Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:125275 X-Original-To: internals@lists.php.net Delivered-To: internals@lists.php.net Received: from php-smtp4.php.net (php-smtp4.php.net [45.112.84.5]) by qa.php.net (Postfix) with ESMTPS id 845251A00BD for ; Mon, 26 Aug 2024 16:23:25 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=php.net; s=mail; t=1724689518; bh=BtWtmm5sxBkdSsE4p8EdAAgHFDFQPNaXb1veUXIFIzM=; h=From:Date:Subject:To:From; b=d7YdusswkPlChQ4ZTb19dxXfyFR9rUdLaj5L1pHGacVV5pq14XiT+DFHXdHExdZoI nBN3dLaOHTtsqkzw0lrSirw/3PS14FaIy0u1UODvtmnU6tQMrympQ5tDs2HrQn85fN 40zxSAti1WE7kastGQXRTmfP8C+WHuN8NWYsNdzW+l5xApXqbxh3sT4vovXgSiOBZG num+kZ/cVR+oDAv5quVZWyQTgeNAAdpVMay/Q3R3BrXglF1X1ETKYQ/C5fhPv4Z2W6 stWfAhokYljnGx+tIYP40zLXTIHxI6yf9sN12HpVOfWcw7FQjrLPboB4ZrKMFXY/vg QWwcRSAsdt48w== Received: from php-smtp4.php.net (localhost [127.0.0.1]) by php-smtp4.php.net (Postfix) with ESMTP id 99DD5180032 for ; Mon, 26 Aug 2024 16:25:17 +0000 (UTC) X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-13) on php-smtp4.php.net X-Spam-Level: **** X-Spam-Status: No, score=4.7 required=5.0 tests=BAYES_50,DMARC_NONE, RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL,SPF_HELO_NONE, SPF_SOFTFAIL autolearn=no autolearn_force=no version=4.0.0 X-Spam-Virus: No X-Envelope-From: Received: from 9.mo550.mail-out.ovh.net (9.mo550.mail-out.ovh.net [178.32.108.172]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by php-smtp4.php.net (Postfix) with ESMTPS for ; Mon, 26 Aug 2024 16:25:16 +0000 (UTC) Received: from director6.ghost.mail-out.ovh.net (unknown [10.108.9.128]) by mo550.mail-out.ovh.net (Postfix) with ESMTP id 4Wswvt2hdYz1RhD for ; Mon, 26 Aug 2024 16:23:22 +0000 (UTC) Received: from ghost-submission-6684bf9d7b-gh7jn (unknown [10.110.101.166]) by director6.ghost.mail-out.ovh.net (Postfix) with ESMTPS id 0C6E61FE68 for ; Mon, 26 Aug 2024 16:23:21 +0000 (UTC) Received: from php.earth ([37.59.142.98]) by ghost-submission-6684bf9d7b-gh7jn with ESMTPSA id pxivN/mrzGZXjxEA8SbmEg (envelope-from ) for ; Mon, 26 Aug 2024 16:23:21 +0000 Authentication-Results:garm.ovh; auth=pass (GARM-98R002addac12b-2a39-4319-8ac0-def470e304a8, 0FD98667EBE93B03DC8CDDA5D2F9419595E70D86) smtp.auth=peter.kokot@php.earth X-OVh-ClientIp:209.85.221.174 Received: by mail-vk1-f174.google.com with SMTP id 71dfb90a1353d-4fceb60e169so1645813e0c.3 for ; Mon, 26 Aug 2024 09:23:21 -0700 (PDT) X-Gm-Message-State: AOJu0YwoqvB8J91qHVT78KtsSO9/kwKQRqcmJcEcmFVvavBrePDnlFaa wDn7c5fXpc7fHc2GKqut5DWQHkhlImYP/1JKvNX4UiTY++ri83tH7HjWbu7ZioBffajJFjXNnTu 4qGwpV/iIK16Tq0OU1jUQkhyTkdo= X-Google-Smtp-Source: AGHT+IFmHS8X33+++rhtUZ0cGkQucJOCG3CqOetDM1R89yqHSDYjgD+H6gIsOiUqtitPJBceCE6nJh92zni6XricJCM= X-Received: by 2002:a05:6122:3199:b0:4f5:26c6:bf31 with SMTP id 71dfb90a1353d-4fd1ad6725bmr13377920e0c.12.1724689400939; Mon, 26 Aug 2024 09:23:20 -0700 (PDT) Precedence: bulk list-help: list-post: List-Id: internals.lists.php.net x-ms-reactions: disallow MIME-Version: 1.0 Date: Mon, 26 Aug 2024 18:23:09 +0200 X-Gmail-Original-Message-ID: Message-ID: Subject: [PHP-DEV] Native SSL support in Phar extension To: Internals Content-Type: text/plain; charset="UTF-8" X-Ovh-Tracer-Id: 12392217327869485574 X-VR-SPAMSTATE: OK X-VR-SPAMSCORE: 0 X-VR-SPAMCAUSE: gggruggvucftvghtrhhoucdtuddrgeeftddruddvkedgleekucetufdoteggodetrfdotffvucfrrhhofhhilhgvmecuqfggjfdpvefjgfevmfevgfenuceurghilhhouhhtmecuhedttdenucenucfjughrpegghfffkffuvfgtsehttdertddttdejnecuhfhrohhmpefrvghtvghrucfmohhkohhtuceophgvthhksehphhhprdhnvghtqeenucggtffrrghtthgvrhhnpeeffeelfedtfeeuhefhtdehudelteeffeegleffveffveffkeeuhfeufeegudetieenucffohhmrghinhepghhithhhuhgsrdgtohhmnecukfhppeduvdejrddtrddtrddupddvtdelrdekhedrvddvuddrudejgedpfeejrdehledrudegvddrleeknecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehinhgvthepuddvjedrtddrtddruddpmhgrihhlfhhrohhmpehpvghtkhesphhhphdrnhgvthdpnhgspghrtghpthhtohepuddprhgtphhtthhopehinhhtvghrnhgrlhhssehlihhsthhsrdhphhhprdhnvghtpdfovfetjfhoshhtpehmohehhedtpdhmohguvgepshhmthhpohhuth From: petk@php.net (Peter Kokot) Hello, There came up another idea/issue about the Phar extension and its native SSL support. As you might know or not, when building PHP: ./configure --with-openssl --enable-phar the Phar extension will get so-called native SSL enabled through OpenSSL directly. However, when built like this: ./configure --with-openssl=shared --enable-phar=shared or ./configure --with-openssl=shared --enable-phar the SSL support will depend on whether the ext/openssl is loaded and enabled during PHP runtime. SSL support in both cases is done with different pieces of code (one is using ext/openssl functions and the other one - native SSL - is using OpenSSL calls directly). Also in phpinfo output there is a bit of different info given based on the SSL type. On Windows there is also a slight inconsistency at the moment where there is obsolete --enable-phar-native-ssl configure option available which is using missing libeay32 library. My first understanding was that native SSL is "better" as it uses OpenSSL directly but it turned out that the code is outdated: https://github.com/php/php-src/pull/14578 So, a new suggestion here is to remove the native SSL support in phar extension in favor of using a PHP openssl extension's API (or better call it function calls for the time being): https://github.com/php/php-src/pull/15574 This would make the SSL support in phar more consistent because now people aren't even aware of this. For example, on Alpine Linux default packages there is openssl extension used in phar extension and on Ubuntu's default packages there is this native SSL used. Does anyone see any issues with removing the native SSL support in Phar extension? Let me know. Ideally we would remove it in PHP 8.4 otherwise in the version after that...