Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:107735
Return-Path: <jakub.php@gmail.com>
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 36173 invoked from network); 30 Oct 2019 20:45:53 -0000
Received: from unknown (HELO php-smtp3.php.net) (208.43.231.12)
  by pb1.pair.com with SMTP; 30 Oct 2019 20:45:53 -0000
Received: from php-smtp3.php.net (localhost [127.0.0.1])
	by php-smtp3.php.net (Postfix) with ESMTP id 6E22F2D1FD9
	for <internals@lists.php.net>; Wed, 30 Oct 2019 11:33:51 -0700 (PDT)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on php-smtp3.php.net
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM,
	HTML_MESSAGE,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,
	URIBL_BLOCKED autolearn=no autolearn_force=no version=3.4.2
X-Spam-ASN: AS15169 209.85.128.0/17
X-Spam-Virus: No
Received: from mail-qk1-f194.google.com (mail-qk1-f194.google.com [209.85.222.194])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by php-smtp3.php.net (Postfix) with ESMTPS
	for <internals@lists.php.net>; Wed, 30 Oct 2019 11:33:51 -0700 (PDT)
Received: by mail-qk1-f194.google.com with SMTP id d13so3839230qko.3
        for <internals@lists.php.net>; Wed, 30 Oct 2019 11:33:51 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=LRhJLfF50EnH962tp8B5tPxVa0K4k6la7UgJ7lHb/YE=;
        b=JIcWBiSP8nSsZI7CA+uTNOsBnxL553ECmjByispx4TiD2bpuU8VEDC78PDl01J2QCr
         zUvfVN0huzMDAq24zgPnHZ2bVpA3PxKp3RlFz38SDBahMdm6UySnsbYPFpI1JkeOcRX3
         jlL54OXLOvrPk+DOLGme1yxFLFo/dL7d4orAEZUcF4hFSPJXLudY6u4ghCd8GIdmXF2j
         3a5tIZFUXaGim7eYo8oGpO1mEqBL4QgMekw9U+spdF7uq8ak2rzYSWF3cgfvD1DvJmUH
         jbUpUFRlkYE7YpYNTLVYTbh6OEVjN/4tmCHdaX7B+ZSFsqtDFJgcqWL6JgJDr9JObCKZ
         riDw==
X-Gm-Message-State: APjAAAWv/73z6MhPqEForjSxOl2CuPN7eINIx/w4EdY9n2edK2pZF0rZ
	RdyhJaMJFc964LtWVA+Mx6zU2GpBc9mu3ylhM5x76w==
X-Google-Smtp-Source: APXvYqxTsrK7g8LlNcPhL384eYy7Kx4KfQBdIM/TH3txV/4eK9A1J5RZTDCmX+FvMrhwtgzApGGkrEixzLgRwSpi80A=
X-Received: by 2002:a37:4f0a:: with SMTP id d10mr1458041qkb.286.1572460430864;
 Wed, 30 Oct 2019 11:33:50 -0700 (PDT)
MIME-Version: 1.0
References: <A91E718E-B023-42DC-AC8D-BC989F5A80E4@cschneid.com>
 <CAF+90c_75x0ZoD63CoLXY3kUKNQQuR_HhaO998osHuzV7ZGXuw@mail.gmail.com> <CAEKnhAHbUf0w1WYqHWYAQD79DJo21HFC1cYoo07AV12NhpBAQQ@mail.gmail.com>
In-Reply-To: <CAEKnhAHbUf0w1WYqHWYAQD79DJo21HFC1cYoo07AV12NhpBAQQ@mail.gmail.com>
Date: Wed, 30 Oct 2019 18:33:39 +0000
Message-ID: <CAEKnhAHmmj+iySEPsuT9McJXKb9sR8MOTinvsxQYakDn2_hAMw@mail.gmail.com>
To: Nikita Popov <nikita.ppv@gmail.com>
Cc: Christian Schneider <cschneid@cschneid.com>, PHP internals list <internals@lists.php.net>
Content-Type: multipart/alternative; boundary="00000000000067b3b4059624f925"
X-Envelope-From: <jakub.php@gmail.com>
Subject: Re: [PHP-DEV] PHP 7.4 BC break with openssl_random_pseudo_bytes()
From: bukka@php.net (Jakub Zelenka)

--00000000000067b3b4059624f925
Content-Type: text/plain; charset="UTF-8"

On Wed, 30 Oct 2019, 18:32 Jakub Zelenka, <bukka@php.net> wrote:

>
>
> On Mon, 23 Sep 2019, 14:02 Nikita Popov, <nikita.ppv@gmail.com> wrote:
>
>> On Mon, Sep 23, 2019 at 2:52 PM Christian Schneider <
>> cschneid@cschneid.com>
>> wrote:
>>
>> > Hi,
>> > I just noted (too late in the process, I know) that
>> > openssl_random_pseudo_bytes(0) now throws an exception.
>> >
>> > This breaks code like
>> >         $ivsize = openssl_cipher_iv_length($method);
>> >         $iv = openssl_random_pseudo_bytes($ivsize);
>> >         $data = openssl_encrypt($string, $method, $key,
>> OPENSSL_RAW_DATA,
>> > $iv);
>> > if $method is 'aes-256-ecb' because $ivsize is 0.
>> >
>> > I do realize that ECB mode ciphers are deprecated but having them throw
>> an
>> > exception indirectly via openssl_random_pseudo_bytes() seems a bit
>> strange,
>> > even in the context of security.
>> >
>> > I checked the RFC
>> > https://wiki.php.net/rfc/improve-openssl-random-pseudo-bytes and it
>> > doesn't mention this BC break:
>> > "False-checks on the return value of openssl_random_pseudo_bytes() will
>> do
>> > nothing since the function fails closed. Usage of $crypto_strongwill
>> > generate errors."
>> >
>> > While I would have preferred the exception to be thrown only when
>> $ivsize
>> > is not an integer or less than 0 but I guess this cannot be changed at
>> the
>> > RC stage.
>> >
>> > I would recommend though that we aim to keep BC breaks to what's
>> mentioned
>> > in RFCs.
>> >
>>
>> This was noted during the PR review in:
>> https://github.com/php/php-src/pull/3649#discussion_r230598754 Especially
>> in conjunction with your example, I think we should revert this part an
>> make openssl_random_pseudo_bytes(0) return "" without exception or
>> warning.
>> Ideally we'd adjust random_bytes() to do the same.
>>
>
> I agree this should be reverted for 7.4 at least as it's a BC and wasn't
> really in RFC. It really doesn't matter if it's a good thing or not as it's
> a BC that we shouldn't do in minor release.
>

I mean BC break ofc... :)

>

--00000000000067b3b4059624f925--