Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:88583
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
To: internals@lists.php.net
Content-Type: text/plain; charset=utf-8; format=flowed; delsp=yes
References: <CAKws9z3PBidEXQOZokomG-Y6GbfuefoTF=mXohJqZL=7w1xtGA@mail.gmail.com>
Date: Wed, 30 Sep 2015 22:26:05 +0200
MIME-Version: 1.0
Content-Transfer-Encoding: Quoted-Printable
Message-ID: <op.x5slprhmhuszwh@tsukapiou.home>
User-Agent: Opera Mail/1.0 (Win32)
Subject: Re: PHP 7.1 - should we add a random_str() function?
From: bensor987@neuf.fr ("Benoit Schildknecht")

Hi,

Le Wed, 30 Sep 2015 18:15:09 +0200, Scott Arciszewski  =

<scott@paragonie.com> a =C3=A9crit:

> This is probably answerable by a quick yes/no and shouldn't need a ton=

> of bikeshedding, but if that happens anyway I apologize in advance.
>
> I think random_bytes() and random_int() are great; they provide a
> much-needed building block in PHP 7.0. However, I do worry a bit that
> the most common use for random_int() (generating a random string of a
> fixed length with a given character set) will be reinvented over and
> over again, and rarely consistently.
>
> I would propose a random_str() function that behaves similar to this
> userland snippet: http://stackoverflow.com/a/32870871/2224584
>
> Function prototype:
>
>> string random_str( int $length, string $charset)
>
> Would return a string or throw an Error|Exception (e.g. invalid input
> parameters, or the operating system's CSPRNG begins to melt).
>
> I can write up an RFC for this, with a patch targeting 7.1, if anyone
> is interested in it.
>
> Scott Arciszewski
> Chief Development Officer
> Paragon Initiative Enterprises <https://paragonie.com>

I'm interested, as I generate random strings for default passwords. I ca=
n  =

stay with my current system, but it would be sweet to shorten my code a =
 =

little bit :)

Regards.