Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:41775 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 31833 invoked from network); 8 Nov 2008 22:38:02 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 8 Nov 2008 22:38:02 -0000 Authentication-Results: pb1.pair.com smtp.mail=zapolnov@gmail.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=zapolnov@gmail.com; sender-id=pass; domainkeys=bad Received-SPF: pass (pb1.pair.com: domain gmail.com designates 74.125.44.28 as permitted sender) DomainKey-Status: bad X-DomainKeys: Ecelerity dk_validate implementing draft-delany-domainkeys-base-01 X-PHP-List-Original-Sender: zapolnov@gmail.com X-Host-Fingerprint: 74.125.44.28 yx-out-2324.google.com Received: from [74.125.44.28] ([74.125.44.28:17146] helo=yx-out-2324.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id FF/EA-51173-AC416194 for ; Sat, 08 Nov 2008 17:38:02 -0500 Received: by yx-out-2324.google.com with SMTP id 3so698701yxj.83 for ; Sat, 08 Nov 2008 14:37:59 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:mime-version:content-type:content-transfer-encoding :content-disposition; bh=gCP6J5qRwsq4uw6c1OISXz8bQaLQOKg4A0dFh7wcKdQ=; b=apdgq392LBZame9PAvNvI7f9+Nq5aUngX8xbb+gWq4A3eRCcWV+59Dw6wb7QofbH6u JskwWZt6sjjfQoFnW8MBcLpr5Orb5a85ZghQERH/Hzs5+28pYzhNePal0E6loHwWBc84 kijGjsyBUGTxtWbTGpWQla8CSp+B9j/rVlrGY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type :content-transfer-encoding:content-disposition; b=bH31kObjskAc5xxISP4j/dwxt0Z4pzaHwG9J4m8JdTz48m4R4rYdzVlk9wWn4LXIsk S41qrWqUAcGPN/hurS1P4iqLJE8IIHI4jaHKpUR91Quv4bYDEQx2WNilZC5Hm70uqZsf MvNzCYcWp0l0cFnN3mjnPW/9E5Jbar6ln9QMw= Received: by 10.90.68.20 with SMTP id q20mr4575594aga.99.1226183878542; Sat, 08 Nov 2008 14:37:58 -0800 (PST) Received: by 10.90.30.16 with HTTP; Sat, 8 Nov 2008 14:37:58 -0800 (PST) Message-ID: <5a5ca6800811081437r6af527b9rc590fc561a26ec57@mail.gmail.com> Date: Sun, 9 Nov 2008 01:37:58 +0300 To: internals@lists.php.net MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: Where to send small enhancement patch for openssl module of PHP 5.2.6 ? From: zapolnov@gmail.com ("Nikolay Zapolnov") Hi I'm new to the PHP developers lists, so please sorry if i'm writing to the wrong mailing list. I'm using openssl extension and have found that it does not allow to specify encryption method for generated pkcs12 containers when using openssl_pkcs12_export() or openssl_pkcs12_export_to_file() functions. I'm using SSL-based authorization and have a system that generate and sign certificates and send them to users as pkcs12 containers. By default OpenSSL creates pkcs12 with certificates encrypted using 40-bit RC2 method and private key encrypted with TripleDES. However, there is a problem in Opera 9.50 browser, that prevents loading of pkcs12 created this way and there is a need to change certificate encryption scheme from RC2 to TripleDES. Currently, there is no standard way to do this in PHP. So I did modify a code and added support of two additional options in the configuration array of openssl_pkcs12_export* functions: nid_key and nid_cert. They correspond to the same parameters of PKCS12_Create() function of OpenSSL and default to zero when not specified. Also I have added an OPENSSL_PBE_* constants for encryption methods. I have tested this modification on my system and for me it works fine, so I have decided to contribute my patch to the community in hope that it will be useful for somebody like it is useful for me. I do not know the patch contribution scheme of PHP project and did not find how to do this at the PHP web site. Can you please tell me where can I send my patch?