PHP 8.3: Randomizer Additions

Related to https://github.com/PHPCompatibility/PHPCompatibility/issues/1589

## Analysis

This analysis covers two related changes.

PHP 8.3 adds new methods to the existing `\Random\Randomizer` class:

```php
final class Random\Randomizer {
    // ...
    public getBytesFromString(string $string, int $length): string
    public nextFloat(): float
    public nextInt(): int
}
```

PHP 8.3 adds a new enum `\Random\IntervalBoundary`:

```php
enum IntervalBoundary {
    case ClosedOpen;
    case ClosedClosed;
    case OpenClosed;
    case OpenOpen;
}
```

- The `\Random\IntervalBoundary` class name becomes reserved
- The RFC also [mentions](https://wiki.php.net/rfc/randomizer_additions#backward_incompatible_changes) that the random extension reserves the \Random namespace. This is not new and doesn't emit warnings, but perhaps still worth flagging any classes defined in that namespace.

### Top 2000 Packages

The only backward-incompatible change is the reserved name, so I looked for all declarations of the `\Random` namespace, and the only hits I got were stubs in static analysis tools, which is expected and not an issue. Example occurrence locations:

- /phpstan/php-8-stubs/stubs/ext/random/Random/IntervalBoundary.php
- /jetbrains/phpstorm-stubs/random/random.php
- /symfony/polyfill-php82/Resources/stubs/Random/Engine.php

### Detection in PHP 8.1

- `\Random`: ✅ Not yet introduced in that version

### Detection in PHP 8.2

- Any existing class declarations in `\Random` namespace: ❌ Existing class
- Any other class declarations in `\Random` namespace: ⚠️ Reserved namespace (perhaps no need to check for `IntervalBoundary` specifically)
- Usage of the `\Random\IntervalBoundary` enum: ❌ Doesn't exist yet
- `Randomizer::getBytesFromString`: ❌ Doesn't exist yet
- `Randomizer::nextFloat`: ❌ Doesn't exist yet
- `Randomizer::nextInt`: ❌ Doesn't exist yet

### Detection in PHP 8.3

- Declaration of a `\Random\IntervalBoundary` class: ❌ Existing class
- Any other class declarations in `\Random` namespace: ⚠️ Reserved namespace
- Usage of the `\Random\IntervalBoundary` enum: ✅ Valid
- Usage of `\Random\IntervalBoundary` cases : ✅ Valid
- `Randomizer::getBytesFromString`: ✅ Valid
- `Randomizer::nextFloat`: ✅ Valid
- `Randomizer::nextInt`: ✅ Valid

### Syntax Variations

- [Reserved classname 1](https://3v4l.org/CgnEZ)
- [Reserved classname 2](https://3v4l.org/J11eu)
- [Ways to interact with Randomizer methods](https://3v4l.org/sglRN)
- [Ways to interact with IntervalBoundary enum](https://3v4l.org/Kd19Y)

### Detectability

- Class declarations inside a specific namespace: ✅ Detectable with PHPCompatibility
- Usage of the `IntervalBoundary` enum: ✅ Mostly feasible, except when the classname becomes dynamic.
- Usage of the `IntervalBoundary` enum cases: ⚠️ Since we can assign an enum to a variable, we can lose track, so not all scenarios can be detected.
- Usage of new `Randomizer` methods: ⚠️ Since we can assign the instance to a variable, we can lose track, so not all scenarios can be detected.

Examples in "Syntax Variations" above.

## References

- [RFC: Randomizer Additions](https://wiki.php.net/rfc/randomizer_additions)
- [PR: Add Randomizer::getBytesFromString() method](https://github.com/php/php-src/pull/9664)
    - [Commit](https://github.com/php/php-src/commit/ac3ecd03af009d433d4b75d570b3b0f0a3fc0ff7)
- [PR: Add Randomizer::nextFloat() and Randomizer::getFloat()](https://github.com/php/php-src/pull/9679)
    - [Commit](https://github.com/php/php-src/commit/f9a1a903805a0c260c97bcc8bf2c14f2dd76ca76)
- PHP Manual:
    - [Migrating from PHP 8.2.x to PHP 8.3.x - New Functions](https://www.php.net/manual/en/migration83.new-functions.php#migration83.new-functions.random)
    - [Random\Randomizer::getBytesFromString](https://www.php.net/manual/en/random-randomizer.getbytesfromstring.php)
    - [Random\Randomizer::nextFloat](https://www.php.net/manual/en/random-randomizer.nextfloat.php)
    - [Random\Randomizer::getFloat](https://www.php.net/manual/en/random-randomizer.getfloat.php)
    - [The Random\IntervalBoundary Enum](https://www.php.net/manual/en/enum.random-intervalboundary.php)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

PHP 8.3: Randomizer Additions #1992

Analysis

Top 2000 Packages

Detection in PHP 8.1

Detection in PHP 8.2

Detection in PHP 8.3

Syntax Variations

Detectability

References

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

PHP 8.3: Randomizer Additions #1992

Description

Analysis

Top 2000 Packages

Detection in PHP 8.1

Detection in PHP 8.2

Detection in PHP 8.3

Syntax Variations

Detectability

References

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions