Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:94738
Return-Path: <rowan.collins@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 39879 invoked from network); 28 Jul 2016 09:50:22 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 28 Jul 2016 09:50:22 -0000
Authentication-Results: pb1.pair.com header.from=rowan.collins@gmail.com; sender-id=pass
Authentication-Results: pb1.pair.com smtp.mail=rowan.collins@gmail.com; spf=pass; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.192.178 as permitted sender)
X-PHP-List-Original-Sender: rowan.collins@gmail.com
X-Host-Fingerprint: 209.85.192.178 mail-pf0-f178.google.com  
Received: from [209.85.192.178] ([209.85.192.178:34685] helo=mail-pf0-f178.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 08/42-25564-D55D9975 for <internals@lists.php.net>; Thu, 28 Jul 2016 05:50:21 -0400
Received: by mail-pf0-f178.google.com with SMTP id p64so20598606pfb.1
        for <internals@lists.php.net>; Thu, 28 Jul 2016 02:50:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=subject:to:references:from:message-id:date:user-agent:mime-version
         :in-reply-to:content-transfer-encoding;
        bh=aymJq/Rhj/pKiuxuoZucVWpKSSNZU+HP2VMLCf/hjqk=;
        b=WkPS2jwCRqW/b+8B9Ofr6YW1Uof5MT6HRGwBwrpKQfob9ZKwBIsFerhMARBXf3o5De
         Q8LpKhd8ZH3ImFlxPcBsWQoq8rt3Tkbg0gDaKYksmVtyx14fN54rHp+SuL97MFkA6PGq
         fSFRm+ZJeJhZqFfwJ6Lihzub81XO6V0m7F7PN8Nyn0RVPO2hlWncvgt4cjc4JxYxJK6B
         OAZZUkGf632CsR/3QbQqPf+dPpNc+GCwX1QJh9X02Ucuv+7++PrttTCLB/U3tnSRKRWh
         dAVBaUYu+BfAzx5t3SHv+LD65HtIqQZtQVm8zwnuJ6t6SwCR3dE/NR423Dvt3ZRMAr9J
         efrQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20130820;
        h=x-gm-message-state:subject:to:references:from:message-id:date
         :user-agent:mime-version:in-reply-to:content-transfer-encoding;
        bh=aymJq/Rhj/pKiuxuoZucVWpKSSNZU+HP2VMLCf/hjqk=;
        b=fWcn2SMU/qlcQah5Q2zh72a7eKEhPGXMV8nDJtiqQctT/zRoaMbVA54orX6lSkl3VN
         nbXKooMrLjKJ4YlUi3x1m/GK8KY/NiSZheLc6EE3PoWH1jYIADwL23hq46PDr5+gjGTA
         a9qyz8e8NGSjDqqZ0Ftzyc7dppVyp8NWhjCG7Ugl4/lPeYBjM5SrrRiuGsDfV+Ll2jYH
         NH1BJinvt6SH1ykkwsxAdq9YlQU8bFUvXXAhY+o072TG5BrKACahqTPO1aigf3Cp5iu9
         BdEmsFARnqHiHvEJw5UYfqUTm8W+NkDbmMSDm17juWfsfXD0EXHWVyQkuwPI9cD92s2y
         7S6Q==
X-Gm-Message-State: AEkoouuUve7933GBhsijy48GDoNxeXB55Ef/zYl/80ZflFUlUEQ3MLs25/QvvCe9Z021jg==
X-Received: by 10.98.88.131 with SMTP id m125mr54129294pfb.63.1469699418076;
        Thu, 28 Jul 2016 02:50:18 -0700 (PDT)
Received: from [192.168.0.98] ([93.188.182.58])
        by smtp.gmail.com with ESMTPSA id o2sm15603608pfg.10.2016.07.28.02.50.15
        for <internals@lists.php.net>
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Thu, 28 Jul 2016 02:50:17 -0700 (PDT)
To: internals@lists.php.net
References: <CAEDdnaWVYbh=t1-bvDh9fixCoC7Be4asoEus=dRhGggx_9VLNg@mail.gmail.com>
 <933449d0-90c2-0d7a-cb80-a171289d8286@texthtml.net>
 <CAGovj_PiUjJmAncZjrtTiJmBTmuwA1MgfpjwpkKWdp_NHPekpw@mail.gmail.com>
 <CAEDdnaWEwNH-+kOxPk2GDqRod90kOqbT1yGHkOMqx5L9AXRaLA@mail.gmail.com>
 <CAEDdnaVrAvMHzj=bxhp9fOEFRgJ3rY9Tn9XP0oPfYZ0EU-RrjA@mail.gmail.com>
 <20160724145557.D52C31A80BBD@dd1730.kasserver.com>
 <6cfac572-9982-87f8-5a55-9213d978cde9@gmx.de>
 <20160724162103.BC5741A83512@dd1730.kasserver.com>
 <efdfdd99-77d9-f722-7000-13b4528dd77c@gmx.de>
 <20160724172131.675AC1A800B0@dd1730.kasserver.com>
 <9bc0db6a-fa19-5f87-0e82-3702dcb34254@gmx.de>
 <CAEDdnaWm-fUoBRdrce=DF8By6ybkTe_ca_niV2xdQp4yecU6Rw@mail.gmail.com>
 <CAEDdnaVx2Rx0pe+ZCzP=rpWW8OiQ73opmRhLCho_MwV1NRAiaw@mail.gmail.com>
 <ebfd0e1b-049f-d38b-7de8-62a98c1c2376@gmail .com>
 <20160727224510.7B80C1A80358@dd1730.kasserver.com> <9FA6BCF1-2
 4E2-432A-B4FD-C1EC0B8C46AD@gmail.com>
 <20160728093917.5DCC51A82392@dd1730.kasserver.com>
Message-ID: <a3299edc-3754-c8ba-0ff8-6cdf214c12ed@gmail.com>
Date: Thu, 28 Jul 2016 10:48:01 +0100
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101
 Thunderbird/45.2.0
MIME-Version: 1.0
In-Reply-To: <20160728093917.5DCC51A82392@dd1730.kasserver.com>
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [PHP-DEV] [RFC] New operator for context-dependent escaping
From: rowan.collins@gmail.com (Rowan Collins)

On 28/07/2016 10:39, Thomas Bley wrote:
> creating an e() function can be a BC break if people already have an e() function in their code.
> The name e is ambiguous to me, is it escape, error, encrypt?
>
> You are free to provide a better rfc, but having e() being optional will also make security optional.

I wrote an entire e-mail setting out what I think should be the aims of 
the feature, and you've picked on a single sentence that said that an 
e() function would fulfil *most* of those aims. At no point did I say 
"an e() function is the perfect solution". You are attacking a straw man.

I'm not going to get into a back and forth on what "optional" means, 
either. I've stated what I think is important, and will leave it there.

Regards,
-- 
Rowan Collins
[IMSoP]