets more complicated when you can have multiple things appearing (or not) on a page.

I admit this does partly come down to pre-judging any code that would use empty($foo) as "bad", but the warning issued when you access an uninitialised variable already makes such a judgement. And if people are already confused by the relationship between isset() is_null(), empty(), etc, adding yet another variant is likely to hurt rather than help.

I completely agree that we shouldn't be adding more functions lightly, and it's why I'm still not completely sold on the idea myself.

I think the main two negatives is adding yet another function (confusion), and that it will take a long time before developers can use it everywhere.

But, the thing that wins it over for me is that isset() seems to be (mis)used by a lot of developers as a function to check if the variable exists (not that the variable has a value).

So if implemented, in a few years (decades?), I suspect the exists() function would be the first function that comes to mind, instead of array_key_exists() and isset().

Actually, in a few years time, if developers did their NULL checks with "=== NULL", then isset(), is_null(), array_key_exists(), and empty() could all be deprecated :-)

Craig

But then again, I don't think it's a quirk that "you don't get a
warning when passing a completely undefined variable to isset()", as I
don't see isset() as a normal function.

What I meant is that people seem to interpret isset() as having a special case for null values, and want that special case to go away. I was suggesting you could instead see it as a version of is_null with a special case to stop it complaining about non-existent variables. This makes sense, since in practice a "non-existent" variable (note: not array item or property) always has the value "null".

It's also a "quirk" in the sense that suppressing that warning for a plain variable is an odd thing to want - if you've assigned meaning to that variable you should be initialising it somewhere so that your code is more readable and less fragile.

With the exists($foo['bar']['baz']) example, I just see that as a
simple: if $foo exists, and contains the key 'bar', and contains the
key 'baz' (no need to check values).

Like isset() I see exists() as a special function that isn't passing a
variable in, but PHP doing some analysis of the thing in the brackets.

OK, thinking about it some more, I can see it would be convenient to have a special syntax for array_key_exists() which looked the same as a normal array-index access; basically some magic parser rule that turned exists($foo['bar']) into array_key_exists($foo, 'bar') Looking at the generated opcodes, that could indeed be quite similar to how isset() works internally.

If such a function/syntax were built, I would argue that a plain exists($foo) should be a parse error, because there is no key to check, only a single value - it would be equivalent to array_key_exists($foo, null) or array_key_exists(null, $foo). For that reason, it should probably have a name that made its purpose clearer, too, but I'm not sure what that would be.

I admit this does partly come down to pre-judging any code that would use empty($foo) as "bad", but the warning issued when you access an uninitialised variable already makes such a judgement. And if people are already confused by the relationship between isset() is_null(), empty(), etc, adding yet another variant is likely to hurt rather than help.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Rowan Collins — view source

unread

Craig Francis wrote on 09/09/2015 16:54:

I don't think it is an odd thing to suppress a warning for a plain variable.

For example, on a blog you may have a list of articles, which is used by both the admin and users, but the (MVC) controller might set an $add_url, so a link to add a new article can be displayed...

Controller:
 if (IS_ADMIN) {
$this->set('add_url', '/admin/articles/add/');
}

View:
 &lt;?php if (exists($add_url)) { ?>
<p><a href="<?= html($add_url) ?>">Add article</a>
<?php } ?>

I can see that this makes nice terse View code, and is a reasonable use
of existing isset() - though I can't see it needs to be anything other
than isset(), because if $add_url was null, you wouldn't want to echo
anything.

Arguably, it would be better handled with the vars placed into an array
rather than materialising as PHP variables. The helper functions defined
by the framework (here assumed to be called exists() and html()) could
then extract items from that array, making it just as succinct:

 &lt;?php if (exists('add_url')) { ?>
<p><a href="&lt;?= html('add_url') ?>">Add article</a>
 &lt;?php } ?>

Boom, no more worries about undefined variables.

I'm pretty sure this is how templating languages like Smarty and Twig
work - "{$foo}" in Smarty compiles to something like "echo
$this->vars['foo'];"

Presumably under the hood, the set() method in your example has to
instead do some magic with variable variables - $$foo syntax - which is
like the ugly cousin of an associative array. Either that, or eval(),
which as everyone knows is evil()! :P

But, the thing that wins it over for me is that isset() seems to be (mis)used by a lot of developers as a function to check if the variable exists (not that the variable has a value).

Do you mean that it is misused with arrays? Because with plain variables
it does exactly what it needs to do.

Or do you mean that developers are using unset() to represent a state
distinct from null? Because if so, that is their mistake, not the
subsequent use of isset(). I have yet to see a single use case where
distinguishing between these two states is necessary or sensible.

Actually, in a few years time, if developers did their NULL checks with "=== NULL", then isset(), is_null(), array_key_exists(), and empty() could all be deprecated :-)

is_null() makes sense because it's a type-checking function: it goes
with is_bool(), is_int(), etc.
empty() is a bit odd because it's basically an inverted boolean cast,
but does make quite readable code.
You've just demonstrated yourself a situation where isset() can't be
replaced with === null or is_null() because you want to suppress the
Notice.
I am fundamentally opposed to a function which distinguishes between
unset($foo) and $foo=null for reasons I have stated several times.

So the only thing left is replacing array_key_exists with some nicer
syntax so you can write some_keyword($foo['bar']) rather than
array_key_exists('bar', $foo)

Regards,

Rowan Collins
[IMSoP]

9 years ago by Craig Francis — view source

unread

Craig Francis wrote on 09/09/2015 16:54:
I don't think it is an odd thing to suppress a warning for a plain variable.

For example, on a blog you may have a list of articles, which is used by both the admin and users, but the (MVC) controller might set an $add_url, so a link to add a new article can be displayed...

Controller:
if (IS_ADMIN) {
$this->set('add_url', '/admin/articles/add/');
}

View:
&lt;?php if (exists($add_url)) { ?>
<p><a href="<?= html($add_url) ?>">Add article</a>
<?php } ?>
I can see that this makes nice terse View code, and is a reasonable use of existing isset() - though I can't see it needs to be anything other than isset(), because if $add_url was null, you wouldn't want to echo anything.

Arguably, it would be better handled with the vars placed into an array rather than materialising as PHP variables. The helper functions defined by the framework (here assumed to be called exists() and html()) could then extract items from that array, making it just as succinct:

<?php if (exists('add_url')) { ?>
<p><a href="<?= html('add_url') ?>">Add article</a>
<?php } ?>

Boom, no more worries about undefined variables.

It depends, the exists() was simply to show the proposed function in place, and html() was more to show a cut down version of htmlentitites.

Most frameworks I've used typically have plain variables in the View (templating engines are a bit different)... but I have used a $v[] array on my own project before (many years ago), but it got quite ugly... especially when it's often passing multi-dimentional arrays (or objects) into the View.

So yes, in the example above, an isset() would work, but I was trying to show why I don't think it's odd to "suppress a warning for a plain variable" when it does not exist.

I'm pretty sure this is how templating languages like Smarty and Twig work - "{$foo}" in Smarty compiles to something like "echo $this->vars['foo'];"

Presumably under the hood, the set() method in your example has to instead do some magic with variable variables - $$foo syntax - which is like the ugly cousin of an associative array. Either that, or eval(), which as everyone knows is evil()! :P

Actually, I think they do use an array to store the values, then do an extract() to make them local variables in the View (keeping the variable names shorter and easier to read).

The code I'm looking at today uses a function to include the View, such as:

function script_run() {
	if (func_num_args() > 1) {
		extract(func_get_arg(1));
	}
	require(func_get_arg(0));
}

script_run($view_path, $variables);

But, the thing that wins it over for me is that isset() seems to be (mis)used by a lot of developers as a function to check if the variable exists (not that the variable has a value).

Do you mean that it is misused with arrays? Because with plain variables it does exactly what it needs to do.

Or do you mean that developers are using unset() to represent a state distinct from null? Because if so, that is their mistake, not the subsequent use of isset(). I have yet to see a single use case where distinguishing between these two states is necessary or sensible.

Yes, it is mis-used with arrays, but I would still argue that a single exists() function would work better for all of these examples when testing if they exist.

And I would hope that no-one was using an unset() as something distinctly different from a NULL value.

Actually, in a few years time, if developers did their NULL checks with "=== NULL", then isset(), is_null(), array_key_exists(), and empty() could all be deprecated :-)

is_null() makes sense because it's a type-checking function: it goes with is_bool(), is_int(), etc.

empty() is a bit odd because it's basically an inverted boolean cast, but does make quite readable code.

You've just demonstrated yourself a situation where isset() can't be replaced with === null or is_null() because you want to suppress the Notice.

I am fundamentally opposed to a function which distinguishes between unset($foo) and $foo=null for reasons I have stated several times.

So the only thing left is replacing array_key_exists with some nicer syntax so you can write some_keyword($foo['bar']) rather than array_key_exists('bar', $foo)

I agree that we should not have a function that distinguishes between unset($foo) and $foo=null.

But I believe the isset() function is often used just to see if the variable exists (i.e. avoiding the undefined variable notice), and having the extra "and is not NULL" logic does not help in this situation.

It's just the "and is not NULL" logic causing problems when the developer should be using array_key_exists.

So if we look at it from the point of view of "lets kill isset" (just humour me for a second)...

The proposed exists() function should be the go to function, and used to avoid undefined variable notices (e.g. the View variables).

Then to check if the variable is NULL, just do a "=== NULL", which is much better because it will complain if the variable is undefined (or you get your wish, and isset() could be updated to raise a notice for undefined variables).

Anyway, I'm off on holiday tomorrow, so I doubt I will be able to follow up for a couple of weeks.

Craig

9 years ago by Rowan Collins — view source

unread

Craig Francis wrote on 14/09/2015 12:46:

So yes, in the example above, an isset() would work, but I was trying to show why I don't think it's odd to "suppress a warning for a plain variable" when it does not exist.

Yes, and I agree that this example shows a reasonable use of isset(). It
works fine as it is, and doesn't need any functionality adding or removing.

Actually, I think they do use an array to store the values, then do an extract() to make them local variables in the View (keeping the variable names shorter and easier to read).

Incidentally, I've always wondered why extract() would ever be useful in
modern code, but I agree that if you don't want/need the overhead of a
separate template compiler, that approach actually works quite nicely.

Yes, it is mis-used with arrays, but I would still argue that a single exists() function would work better for all of these examples when testing if they exist.

And I would hope that no-one was using an unset() as something distinctly different from a NULL value.

If you don't need the ability to distinguish unset() from null, what
would any of these examples gain from using exists() over isset()?

I agree that we should not have a function that distinguishes between unset($foo) and $foo=null.

But if you take the "is null" check out of isset(), that's exactly what
you have; that's why the "is null" check is there in the first place.

That's why I said I could agree with an exists() function (not under
that name) as a nicer syntax for array_key_exists(), but not as a
replacement for isset().

You could have an exists() function which works like array_key_exists()
on an array, but identically to isset() on plain variables, but I think
that would just be confusing. Hence my suggestion that any new function
throw an error if given something other than an array access.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Craig Francis — view source

unread

Hi Rowan,

I think I've said everything I can from my point of view (and my understanding of how other developers see and use the isset function).

And that's not to say I disagree with what your saying Rowan, I'm just voicing my view that I think a language with exists() would be nicer than the slightly messy isset()... but each to their own.

Maybe Scott (who proposed the idea) might follow up with more information?

Otherwise I'm off on holiday, see you in a few weeks :-)

Craig

Craig Francis wrote on 14/09/2015 12:46:

So yes, in the example above, an isset() would work, but I was trying to show why I don't think it's odd to "suppress a warning for a plain variable" when it does not exist.

Yes, and I agree that this example shows a reasonable use of isset(). It works fine as it is, and doesn't need any functionality adding or removing.

Actually, I think they do use an array to store the values, then do an extract() to make them local variables in the View (keeping the variable names shorter and easier to read).

Incidentally, I've always wondered why extract() would ever be useful in modern code, but I agree that if you don't want/need the overhead of a separate template compiler, that approach actually works quite nicely.

Yes, it is mis-used with arrays, but I would still argue that a single exists() function would work better for all of these examples when testing if they exist.

And I would hope that no-one was using an unset() as something distinctly different from a NULL value.

If you don't need the ability to distinguish unset() from null, what would any of these examples gain from using exists() over isset()?

I agree that we should not have a function that distinguishes between unset($foo) and $foo=null.

But if you take the "is null" check out of isset(), that's exactly what you have; that's why the "is null" check is there in the first place.

That's why I said I could agree with an exists() function (not under that name) as a nicer syntax for array_key_exists(), but not as a replacement for isset().

You could have an exists() function which works like array_key_exists() on an array, but identically to isset() on plain variables, but I think that would just be confusing. Hence my suggestion that any new function throw an error if given something other than an array access.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Rowan Collins — view source

unread

Craig Francis wrote on 14/09/2015 16:57:

Hi Rowan,

I think I've said everything I can from my point of view (and my understanding of how other developers see and use the isset function).

And that's not to say I disagree with what your saying Rowan, I'm just voicing my view that I think a language with exists() would be nicer than the slightly messy isset()... but each to their own.

Maybe Scott (who proposed the idea) might follow up with more information?

Otherwise I'm off on holiday, see you in a few weeks :-)

Yes, I think we're going round in circles at this point, and should see
if anyone else has an opinion that would move the discussion forward.

Have a nice holiday! :)

Regards,

Rowan Collins
[IMSoP]

9 years ago by Robert Williams — view source

unread

I really don’t understand the resistance to this type of change, other than knowing that a fix will necessarily be messy. The fact is, PHP distinguishes between a variable that has been declared but defined to null and one that hasn’t been declared. The value of the first may safely be assigned, compared, referenced, and so on, while attempting any of those things on the second one results in an error message. The question of whether relying on those differences is philosophically acceptable is a moot point: they are different, period, and the rest of the language should acknowledge and support that — just as do most other languages with a similar design (e.g., JavaScript).

Beyond that, the philosophical debate is clearly settled in the real world of code. One glance through the comments on the isset() documentation page, not to mention the bug reports and the discussions on the lists, shows that people have long struggled with this. Based on code I’ve seen from fairly experienced developers, the confusion around this has probably led to millions of production bugs, many of them in the areas of validation and security. When a particular aspect of a language's design promotes bugs to such an extent, it needs to be revisited.

I’m not sure what a good solution is, however. Changing isset() will have consequences: making it return true for null will magically fix a lot of bugs out there, but it’ll also break code where the programmer understood how it really works. Adding a parameter to control it is ugly. Extending defined() to variables might be a good choice, as it’s already doing for constants exactly what’s needed for variables; the only downside is that it would be better-named declared() than defined(), but that’s the case for constants, too, so I can live with it. For now, isset() and empty() can continue to work as-is but perhaps with a notice and deprecation when used with undeclared variables.

--
Bob W.

9 years ago by Stanislav Malyshev — view source

unread

Hi!

Just because there is a function, which does not exactly roll off the
tongue (plus the fun of the needle/haystack ordering issue), does not
mean it gets used (even if it is the correct thing to use).

As it looks to me, in order to fix the fact that people are
not using existing function (which completely satisfies the
requirements), because people do not read the docs, the proposal is to
create another function (which nobody knows about without reading the
docs) that does the same? If so, I'm not sure how that is supposed to
help anything.

--
Stas Malyshev
smalyshev@gmail.com

9 years ago by Lester Caine — view source

unread

Just because there is a function, which does not exactly roll off the

tongue (plus the fun of the needle/haystack ordering issue), does not
mean it gets used (even if it is the correct thing to use).

As it looks to me, in order to fix the fact that people are
not using existing function (which completely satisfies the
requirements), because people do not read the docs, the proposal is to
create another function (which nobody knows about without reading the
docs) that does the same? If so, I'm not sure how that is supposed to
help anything.

We have had discussions before over the various 'complaint' sites and
how in many cases the 'complaints' get more prominence than the actual
current 'solution'. Yet again, what is needed rather than a manual
describing each function individually since for example one would not
look under 'array_' for a solution to this problem, is a 'best practice'
example which can help even those of us who are stuck with legacy
practices which COULD be improved with better modern samples.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Stanislav Malyshev — view source

unread

Hi!

Depending on the website I may then add a key to define the
'report-uri', or I may set it to NULL to say that I don't want one.

NULL is not the best value to for this, but the function you're looking
for is array_key_exists().

--
Stas Malyshev
smalyshev@gmail.com

9 years ago by Craig Francis — view source

unread

Depending on the website I may then add a key to define the
'report-uri', or I may set it to NULL to say that I don't want one.

NULL is not the best value to for this, but the function you're looking
for is array_key_exists().

What would be the best value?

And the array_key_exists() function has already been mentioned (and is what I'm using... but I cut that bit out to keep the reply shorter, as mentioned in my previous email).

9 years ago by Ryan Pallas — view source

unread

On Wed, Aug 26, 2015 at 11:08 AM, Craig Francis craig@craigfrancis.co.uk
wrote:

Depending on the website I may then add a key to define the
'report-uri', or I may set it to NULL to say that I don't want one.

NULL is not the best value to for this, but the function you're looking
for is array_key_exists().

What would be the best value?

And the array_key_exists() function has already been mentioned (and is
what I'm using... but I cut that bit out to keep the reply shorter, as
mentioned in my previous email).

What I would do is use false to me I don't want this, and null/not set to
mean do the default, and a value to mean this is what I want. Then you end
up with:

if (!isset($val)) {
// do the default
} elseif (!empty($val)) {
// do something with $val
}
// else do nothing because I don't want this thing

On the other hand, if I'm designing something using null as a special case
value, then I would just use array_key_exists and is_null (these calls
exist a few times in my code) but generally speaking I try not to give null
special meaning.

9 years ago by Rowan Collins — view source

unread

Scott Arciszewski wrote on 26/08/2015 04:09:

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

My answer to this would be a very loud "no".

I have written at length about this on StackOverflow:
http://stackoverflow.com/a/18646568/157957

In short, if your algorithm relies on knowing whether, anywhere in the
preceding scope, a variable has been implicitly "declared" (in as much
as that concept has any meaning in PHP), that algorithm is broken. If it
relies on knowing whether a variable has been changed from its initial
state, then isset() will do exactly what you want.

Note that many people looking for examples of this "problem" start
mentioning array keys and object properties; we have functions for
checking existence of those, so please don't waste time on such examples.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Bishop Bettini — view source

unread

On Tue, Aug 25, 2015 at 11:09 PM, Scott Arciszewski scott@paragonie.com
wrote:

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

Agree with Rowan as he mentioned here:
http://stackoverflow.com/a/18646568/2908724

Perhaps this idiom will solve your use case?

array_key_exists('x', compact('x')));

https://3v4l.org/TLdZI

Cheers,
bishop

9 years ago by Benoit Schildknecht — view source

unread

Bumping in (senior dev here).

I think this function must be implemented.

Every dev I've seen in my company use isset() as its name says it does :
"Is this variable set, whatever its value is ?". That's exactly how we use
it in the code. And we use "null" a lot too. For us, "null" is a value
like another. The irony is, we set a variable to "null" mostly to avoid
"Undefined variable" notices. To explain it shortly, when we see "$var =
null;", we know that it is a variable that could not be changed in the
scope.

It is logical (at least for us) that "isset()" returns true when a
variable exists, even if its value is "null". I've yet to discover a
security bug in our code, but we have very sensitive applications, in
which we widely use "isset()". It could cause a lot of damages (maybe it
already has, but haven't noticed yet), and "exists()" would prevent them.

Since we have "array_key_exists()", which is basically "exists()" for an
array element, I don't see why "exists()" shouldn't be implemented. I
don't see the logic here.

"isset()" and "empty()" wouldn't change, there couldn't any BC. Excepted
for the userland code, in which there would already be an "exists()"
function.

Regards,

Le Wed, 26 Aug 2015 05:09:43 +0200, Scott Arciszewski
scott@paragonie.com a écrit:

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises https://paragonie.com

--
Utilisant le logiciel de courrier d'Opera : http://www.opera.com/mail/

9 years ago by Rowan Collins — view source

unread

Benoit Schildknecht wrote on 15/09/2015 18:04:

Every dev I've seen in my company use isset() as its name says it does
: "Is this variable set, whatever its value is ?". That's exactly how
we use it in the code.

Can you give an example of code where you do not know this until the
code runs - i.e. where "is this variable set?" is something you can hang
business logic on?

Somewhere where it would make sense to write something like this, if the
exists() function were available for plain variables:

if ( exists($a) ) {
...
} elseif ( is_null($a) ) {
...
} else {
...
}

The irony is, we set a variable to "null" mostly to avoid "Undefined
variable" notices. To explain it shortly, when we see "$var = null;",
we know that it is a variable that could not be changed in the scope.

Why is that ironic? That's exactly what the notice is telling you to do

assign an explicit value to your variables to say "this variable
intentionally left blank".

It is logical (at least for us) that "isset()" returns true when a
variable exists, even if its value is "null". I've yet to discover a
security bug in our code, but we have very sensitive applications, in
which we widely use "isset()". It could cause a lot of damages (maybe
it already has, but haven't noticed yet), and "exists()" would prevent
them.

Again, I challenge you - or anyone - to give a single, theoretical,
example of such a bug. The only ones I can think of are made worse by
use of exists(), not better, because they allow programmers to write
extremely brittle code, as in the example I posted earlier of
refactoring to extract code into a new function:

...
unset($foo);
refactored_code($foo);
...

function refactored_code($bar)
{
if exists($bar) // oops, this is always true
...
}

This is why I'm so opposed to the suggestion, because not only can
people use it to write really bad code, I've yet to see an example where
it would lead to good code. If we're interested in the reputation of the
language, adding facilities for doing things badly doesn't sound like a
good move.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Robert Williams — view source

unread

Can you give an example of code where you do not know this until the code runs - i.e. where "is this variable set?" is something you can hang business logic on?

Somewhere where it would make sense to write something like this, if the exists() function were available for plain variables:

if ( exists($a) ) {
...
} elseif ( is_null($a) ) {
...
} else {
...
}

Sure. It’s not common with controlling business logic (fortunately), but it is very common in error-handling code. I already mentioned the templates, but an even more common scenario is config files that are supposed to just define a bunch of standalone variables, which is a very common pattern. If you’re writing code that relies on those variables, or you’re writing the code that’s supposed to pull that file in to begin with, it’s smart to make sure all the variables actually got set, and if not, display an error to the user to go fix the config. Sometimes, isset() works for this if combined with a null check, but it fails in cases where null is an acceptable value.

-Bob

9 years ago by Rowan Collins — view source

unread

Robert Williams wrote on 16/09/2015 18:27:

an even more common scenario is config files that are supposed to just
define a bunch of standalone variables, which is a very common
pattern. If you’re writing code that relies on those variables, or
you’re writing the code that’s supposed to pull that file in to begin
with, it’s smart to make sure all the variables actually got set, and
if not, display an error to the user to go fix the config. Sometimes,
isset() works for this if combined with a null check, but it fails in
cases where null is an acceptable value.

OK, that's a reasonable example, though I'd say it's still very much an
edge case. It requires the following to all be true:

the config file defines bare variables rather than array or object keys
the variable in question has null as a valid value
the variable in question is mandatory, with no default value

I will admit that exists($foo) would be useful in that situation, but it
doesn't feel to me like such a common or useful scenario that it
justifies the language changing to suit that design, rather than the
design changing to suit the language.

Regards,

Rowan Collins

9 years ago by Stig Bakken — view source

unread

Hi everybody,

Would anyone be interested in adding another helper like
isset()/empty() simply called exists() which would return true if the
variable is defined in the current scope (i.e. without raising an
E_NOTICE)?

It should be a simple change to add this function but it's too late
for 7.0 so, if there is any interest, I would respectfully put it off
until 7.1.

After reading through this thread (most of it anyway), the thing that
strikes me is that many people expect the wrong thing from isset(). I
believe that the reason for this is that the name isset() is slightly
misleading. I wouldn't blame anyone for assuming that it acually
checks that a variable "is set", and not even considering the corner
case of when it does exist with a null value.

What lesson can we learn from that? Short and sweet names sometimes
lead to problems, if they do not precisely convey the actual
semantics.

I would much rather see a function called something like
is_variable_defined(), to avoid running into the same trap with
exists(). No room for assumptions that lead you to not check the docs.

Stig

9 years ago by Rowan Collins — view source

unread

Stig Bakken wrote on 18/09/2015 14:44:

What lesson can we learn from that? Short and sweet names sometimes
lead to problems, if they do not precisely convey the actual
semantics.

I would much rather see a function called something like
is_variable_defined(), to avoid running into the same trap with
exists(). No room for assumptions that lead you to not check the docs.

I agree 100% with this. If we do add a new function, which I'm still
not entirely convinced of the need for, we should be very explicit about
what it does, and very careful in naming it.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Robert Williams — view source

unread

No. There's no reason for null to exist if isset returns true on null.
If one doesn't understand that, one should not be using null at all.

Nonsense. It just means that one isn’t using null the way you do. You’re saying people shouldn’t be programming to distinguish between declared-but-defined-null and undeclared. But the fact is, from user land-POV, null is a value, and it’s frequently used where a variable needs to be defined with a sentinel value that clearly flags the variable as not having an otherwise valid value. The alternative is to use magic values as sentinels instead — e.g., 0 or 9999 for an integer, or empty-string for a string — but that causes all sorts of bugs when those values are only rarely legitimate versus never legitimate (see: Y2K). Magic values also tend to make code less readable.

Programmers have been using null like this for decades, e.g., C strings. It’s also quite common in databases, where, at least with MySQL, null happens to translate directly to PHP null when data are queried. And frankly, I see nothing wrong with recognizing that a variable exists in the symbol table but has no real value versus one that doesn’t even exist. It’s like the difference between having a car in your garage that is out of gas versus not having a car at all.

And again, PHP itself clearly distinguishes the two states everywhere but in isset() and empty(). IMHO, isset() and empty() are both misguided (beyond the null problem) because they attribute meaning to certain values of user land data, and they bundle several checks together. And they do all that without any domain knowledge controlling what values are or are not valid. If I’m counting eggs in my basket, zero is most definitely a valid value, while it’s not if I’m looking at the weight of a specific egg. PHP shouldn’t be making that decision for me in blanket form. Yet, that’s exactly what these functions do. As I said, they’re misguided, right up there with register_globals. (They lead to similar security bugs, too.)

Incidentally, what’s the difference, philosophically, between these two:

$foo = null;
var_dump(isset($foo)); //false

$foo = [‘bar’ => null];
var_dump(array_key_exists(‘bar’, $foo)); //true

If a variable that’s declared yet defined as null can’t “exist” as decided by isset(), why can an array element that’s declared yet defined as null “exist” as decided by array_key_exists()? Is the symbol table really that different from an array? It gets weirder yet where the two start to overlap in user land:

$foo = null;
var_dump(isset($foo)); //false
var_dump(array_key_exists('foo', $GLOBALS)); //true

$array = ['foo' => null];
$bar = null;
extract($array);
print_r(get_defined_vars()); //now have both $foo and $bar in scope

I don’t understand how anyone can see this as being consistent and self-explanatory, especially if we assume the words ‘exists’ and ‘set’ to have their traditional programming meanings (‘set’ meaning to assign a value and ‘exists’ meaning there’s an in-scope entry with the given name in the symbol table).

--
Bob W.

9 years ago by Robert Williams — view source

unread

No. There's no reason for null to exist if isset returns true on
null. If one doesn't understand that, one should not be using
null at all.

Nonsense.

Oh, thank you! That's a good start for a polite argument.

Apologies, no offense intended, but you do realize that you essentially said that any programmer who doesn't agree with what you profess is the One True Way, is doing it wrong? This type of statement has been made several times in this thread, and it's annoyingly dismissive. Given how PHP has evolved, and how many architectural inconsistencies there are, I'm not so sure there is a One True Way.

It just means that one isn’t using null the way you do.

No, it means one isn't using null the way it is intended to be used in
the language.

It really seems to me that PHP is fundamentally confused in how it wants to treat null. It clearly has the concept of an undefined variable: variable existence is referenced throughout the docs along with null-ness (e.g., the docs for isset() say it returns true if the variable, "is set and is not null" and if the variable, "exists and has value other than null"), it throws undefined errors for using variables that aren't defined, and it even has an unset() construct that leads to an undefined variable that fails isset(). Yet, it also defines undefined variables as being null -- which is it? Even is_null() is caught up in this: it will throw an undefined error if passed an undefined variable while also returning true. Why an error for a value that supposedly fits the definition of null?

functions do. As I said, they’re misguided, right up there with
register_globals. (They lead to similar security bugs, too.)

Please do not bring "security" as some superman-argument, expecting
that is you say "security" your arguments suddenly become so much
stronger. There's no special security problem here besides the trivial
fact that if you write buggy code in security-sensitive context, you
get security issue. So please leave security out of it.

Re-read what I said. I didn't say any of this was a security bug. I said it can lead to security bugs. And that is, I think, undeniably true because null handling in PHP is clearly confusing to a lot of folks, and any confusing API (buggy or not) will tend to lead to application-level security bugs if that API is often used in security contexts. Hasn't a bunch of work recently been completed with hashing and encryption APIs for this very reason? Same idea.

I also mentioned the security issue parenthetically, as a side-note, so please don't accuse me of overplaying the security card. My main point there was that isset() and empty() were ill-conceived.

And again, who's doing the bashing here? Ease off a bit -- I'm really not trying to attack you at all.

If a variable that’s declared yet defined as null can’t “exist” as
decided by isset(), why can an array element that’s declared yet
defined as null “exist” as decided by array_key_exists()? Is the

Because these are two different functions doing different things.
That's like asking why strlen returns string length but fopen does not
return file length.

Clearly, they're different functions, but I think they're doing something different only so far as they operate in different contexts. Their purposes are closely related, IMHO, which is why they keep being paired together in this thread and why people keep using one when they should be using the other. If we allow that, then it would make sense for them to function similarly.

Okay, so to bring this home:

1 PHP defines null to include variables that have "not been set"
2 PHP also defines null to include variables that have been unset()
3 Variables can be explicitly set to null

All of these are null. And yet:

4 Calling isset(), which is documented to return true on null, on 1, 2, and 3 will only return true for 3.

How's this consistent?

Returning true on 1 and 2 suggests clearly that PHP does distinguish between undefined variables and null variables. This supposition is also supported by numerous mentions of these concepts in the docs and by the various undefined error messages that PHP produces. It goes off the tracks, however, when it returns true for 3.

IMHO, PHP went south in its design when it tried to declare undefined variables as null. They're not; they're undefined. Beyond isset/empty/is_null, however, the rest of PHP seems to accept this. Even the three deviant functions tacitly acknowledge the issue in their documentation, e.g. with isset()'s existence requirement as part of a compound statement ("exists and has value other than null"). PHP falls short, however, in not providing a way to independently test each part of that compound statement.

Ideally, we would reverse course on the undefined-is-null declaration then adjust isset/empty/is_null accordingly, but I realize that opens a large can of worms. Providing a simple exists() function doesn't solve the root issue, but it at least gives a way to directly test for a very real condition: the first half of the isset() compound requirements statement. If we can do that, we will have what we need to mostly regard the null design error as an academic matter with relatively little real-world consequence going forward.

Regards,
Bob

9 years ago by Rowan Collins — view source

unread

Robert Williams wrote on 15/09/2015 10:38:

variable existence is referenced throughout the docs along with null-ness (e.g., the docs for isset() say it returns true if the variable, "is set and is not null" and if the variable, "exists and has value other than null")

I want to pull this out for a bit more attention: one of the crucial
questions in this thread is whether the language is wrong, or just the
documentation. There's one particularly wonky passage someone found in
the manual that makes it sound like unitialised variables have an
intrinsic type when accessed, rather than just referring the reader to
the rules on casting null to any given type; when I have time, I will
find and reword it.

Documentation can be fixed without backwards- and forwards-compatibility
concerns, although the parsed copy of the documentation cached in the
heads of the programming community is harder to update.

Changing the language to match the documentation, on the other hand,
would be rather odd, so how the manual describes the language can only
ever take second place to what the language actually does.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Robert Williams — view source

unread

I want to pull this out for a bit more attention: one of the crucial questions in this thread is whether the language is wrong, or just the documentation. There's one particularly wonky passage someone found in the manual that makes it sound like unitialised variables have an intrinsic type when accessed, rather than just referring the reader to the rules on casting null to any given type; when I have time, I will find and reword it.

The docs suggest that uninitialized variables are null, and the above makes it sound like that’s what you’re stating, too. But they’re not: they don’t exist at all, they’re uninitialized. If they were null, then PHP wouldn’t spit out errors about undefined variable accesses because it would see them as the same thing as a (perfectly legal) null variable access. Differentiating these various cases is currently a little wonky, requiring some extra boilerplate code and/or ugly-ish workarounds (like calling get_defined_vars()). I don’t think it’s a huge gap in the language, but it’s a definite gap, and it’s one that many less-experienced programmers fall right into with safety checks.

-Bob

9 years ago by Rowan Collins — view source

unread

Robert Williams wrote on 15/09/2015 10:38:

Okay, so to bring this home:

1 PHP defines null to include variables that have "not been set"
2 PHP also defines null to include variables that have been unset()
3 Variables can be explicitly set to null

All of these are null. And yet:

4 Calling isset(), which is documented to return true on null, on 1, 2, and 3 will only return true for 3.

How's this consistent?

What you've just described there is the functionality some people want
to add. Currently, isset() will return false for all three cases,
precisely because they are treated as equivalent. So you've actually
neatly demonstrated why it is consistent for isset() to behave as it does.

IMHO, PHP went south in its design when it tried to declare undefined variables as null. They're not; they're undefined. Beyond isset/empty/is_null, however, the rest of PHP seems to accept this.

"The rest of PHP" makes no such distinction. If you evaluate "$b = $a +
1" when $a is not defined, PHP behaves exactly as if you had written
"$a=null; $b = (int)$a + 1;", but the runtime will issue a notice (not,
as you keep claiming, an error) that you forgot to write the "$a=null"
part and might want to add it in or check if you've mistyped the
variable name.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Stanislav Malyshev — view source

unread

Hi!

Apologies, no offense intended, but you do realize that you
essentially said that any programmer who doesn't agree with what you
profess is the One True Way, is doing it wrong? This type of
statement has been made several times in this thread, and it's
annoyingly dismissive. Given how PHP has evolved, and how many
architectural inconsistencies there are, I'm not so sure there is a
One True Way.

You make it sound like I'm founding a new religion here. But I am just
explaining how this particular feature was designed to work. And yes,
for many features, there is the right way and wrong way to use it.
Nobody prohibits you from using the "wrong" way - in fact, hackers are
famous for doing that and achieving many spectacular results. But you
must realize if you do that, you have to familiarize yourself with the
consequences. In this case, if the consequences surprise you, I can not
fault the language.

Re-read what I said. I didn't say any of this was a security bug. I
said it can lead to security bugs. And that is, I think, undeniably

Anything can lead to security bugs. "+" operator can lead to a security
bug if used incorrectly. But so far there was no specific case outlined
that makes it particularly susceptible to security issues (unlike, say,
register_globals). So let's leave security out of it.

Clearly, they're different functions, but I think they're doing
something different only so far as they operate in different
contexts. Their purposes are closely related, IMHO, which is why they

They are related, but still different, and this difference needs to be
understood. isset() deals with variable values, array_key_exists() deals
with hash keys - that's why it has "key" in its name - and not values.
It is important to understand the difference.

1 PHP defines null to include variables that have "not been set" 2

No, not really, PHP does not define that. Rather, PHP has a special
value "null", which purpose is to be special value that returns "empty"
when checked with isset/empty. That's its purpose in life.
When asking for the value of non-existing variable, null value is
substituted. Also, null value is used to initialize variables lacking
other initializers.

PHP also defines null to include variables that have been unset()

No, PHP does not define anything like that. In fact, unset() means the
variable is destroyed and does not exist (of course, excepting refcount
etc. issues). Null does not feature in this story at all.

Variables can be explicitly set to null

That is true.

4 Calling isset(), which is documented to return true on null, on 1,

isset() is documented to return true on null? Where? That must be a bug
in documentation. In fact, http://php.net/isset clearly states:

Determine if a variable is set and is not NULL.

Returning true on 1 and 2 suggests clearly that PHP does distinguish
between undefined variables and null variables. This supposition is

That's not a correct description. Correct description is that if you ask
for a variable and it is not defined, null value is substituted. There's
a difference between "coffee and tea is the same thing" and "if you
don't have coffee, I'll drink tea" :)

IMHO, PHP went south in its design when it tried to declare undefined
variables as null. They're not; they're undefined. Beyond

That's your opinion. Mine, for example, is that it is a very useful
feature. In any case, PHP is implemented this way, and there's no way to
change it while the result remaining PHP language. If it makes PHP
unsuitable for you, sorry, but that's what PHP is. I don't think it
makes a lot of sense to discuss changing basic semantics of PHP engine -
I don't think this is going to happen.

Stas Malyshev
smalyshev@gmail.com

9 years ago by Robert Williams — view source

unread

1 PHP defines null to include variables that have "not been set" 2

No, not really, PHP does not define that.

It does according to the docs:

"A variable is considered to be null if […] it has not been set to any value yet."

http://php.net/manual/en/language.types.null.php http://php.net/manual/en/language.types.null.php

I think that’s more sloppy documentation (declared versus defined) as opposed to literal truth, but….

PHP also defines null to include variables that have been unset()

No, PHP does not define anything like that. In fact, unset() means the
variable is destroyed and does not exist (of course, excepting refcount
etc. issues). Null does not feature in this story at all.

I’ll refer again to the above documentation:

"A variable is considered to be null if […] it has been unset().”

This one can’t be chalked up to sloppy writing. Here, something is just plain wrong.

All of the above does touch on the gap, though. Ignoring the docs and looking at actual behavior of PHP, it’s clear that an undefined variable behaves differently from one assigned null. One can easily tell if a variable is null, but one can’t easily tell if a variable is just not defined. That strikes me as an oversight especially given the fact that one can use unset() to make a variable once again undefined. Put another way, we can create and destroy, but we can’t identify existence. It’s a small gap in language design. There are workarounds, but they’re workarounds.

That's not a correct description. Correct description is that if you ask
for a variable and it is not defined, null value is substituted.

That happens in the end, but not before an error is thrown. I want a one-keyword way to know that a variable is not defined without having to trip an error.

That's your opinion. Mine, for example, is that it is a very useful
feature. In any case, PHP is implemented this way, and there's no way to
change it while the result remaining PHP language. If it makes PHP
unsuitable for you, sorry, but that's what PHP is. I don't think it
makes a lot of sense to discuss changing basic semantics of PHP engine -
I don't think this is going to happen.

At this point, I don’t think anyone is proposing changing the semantics of the engine, just filling a gap that lets one determine whether a variable has already been defined -- like one can already do for constants, functions, classes, array elements, and object properties. You may or may not have use for the functionality, but other people do, and adding a clean way to determine how PHP would regard a given variable doesn’t strike me as in any way promoting bad code even if you don’t personally use it.

-Bob

9 years ago by Rowan Collins — view source

unread

looking at actual behavior of PHP, it’s clear that an undefined
variable behaves differently from one assigned null. One can easily
tell if a variable is null, but one can’t easily tell if a variable is
just not defined.

This strikes me as close to self-contradictory - you can't easily tell the difference precisely because 99% of the time there is no difference.

If you think an undefined variable shouldn't raise a notice, then let's discuss improvements to the way such messages are emitted so that it would be easier to adjust that behaviour.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 15/09/2015 08:52:

Saying 'use the array_key_exists() assumes you also
know which array the variable is hiding in?

Why would a variable ever be "hiding in" an array? If you're using an
associative array, you should know where that array is; if you're not,
what exactly are you trying to find?

--
Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

Lester Caine wrote on 15/09/2015 08:52:

Saying 'use the array_key_exists() assumes you also
know which array the variable is hiding in?

Why would a variable ever be "hiding in" an array? If you're using an
associative array, you should know where that array is; if you're not,
what exactly are you trying to find?

If you are working with an array then fine, but we are talking about
variables here not arrays. isset($i) is a local variable so 'which array
is the variable is hiding in' applies?

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 16/09/2015 11:35:

If you are working with an array then fine, but we are talking about
variables here not arrays. isset($i) is a local variable so 'which array
is the variable is hiding in' applies?

No, it's not hiding in any array, and I agree that array_key_exists() is
not the right function to use.

However, I have still yet to see any use case where it would be
necessary or useful to detect - at runtime, rather than in static
analysis for debugging - that $i has never been initialised, vs it
having been initialised to null.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

Possibly the same for property_exists(), since some people think
stdClass objects look prettier than associative arrays, though I've
never understood the attraction myself.

I think that may well be the point here. Since all of my data comes into
PHP as associative arrays, that is the way I handle them, and being SQL
data, NULL IS a valid state for an element. Some people seem to think
there is some advantage in pulling the array into individual elements of
a class, and this where I am getting lost since these elements then
exist as variables in the class not easy to handle elements of an array?
That was the basis of my 'hidden in an array' point ...

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 16/09/2015 13:37:

Since all of my data comes into
PHP as associative arrays, that is the way I handle them, and being SQL
data, NULL IS a valid state for an element.

Sure, and since you've got an array, you can use array_key_exists if you
need to.

Some people seem to think there is some advantage in pulling the array
into individual elements of a class, and this where I am getting lost
since these elements then exist as variables in the class not easy to
handle elements of an array? That was the basis of my 'hidden in an
array' point ...

They don't become variables, they become properties; you can use
property_exists to look for them.

9 years ago by Lester Caine — view source

unread

Yes, we can, and I repeatedly have. With the caveat that, like Perl, we
raise an error if you try to use it on a plain variable rather than an
array key or object property reference. My only remaining concern is
that with that error in place, is "exists" the right name, and if not,
what would be better?

Found the little gem I was trying to remember ... extract()
Import variables into the current symbol table from an array
THAT was the process I've seen used in libraries resulting in 'NULL'
variables where appropriate and yes I appreciate this is all very far
fetched, since one could check things on the array side, but it is where
I've seen mistakes with handling the generated variables.

Is extract compatible with the current way of working?

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 16/09/2015 16:19:

Found the little gem I was trying to remember ... extract()
Import variables into the current symbol table from an array
THAT was the process I've seen used in libraries resulting in 'NULL'

Yes, extract(), like variable-variables ($$foo), can dynamically create
local variables, and therefore lead to cases where you don't know, until
runtime, whether a variable exists at all.

I appreciate this is all very far
fetched, since one could check things on the array side, but it is where
I've seen mistakes with handling the generated variables

Indeed. Until Craig's template / View example, I'd never seen extract()
actually used for anything remotely defensible, but it is there, so it's
a fair question whether we consider it a "bad" function in some way.

My inclination is that even if you're using such a mechanism to
dynamically define variables, it would still a bad idea to write code
like this:

if ( exists($a) ) {
...
} elseif ( is_null($a) ) {
...
} else {
// use $a
}

There is clearly a lot of hidden meaning here - what exactly are the
three states of the variable representing, in domain terms? - which
would be better exposed with another variable or something. For
instance, if we make $a an object, you might instead write this:

if ( $a->is_dummy_data() ) {
...
} elseif ( $a->is_system_default() ) {
...
} else {
// use $a->value
}

If the extract() was being used to make the view code more readable in
the first place, the exists() defeats rather than assists in that
objective, in my opinion.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

If the extract() was being used to make the view code more readable in
the first place, the exists() defeats rather than assists in that
objective, in my opinion.

My own interface with it has been via templating, where the layout is
stored in a database and as elements are download any 'NULL' values
either get replaced by a default, or ignored. It's not the best of
coding practice, but it works ...

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 16/09/2015 16:48:

If the extract() was being used to make the view code more readable in
the first place, the exists() defeats rather than assists in that
objective, in my opinion.
My own interface with it has been via templating, where the layout is
stored in a database and as elements are download any 'NULL' values
either get replaced by a default, or ignored. It's not the best of
coding practice, but it works ...

OK... and how would you use the exists() function in this framework, if
it existed? How would you want an uninitialised variable to behave,
other than in the same way as a NULL value?

9 years ago by Robert Williams — view source

unread

Absolutely. However, in order to need a dynamic check of variable existence, you must also be using non-existence as a second sentinel value. You must be saying "if the variable has never been assigned to, that means state X; if it's been assigned a null value, that means state Y". My argument is that using undefined variables like that is a bad choice of sentinel value, and if you need more than one sentinel value in the first place, you probably need a more complex data type (a struct-like object with separate state and value properties, for instance).

I agree it’s bad practice to use “undefined” as a valid sentinel “value", but it’s something that needs to be checked in error handling sometimes. As an example, go back to template systems that just define a bunch of variables within the view’s scope: the view code needs to verify that it actually got needed variables before it uses them so that it can fail gracefully if it didn't. This is just defensive programming, not bad architecture (at least on the view’s part…), and while it can be avoided by having the template system use arrays or objects, if you don’t control the template system as the view writer, then you work with what you’re given.

-Bob

9 years ago by Robert Williams — view source

unread

Robert Williams wrote on 16/09/2015 18:37:

The docs suggest that uninitialized variables are null, and the above makes it sound like that’s what you’re stating, too. But they’re not: they don’t exist at all, they’re uninitialized.

As soon as you access them, you will get the value null. You can do everything with them that you could do with a variable initialised to null.

As soon as you access them, you get an error, and then you get null. Yeah, one could register an error handler, but that’s a lot of fuss just to see if a variable really exists or just exists because you accessed it, and it pulls you out of context. Basically, there’s no (clean, very simple) way to identify that you’re about to step in a pile of poo before you step in it.

If they were null, then PHP wouldn’t spit out errors about undefined variable accesses

Once again - PHP does not spit out errors when you access an undefined variable. It spits out Notices in case you've done it by mistake. Maybe you're thinking of JavaScript?

In our shop, notices are most definitely errors. And notices aren’t graceful error handling. I think PHP also also regards them as errors (thus the ability to catch them with an error handler) - it’s just a lower grade of error.

I don’t think it’s a huge gap in the language, but it’s a definite gap, and it’s one that many less-experienced programmers fall right into with safety checks.

There is no safety check required. If you care about eliminating the Notices, then initialise all your variables properly, and you will never have an uninitialised variable (so a runtime check for one would be pointless). If you don't care about eliminating the Notices, then simply treat uninitialised variables as Null, and they will work absolutely fine.

That’s great in theory, but in practice, programmers’ code must frequently collaborate with other people’s code, often code from outside their organization. In these cases, they don’t have the control to just fix the problem on the other side. And in some cases, like with config files that set bare variables, there’s really nothing wrong with the way it’s done that needs to be fixed. Some folks might prefer to use a different model, but that’s just a preference.

Adding an exists() function doesn’t go against the foundation of PHP. It just fills a gap. Again, I can define variables, and I can destroy them, but I can’t tell if they’ve already been defined. In a dynamic language like PHP, I really don’t understand how folks can not see that as an oversight. Further, we can do this for everything else… constants, array elements, object properties, functions, and even classes, so why not variables? There's even have precedence for controlling behavior based on variable existence in extract(), so PHP itself does it in ways that directly affect the user, but the user can’t do it. Yes, there are workarounds for the gap. There are almost always workarounds in a sufficiently developed language, but that doesn’t mean there isn’t a gap.

-Bob

9 years ago by Rowan Collins — view source

unread

On Sep 16, 2015, at 11:14, Rowan Collins rowan.collins@gmail.com
wrote:

Robert Williams wrote on 16/09/2015 18:37:

If they were null, then PHP wouldn’t spit out errors about undefined
variable accesses

Once again - PHP does not spit out errors when you access an
undefined variable. It spits out Notices in case you've done it by
mistake. Maybe you're thinking of JavaScript?

In our shop, notices are most definitely errors. And notices aren’t
graceful error handling. I think PHP also also regards them as errors
(thus the ability to catch them with an error handler) - it’s just a
lower grade of error.

I think the term "error" in "error handler" is just a misleading historical accident, like "type hint" (which does produce an error!). I can certainly sympathise with wanting to run without any notices - they are generally hints for writing better code. In the vast majority of cases, though, that means working out why the variable is undefined, otherwise you might as well just use the @ operator to say "I don't care about this notice".

That’s great in theory, but in practice, programmers’ code must
frequently collaborate with other people’s code, often code from
outside their organization. In these cases, they don’t have the control
to just fix the problem on the other side.

This still implies that there's a common problem to fix, which I just don't believe. The number of places where the following all hold true must be vanishingly small:

the third-party code is dumping bare variables into your scope (globals, or a file-level include are the only mechanisms I can think of)
they do so unreliably, in the sense that different variables will be set under different circumstances
you/they have used null as a value which needs to be positively asserted, not taken as the default state, so that isset() does not meet your needs
you have no way of presetting the variable to some other terminal value to detect when it is explicitly set

And in some cases, like with
config files that set bare variables, there’s really nothing wrong with
the way it’s done that needs to be fixed. Some folks might prefer to
use a different model, but that’s just a preference.

Well, there's still a fix beyond "ignore the notices by using exists()" - you could preset all the variables to their default values, or a sentinel "illegal value", before including the config file.

Still, at least it's a concrete example at last.

In a dynamic
language like PHP, I really don’t understand how folks can not see
that as an oversight.

I've not found evidence that any other language treats variables in the proposed way, so it really doesn't feel like an "oversight" to me, but a request for a new and quite unusual feature.

Further, we can do this for everything else…
constants, array elements, object properties, functions, and even
classes, so why not variables?

A fair question; one of the big differences with things like classes and functions is that they're declared, once, and then fixed; their scope is also likely to cross module boundaries - a class definition is accessible from any scope, for instance. A local variable has none of these properties - on the one hand it has no explicit declaration, only "initialisation" the first time you write to it; and on the other, it is a label that exists only inside the current function.

But yes, from a completeness point of view, it does make some sense. My fear is that the people who don't understand why isset() does what it does will think it's the answer to some imaginary problem, and end up more confused than ever when their code breaks. If the function had been proposed as a debugging aid, maybe filed under Reflection or debug_variable_is_initialised, I might have more sympathy, but that's not how it's been presented.

There's even have precedence for
controlling behavior based on variable existence in extract(), so PHP
itself does it in ways that directly affect the user, but the user
can’t do it.

I can see where you're coming from, but other than not having such a function pair at all (which I'd personally be fine with - they feel like holdovers from a bygone age) I'm not sure how else compact()/extract() could work. It's not so much that they check variable existence, as that the list of uninitialised variables is infinite, so would be tricky to work with...

Regards,

Rowan Collins
[IMSoP]

9 years ago by Robert Williams — view source

unread

I can certainly sympathise with wanting to run without any notices - they are generally hints for writing better code. In the vast majority of cases, though, that means working out why the variable is undefined, otherwise you might as well just use the @ operator to say "I don't care about this notice”.

Agree completely, and for that reason, we also ban @ except in those rare cases where PHP forces the issue (that’s for other discussions...). Indeed, this often comes up with short-lived issues that are resolved quickly. For example, a config file is missing a variable, so the user is told what it is, what kind of value to supply, and they goes off to fix it, or the user is warned and the app goes on with a default. But, all this happens without throwing errors and without having to detour through the global error handler. In other cases, the fix may not be so available, like with the template system that creates variables in the view’s scope; here, the goal is just to gracefully catch the condition and then define a default (and maybe complain to the author).

This still implies that there's a common problem to fix, which I just don't believe. The number of places where the following all hold true must be vanishingly small:

the third-party code is dumping bare variables into your scope (globals, or a file-level include are the only mechanisms I can think of)

This seems to be pretty common with template systems, especially older ones. It’s also common with config files.

they do so unreliably, in the sense that different variables will be set under different circumstances

More common than different variables in different circumstances is the missing variable. Consider the user who’s setting up an instance of an application that uses a config file with bare variables — very easy to forget something, or type the name wrong, or whatever. Or the programmer writing a plugin for a poorly documented application who wants to be sure the runtime environment of the plugin is what’s expected. Really, a lot of the same situations where one might need to check the existence of an array element or object property, except that the item to be checked happens to be a plain old variable.

you/they have used null as a value which needs to be positively asserted, not taken as the default state, so that isset() does not meet your needs

Well, it’s not so important that null represents a non-default state, as that it represents any state. Often, null could just signal that a default should be used, but with an existence check, the programmer can be confidant that something/someone explicitly chose that option. In the case of a config, for example, you can be sure the user chose a particular value (which may be the default) versus having missed it altogether. There are cases where that knowledge is very important to safe programming.

Consider that you’ve refactored a delete function to add support for non-permanent deletion. You’ve done this by adding an optional parameter:

function DeleteFile($file, $permanentlyDelete = null) {}

If $permanentlyDelete is null, the default action specified in a config is used. The problem is, when the param is null, there’s no way for the function to know for sure what the programmer of the caller intended. There are two possibilities:

1 The programmer intentionally passed null because the config should be used
2 The programmer forgot to consider that case after the refactor, so null is automatically being used

Ultimately, the function just follows orders, of course, but doing it this way is dangerous because it’s all too easy to hit situation 2, which means files could be permanently deleted in error. As the programmer doing the refactor, it’s better to make the parameter mandatory, which forces a revisit to every caller to make the true/false/null decision explicit.

In this case, the extra bit of intelligence comes from forcing the caller to pass something. If the param is optional, we have no idea. It’s the same thing with exists() on a variable: it gives us extra intelligence about why a variable is null, whether it’s because of an actual decision somewhere or because of an error or oversight. And it provides that intelligence without fussing with PHP errors.

you have no way of presetting the variable to some other terminal value to detect when it is explicitly set

If the variables are injected before your code runs, it’s too late. At that point, if you try to set a magic sentinel value, you’re just overwriting the real value if there is one. It would work, however, if you can pre-initialize before the injection:

$foo = 'hope this gets overwritten';
require('/some/config.php');
if ($foo === 'hope this gets overwritten') {
//uh-oh
}

I’m not really a fan of this pattern, though. If there’s going to be a magic value to indicate that no better value was set, null is the ideal choice:

$foo = null;
require('/some/config.php');
if ($foo === null) {
//uh-oh
}

Here, we’ve used null exactly as intended. Unfortunately, this breaks if null already has meaning, even if it's just "go with a default”. And, of course, it also throws the annoying undefined error that we’re trying to avoid :-).

This is where exists() comes in and cures all:

require('/some/config.php');
if (!exists($foo)) {
//uh-oh
}

It’s cleaner and shorter, but it also lets us again use null as intended, rather than coming up with some whacky magic value that by necessity is completely unrelated to the variable’s purpose yet is hopefully understandable in meaning to future programmers passing through (not too hard with a string, as above, but much tricker with non-strings).

In a dynamic
language like PHP, I really don’t understand how folks can not see
that as an oversight.

I've not found evidence that any other language treats variables in the proposed way, so it really doesn't feel like an "oversight" to me, but a request for a new and quite unusual feature.

In JavaScript, there’s this:

if (typeof never_heard_of_me === 'undefined') {
//uh-oh
}

albeit with a couple of minor caveats.

But yes, from a completeness point of view, it does make some sense. My fear is that the people who don't understand why isset() does what it does will think it's the answer to some imaginary problem, and end up more confused than ever when their code breaks.

Haven’t we already arrived here with isset() confusion? ;-)

Seriously, I think updating the docs on the isset() page would help mitigate this. From this:

"Determine if a variable is set and is not NULL.

"If a variable has been unset with unset(), it will no longer be set. isset() will return FALSE if testing a variable that has been set to NULL. Also note that a null character ("\0") is not equivalent to the PHP NULL constant."

to something like this:

"Determine if a variable exists in the current scope and is not NULL. To test only whether a variable exists, use exists().

"If unset() is called on a variable, it will no longer exist. isset() will return FALSE if testing a variable that has been set to NULL. Also note that a null character ("\0") is not equivalent to the PHP NULL constant."

Obviously, other related pages could be updated similarly.

If the function had been proposed as a debugging aid, maybe filed under Reflection or debug_variable_is_initialised, I might have more sympathy, but that's not how it's been presented.

Again, I don’t see this as something that directly controls business logic. I see it as something that supports defensive programming, improved error handling, and improved user experience. Regardless, as we all know, every language feature can be abused, but that doesn’t automatically mean we shouldn’t have those features. Even something as widely derided as goto has its niche, after all (albeit, a very, very small niche). In this case, not only is the feature useful, but it nicely complements the array of related functionality to provide a more complete feature set.

-Bob

9 years ago by Rowan Collins — view source

unread

On Sep 16, 2015, at 14:09, Rowan Collins rowan.collins@gmail.com
wrote:
More common than different variables in different circumstances is the
missing variable. Consider the user who’s setting up an instance of an
application that uses a config file with bare variables — very easy to
forget something, or type the name wrong, or whatever. Or the
programmer writing a plugin for a poorly documented application who
wants to be sure the runtime environment of the plugin is what’s
expected. Really, a lot of the same situations where one might need to
check the existence of an array element or object property, except that
the item to be checked happens to be a plain old variable.

OK, so basically here you're after a louder version of the existing Notice, as a debugging aid. I can see that.

you/they have used null as a value which needs to be positively
asserted, not taken as the default state, so that isset() does not meet
your needs

Well, it’s not so important that null represents a non-default state,
as that it represents any state. Often, null could just signal that a
default should be used, but with an existence check, the programmer can
be confidant that something/someone explicitly chose that option.

In my mind, if it has to be positively asserted, it's not a default. It might mean "automatic behaviour" when eventually processed, but that's not what I meant by "default state" in this context.

Consider that you’ve refactored a delete function to add support for
non-permanent deletion. You’ve done this by adding an optional
parameter:

function DeleteFile($file, $permanentlyDelete = null) {}

If $permanentlyDelete is null, the default action specified in a config
is used. The problem is, when the param is null, there’s no way for the
function to know for sure what the programmer of the caller intended.

This is a really nice example, thanks. People do overuse optional parameters, and this is a good example. Interestingly, and I realise this wasn't the point of your example, there's no way I know of to detect if a parameter was omitted from your function call rather than passed an explicit null; exists() wouldn't help, because the local variable will be created to hold the parameter even if it's not passed in.

It’s the same thing with exists() on a variable: it gives us extra
intelligence about why a variable is null, whether it’s because of an
actual decision somewhere or because of an error or oversight.

OK, I'll buy that. I'm not saying I'm convinced over all, but it at least shows a reasonable use for it.

If the variables are injected before your code runs, it’s too late. At
that point, if you try to set a magic sentinel value, you’re just
overwriting the real value if there is one. It would work, however, if
you can pre-initialize before the injection

Yes, that's what I was getting at.

I’m not really a fan of this pattern, though. If there’s going to be a
magic value to indicate that no better value was set, null is the ideal
choice:

Here, we’ve used null exactly as intended. Unfortunately, this breaks
if null already has meaning, even if it's just "go with a default”.

As you say, the "missing value" meaning is the generally accepted use of null. So the problem only comes about because you've reused null for some extra meaning, such as "automatic selection". Once again, it's not default behaviour if it has to be opted into.

People definitely do this - I know I have - but it's often a problem later. For instance what if, instead of just "automatic", we decide to allow "minimise" and "maximise" modes, alongside the explicit setting? We don't have a second built-in terminal value like null, so we need some new representation. If we'd stuck with a second variable, or a string in place of an integer, we'd have room for this expansion and still be able to use null for it's more traditional role of "missing value".

And, of course, it also throws the annoying undefined error that we’re
trying to avoid :-).

No it doesn't - you've defined the variable before the include, so there's nothing to warn about.

It’s cleaner and shorter, but it also lets us again use null as
intended

You mean it frees you to use null for something unrelated?

I've not found evidence that any other language treats variables in
the proposed way, so it really doesn't feel like an "oversight" to me,
but a request for a new and quite unusual feature.

In JavaScript, there’s this:

if (typeof never_heard_of_me === 'undefined') {
//uh-oh
}

I mentioned that in a previous message. AFAICS, that behaves much like a PHP null - "var foo" exists but is undefined, if passed as a parameter, that parameter is undefined, etc. It certainly doesn't match the proposed functionality of exists().

My fear is that the people who don't understand why isset() does what
it does will think it's the answer to some imaginary problem, and end
up more confused than ever when their code breaks.

Haven’t we already arrived here with isset() confusion? ;-)

Yes, and I don't want to make it worse by implying that the people who said isset() was broken were right.

to something like this:

"Determine if a variable exists in the current scope and is not NULL.
To test only whether a variable exists, use exists().

This is exactly what I don't want. The vast majority of the time, anyone reaching for exists() should be using isset(), not vice versa. During this discussion, we've come upon a couple of very specific edge cases where it might be acceptable to distinguish non-existence from null, but they are definitely not every day occurrences.

If the function had been proposed as a debugging aid, maybe filed
under Reflection or debug_variable_is_initialised, I might have more
sympathy, but that's not how it's been presented.

Again, I don’t see this as something that directly controls business
logic. I see it as something that supports defensive programming,
improved error handling, and improved user experience.

Indeed, which is why I wonder if a less tempting name than exists(), and a less prominent link in the manual, would highlight that intention.

Regards,

Rowan Collins
[IMSoP]

9 years ago by lauri.kentta@gmail.com — view source

unread

Interestingly, ... there's no way I know of to
detect if a parameter was omitted from your function call rather than
passed an explicit null;

There is! It's called func_num_args, and it's very ugly.

--
Lauri Kenttä

9 years ago by Rowan Collins — view source

unread

'exists but I don't know what
as yet' is a logical state

It is indeed. "I know it's name but it doesn't exist", however, is generally not a valid state - if you've hard-coded the name (as is the case with 99.9% of bare variables) then clearly you consider it to have some existence. For this reason, PHP assumes that you meant to create it with a null value.

I seem to remember Perl has an interesting quirk along these lines where in some circumstances just reading from a variable will actually initialise it in memory!

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

'exists but I don't know what

as yet' is a logical state
It is indeed. "I know it's name but it doesn't exist", however, is generally not a valid state - if you've hard-coded the name (as is the case with 99.9% of bare variables) then clearly you consider it to have some existence. For this reason, PHP assumes that you meant to create it with a null value.

If I have a dozen objects 'hard coded', but the templating system only
needs to use a few of them for this page then only the variables that
have been created exist. Yes one would be better off scanning an
associative array and only dealing with the elements actually present in
the array. That is better coding practice, but extract() is an equally
valid practice currently being used and that needs a different way of
handling if the elements exist.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

'exists but I don't know what

as yet' is a logical state
It is indeed. "I know it's name but it doesn't exist", however, is
generally not a valid state - if you've hard-coded the name (as is the
case with 99.9% of bare variables) then clearly you consider it to have
some existence. For this reason, PHP assumes that you meant to create
it with a null value.

If I have a dozen objects 'hard coded', but the templating system only
needs to use a few of them for this page then only the variables that
have been created exist. Yes one would be better off scanning an
associative array and only dealing with the elements actually present
in
the array. That is better coding practice, but extract() is an equally
valid practice currently being used and that needs a different way of
handling if the elements exist.

I'm still not entirely sure what it is you need to "handle".

What is the behaviour that you'd put in the if(! exists ()) block? More particularly, what would you put there and not put in the if(! is_null()) block, since if they're the same, then that's what if(! isset()) does, so we're all good?

9 years ago by Lester Caine — view source

unread

That is better coding practice, but extract() is an equally

valid practice currently being used and that needs a different way of
handling if the elements exist.
I'm still not entirely sure what it is you need to "handle".

What is the behaviour that you'd put in the if(! exists ()) block? More particularly, what would you put there and not put in the if(! is_null()) block, since if they're the same, then that's what if(! isset()) does, so we're all good?

I'd answered that one, but it looks like it did not end up on the list.

Pushing it again ...
If the 'variable' exists but is NULL you create a default element of
that name. If the 'variable' does not exist nothing gets created. So

exists($checklist) {
is_null($checklist) { create default/empty object(); }
else { create populate odbject($checklist);
} else {
display code in place of object;
}

If $checklist is always +ve then one can use '0' in place of NULL, but
when a 'default' value is difficult to define NULL fills the gap and in
SQL that is well understood, and there is no reason that the is_null()
check is not part of createobject function but hat is optional.

I personally would stick with the $hash['checklist'] but others
obviously prefer to loose the $hash once inside the 'object' and
currently you end up CURRENTLY with

isset($checklist) {
createobject($checklist);
} else {
is_null($checklist) { createobject($checklist); }
Styling element in place of object;
}

Assuming createobject also handles the NULL condition with a second
is_null inside the function. exists simply streamlines this to

exists($checklist) {
createobject($checklist); // Null = empty or default object
} else {
Styling element in place of object;
// !exists leaves out object, or has code to create one
}

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 17/09/2015 00:26:

If the 'variable' exists but is NULL you create a default element of
that name. If the 'variable' does not exist nothing gets created. So

exists($checklist) {
is_null($checklist) { create default/empty object(); }
else { create populate odbject($checklist);
} else {
display code in place of object;
}

Thanks, this is an interesting example of how the function could be used.

To paraphrase, your 3 states being communicated from the controller to
the view are:
a) Do not use this object, even if you want to.
b) If you want this object, you may create a default one.
c) If you want this object, create it with these parameters.

You then want to use null for case (b), so need a "very null" value
(non-existent variable) for case (a).

I think I would personally find it more readable if null was reserved
for case (a), which feels closer to the normal meaning of NULL as
"missing data", like in a database. Some other terminal value would then
need to be found for case (b) - a string like 'DEFAULT', for
instance (if $checklist is normally an integer, literally any string
will do; if it's normally a string, you've got to be more careful with
your choice of reserved word).

Or, I might architect it in a completely different way, and pass around
an object that can lazy load its own data, rather than lazy loading the
object itself based on a scalar value. But I can't say that the proposed
approach is "wrong", exactly.

If you're so eager to do this that you'd be willing to make the
application have a minimum PHP version of 7.1, I suppose it's an
argument in favour of changing the language to allow that. But since
there are plenty of alternative ways to architect this in the current
language, it seems slightly artificial.

As a straw man example, if the language allowed me to assign colours
(with a 'u', in the spelling, because I'm British :P) as metadata to a
variable, I could write it like this:

switch ( get_colour($checklist) ) {
case COLOUR_RED:
default:
// display code in place of object;
break;
case COLOUR_YELLOW:
// create default object
break;
case COLOUR_GREEN:
create_object($checklist);
break;
}

Obviously, that's a stupid idea, but in a sense that's what you're
actually asking for - a piece of metadata about the "state" of the
variable, alongside its value; it just so happens that there's a
candidate piece of metadata that would be fairly easy for the language
to give you. With null vs non-null, you have two states, with exists()
you could distinguish a third state - but that third state doesn't
really have anything to do with non-existence, it's just an extra piece
of information that the controller wants to pass to the view.

What would really be handy in a case like this is the ability to create
your own null-like values, guaranteed to be distinct from all other values:

type hidden extends \php\basetypes\terminal {}
type default extends \php\basetypes\terminal {}

$checklist = hidden;
gettype($checklist); // 'hidden'
$checklist == hidden; // true
$checklist == deafult; // false
isset($checklist); // true

Maybe even:

type missing extends \php\basetypes\null {}
$foo = missing;
isset($foo); // false
is_null($foo); // not sure...

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

exists($checklist) {
is_null($checklist) { create default/empty object(); }
else { create populate odbject($checklist);
} else {
display code in place of object;
}

Thanks, this is an interesting example of how the function could be used.

I HAD hoped that someone would pick up that the current method does NOT
work cleanly! ;)

isset($checklist) {
Display $checklist
} else {
is_null($checklist) {
// pigging warning if $checklist does not exist!
displays without a setting ... so needs a value adding
} else {
display details why $checklist does not need setting
}
}

To paraphrase, your 3 states being communicated from the controller to
the view are:
a) Do not use this object, even if you want to.
EG Vehicle is not old enough to need MOT

b) If you want this object, you may create a default one.
EG No current MOT found

c) If you want this object, create it with these parameters.
EG Display date of MOT ... when next one due should not be stored here,
only when one is added.

You then want to use null for case (b), so need a "very null" value
(non-existent variable) for case (a).

Database takes care of managing the business logic to ensure data is
consistent. One could use an invalid date for 'NULL' but these are not
consistent between database engines ... NULL is. Reading CAR data does
not return an 'MOT' record while it is not needed. 'MOT' does not exist
flags logic to display 'first MOT due' from registration date. Putting a
date in the 'MOT' field is not the way to handle that.

The business logic in decent databases like Oracle and Firebird rely on
NULL for many reasons, and while one can return more fields to handle
the 'three state' model, NOT returning a field is faster. MOT is crude
example, on council systems several sets of data may interact, and the
NULL state is significant.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

To paraphrase, your 3 states being communicated from the controller to
the view are:
a) Do not use this object, even if you want to.
EG Vehicle is not old enough to need MOT

b) If you want this object, you may create a default one.
EG No current MOT found

c) If you want this object, create it with these parameters.
EG Display date of MOT ... when next one due should not be stored here,
only when one is added.

This is an entirely arbitrary mapping. You actually have two pieces of
information you're trying to fit into one variable:

the MOT status, out of "not needed", "no current MOT", "has current MOT"
the details of the current MOT, if one exists

That's what I was getting at with my "variable colours" example - if all
you're after is "a variable with 3 states, one of which also allows a
value", that's not really anything to do with exists() and isset() any
more. It would be a convenient use of that state, except that that state
isn't convenient to use, so why try?

This is also a perfect example of why co-opting states like null and
unset for complex meanings is generally a bad idea: what if in future,
you need to distinguish a 4th case of "never had an MOT"? You've now
used up both NULL and !exists(), so you're back to square one, and need
to petition for some other piece of variable metadata to be exposed - or
give up and change the implementation to use a separate state flag.

You then want to use null for case (b), so need a "very null" value
(non-existent variable) for case (a).
Database takes care of managing the business logic to ensure data is
consistent. One could use an invalid date for 'NULL' but these are not
consistent between database engines ... NULL is. Reading CAR data does
not return an 'MOT' record while it is not needed. 'MOT' does not exist
flags logic to display 'first MOT due' from registration date. Putting a
date in the 'MOT' field is not the way to handle that.

The business logic in decent databases like Oracle and Firebird rely on
NULL for many reasons, and while one can return more fields to handle
the 'three state' model, NOT returning a field is faster. MOT is crude
example, on council systems several sets of data may interact, and the
NULL state is significant.

You keep defending your use of NULL, but that is not what needs
defending; it is the proposed use of an unset variable as a "very null"
state which I am questioning. As far as I know, most databases do not
have the notion of "does not exist" in tables or result sets - the
result of a Left Join failing is the same type of Null as can be stored
in a Nullable column.

Regards,

--
Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

You keep defending your use of NULL, but that is not what needs
defending; it is the proposed use of an unset variable as a "very null"
state which I am questioning. As far as I know, most databases do not
have the notion of "does not exist" in tables or result sets - the
result of a Left Join failing is the same type of Null as can be stored
in a Nullable column.

The 'does not exist' requires that there IS a second field to carry the
flag that 'MOT' is not required, while simply leaving it out of the
result set then saves two fields. Where you have a range of data which
may or may not exist only returning the fields that do exist is a lot
faster than loading the whole process down with every field. Currently
one has to switch off errors where is_null may be used with a
non-existent field because there is no easy way to know that the field
... as a variable ... does not exist.

Deprecate expand() so it's use is not possible may be another 'fix'?

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

The 'does not exist' requires that there IS a second field to carry the
flag that 'MOT' is not required, while simply leaving it out of the
result set then saves two fields.

I'm confused - do you mean that some rows in the result set from the
database have columns "missing", rather than just set to NULL? That's
not something I've ever come across before.

By the way, you still haven't addressed my point about this whole setup
only giving you 3 states, and there being no particular reason you won't
need a 4th later.

Currently one has to switch off errors where is_null may be used with a
non-existent field

Why? That's what isset() is for, which is where this whole discussion
started; I'm not sure why you've suddenly mentioned is_null().

Deprecate expand() so it's use is not possible may be another 'fix'?

Surely there are plenty of ways to use extract() without attempting to
give meaning to missing variables.

Regards,

--
Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

The 'does not exist' requires that there IS a second field to carry the
flag that 'MOT' is not required, while simply leaving it out of the
result set then saves two fields.

I'm confused - do you mean that some rows in the result set from the
database have columns "missing", rather than just set to NULL? That's
not something I've ever come across before.

While it would be better SQL practice to list all fields used in the
result set, '*' will return 'all fields' which are visible and may
indeed have 'missing fields'.

By the way, you still haven't addressed my point about this whole setup
only giving you 3 states, and there being no particular reason you won't
need a 4th later.

For this particular method of working which is perhaps 20 years old,
there are only three states. If the field exists in the result set, if
it's null and if it has a value.

Currently one has to switch off errors where is_null may be used with a
non-existent field

Why? That's what isset() is for, which is where this whole discussion
started; I'm not sure why you've suddenly mentioned is_null().

But the whole problem here is that isset does NOT identify that the
result set has fields that are NULL. The point everybody has been making
is that we need something that returns true for isset AND is_null,
unless you have some other method of identifying that the variable
exists before calling is_null ?

Deprecate expand() so it's use is not possible may be another 'fix'?

Surely there are plenty of ways to use extract() without attempting to
give meaning to missing variables.

So similarly there are plenty of ways of using null field variables if
extract() has created them.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 18/09/2015 01:32:

I'm confused - do you mean that some rows in the result set from the
database have columns "missing", rather than just set to NULL? That's
not something I've ever come across before.
While it would be better SQL practice to list all fields used in the
result set, '*' will return 'all fields' which are visible and may
indeed have 'missing fields'.

Whether or not you use "Select *", all the rows in the result set have
the same number of columns, surely?

By the way, you still haven't addressed my point about this whole setup
only giving you 3 states, and there being no particular reason you won't
need a 4th later.
For this particular method of working which is perhaps 20 years old,
there are only three states. If the field exists in the result set, if
it's null and if it has a value.

Sure. I was thinking more that your example mapped those 3 states rather
arbitrarily onto 3 domain states that you wanted to model; if you
happened to want to model 4 states, this technique wouldn't be any help.

Currently one has to switch off errors where is_null may be used with a
non-existent field
Why? That's what isset() is for, which is where this whole discussion
started; I'm not sure why you've suddenly mentioned is_null().
But the whole problem here is that isset does NOT identify that the
result set has fields that are NULL.

My point was that if you use isset() in place of is_null(), you don't
have to switch off any errors. That's the only difference between the
two functions - that isset() doesn't raise a notice if the variable
doesn't exist.

Deprecate expand() so it's use is not possible may be another 'fix'?
Surely there are plenty of ways to use extract() without attempting to
give meaning to missing variables.
So similarly there are plenty of ways of using null field variables if
extract() has created them.

Huh? All I meant was, asking to deprecate extract() is like saying "I
can't use an object as an array key, so we might as well get rid of
associative arrays" - just because you can't use it in the way you'd
like, doesn't mean it's useless.

(That said, I'd personally be happy to see PHP lose extract(), and
variable-variables, and the $GLOBALS array - but it's pretty unlikely.)

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

But the whole problem here is that isset does NOT identify that the
result set has fields that are NULL.

My point was that if you use isset() in place of is_null(), you don't
have to switch off any errors. That's the only difference between the
two functions - that isset() doesn't raise a notice if the variable
doesn't exist.

BUT YOU ARE MISSING THE POINT ...

Forget enum and more than three values in a variable ...

For SQL data coming from any decent database each variable can either
have a value in, ( which may be an empty string ) or be NULL. The NUMBER
of fields returned does not matter, a query returning a single record
can have a variable so the third condition is that rather than a field
being NULL, it does not exist, so testing for isset() only works for a
field that 'is set' and empty() only works with an empty value. Checking
for the field being present but NULL needs is_null() but THAT throws a
notice for those fields which have not been returned in this particular
result set. And one scenario here is that the database scheme actually
needs updating - but that should be handled differently - however a
system may have picked up an old copy of the data by mistake and the
missing fields need handling cleanly.

We are not talking about the number of states stored IN a variable, but
just what a variables own states are. Adding another variable to
enumerate what say 'a date relates to' is a different matter. The date
value can be a valid date ( and genealogical date goes back before most
'empty' date values ) or NULL indicating no date set OR the variable can
be missing from the result set. If you add in 'empty' one might say we
have for distinct states?

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Lester Caine — view source

unread

Forget enum and more than three values in a variable ...

For SQL data coming from any decent database each variable can either
have a value in, ( which may be an empty string ) or be NULL. The NUMBER
of fields returned does not matter, a query returning a single record
can have a variable so the third condition is that rather than a field
variable NUMBER OF FIELDS so

being NULL, it does not exist, so testing for isset() only works for a
field that 'is set' and empty() only works with an empty value. Checking
for the field being present but NULL needs is_null() but THAT throws a
notice for those fields which have not been returned in this particular
result set. And one scenario here is that the database scheme actually
needs updating - but that should be handled differently - however a
system may have picked up an old copy of the data by mistake and the
missing fields need handling cleanly.

We are not talking about the number of states stored IN a variable, but
just what a variables own states are. Adding another variable to
enumerate what say 'a date relates to' is a different matter. The date
value can be a valid date ( and genealogical date goes back before most
'empty' date values ) or NULL indicating no date set OR the variable can
be missing from the result set. If you add in 'empty' one might say we
have for distinct states?
FOUR distinct states

( and date is a good example here since 'empty' on something like MySQL
is a valid date genealogically )

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 18/09/2015 12:38:

For SQL data coming from any decent database each variable can either
have a value in, ( which may be an empty string ) or be NULL. The NUMBER
of fields returned does not matter, a query returning a single record
can have a variable

Again, I know what NULLs are, and how they can come about; but you made
it sound like you could run an SQL query and have the first row having 6
columns, and the second having 5, which is not something I've ever seen.
(Substitute "record" or "tuple" for "row", and "fields" for "columns",
if you prefer.)

The number of fields returned DOES matter, because if the same number of
fields are returned in every case, then the same variables will be
defined in every case, and there would be no case where exists() would
return false. But I guess I'll take your word for it that there's some
way that the number of fields can vary.

so the third condition is that rather than a field
being NULL, it does not exist, so testing for isset() only works for a
field that 'is set' and empty() only works with an empty value.

Sure, sure, I understand that, really, I do.

Checking for the field being present but NULL needs is_null() but THAT throws a
notice for those fields which have not been returned in this particular
result set.

Your problem is not "is_null() throws notices", because that would lead
to "can I have a version of is_null() which doesn't throw notices?" to
which the answer is "yes, use isset()". The null condition is the one
which you CAN detect with current functions; it's the "not set"
condition which you can't detect, because neither is_null() nor isset()
will actually affirm the "present but" bit of your condition. That's not
is_null()'s fault, it's behaving the same way as the rest of the
language in assuming every uninitialised variable has a null value.

We are not talking about the number of states stored IN a variable

OK, maybe your example just wasn't a very good choice then, because
"Vehicle is not old enough to need MOT" feels very much like a state
being stored somewhere to me. That it is represented by a non-existent
variable is incidental, all you need is some way of representing it.

The date
value can be a valid date ( and genealogical date goes back before most
'empty' date values ) or NULL indicating no date set OR the variable can
be missing from the result set. If you add in 'empty' one might say we
have four distinct states?

A PHP variable can have all sorts of states, because you can take
advantage of loose typing:

$date = new DateTime();
$date = null;
$date = 'TODAY';
$date = -1;
$date = M_PI;

etc

Those are all readily distinguishable, and don't require any changes to
the language for you to base your code around them.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

A PHP variable can have all sorts of states, because you can take
advantage of loose typing:

$date = new DateTime();
$date = null;
$date = 'TODAY';
$date = -1;
$date = M_PI;

And isset() returns true for every one but 'null' so how do I identify a
variable that isset=null?

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 18/09/2015 15:39:

A PHP variable can have all sorts of states, because you can take
advantage of loose typing:

$date = new DateTime();
$date = null;
$date = 'TODAY';
$date = -1;
$date = M_PI;
And isset() returns true for every one but 'null' so how do I identify a
variable that isset=null?

Why do you need to, when you've got all these values to choose from? Why
concentrate on the thing you can't do, when you could look at the huge
array of things you can do?

Yes, if exists() existed, you could use it as an extra state, but it
doesn't, so you can't.

9 years ago by Lester Caine — view source

unread

A PHP variable can have all sorts of states, because you can take
advantage of loose typing:

$date = new DateTime();
$date = null;
$date = 'TODAY';
$date = -1;
$date = M_PI;
And isset() returns true for every one but 'null' so how do I identify a
variable that isset=null?

Why do you need to, when you've got all these values to choose from? Why
concentrate on the thing you can't do, when you could look at the huge
array of things you can do?

Yes, if exists() existed, you could use it as an extra state, but it
doesn't, so you can't.

You don't do much real database coding do you ...

NULL is returned for fields that have no entry on a secondary table, so
the result set NATURALLY returns NULL. We have been living with the fact
that PHP barf's when trying to check for NULL for a long time. There are
a number of ways those variables can be generated and switching off the
notices is currently the only way. exists() has a place in SOME coding
styles which does not require to find the 'NULL' some other way to avoid
the potential notice! Converting it to something else at the database
end is just another hack?

Yes I do things differently, but certainly in Smarty this one has come
up more than once, and the general statement to 'switch of notices' in
production is another questionable restriction.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 18/09/2015 16:17:

You don't do much real database coding do you ...

NULL is returned for fields that have no entry on a secondary table, so
the result set NATURALLY returns NULL.

Why do you keep going on about null? We're talking about non-existent
variables, not null!

We have been living with the fact
that PHP barf's when trying to check for NULL for a long time.

OK, now you've lost me. I can check for NULLs just fine, using is_null()
if I know the variable exists (which I pretty much always do) or isset()
if it might not. No barfing necessary.

There are a number of ways those variables can be generated and switching off the
notices is currently the only way.

The only way to do what? If you have a variable which is either null or
non-existent, and you don't care which, use isset(). That's literally
the same as turning off notices and then using is_null().

exists() has a place in SOME coding
styles which does not require to find the 'NULL' some other way to avoid
the potential notice!

exists() would not be a way of avoiding the notice. exists() would be a
way of distinguishing an extra state, quite separate from null.

If what you want to write is "if ( ! exists($foo) || is_null($foo) ) {
... }" then that is exactly what "if ( isset($foo) )" will give you,
without any notices whatsoever.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

exists() has a place in SOME coding
styles which does not require to find the 'NULL' some other way to avoid
the potential notice!

exists() would not be a way of avoiding the notice. exists() would be a
way of distinguishing an extra state, quite separate from null.

If what you want to write is "if ( ! exists($foo) || is_null($foo) ) {
... }" then that is exactly what "if ( isset($foo) )" will give you,
without any notices whatsoever.

NO what I want is

if ( exists($foo) ) {
is_null($foo) { build uninitialised field }
else { build initialise with ($foo) }
}

isset($foo) only allows { build initialise with ($foo) }
and the NULL state is missed with no way of detecting it cleanly if the
$foo does in fact not exist.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 18/09/2015 16:55:

If what you want to write is "if ( ! exists($foo) || is_null($foo) ) {
... }" then that is exactly what "if ( isset($foo) )" will give you,
without any notices whatsoever.
NO what I want is

if ( exists($foo) ) {
is_null($foo) { build uninitialised field }
else { build initialise with ($foo) }
}

Right, so stop talking about Notices. Ignoring Notices does not get you
any closer to that goal.

And stop lecturing me about Nulls. The is_null($foo) part of that is the
part that already works fine.

9 years ago by Lester Caine — view source

unread

Right, so stop talking about Notices. Ignoring Notices does not get you
any closer to that goal.

And stop lecturing me about Nulls. The is_null($foo) part of that is the
part that already works fine.

ONLY if $foo actually exists!

My point here is that it's creation is optional and picking up that it
does NOT in fact exist is the problem here. That the template that was
passed via 'expand()' may or may not have fields that are null is the
difficulty here. Be that from a database or from other methods, but this
is the 'sadness' being complained about. The null tells displayed field
to be empty rather than populated with $foo ...

You don't want to disable expand() so the next step is handling the
results of importing variables for which null is a valid state but
equally their NOT having been created is equally valid.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 18/09/2015 17:20:

Right, so stop talking about Notices. Ignoring Notices does not get you
any closer to that goal.

And stop lecturing me about Nulls. The is_null($foo) part of that is the
part that already works fine.
ONLY if $foo actually exists!

Yes, I get it. Honestly, I do. It has nothing to do with me not
understanding nulls, and nothing to do with any need to silence notices.

You don't want to disable expand() so the next step is handling the
results of importing variables for which null is a valid state but
equally their NOT having been created is equally valid.

Sure, extract() allows you to do half the trick you want to do, and
exists() would allow you to do the other half. There's a logical jump
from there to "if you're not going to give me exists(), you might as
well take away extract()".

It's like saying "I have some cheese, but no bread; if you gave me some
bread, I could make a cheese sandwich; if you're not going to give me
the bread, please take away the cheese". My answer amounts to "why don't
you have cheese and crackers instead, we've got plenty of those?"

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

You don't want to disable expand() so the next step is handling the
results of importing variables for which null is a valid state but
equally their NOT having been created is equally valid.

Sure, extract() allows you to do half the trick you want to do, and
exists() would allow you to do the other half. There's a logical jump
from there to "if you're not going to give me exists(), you might as
well take away extract()".

It's like saying "I have some cheese, but no bread; if you gave me some
bread, I could make a cheese sandwich; if you're not going to give me
the bread, please take away the cheese". My answer amounts to "why don't
you have cheese and crackers instead, we've got plenty of those?"

All I am saying is that 'exists()' is simply part of the toolkit that
goes WITH extract(). There is a suitable tool in arrays and in objects
so why not complete the toolkit in straight variables. The names are a
mess between the three for many reasons and producing a complete new set
of function names has been another call, but there is a simple hole here
in a style of coding which there seems little logical reason NOT to fill.

Saying 'you don't need it if you change coding style' is simply the
wrong answer for something where the rest of the toolkit is being
retained. All I'm trying to explain is why it IS a hole in this style of
coding.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Robert Williams — view source

unread

All I am saying is that 'exists()' is simply part of the toolkit that
goes WITH extract(). There is a suitable tool in arrays and in objects
so why not complete the toolkit in straight variables. The names are a
mess between the three for many reasons and producing a complete new set
of function names has been another call, but there is a simple hole here
in a style of coding which there seems little logical reason NOT to fill.

Exactly, there’s clearly a gap here. Further, enough people want it that a few have shown up on this list, which means there are probably many, many thousands, or even millions, of people out in the wild that want it. I’m not familiar enough with PHP’s internals to say for sure, but I suspect it’s not terribly hard to implement (it’s just isset() without the extra null check). So… why not? Like anything else in the language, people don’t have to use it if they don’t want to, but it’s good to have tools. Yes, even tools that can be abused.

-Bob

9 years ago by Rowan Collins — view source

unread

Robert Williams wrote on 18/09/2015 18:40:

Exactly, there’s clearly a gap here. Further, enough people want it
that a few have shown up on this list, which means there are probably
many, many thousands, or even millions, of people out in the wild that
want it.

The problem is that a lot of the people that think they want it, don't
actually have a use for it, they just feel like it "should" exist.

There are a couple of small edge cases that people have come up with
during this thread where it's valid, but the vast majority of examples
I've seen are simply misunderstanding what isset() does and why, or not
realising that array_key_exists() and property_exists() already do the
job they need.

The use cases Lester and yourself have come up with are NOT evidence
that isset() is broken, as many people claim. They are things which the
majority of people will never need to (arguably nobody "needs" to do
them, but you want to do them, so I guess that's kind of the same thing).

I’m not familiar enough with PHP’s internals to say for sure, but I
suspect it’s not terribly hard to implement (it’s just isset() without
the extra null check). So… why not? Like anything else in the
language, people don’t have to use it if they don’t want to, but it’s
good to have tools. Yes, even tools that can be abused.

Sure, I'm happy with that argument - IF we come up with a name and
documentation that doesn't imply this is a replacement for isset(), or
validate the incorrect conception that isset() is "broken".

The title of this thread refers to one such misunderstanding - the
article at http://www.phpsadness.com/sad/28 waffles on a lot about
empty() being a bad name, doesn't even mention isset(), and scares the
user with a blob of C code, but doesn't really explain why any of this
is a problem. It even says:

Some languages circumvent this issue by requiring variable
declaration or giving undefined variables explicit values.

Neatly, PHP does both: if you take Notices seriously, variable
declaration (or at least initialisation-before-reading) is required; if
you ignore them, or use isset()/empty(), it gives the undefined variable
a value of Null. :)

So, by all means, propose a function which searches the symbol table for
a variable, but please don't call it something as generic as exists(),
and please don't edit the isset() documentation to recommend its usage
in any but the most unusual cases.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Benoit Schildknecht — view source

unread

Le Fri, 18 Sep 2015 19:40:50 +0200, Robert Williams
rewilliams@thesba.com a écrit:

All I am saying is that 'exists()' is simply part of the toolkit that
goes WITH extract(). There is a suitable tool in arrays and in objects
so why not complete the toolkit in straight variables. The names are a
mess between the three for many reasons and producing a complete new set
of function names has been another call, but there is a simple hole here
in a style of coding which there seems little logical reason NOT to
fill.

Exactly, there’s clearly a gap here. Further, enough people want it that
a few have shown up on this list, which means there are probably many,
many thousands, or even millions, of people out in the wild that want
it. I’m not familiar enough with PHP’s internals to say for sure, but I
suspect it’s not terribly hard to implement (it’s just isset() without
the extra null check). So… why not? Like anything else in the language,
people don’t have to use it if they don’t want to, but it’s good to have
tools. Yes, even tools that can be abused.

-Bob

I agree. exists() would allow PHP devs to make more secure, cleaner and
lighter code. It fills a gap and would be useful to a lot of devs.

9 years ago by Rowan Collins — view source

unread

Benoit Schildknecht wrote on 18/09/2015 19:24:

I agree. exists() would allow PHP devs to make more secure, cleaner
and lighter code. It fills a gap and would be useful to a lot of devs.

On the contrary, I think code using exists() would be extremely fragile,
because it's highly resistant to refactoring, and encourages developers
to leave variables uninitialised.

What makes cleaner, more secure code is always initialising your
variables before using them - basically, what the "undefined variable"
Notice is suggesting you do.

The examples Lester and Robert have come up with make sense in
themselves, but are not architectures I would choose precisely because
they are opaque (you have to remember what unset() and null mean) and
hard to extend (there's no way to introduce a 4th state alongside the
unset/null/value triad).

Obviously, all language features can be used to write bad code, but it
seems much easier to write bad code than good using this proposed function.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Benoit Schildknecht — view source

unread

Le Fri, 18 Sep 2015 20:38:12 +0200, Rowan Collins
rowan.collins@gmail.com a écrit:

Benoit Schildknecht wrote on 18/09/2015 19:24:

I agree. exists() would allow PHP devs to make more secure, cleaner and
lighter code. It fills a gap and would be useful to a lot of devs.

On the contrary, I think code using exists() would be extremely fragile,
because it's highly resistant to refactoring, and encourages developers
to leave variables uninitialised.

What makes cleaner, more secure code is always initialising your
variables before using them - basically, what the "undefined variable"
Notice is suggesting you do.

The examples Lester and Robert have come up with make sense in
themselves, but are not architectures I would choose precisely because
they are opaque (you have to remember what unset() and null mean) and
hard to extend (there's no way to introduce a 4th state alongside the
unset/null/value triad).

Obviously, all language features can be used to write bad code, but it
seems much easier to write bad code than good using this proposed
function.

Regards,

So there is a bug regarding variables and null. Because I don't get any
notice if I use a variable with "null" as a value. If "null" means
"uninitialized", how come there are no notices ?
<?php
echo $foo;//Notice
$foo = null;
echo $foo;//No Notice

And how come the null variable appear in get_defined_vars(), and disappear
after an unset() ? Because null != undefined. The engine seems to consider
null as a distinct state. Something that is not undefined. It is already
like that, we are not theorizing.
<?php
var_dump(get_defined_vars()); // No traces of $foo
$foo = null;
var_dump(get_defined_vars()); // ["foo"] => NULL
unset($foo);
var_dump(get_defined_vars()); // Good bye, foo

You have a lot of people who use isset() against null elements in an
array. null elements happen a lot when interacting with an SQL server (for
instance). I personally use array_key_exists(), but most people won't do
the same at all. Because they think it is the same. And they'll forget,
because isset() behaviour doesn't make sense, since null doesn't exactly
behave as you say.

Using is_null() against a var to see if it is set and has a null value
WILL trigger notices, and that's clearly not clean at all. In a production
environment, you would like to get rid of them. All of them.

Taking advantage of set_error_handler() is out of question : how can you
know if the triggered notice is related to a variable you expected to be
declared with null ? Very hard task (if not impossible), and very heavy to
implement.

And you have webservices, cURL, JSON, etc... All of these can give you
"null" values. And it is not rare. This is not something we can correct.
We have no control on this.

There are way more cases in which exists() would improve things A LOT. We
need a native function that allows us to check this state WITHOUT
triggering a notice.

Regards,

9 years ago by Lester Caine — view source

unread

You have a lot of people who use isset() against null elements in an
array. null elements happen a lot when interacting with an SQL server
(for instance). I personally use array_key_exists(), but most people
won't do the same at all. Because they think it is the same. And they'll
forget, because isset() behaviour doesn't make sense, since null doesn't
exactly behave as you say.

The 'bug' is that isset() only returns true if there is a value in the
variable. If the variable is 'NULL' it returns false ... which it also
does if the variable does not exist. So we have 'false', but if we call
is_null and the variable does not actually exist then we get a notice
about undeclared variable. The fact that a result set may well exclude
some variables is a practical proposition, but PHP does not cater for it
... and some people think that this should be treated as bad coding
while others of us expect this action.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

So there is a bug regarding variables and null. Because I don't get any

notice if I use a variable with "null" as a value. If "null" means
"uninitialized", how come there are no notices ?

It's the other way around - null doesn't mean uninitialized, but an uninitialized variable has the implicit value null. It's also a reasonably likely sign that there's a bug in your code, so PHP gives you a notice suggesting you set it explicitly before reading from it.

I personally use array_key_exists(), but most people won't
do
the same at all. Because they think it is the same. And they'll forget,

As I've said several times, a simplified name and syntax for array_key_exists might be a good idea.

Using is_null() against a var to see if it is set and has a null value
WILL trigger notices, and that's clearly not clean at all.

Sure, which is exactly why isset() makes sense. If we could rename it quiet_is_null(), would you think it's behaviour made sense?

There are way more cases in which exists() would improve things A LOT.
We
need a native function that allows us to check this state WITHOUT
triggering a notice.

Adding exists() has absolutely nothing to do with avoiding notices. It is simply not true that you can do things now and receive notices which you could do with exists() and receive no notices. The things you could do with exists are simply impossible right now.

It would not be a replacement for is_null, nor for isset(), but a way of writing a completely new type of code, which examined not a variable's value, but its state within the Engine.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

It would not be a replacement for is_null, nor for isset(), but a way of writing a completely new type of code, which examined not a variable's value, but its state within the Engine.

Rowan ... why is using is_null() and isset() after using
array_key_exists() to identify the variable exists any different to
wanting to use them after having used extract() on the same array?
I get that you would prefer to convince users to use the pre-extract
variables, but then why would you need extract? If you have extract,
then checking that an extracted variable exists and if it is set or not
are simply natural mirrors of the same function on the array? I don't
see any 'completely new type of code' ... only a different frame in
which the variables are held.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

I don't
see any 'completely new type of code' ... only a different frame in
which the variables are held.

It's "completely new" because you can't do it right now, that's all.

I'm just trying to separate two different justifications for requesting this feature: some people are saying their current code is buggy because of some lack in the language, and that "thousands and millions of devs" encounter this; others, such as yourself, are saying that they would like to write code in a certain style, which the language doesn't currently allow. I have still seen absolutely no evidence of the former, most bugs apparently being due to poor adoption of array_key_exists; I am reasonably convinced by your use case being valid, even if it's not a style I'd choose.

Every time you start talking about avoiding notices, and existing code, I therefore get confused - there is no code using exists() in order for it to be buggy!

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

I don't

see any 'completely new type of code' ... only a different frame in
which the variables are held.
It's "completely new" because you can't do it right now, that's all.

I'm just trying to separate two different justifications for requesting this feature: some people are saying their current code is buggy because of some lack in the language, and that "thousands and millions of devs" encounter this; others, such as yourself, are saying that they would like to write code in a certain style, which the language doesn't currently allow. I have still seen absolutely no evidence of the former, most bugs apparently being due to poor adoption of array_key_exists; I am reasonably convinced by your use case being valid, even if it's not a style I'd choose.

Every time you start talking about avoiding notices, and existing code, I therefore get confused - there is no code using exists() in order for it to be buggy!

If there was a bug with 'isset' it is that it returns false for a
variable that IS SET to null. So using isset only returns true when
there is an actual value assigned to the variable. There is not an
array_key_isset(), but array_key_exists() which returns true for all
cases of the variable existing.

So I can call array_key_exists() followed by is_null() and be sure that
I will not get a warning from the is_null() call because the variable
has to exist, and the function is 'exists' rather than 'isset' for that
very reason.

Moving back to plain variables, we can check a variable isset(), if the
variable has been created and is null, then we don't have a problem, but
if the variable does not exist there is no way of testing for that state
prior to calling is_null() so we get a warning. THAT is the warning that
I'm talking about. Now if you have another way of identifying that the
variable 'exists' before calling is_null() then I apologise but I've not
found it yet :(

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

If there was a bug with 'isset' it is that it returns false for a
variable that IS SET to null.

I honestly think that the only problem there is the name. If instead of isset() and empty() we had quiet_is_null and quiet_boolval, nobody would be the slightest bit surprised by their behaviour, and people looking to see if an array key exists would be more likely to find array_key_exists.

if the variable does not exist there is no way of testing for that
state
prior to calling is_null()

Correct, there is no way of testing for that full stop.

so we get a warning. THAT is the warning
that
I'm talking about. Now if you have another way of identifying that the
variable 'exists' before calling is_null() then I apologise but I've
not
found it yet :(

If what you want to do is avoid the notice, then you don't need to "find out before calling is_null", you need to call isset instead of is_null. Again, ignore the name, and concentrate on what it actually does.

This conversation feels to me like you saying you want a flying car, then complaining because your current car makes a nasty noise when you accelerate for take off in first gear. No matter what you do, your current car won't fly, but if you switch into fifth gear, the noise will go away.

You want a function to test for variable existence, which is a feature PHP does not have; you then jump to talking about not wanting warning noises, which PHP absolutely has the function to avoid.

It is not the noise that is stopping your car flying, so please stop talking about it.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

If what you want to do is avoid the notice, then you don't need to "find out before calling is_null", you need to call isset instead of is_null. Again, ignore the name, and concentrate on what it actually does.

BUT ISSET RETURNS FALSE FOR A VARIABLE THAT IS SET BUT NULL ... END OF
STORY ...

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

If what you want to do is avoid the notice, then you don't need to "find out before calling is_null", you need to call isset instead of is_null. Again, ignore the name, and concentrate on what it actually does.
BUT ISSET RETURNS FALSE FOR A VARIABLE THAT IS SET BUT NULL ... END OF
STORY ...

AND SO DOES IS_NULL

The notices emitted by is_null are COMPLETELY IRRELEVANT.

--
Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

If what you want to do is avoid the notice, then you don't need to
"find out before calling is_null", you need to call isset instead
of is_null. Again, ignore the name, and concentrate on what it
actually does.
BUT ISSET RETURNS FALSE FOR A VARIABLE THAT IS SET BUT NULL ... END OF
STORY ...

AND SO DOES IS_NULL

The notices emitted by is_null are COMPLETELY IRRELEVANT.

? is_null returns true if the variable exists and is NULL and throws a
notice if the variable is not set WHY is that fact COMPLETELY
IRRELEVANT? Just because you don't think people should be coding in the
way that it causes problems with existing code does not make it
irrelevant we have to put up with the notices because there is no CLEAN
way to establish that a variable exists only that it is set.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Ryan Pallas — view source

unread

If what you want to do is avoid the notice, then you don't need to
"find out before calling is_null", you need to call isset instead
of is_null. Again, ignore the name, and concentrate on what it
actually does.
BUT ISSET RETURNS FALSE FOR A VARIABLE THAT IS SET BUT NULL ... END OF
STORY ...

AND SO DOES IS_NULL

The notices emitted by is_null are COMPLETELY IRRELEVANT.

? is_null returns true if the variable exists and is NULL and throws a
notice if the variable is not set WHY is that fact COMPLETELY
IRRELEVANT? Just because you don't think people should be coding in the
way that it causes problems with existing code does not make it
irrelevant we have to put up with the notices because there is no CLEAN
way to establish that a variable exists only that it is set.

I would also point out that is_null returns true (after the engine produces
a notice) for undefined variables:

$ php -r "var_dump(is_null($a));"

Notice: Undefined variable: a in Command line code on line 1

Call Stack:
0.0001 118888 1. {main{() Command line code:0

bool(true)

So is_null does not help to determine if a plain variable is in fact null.

9 years ago by Rowan Collins — view source

unread

I would also point out that is_null returns true (after the engine
produces
a notice) for undefined variables:

$ php -r "var_dump(is_null($a));"

Notice: Undefined variable: a in Command line code on line 1

Call Stack:
0.0001 118888 1. {main{() Command line code:0

bool(true)

And you know why it does that? For consistency with this:

$ php -r "var_dump($a);"

Notice: Undefined variable: a in Command line code on line 1

NULL

9 years ago by Rowan Collins — view source

unread

The notices emitted by is_null are COMPLETELY IRRELEVANT.

? is_null returns true if the variable exists and is NULL and throws a
notice if the variable is not set WHY is that fact COMPLETELY
IRRELEVANT?

is_null returns true in all the same situations as isset does. There is absolutely no difference except for whether it raises a notice.

we have to put up with the notices because there is no CLEAN
way to establish that a variable exists only that it is set.

You absolutely never have to put up with those notices, because if you use !isset instead of is_null, they go away, and the program continues to work in exactly the same way.

I understand that you would like a function to detect the (non-)existence of a variable, and are disappointed that isset is not that function, but that's a completely separate problem from how to avoid the notices.

Again, it is not the noise which is stopping your car from flying.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

is_null returns true in all the same situations as isset does. There is absolutely no difference except for whether it raises a notice.

? is_null returns true when isset returns false ... but because of the
notice and switching that off to hide it I'd missed that the pigging
is_null() was broken. It's only not outputting the missing elements
because they are non-existent, not because is_null() stops the function
being called ...
This is simply a red flag to why there NEEDS to be a proper fix rather
than having to rely on switching off notices which result in other
problems being masked!
But I suppose code that is several years old does not matter ... we just
live with the bugs.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

is_null returns true in all the same situations as isset does. There
is absolutely no difference except for whether it raises a notice.

? is_null returns true when isset returns false ...

Sorry, yes, stick a ! in front of one or the other to make them identical.

This is simply a red flag to why there NEEDS to be a proper fix rather
than having to rely on switching off notices which result in other
problems being masked!

Well, it was your choice to switch off the notices in the first place. I'm not sure what you thought your code was doing, but you can't really blame the language for a misunderstanding of what is_null does: it returns true in all the places where dumping a variable would say NULL. Seems pretty self-explanatory to me.

But I suppose code that is several years old does not matter ... we
just live with the bugs.

Feel free to fix your bugs now you know how the language works. It's unlikely the language is going to change to fix the bug for you, though.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Michael Wallner — view source

unread

If there was a bug with 'isset' it is that it returns false for a
variable that IS SET to null.

I honestly think that the only problem there is the name. If instead of isset() and empty() we had quiet_is_null and quiet_boolval, nobody would be the slightest bit surprised by their behaviour, and people looking to see if an array key exists would be more likely to find array_key_exists.

if the variable does not exist there is no way of testing for that
state
prior to calling is_null()

Correct, there is no way of testing for that full stop.

There is, though, not sure if already mentioned:

array_key_exists(“var”, get_defined_vars()) && is_null($var)

9 years ago by Rowan Collins — view source

unread

Michael Wallner wrote on 23/09/2015 09:38:

if the variable does not exist there is no way of testing for that
state
prior to calling is_null()

Correct, there is no way of testing for that full stop.
There is, though, not sure if already mentioned:

array_key_exists(“var”, get_defined_vars()) && is_null($var)

I wondered if someone would mention that, but didn't want to drift too
far from the point, which was the "prior to call is_null()" part of
Lester's sentence was redundant, since the problem was entirely
unrelated to is_null().

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

array_key_exists(“var”, get_defined_vars()) && is_null($var)

I wondered if someone would mention that, but didn't want to drift too
far from the point, which was the "prior to call is_null()" part of
Lester's sentence was redundant, since the problem was entirely
unrelated to is_null().

That the more modern way of working would be to perhaps remain in the
'associative array' space is a fact. Using expand() and then rebuilding
the expanded array along with all the other variables seems an even more
torturous fix to a simple problem. Yes from one point of view the
problem is not with is_null() and I can agree with that. The problem is
that one can't establish that a call to is_null() is going to access a
valid variable while only working in the simple procedural layer. While
'exists()' may seem to be unnecessary, it returns an answer which makes
subsequent work flow a LOT more consistent.

exists() -> empty() or is_null() answers all cases and isset() is
redundant but for BC reasons can't be removed.

Using isset() in place of exists() is NOT a valid substitution since one
can't then call is_null() KNOWING that the variable does exist. If the
variables are being created - or not - in this program flow, then a
check for exists() will establish if the variable needs creating, while
isset() will miss and overwrite a variable if it was quite legitimately
already created as null. If the default state is 'null' then there is
not a problem, but if that null is trying to override another default
... we have hopefully established that the null state is a natural
result of interaction with a database, but PHP has lost some of that
special handling by simply treating it as 'just another value' as now
happens by namespaces being able to override it.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 23/09/2015 11:28:

Yes from one point of view the
problem is not with is_null() and I can agree with that. The problem is
that one can't establish that a call to is_null() is going to access a
valid variable while only working in the simple procedural layer.

You can't establish that a call to any function is going to access a
valid variable (other than the way Michael mentioned). It really has
nothing to do with is_null(), and therefore with the notices that
is_null() emits.

exists() -> empty() or is_null() answers all cases and isset() is
redundant but for BC reasons can't be removed.

Lots of functions are redundant in that they can be built using other
functions. I don't see "if ( exists($foo) && ! is_null($foo) )" as an
improvement over "if ( isset($foo) )" for the extremely common case
where you don't want or need any distinction between the two states, though.

Using isset() in place of exists() is NOT a valid substitution since one
can't then call is_null() KNOWING that the variable does exist.

I think you're flogging a dead horse here. We all agree that isset()
does not check for variable existence.

Also, calling both isset() and is_null() on the same variable is
entirely pointless, because they both make exactly the same check. "if (
isset($foo) && is_null($foo) )" can be simplified to "if ( false )".

we have hopefully established that the null state is a natural
result of interaction with a database

Indeed, I have never disputed that. A non-existent variable, however, is
not something I've ever come across in a database context - it would
seem to require a result set having rows with different numbers of columns.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

Using isset() in place of exists() is NOT a valid substitution since one
can't then call is_null() KNOWING that the variable does exist.

I think you're flogging a dead horse here. We all agree that isset()
does not check for variable existence.

Also, calling both isset() and is_null() on the same variable is
entirely pointless, because they both make exactly the same check. "if (
isset($foo) && is_null($foo) )" can be simplified to "if ( false )".

NOW WE AGREE ;)
Simply because I DON'T want call 'isset() and is_null()' what I need
is is_exist() which is the missing function. THEN either of the other is
redundant, but neither replaces the check that the variable actually
exists and it's that which prevents a clean program flow.

we have hopefully established that the null state is a natural
result of interaction with a database

Indeed, I have never disputed that. A non-existent variable, however, is
not something I've ever come across in a database context - it would
seem to require a result set having rows with different numbers of columns.

This is perfectly correct, but IF a column is included in the result
set of a single row read - or not - is what we are talking about. If you
read more rows YES they will have the same set of columns but there is
nothing demanding that every column in the database is actually returned
in every query? Only returning the subset needed for the job is
perfectly sensible and there are a number of ways that can happen, some
of which COULD bypass the result set associative array, but simply
working off the returned array .. expanded ... in theory makes things easy.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 23/09/2015 13:22:

NOW WE AGREE ;)
Simply because I DON'T want call 'isset() and is_null()' whatI need
is is_exist() which is the missing function. THEN either of the other is
redundant, but neither replaces the check that the variable actually
exists and it's that which prevents a clean program flow.

Absolutely.

To be clear, my position is no longer that you are "wrong" to want this
function, only that your need for it is unusual, and not what most
people are looking for when they use isset().

That's why I propose a function of "variable_exists(string
$variable_name): boolean" for those cases where code is working with
dynamic variable names, in the same way as function_exists() and
class_exists() support working with dynamic definitions and autoloading.

If you
read more rows YES they will have the same set of columns but there is
nothing demanding that every column in the database is actually returned
in every query? Only returning the subset needed for the job is
perfectly sensible and there are a number of ways that can happen

OK, that makes sense.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Craig Francis — view source

unread

While skim reading emails (just got back from holiday), I wanted to add...

A non-existent variable, however, is not something I've ever come across in a database context - it would seem to require a result set having rows with different numbers of columns.

Imagine an admin interface with a table of orders (showing customer name, date, link to view details, etc).

Normally a simple SQL query can do this from 1 table (very fast).

But once a month the admin wants to see a new column (maybe checking if a particular product was in each order), and that uses a slightly different query (joining a second table, which might be very slow to execute).

In the view code (assuming no other helper for creating the HTML), it would be easier to read the following than using array_key_extists():

<?php if (exists($row['special'])) { ?>
<td>...</td>
<?php } ?>

Admittedly I would probably use a variable to say if the column will be there or not (because there is also the table headers to add).

That said, this probably doesn't really add to the use cases... but hopefully gives an example of a non-existent variable in a database context.

Craig

9 years ago by francois@php.net — view source

unread

Hi Rowan,

Le 18/09/2015 22:32, Rowan Collins a écrit :

It's the other way around - null doesn't mean uninitialized, but an uninitialized variable has the implicit value null. It's also a reasonably likely sign that there's a bug in your code, so PHP gives you a notice suggesting you set it explicitly before reading from it.

I think we got the point now ;)... and it seems eveyone except you and
Stas disagree on the way you understand this. I guess 99.9 % of PHP devs
would tell you that accessing an uninitialized variable triggers an
error. You can argue that a 'notice' is not an error but, in practice,
everybody considers it this way. Nobody will tell you : 'Oh, that's just
a notice, just disable E_NOTICE in your php.ini'.

As I already said, IMO, modifying the documentation to say "Warning:
using isset() instead of array_key_exists() to test whether an array
element exists will send you to hell." won't change anything. People
currently writing 'isset($foo['bar'])' won't change it for
'array_key_exists('bar',$foo)'. Just because it is longer, less
readable, and you need to remember argument order (which is quite
counter-intuitive).

So, as everyone seems to have exposed his arguments, I think we need an
RFC and a patch now. Unless anyone volunteers, I'll write the patch. Who
can write the RFC ? Robert ?

Regards

François

9 years ago by Stanislav Malyshev — view source

unread

Hi!

would tell you that accessing an uninitialized variable triggers an
error. You can argue that a 'notice' is not an error but, in practice,
everybody considers it this way. Nobody will tell you : 'Oh, that's just
a notice, just disable E_NOTICE in your php.ini'.

In fact, that's exactly what notice is meant for - something that can be
easily ignored. Otherwise, there's no different between notice and warning.

element exists will send you to hell." won't change anything. People
currently writing 'isset($foo['bar'])' won't change it for
'array_key_exists('bar',$foo)'. Just because it is longer, less
readable, and you need to remember argument order (which is quite
counter-intuitive).

If you insist on using wrong tool for the job, despite right tool being
available right next to you, then complaining about tool being wrong and
needing to change is not the right way to go.

--
Stas Malyshev
smalyshev@gmail.com

9 years ago by Lester Caine — view source

unread

element exists will send you to hell." won't change anything. People

currently writing 'isset($foo['bar'])' won't change it for
'array_key_exists('bar',$foo)'. Just because it is longer, less
readable, and you need to remember argument order (which is quite
counter-intuitive).
If you insist on using wrong tool for the job, despite right tool being
available right next to you, then complaining about tool being wrong and
needing to change is not the right way to go.

PLEASE ... There is no debate over isset($foo['bar']) ... no problem
with that at all! The problem is with isset($bar) where $bar is a simple
variable perhaps expected or not as a result of using expand() but that
is not the only path. I first hit this particular one becuase of notices
appearing on what had been clean code. And NO switching off those
notices is not the right fix, but it is the ONLY fix at the moment. So
IS there another fix for is_null($bar) not throwing a notice if it has
not been created in my example for the current template.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

I first hit this particular one becuase of notices
appearing on what had been clean code. And NO switching off those
notices is not the right fix, but it is the ONLY fix at the moment.

Please show me an example where isset() gives a notice.

IS there another fix for is_null($bar) not throwing a notice if it has
not been created in my example for the current template.

Yes, use isset().

Regards,

Rowan Collins
[IMSoP]

9 years ago by Rowan Collins — view source

unread

So, as everyone seems to have exposed his arguments, I think we need an
RFC and a patch now. Unless anyone volunteers, I'll write the patch.
Who
can write the RFC ? Robert ?

I may have given the impression of stubbornness in this discussion, but I have listened to people's arguments, and am considering an RFC proposing two functions:

a syntactic sugar for array_key_exists and property_exists, maybe called hasitem(); hasitem($foo['bar']) would check $foo has the item 'bar', but hasitem($foo) would be an error
a function for checking if a variable is in the current symbol table, maybe called variable_exists to match class_exists etc; it would take a string naming the variable, e.g. variable_exists('foo'); I am worried that this will be abused, and tempted to give it a "scarier" name

Importantly, neither of these should be presented as "fixing isset", since I have seen absolutely zero evidence that it is broken; the names and behaviours are designed to highlight that these are functions to be used for specific purposes.

Regards,

Rowan Collins
[IMSoP]

9 years ago by francois@php.net — view source

unread

Le 19/09/2015 14:25, Rowan Collins a écrit :

a syntactic sugar for array_key_exists and property_exists, maybe called hasitem(); hasitem($foo['bar']) would check $foo has the item 'bar', but hasitem($foo) would be an error

The most important, IMO, is a more intuitive, readable alternative to
array_key_exists(). Checking the existence of a plain var is important
for completeness and should be available, but remains an edge case, and
property_exists() seems sufficient.

Anyway, the problem we have with names like 'exists' or 'hasitem', is
that they would become reserved names. So, they couldn't be used as
function/method names anymore, creating an important BC break.

Regards

François

9 years ago by Benoit Schildknecht — view source

unread

Le Sat, 19 Sep 2015 19:44:01 +0200, "François Laupretre"
francois@php.net a écrit:

Le 19/09/2015 14:25, Rowan Collins a écrit :

a syntactic sugar for array_key_exists and property_exists, maybe
called hasitem(); hasitem($foo['bar']) would check $foo has the item
'bar', but hasitem($foo) would be an error

The most important, IMO, is a more intuitive, readable alternative to
array_key_exists(). Checking the existence of a plain var is important
for completeness and should be available, but remains an edge case, and
property_exists() seems sufficient.

Anyway, the problem we have with names like 'exists' or 'hasitem', is
that they would become reserved names. So, they couldn't be used as
function/method names anymore, creating an important BC break.

Regards

François

What about the context sensitive lexer ? exists() would be reserved as a
function name, but not more than that.

9 years ago by francois@php.net — view source

unread

Le 19/09/2015 20:28, Benoit Schildknecht a écrit :

What about the context sensitive lexer ? exists() would be reserved as a
function name, but not more than that.

You're right. I had been testing it on PHP 5 only. On PHP 7, I just
checked that 'isset()' can be used as a method name. So, the BC break
should be minimal.

Regards

François

9 years ago by Lester Caine — view source

unread

The examples Lester and Robert have come up with make sense in
themselves, but are not architectures I would choose precisely because
they are opaque (you have to remember what unset() and null mean) and
hard to extend (there's no way to introduce a 4th state alongside the
unset/null/value triad).

There are many 'essential' features of PHP that I'm unlikely to use
before I die. The coding style I use works for me and I'm blowed if I
will install composer on any system. My way of working takes advantage
of the fact that we DON'T have to sit down and define and type every
single variable used. In fact forcing me to type variables actually
breaks my code because I'm just as likely to pass an array of data for a
new record as an integer to access an existing one. We are not worried
about how YOU use PHP, but how many other people use it ...

The problem with isset is not one that affects me directly as I do use a
different style and only see 'expand' in libraries, but I've seen it
often enough via third party libraries to know that it needs fixing and
that has nothing to do with this mythical '4th state', just the current
state which we can't detect without notices.

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Ryan Pallas — view source

unread

On Fri, Sep 18, 2015 at 9:35 AM, Rowan Collins rowan.collins@gmail.com
wrote:

If what you want to write is "if ( ! exists($foo) || is_null($foo) ) { ...
}" then that is exactly what "if ( isset($foo) )" will give you, without
any notices whatsoever.

Conversely, if what you want to write is "if ( exists($foo) &&
is_null($foo) ) { ... }" then there is no way to do that currently.

I personally agree with you Rowan, that this feels like an unnecessary
addition to the language. On the other hand, I see no reason it shouldn't
exist if its a feature users want, especially considering its impossible to
implement in userland.

9 years ago by Rowan Collins — view source

unread

What would really be handy in a case like this is the ability to
create your own null-like values, guaranteed to be distinct from all
other values:

type hidden extends \php\basetypes\terminal {}
type default extends \php\basetypes\terminal {}

$checklist = hidden;
gettype($checklist); // 'hidden'
$checklist == hidden; // true
$checklist == deafult; // false
isset($checklist); // true

I realised after I wrote it that this particular train of thought has
basically led me to enums.

drafts new thread about adding enums to PHP

Regards,

--
Rowan Collins
[IMSoP]

9 years ago by Robert Williams — view source

unread

I’ll refer again to the above documentation:

"A variable is considered to be null if […] it has been unset().”

You are confusing two things.

The variable has value of null.

The variable does not exist, so when you try to get its value,
there's nothing to give you, but we don't want to produce fatal error
because of such trifle, so we substitute null instead.

Nothing confused here. If the variable doesn’t exist, then it doesn’t exist, and accessing it rightly produces an error (albeit a low-grade error). PHP gives you a token null to be nice, but the fact is, you still committed an error by trying to access something that doesn’t exist. I’m fine with all of that, but I also would like to have the option of easily knowing about the problem before I hit it.

And, although you may not care whether the provenance of a variable’s null lies in buggy code or in explicit programmer/user decision, I consider that an extremely important distinction. It’s the difference between, “What the hell, delete anyway. They can always do the work again.” and, “Okay, we’ve got a signed delete order from the user, so delete away."

This one can’t be chalked up to sloppy writing. Here, something is just
plain wrong.

I'm afraid the something which is wrong here is your understanding of
how undefined variables and nulls work :) "Considered to" is not the
same as "is". It's a substitution, not identity.

I understand it just fine, thank you, but I disagree with your forgiveness of the docs. An unset variable is not null. Rather, it’s completely undefined, and PHP yells at you for just that reason if you try to access it. Then, it turns around and tries to appease you by giving you null. If it changed it to null on access and never threw the error, your statement would be more accurate, but that’s not what happens.

For the record, I’d actually prefer that PHP throw a fatal error if you access an undefined variable because it almost always means that your code is working with junk data. Right along with that, however, I’d like a way to easily tell that my data is bad (i.e., a variable hasn’t been defined) so that I can gracefully handle the problem and avoid the fatal.

-Bob

9 years ago by Rowan Collins — view source

unread

An unset variable is not null. Rather, it’s
completely undefined, and PHP yells at you for just that reason if you
try to access it. Then, it turns around and tries to appease you by
giving you null.

I see it as rather the other way around: it happily gives you a null, but then says "oh, by the way, you never actually initialised that variable to null". Not an error, just a friendly aside.

9 years ago by Terry Cullen — view source

unread

Hi,

On 17 September 2015 at 19:01, Rowan Collins rowan.collins@gmail.com
wrote:

On 17 September 2015 02:17:59 BST, Robert Williams rewilliams@thesba.com
wrote:

An unset variable is not null. Rather, it’s
completely undefined, and PHP yells at you for just that reason if you
try to access it. Then, it turns around and tries to appease you by
giving you null.

I see it as rather the other way around: it happily gives you a null, but
then says "oh, by the way, you never actually initialised that variable to
null". Not an error, just a friendly aside.

--

Here is an example where exists would be useful;
// input is {name:'Ted', birth_dt: null}
$input = json_decode(file_get_contents('php://input'));
// I should have used property_exists() instead of isset().. wasn't
expecting a null..
if ( isset($input->birth_dt) && ! isValidBirthDate($input->birth_dt) )
{
throw new Exception('Bad birth date');
}
saveToDb($input); // Oh no... I clobbered birth date

Terry

9 years ago by Rowan Collins — view source

unread

Terry Cullen wrote on 17/09/2015 13:41:

Here is an example where exists would be useful;

You answered your own request:

// I should have used property_exists() instead of isset().. wasn't
expecting a null..

We already have that function, so that's alright then! :)

As I've said several times, we need to improve documentation around
this, but "I didn't find the existing function, so I need a new function
which will be no easier to find and won't work in most people's
environments" is a pretty weak argument in favour of a language change.

9 years ago by Terry Cullen — view source

unread

Hi Rowan,

On 17 September 2015 at 22:52, Rowan Collins rowan.collins@gmail.com
wrote:

Terry Cullen wrote on 17/09/2015 13:41:

Here is an example where exists would be useful;

You answered your own request:

// I should have used property_exists() instead of isset().. wasn't

expecting a null..

We already have that function, so that's alright then! :)

As I've said several times, we need to improve documentation around this,
but "I didn't find the existing function, so I need a new function which
will be no easier to find and won't work in most people's environments" is
a pretty weak argument in favour of a language change.

--

I agree that there is already ways around this issue, but I agree with Bob
that there is a hole that exists() would fill. I my world where PHP is the
glue between JSON requests and database queries, exists() would be a
function I'd use way more the array_key_exists(), property_exists(),
isset() and empty(). Further, in some scenarios exists($foo->bar) would
replace isset($foo) && is_object($foo) && property_exists($foo, 'bar').

9 years ago by Rowan Collins — view source

unread

Terry Cullen wrote on 17/09/2015 14:09:

I agree that there is already ways around this issue, but I agree
with Bob that there is a hole that exists() would fill. I my world
where PHP is the glue between JSON requests and database queries,
exists() would be a function I'd use way more the array_key_exists(),
property_exists(), isset() and empty(). Further, in some scenarios
exists($foo->bar) would replace isset($foo) && is_object($foo) &&
property_exists($foo, 'bar').

Yes, I've proposed elsewhere in this thread an exists() function (maybe
under a different name) that is just syntax sugar for
array_key_exists/property_exists, and raises an error if used with a
bare variable.

This, it turns out, is exactly what Perl has:
http://perldoc.perl.org/functions/exists.html

So you'd write exists($foo->bar), and the compiler would basically turn
that into property_exists('bar', $foo) with appropriate suppression of
notices in the same way isset() and empty() have.

There is still the problem that as this would be a language construct
not a real function, there would be no way to polyfill it for older
versions, so you couldn't use it until your code had a minimum version
requirement of 7.1. A PECL extension might be able to backport it to
older versions of PHP, but I doubt it would gain much adoption.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Stig Bakken — view source

unread

Le 23/09/2015 12:18, Rowan Collins a écrit :

Clearly, people misunderstand what isset() does, but I think an exists()
function which mimics it with a slight difference will only add to that
confusion - people will say "oh, if only I had PHP 7.1" rather than
looking for array_key_exists, for instance.

Yes, isset() name is misleading and exists() implements the behavior most
people actually expect from isset(). If a side effect is to motivate people
to adopt PHP 7, why not ?

What is going to motivate people to adopt PHP 7 is its performance
(and at some point the EOL of 5.x), not whether or not it has an
exists() function ;-)

If they start replacing calls to
isset()/array_key_exists() with exists(), that's their choice and it can
only improve overall readability.

The thing is, it won't really improve overall readability, because the
name exists() is still too vague. It may be obvious to the person who
wrote the code (at least for the first two weeks), then you're really
back into the same vagueness that isset() provides.

I'm still in favor of having a variable_exists('varname') function though.

My main concern is people using
isset($foo['bar']) and 'naively' assuming it always returns true when the
array element exists, because wrong assumptions are always potentially
problematic. The rest is just a question of completeness and consistency().
IMO, providing an exists() construct is easy to understand and to remember,
quite consistent as the scope is the same as isset(), and the drawbacks are
minimal (including BC break).

Regarding the confusion it may bring, the documentation can be very clear,
stating that the right tool to check for the existence of an array element
in pre-7.1 versions is array_key_exists(), not isset().

So the purpose of hasitem() was not to be a variant of isset(), but to
be a well-defined function which served a specific need that people
have. If there are other needs that people have, there can be other
functions to serve them.

hasitem cannot be implemented as a function. It needs to be defined in
the lexer/parser the same way as exists(), or do you mean it would receive a
string ? Anyway, if you want to allow 'hasitem($foo['bar'])', it cannot be a
function like property_exists()/functions_exists().

it defines 2 names instead of 1,

the 'hasitem' name is not extremely intuitive,

it is more complex to implement and I'm not sure I can do it :)

I don't see the reason to make it artificially more complex and harder to
remember.

Why would you want to add hasitem()? Writing code that treats arrays,
objects and variables as one thing is a bad practice (unless you
really know what you're doing etc.), and we definitely shouldn't
encourage people by giving them more perfumed band-aid to make smelly
code stink less.

Looking at some of your edge-cases:

array_key_exists() does not handle objects implementing ArrayAccess,

Sounds like something which could be fixed in array_key_exists, or
easily added to hasitem() without all the other baggage.

Possible, yes.

And the right thing to do. Or would you want to have to add special
cases for code depending on whether something was an object and
imlemented ArrayAccess? (There are a lot of cases where ArrayAccess
support is wanting, but that's a different issue.)

Variable variables provide dynamic names :

$var='var_to_check_'.$i;
if (exists($$var)) echo "$i: $$var";

IMO, that's not much harder than using variable_exists(<string>).

It is certainly a lot less readable.

Stig

9 years ago by Rowan Collins — view source

unread

Stig Bakken wrote on 23/09/2015 17:37:

I'm still in favor of having a variable_exists('varname') function
though.
[...]
Why would you want to add hasitem()?

FWIW, my plan was to draft one RFC, but hold separate votes for each
function.

I'm not even sure whether I'd vote yes myself, but it would at least
allow for more opinions to be recorded.

Regards,

Rowan Collins
[IMSoP]

9 years ago by Lester Caine — view source

unread

I'm still in favor of having a variable_exists('varname') function though.

We had it ...
https://bugs.php.net/bug.php?id=24274

--
Lester Caine - G8HFL

Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk

9 years ago by Rowan Collins — view source

unread

Lester Caine wrote on 23/09/2015 18:15:

I'm still in favor of having a variable_exists('varname') function though.
We had it ...
https://bugs.php.net/bug.php?id=24274

Actually that looks like what is currently being proposed as exists() -
a swiss-army knife function based on isset() which is called as though
you're examining the value.

Instead of this:

variable_exists($foo): yes (should be yes)
unset($foo);
variable_exists($foo): no (should be no)
variable_exists($bar): no (should be no)

My suggestion (with which I believe Stig was agreeing) is this:

variable_exists('foo'): yes (should be yes)
unset($foo);
variable_exists('foo'): no (should be no)
variable_exists('bar'): no (should be no)

9 years ago by Ryan Pallas — view source

unread

On Wed, Sep 23, 2015 at 12:27 PM, Rowan Collins rowan.collins@gmail.com
wrote:

My suggestion (with which I believe Stig was agreeing) is this:

variable_exists('foo'): yes (should be yes)
unset($foo);
variable_exists('foo'): no (should be no)
variable_exists('bar'): no (should be no)

I dislike this because it makes refactoring harder. Just like when we
rename a dynamic property, we have to search for its usage as a string
(which may be stored in a variable), and then analyze if those strings
warrant being changed. Of course, strings in a variable may also be created
dynamically, so simply searching for the name of a property being renamed
may not find you all its usages.

This feels like exactly the type of thing you were trying to avoid when you
suggested hasitem() since you pass it a compound variable expression
($var->prop, $var['key']) which makes refactoring easier.

I would prefer seeing both take actual expressions, much like isset and
empty. Basically, if variable_exists recurses then its an error and if
hasitem doesn't recurse its an error.

9 years ago by Rowan Collins — view source

unread

I dislike this because it makes refactoring harder. Just like when we
rename a dynamic property, we have to search for its usage as a string
(which may be stored in a variable), and then analyze if those strings
warrant being changed. Of course, strings in a variable may also be
created
dynamically, so simply searching for the name of a property being
renamed
may not find you all its usages.

But variable_exists is only ever useful when using dynamic variable declarations anyway. If you have stable variable names which are amenable to static analysis, you should never need to know if they "exist" or not.

What's more, the function is not dereferencing a variable to get its value, it is looking up a name in the symbol table, so the magic syntax that makes it look like you're using the variable is misleading.

And yes, the same criticism is true of hasitem(); I'm not 100% sure if it's a good idea or not, only that it's preferable to a Swiss-army knife exists().

Regards,

Rowan Collins
[IMSoP]

9 years ago by Rowan Collins — view source

unread

Rowan Collins wrote on 23/09/2015 21:15:

I dislike this because it makes refactoring harder.
What's more, the function is not dereferencing a variable to get its value, it is looking up a name in the symbol table, so the magic syntax that makes it look like you're using the variable is misleading.

Talking of refactoring, I thought of an interesting example of the
ambiguity/confusion a combined exists() function could create.

For any normal function the two definitions below should be equivalent -
you can refactor the use of $GLOBALS by importing the variable with the
"global" keyword.

function foo() { var_dump(exists($GLOBALS['test'])); }
function bar() { global $test; var_dump(exists($test)); }

I haven't actually built François's branch to test, but based on
behaviour of existing functions [e.g. https://3v4l.org/X0tOk], I predict
the following output:

foo();
// bool(false)
bar();
// bool(true)

The "global $test" is the closest PHP comes to a variable declaration -
the variable now exists in the symbol table, even though there was no
global variable with that name to import.

Even more confusingly, it has a side-effect on the original function:

foo();
// bool(true)

That happens because "global $test" is basically "$test =&
$GLOBALS['test']", so has to create the global variable in order to
reference it. This is completely invisible to most programs, because it
gets initialised to null, so isset() returns false consistently.
[https://3v4l.org/f4dm2]

This is the kind of odd edge-case you end up with when you a) treat a
variable's existence as an accessible property; and b) make that check
appear to be the same as checking for an item in an array.

With the two functions I've proposed, you at least wouldn't be led
astray by an automated refactoring tool because this would give an
error, rather than a surprising result:

function bar() { global $test; var_dump(hasitem($test)); }

And you would have to specifically change it to this instead, clearly a
different type of test:

function bar() { global $test; var_dump(variable_exists('test')); }

Regards,

Rowan Collins
[IMSoP]

9 years ago by francois@php.net — view source

unread

Le 23/09/2015 18:37, Stig Bakken a écrit :

If they start replacing calls to
isset()/array_key_exists() with exists(), that's their choice and it can
only improve overall readability.

The thing is, it won't really improve overall readability, because the
name exists() is still too vague. It may be obvious to the person who
wrote the code (at least for the first two weeks), then you're really
back into the same vagueness that isset() provides.

I don't say it's more readable than isset(), I say that's more readable
than array_key_exists().

array_key_exists() does not handle objects implementing ArrayAccess,

Sounds like something which could be fixed in array_key_exists, or
easily added to hasitem() without all the other baggage.

Possible, yes.

And the right thing to do. Or would you want to have to add special
cases for code depending on whether something was an object and
imlemented ArrayAccess? (There are a lot of cases where ArrayAccess
support is wanting, but that's a different issue.)

I am all for adding ArrayAccess support to array_key_exists() and other
functions where it is not handled. The same for property_exists() and
magic methods. I'm just afraid of endless discussions about potential BC
breaks :)

Regards

François

9 years ago by Rowan Collins — view source

unread

François Laupretre wrote on 23/09/2015 22:17:

Le 23/09/2015 18:37, Stig Bakken a écrit :

If they start replacing calls to
isset()/array_key_exists() with exists(), that's their choice and it
can
only improve overall readability.

The thing is, it won't really improve overall readability, because the
name exists() is still too vague. It may be obvious to the person who
wrote the code (at least for the first two weeks), then you're really
back into the same vagueness that isset() provides.

I don't say it's more readable than isset(), I say that's more
readable than array_key_exists().

To be pedantic, you actually did say that, in the text quoted above:
"replacing calls to isset() ... with exists() ... can only improve
overall readability".

Regardless, Stig's point stands, that exists() is a very general name,
and the proposed function definition is also very all-inclusive, leading
to the risk of hard-to-understand code.

Regards,

Rowan Collins
[IMSoP]

PHP 7.1 - Address PHPSadness #28?

Regards,

Regards,

Regards,

Regards,

Regards,

Regards,

-- Lester Caine - G8HFL

Regards,

Regards,

Regards,

Regards,

Regards,

Regards,

Regards,

Regards,

-- Lester Caine - G8HFL

Regards,

Regards,

Regards,

Regards,

Regards,

Regards,

Regards,

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

Regards,

Regards,

Regards,

-- Lester Caine - G8HFL

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

-- Lester Caine - G8HFL

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

Regards,

Regards,

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

Regards,

Regards,

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

Regards,

-- Lester Caine - G8HFL

Regards,

Regards,

-- Lester Caine - G8HFL

Regards,

Regards,

-- Lester Caine - G8HFL

Regards,

Regards,

Regards,

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL

--
Lester Caine - G8HFL