Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:103375
Return-Path: <php@golemon.com>
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 87099 invoked from network); 23 Oct 2018 18:48:40 -0000
Received: from unknown (HELO mail-qk1-f180.google.com) (209.85.222.180)
  by pb1.pair.com with SMTP; 23 Oct 2018 18:48:40 -0000
Received: by mail-qk1-f180.google.com with SMTP id e4so1016166qkh.6
        for <internals@lists.php.net>; Tue, 23 Oct 2018 08:03:34 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:from:date:message-id:subject:to;
        bh=3o3Okdb+bDXQMM8exsa6PY59Mv8Mv0WdSfn8rJbaedM=;
        b=uIf7PPDv48bKBIsAy/407j7iOVwn/QxrjW9XDFPmpMZNlqiwfM8DLMH9IlfBrSex0S
         50Kb+oEuHCnAco0gfG0Wkg79UJsRR/9gAWdVa4WNXhd75jLDxldzvpeiT82FyDqoJHOK
         rrIN/PLi+WUDZTrglQLsZrs7nDlCIkTmLDMVEcmJbkCcARGcxqciJsPoUAd9sWZN98Gb
         eaCMtmm8DTWcqEDNFO+IfnKdD17cIDo6Tzj54UOGkqoEQ9xThjTqfbNCTZ8iI2lHCqyd
         y/zdczv6wMLqGVFwRTxv0zwWMCWtDURpZVMmruLNSkdiKFmhR46H7yx0zguE8GibmNR3
         v2Ng==
X-Gm-Message-State: AGRZ1gLCv7ChbnhcjgHmr1b0Iskz9qbitHtliGmkW1rly8DglLli06fb
	OM+hGW1VWcRjU5816i/9GVE3PCM+5QRyfbEDpDj3Ebq6mSA=
X-Google-Smtp-Source: AJdET5fKQnzQBAEVNtFdk8g+PawEXnvt2egGE+7qs9xFj86XvNTHX/DTtgfsFBWmQcQOuiZxaJwm/l9LqEGHrtHdxTE=
X-Received: by 2002:a37:d994:: with SMTP id q20mr7590032qkl.116.1540307008730;
 Tue, 23 Oct 2018 08:03:28 -0700 (PDT)
MIME-Version: 1.0
Date: Tue, 23 Oct 2018 10:03:17 -0500
Message-ID: <CAESVnVoyM0=jVRQ2+NhmrkB2b8qJL4W04nUkZtnZO=LjqiYMEg@mail.gmail.com>
To: PHP internals <internals@lists.php.net>
Content-Type: text/plain; charset="UTF-8"
Subject: [RFC] Password Hash Registry
From: pollita@php.net (Sara Golemon)

Moving https://wiki.php.net/rfc/password_registry to "Under
Discussion" (previously "Draft").

Since originally drafting this proposal, I've changed the algorithm
selector from the current integer set to a more predictable string key
(similar to the hash extension).  I think I'll probably extend this
slightly further to overload the function algo parameters such that
they'll accept integer (0-3) as BC for DEFAULT, BCRYPT, ARGON2I, and
ARGON2ID respectively.  Please comment if you think that's a bad idea
(or a good one).

-Sara