Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:126393
X-Original-To: internals@lists.php.net
Delivered-To: internals@lists.php.net
Received: from php-smtp4.php.net (php-smtp4.php.net [45.112.84.5])
	by qa.php.net (Postfix) with ESMTPS id 1D5751A00BC
	for <internals@lists.php.net>; Thu, 13 Feb 2025 15:12:50 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=php.net; s=mail;
	t=1739459407; bh=c1kqClOS7ZlbNowQWmuJgeW6d4Hh9R38cqjBobPgTXk=;
	h=References:In-Reply-To:From:Date:Subject:To:Cc:From;
	b=FD/zRehGu+lhmlmzvtEQQOy5IW5K33zOcF2b52zFpAELoZpwEDkJR3cQkx8OMqSvc
	 XSr+759oqhKJ6BuKrrXUtRXdUmrLdGreU5abM2tQj8aY7C9n2ZezUDgDwXM104J3dS
	 DEYKsW5cHJ0WDAWWuaSwlZ4snpL18D6F5xw939XjrA5rF8M+F0jBwChufV/40G0+MF
	 nv6xqmCYXSAv2Cuda1pSm28ceTslhhKbiu/RgCr77srILSdMqFr/7cN1GdrfvI1bhQ
	 RC5sliwcrOg02WiXdv/6Lq8WYPoZf7kt2TtueHg8Xk//f3j+mqPA36KT4u5zWT8xt/
	 6SxsKcbTJCe6w==
Received: from php-smtp4.php.net (localhost [127.0.0.1])
	by php-smtp4.php.net (Postfix) with ESMTP id 7706C180034
	for <internals@lists.php.net>; Thu, 13 Feb 2025 15:10:06 +0000 (UTC)
X-Spam-Checker-Version: SpamAssassin 4.0.0 (2022-12-13) on php-smtp4.php.net
X-Spam-Level: 
X-Spam-Status: No, score=-0.9 required=5.0 tests=BAYES_50,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,DMARC_PASS,
	FREEMAIL_ENVFROM_END_DIGIT,FREEMAIL_FROM,RCVD_IN_DNSWL_NONE,
	RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,SPF_PASS autolearn=no
	autolearn_force=no version=4.0.0
X-Spam-Virus: No
X-Envelope-From: <tekiela246@gmail.com>
Received: from mail-lj1-f173.google.com (mail-lj1-f173.google.com [209.85.208.173])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
	(No client certificate requested)
	by php-smtp4.php.net (Postfix) with ESMTPS
	for <internals@lists.php.net>; Thu, 13 Feb 2025 15:10:06 +0000 (UTC)
Received: by mail-lj1-f173.google.com with SMTP id 38308e7fff4ca-30737db1ab1so10474701fa.1
        for <internals@lists.php.net>; Thu, 13 Feb 2025 07:12:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20230601; t=1739459567; x=1740064367; darn=lists.php.net;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:from:to:cc:subject:date:message-id:reply-to;
        bh=c1kqClOS7ZlbNowQWmuJgeW6d4Hh9R38cqjBobPgTXk=;
        b=ipEHjS1efFYR3aNmXJOWU8EWZcpqLBHmnZw6qph0NAZxwqNoyQ+v9CbJTz18eqCcIG
         V1+JSTYjnksD+Coh6VTEieE6kXTR8Z2LFVtWUgf4VIk1EWXPitjzucE+/LKCXc2qy7eN
         ocFpnNW2t/cxtV3c32khHVTrUrZIYAmu0HfoOv0ebpGLXb0WG/uZcE6iZny1CkI+spzT
         ci4v5/7UwUcNgRxHutAfrRsjVifLbrDFn6lVtef+9rkLH3JXdKXiJFJPFpUIh+1lw9jS
         fObkltSi42N9T5mev9EzwpAOcf6oYegFbTeWyZs1/URq/DLvCZdakpLNFR/r7H54JVpC
         YSQw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1739459567; x=1740064367;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=c1kqClOS7ZlbNowQWmuJgeW6d4Hh9R38cqjBobPgTXk=;
        b=q1auoiTkUzMnXzX3/Rw5r7LuSCdm+ooY1L+pRCCsXkLDShpNZGThg/iQ8ii3O+zP7b
         4L6NCOsQSk0CP50Q/jrsyyt3+95HKuBoLeP0ShGdinc77EtXYR0BS4xKK5MqMV0VV5UA
         0MpY4ugJbfu2bbVAXG0W/jszH0q2bjqBtY8JSlax0e53+KV4OuvfhgDXi1NhNeRS2U//
         DKMYWOZERRPWORaApGlZDbZU8cLixQRAJjVI54i9Kv1B5LylPNutipODQfsphuv4I08Q
         dNEFoAaDRmpDvHH5qGIm4eiWnyTK2CVnTFoAY9QGLPP30d59HLPk0qrvXlBGPngYnWR5
         6HmA==
X-Gm-Message-State: AOJu0YyQ6VKhlxp34Qij/kmcfT4LBm+RTcZ5Wfae/M9883U9DCZC7+ga
	gqfQQi5We6+vz+J3vI2bQS8VRBwlvdaEmWNb5uauv4ajUuelHUTiCEWkAXrz6zRt+YJ84T7kZD+
	9iaegs6nPiYTPv7SV/uRDexpQbFk=
X-Gm-Gg: ASbGncuRpZBX/nqVxbZbMHARnCbyG5g7GUdtPyU90HPlXYJYSm3CIXs01M/B/yIo0rB
	CAjRcfEams4dCHgw8g9pwb87wyxydxxrQN8K5OLSrl8IfC5TQFkDJuQdLOU6yKnJFFKMvq86J
X-Google-Smtp-Source: AGHT+IFGhdavlDSipUPN4z7WVMnG7ecQ7rNGpaAN9IAXQUoHOQdYwV1DoXw6g7srQXtwsOlnP6o3jKJErUlzJ/9BC30=
X-Received: by 2002:a05:651c:505:b0:308:eabd:297a with SMTP id
 38308e7fff4ca-309037d71e1mr25969331fa.17.1739459566964; Thu, 13 Feb 2025
 07:12:46 -0800 (PST)
Precedence: bulk
list-help: <mailto:internals+help@lists.php.net
list-unsubscribe: <mailto:internals+unsubscribe@lists.php.net>
list-post: <mailto:internals@lists.php.net>
List-Id: internals.lists.php.net
x-ms-reactions: disallow
MIME-Version: 1.0
References: <CAKws9z2-e8YnGbdpp0BJvEBEiEsqHQMzyAo+Vee4naXy5mK40w@mail.gmail.com>
In-Reply-To: <CAKws9z2-e8YnGbdpp0BJvEBEiEsqHQMzyAo+Vee4naXy5mK40w@mail.gmail.com>
Date: Thu, 13 Feb 2025 15:12:36 +0000
X-Gm-Features: AWEUYZm1AourEUjgtDmTkUOVxi1MhKcEvsegrHilLK7h1tU-BKakL9ovWKm2W3Y
Message-ID: <CAGBsUrdKR+xYuuwNenz9yTkvfeh-Ox90shO8oPJdofVRr=QQXA@mail.gmail.com>
Subject: Re: [PHP-DEV] Update OpenSSL Extension to Support KEMs
To: Paragon Initiative Enterprises Security Team <security@paragonie.com>
Cc: PHP Internals <internals@lists.php.net>
Content-Type: text/plain; charset="UTF-8"
From: tekiela246@gmail.com (Kamil Tekiela)

I have no issue with adding more functions to the OpenSSL extension,
but they need to be very clearly documented and have an obvious API.
Cryptic names such as $pk or $sk cannot be used. While I really hate
array return types, if you must use it then it must be clearly
documented. It cannot just be "shared secret (typically 32 bytes)".
What does "typically" even mean? I assume the type for both would be a
string, but that's not obvious.

The OpenSSL documentation is in pretty bad shape. Many functions are
poorly documented and there are barely any examples. While I am sure
there are people who know how to use it, it's a complete mystery to me
and I presume many others.