Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:81537
Return-Path: <jakub.php@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 12516 invoked from network); 1 Feb 2015 18:07:09 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 1 Feb 2015 18:07:09 -0000
Authentication-Results: pb1.pair.com header.from=jakub.php@gmail.com; sender-id=pass
Authentication-Results: pb1.pair.com smtp.mail=jakub.php@gmail.com; spf=pass; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.213.175 as permitted sender)
X-PHP-List-Original-Sender: jakub.php@gmail.com
X-Host-Fingerprint: 209.85.213.175 mail-ig0-f175.google.com  
Received: from [209.85.213.175] ([209.85.213.175:58857] helo=mail-ig0-f175.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 2D/22-33325-C4B6EC45 for <internals@lists.php.net>; Sun, 01 Feb 2015 13:07:09 -0500
Received: by mail-ig0-f175.google.com with SMTP id hn18so13551169igb.2
        for <internals@lists.php.net>; Sun, 01 Feb 2015 10:07:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:sender:in-reply-to:references:date:message-id:subject
         :from:to:cc:content-type;
        bh=ZqqRpi0WD2Iwj+uuWCh+2eeHb2+mKW76TBybClx1KyI=;
        b=W4U3JVfOs95I/7+xXgcb3Qh8fhJfTlaoprp8u6p8PszqIezv2A3p7cpG+EgK9s3EXc
         jfGkDjbWWZhZVzZO3T5i7wA86g8rTFFRoueEdjPMSUxLHn0LPzpTO8tp5NwMv4TNDs1Q
         449nstfqyMX/igoO3Sn38lxnDPXe+EENtqD4ZkplICUf8FuqGNufKtYQPXcngllxVqNH
         TAoTT+YNLL8NrKnvikfD82ScUjOsrHuQhDMg31Tlg0Cb+EBJI8b+mAFS/l3DatcnJHl4
         E14yRTfAUKULJn7S2IjWsY0FM5yLYhC87qQvbm/gqARUQmqYRJqcvHlXKDc0S+rDu3gi
         aZ/Q==
MIME-Version: 1.0
X-Received: by 10.43.52.197 with SMTP id vn5mr15261849icb.64.1422814026074;
 Sun, 01 Feb 2015 10:07:06 -0800 (PST)
Sender: jakub.php@gmail.com
Received: by 10.107.55.8 with HTTP; Sun, 1 Feb 2015 10:07:06 -0800 (PST)
In-Reply-To: <CAH8MpnktGy27BGFyH9i+tdfuMbti8KzHEXp=KD5LWy0vnKtxMw@mail.gmail.com>
References: <CAH8MpnktGy27BGFyH9i+tdfuMbti8KzHEXp=KD5LWy0vnKtxMw@mail.gmail.com>
Date: Sun, 1 Feb 2015 18:07:06 +0000
X-Google-Sender-Auth: tIZ0FPYi8_SmMIZXBbHRWvKNYPI
Message-ID: <CAEKnhAE93rGQmN=jo-uWe4eRq2J8NZM8P=zjHeiKcMn+-KvxDw@mail.gmail.com>
To: Daniel Lowrey <rdlowrey@php.net>
Cc: "internals@lists.php.net" <internals@lists.php.net>
Content-Type: multipart/alternative; boundary=bcaec51a74b49b129b050e0ab450
Subject: Re: [PHP-DEV] Re: OpenSSL ext. improvements for authenticated cipher modes.
From: bukka@php.net (Jakub Zelenka)

--bcaec51a74b49b129b050e0ab450
Content-Type: text/plain; charset=UTF-8

Hey,

On Sun, Feb 1, 2015 at 5:49 PM, Daniel Lowrey <rdlowrey@php.net> wrote:
>
>   - openssl_decrypt() now returns mixed ... if $options['get_tag'] == true
> then return [$decryptedString, $tag], otherwise return $decrypted string as
> before to preserve BC.
>   - the encrypt function could use $options['set_tag'] to define that (or
> any other secondary information needed for the operation).
>

I think that you confused it a bit :). The encryption results in cipher
text and a tag. The decryption then validates the tag so you pass the tag
as a parameter.

Except that it's almost the same what I thought. I'm just not sure that
mixed return value is a good idea. It seems a bit better having tag as a
reference to me. But it's just a small detail that could be added to the
RFC as a choice :)

Cheers

Jakub

--bcaec51a74b49b129b050e0ab450--