Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:78859
Return-Path: <mailing@pascal-martin.fr>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 3988 invoked from network); 9 Nov 2014 22:23:08 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 9 Nov 2014 22:23:08 -0000
Authentication-Results: pb1.pair.com smtp.mail=mailing@pascal-martin.fr; spf=pass; sender-id=pass
Authentication-Results: pb1.pair.com header.from=mailing@pascal-martin.fr; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain pascal-martin.fr designates 176.31.99.170 as permitted sender)
X-PHP-List-Original-Sender: mailing@pascal-martin.fr
X-Host-Fingerprint: 176.31.99.170 ks391579.kimsufi.com  
Received: from [176.31.99.170] ([176.31.99.170:34041] helo=pascal-martin.fr)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 17/82-05117-A49EF545 for <internals@lists.php.net>; Sun, 09 Nov 2014 17:23:07 -0500
Received: from [192.168.0.3] (home.squalenet.net [82.225.233.238])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by pascal-martin.fr (Postfix) with ESMTPSA id 51EC040C9F
	for <internals@lists.php.net>; Sun,  9 Nov 2014 23:20:34 +0100 (CET)
Message-ID: <545FE946.2070804@pascal-martin.fr>
Date: Sun, 09 Nov 2014 23:23:02 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.2.0
MIME-Version: 1.0
To: internals@lists.php.net
References: <5457EF60.1020103@sugarcrm.com>
In-Reply-To: <5457EF60.1020103@sugarcrm.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [PHP-DEV] [RFC] [VOTE] Filtered unserialize()
From: mailing@pascal-martin.fr ("Pascal Martin, AFUP")

On 03/11/2014 22:10, Stas Malyshev wrote:
> I'd like to put to vote my proposal about the filtered unserialize():

Hi,

After discussing this RFC with a few other people, we seem to agree that 
allowing some level of security-related filtering when unserializing is 
a nice idea -- so, we would be +1 on the principle.

Some of us think raising a notice -- or, better, throwing an exception 
-- in case of a not-allowed class might be helpful, especially when it 
comes to detecting problems and unsafe input data. Still, we understand 
__PHP_Incomplete_Class must have been chosen to remain close to the way 
unserialize() now behaves.

-- 
Pascal MARTIN, AFUP - French UG
http://php-internals.afup.org/