Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:94915 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 49331 invoked from network); 8 Aug 2016 10:59:28 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 8 Aug 2016 10:59:28 -0000 Authentication-Results: pb1.pair.com smtp.mail=yohgaki@ohgaki.net; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=yohgaki@ohgaki.net; sender-id=pass Received-SPF: pass (pb1.pair.com: domain ohgaki.net designates 180.42.98.130 as permitted sender) X-PHP-List-Original-Sender: yohgaki@ohgaki.net X-Host-Fingerprint: 180.42.98.130 ns1.es-i.jp Received: from [180.42.98.130] ([180.42.98.130:45428] helo=es-i.jp) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id F3/DA-33134-E0668A75 for ; Mon, 08 Aug 2016 06:59:27 -0400 Received: (qmail 78949 invoked by uid 89); 8 Aug 2016 10:59:22 -0000 Received: from unknown (HELO mail-qt0-f178.google.com) (yohgaki@ohgaki.net@209.85.216.178) by 0 with ESMTPA; 8 Aug 2016 10:59:22 -0000 Received: by mail-qt0-f178.google.com with SMTP id u25so201045211qtb.1 for ; Mon, 08 Aug 2016 03:59:22 -0700 (PDT) X-Gm-Message-State: AEkoouuN8zEnsukRidmxZyNVqiVbX6zOaOhA5sZmTMzVytVgUMNCW3HXbdECY/1ORkIm93TI/Ttu0SZwqbDLhw== X-Received: by 10.200.33.183 with SMTP id 52mr27181487qty.128.1470653956760; Mon, 08 Aug 2016 03:59:16 -0700 (PDT) MIME-Version: 1.0 Received: by 10.140.85.242 with HTTP; Mon, 8 Aug 2016 03:58:35 -0700 (PDT) In-Reply-To: References: Date: Mon, 8 Aug 2016 19:58:35 +0900 X-Gmail-Original-Message-ID: Message-ID: To: Niklas Keller Cc: Davey Shafik , PHP internals Content-Type: text/plain; charset=UTF-8 Subject: Re: [PHP-DEV] Adding validate_var_array()/validate_input_array() to which version? From: yohgaki@ohgaki.net (Yasuo Ohgaki) Hi Niklas and Davey, On Mon, Aug 8, 2016 at 7:23 PM, Niklas Keller wrote: > 2016-08-08 12:03 GMT+02:00 Yasuo Ohgaki : >> >> Hi Darvey, >> >> On Mon, Aug 8, 2016 at 4:24 PM, Niklas Keller wrote: >> >> I made choices for targeted version, 7.1.0 or 7.2.0 >> > >> > Feature freeze has been beta1. If the RM says it's too late, we don't >> > need a >> > vote. It's too late. >> >> Niklas is right. I might be too late for 7.1. >> >> Darvey. Although diff is large, changes are simple and straightforward >> additions (no changes in existing functionalities at all) to make >> filter module work right with secure coding. It's more like bug fix to >> me, just like URL rewriter fix. > > > This is clearly a new feature and not a bug fix. It's new feature indeed. Even if use of current filter module for secure coding is misuse, I recently realized that there are some users who are trying to do. It's partly because PHP is providing APIs that seems to work with secure coding, but it is lacking proper APIs infact. Lack of proper API is almost the same as bug to me especially when there are users misusing them. Anyway, this kind of changes wouldn't go into released versions. Davey, it's your call if this RFC will have target version choice or not. Regards, -- Yasuo Ohgaki yohgaki@ohgaki.net