Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:72553 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 63056 invoked from network); 13 Feb 2014 09:36:32 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 13 Feb 2014 09:36:32 -0000 Authentication-Results: pb1.pair.com smtp.mail=pierre.php@gmail.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=pierre.php@gmail.com; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.216.179 as permitted sender) X-PHP-List-Original-Sender: pierre.php@gmail.com X-Host-Fingerprint: 209.85.216.179 mail-qc0-f179.google.com Received: from [209.85.216.179] ([209.85.216.179:53081] helo=mail-qc0-f179.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 3B/77-27664-F129CF25 for ; Thu, 13 Feb 2014 04:36:31 -0500 Received: by mail-qc0-f179.google.com with SMTP id e16so17646597qcx.10 for ; Thu, 13 Feb 2014 01:36:28 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=cAB5FQalli60N/FPNyTJdXLeXpgu+pzfvJ+p+585Fd0=; b=Ur7yZ8uHij6xkze10810OmGpG/qjXqRooG3ScawO5ghbxQN4dPCHC1OL9y1ozvpf88 SljtW5/8n4DD/3EW8hAtPfY/GB+axu+A9G7ZoUZOrpz2JXsIqryLWIBqrS49TzCS46kx k9zNdD56gCRu5aAW5rT+W/LtALGRrU7JFe+sQBeffOGCZENXEq+4zuptjViY23PFExVa sVimR5dASw4lH6vYl3XH4KQ6Isfblg+IrpVPCNkhUc8Z5u02IEnC6SBbRaqP4tUVfsEx n4qbngdVwthyOmXfN9TDA0D3268u3giLJEfpHQTKLf6i7z76IY0mwNvdTLHxXO7LRdaU afsw== MIME-Version: 1.0 X-Received: by 10.224.63.131 with SMTP id b3mr613746qai.63.1392284187895; Thu, 13 Feb 2014 01:36:27 -0800 (PST) Received: by 10.140.18.145 with HTTP; Thu, 13 Feb 2014 01:36:27 -0800 (PST) Received: by 10.140.18.145 with HTTP; Thu, 13 Feb 2014 01:36:27 -0800 (PST) In-Reply-To: References: Date: Thu, 13 Feb 2014 10:36:27 +0100 Message-ID: To: Yasuo Ohgaki Cc: PHP internals , Julien Pauli Content-Type: multipart/alternative; boundary=047d7beb961e722c8c04f2466c08 Subject: Re: [PHP-DEV] unify entropy source for all php related functions From: pierre.php@gmail.com (Pierre Joye) --047d7beb961e722c8c04f2466c08 Content-Type: text/plain; charset=UTF-8 Hi! On Feb 13, 2014 4:12 PM, "Yasuo Ohgaki" wrote: > > > On Thu, Feb 13, 2014 at 5:46 PM, Yasuo Ohgaki wrote: >>> >>> > Since it's too late for 5.6, I'll commit only to master. >>> > Does anyone think this change needs RFC? >>> >>> The entropy src needs one I think as it introduce two new ini settings. >> >> Sure. >> I don't mind creating new RFC for those 2 new INIs. >> I'll create it later for master for the time being. > > > https://wiki.php.net/rfc/unified-crypto-source > Thanks! session.entropy_file won't be deprecated but will share the same, or can share the same source. I can perfectly imagine large set oh hosts using two sources, one for session and one for user land usages. On windows they are not ignored but must be set. We can always add support for hardware RNG or servers. A couple of good ones exist but we need to test them (stream). We only support the windows crypto api for now. There will be no hard coded default values but compile time default values (as we do it now for other settings). These settings must system settings, apps should not be able to change them. The open issue can be dropped. We are not going to provide that through these settings, not now. Target is 5.6. Cheers, Pierre --047d7beb961e722c8c04f2466c08--