Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:97204
Return-Path: <me@kelunik.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 63222 invoked from network); 27 Nov 2016 10:38:31 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 27 Nov 2016 10:38:31 -0000
Authentication-Results: pb1.pair.com smtp.mail=me@kelunik.com; spf=permerror; sender-id=unknown
Authentication-Results: pb1.pair.com header.from=me@kelunik.com; sender-id=unknown
Received-SPF: error (pb1.pair.com: domain kelunik.com from 81.169.146.161 cause and error)
X-PHP-List-Original-Sender: me@kelunik.com
X-Host-Fingerprint: 81.169.146.161 mo4-p00-ob.smtp.rzone.de  
Received: from [81.169.146.161] ([81.169.146.161:9224] helo=mo4-p00-ob.smtp.rzone.de)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 4A/95-21589-4A7BA385 for <internals@lists.php.net>; Sun, 27 Nov 2016 05:38:29 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1480243106;
	l=1842; s=domk; d=kelunik.com;
	h=Content-Type:Cc:To:Subject:Date:From:References:In-Reply-To:
	MIME-Version;
	bh=TIqav3o0tMV/O296oM5uN5gAmalv2dL92M97I4FhZJ8=;
	b=yOoeSSsBZqASTyydd0GXSYQX2jKTS+kPR9QoF2hj4ieFjsMP9a24cTqc+7oCM1nn47
	rH/Zsv1io9W1AZxN/dKX/e5X3HllP8aJo4Pc1sXM44FAKWmLOj4FuGPv2C5dLprmYTTo
	A/fJaHnUBe4TeXB+5hayU9jNjGv+lLpGidF3A=
X-RZG-AUTH: :IWkkfkWkbvHsXQGmRYmUo9mls2vWuiu+7SLGvomb4bl9EfHtO3c6
X-RZG-CLASS-ID: mo00
Received: from mail-wm0-f44.google.com ([74.125.82.44])
	by smtp.strato.de (RZmta 39.9 AUTH)
	with ESMTPSA id z04358sARAcPtpT
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (curve secp384r1 with 384 ECDH bits, eq. 7680 bits RSA))
	(Client did not present a certificate)
	for <internals@lists.php.net>;
	Sun, 27 Nov 2016 11:38:25 +0100 (CET)
Received: by mail-wm0-f44.google.com with SMTP id g23so180293185wme.1
        for <internals@lists.php.net>; Sun, 27 Nov 2016 02:38:25 -0800 (PST)
X-Gm-Message-State: AKaTC00CLHCyGBbjw2YGt4NhloaRUwxmK1jkNGGIx3L76q7Mle96HZJXZo9G1zucZV6qx1Q5CnMQJHAXC8Ua6w==
X-Received: by 10.28.143.68 with SMTP id r65mr15089034wmd.95.1480243105789;
 Sun, 27 Nov 2016 02:38:25 -0800 (PST)
MIME-Version: 1.0
Received: by 10.80.135.133 with HTTP; Sun, 27 Nov 2016 02:38:25 -0800 (PST)
In-Reply-To: <28781db8-1088-6316-52f3-3e2aec2a373e@gmail.com>
References: <CANUQDCiUYNwH_tkZyS_cbWVa1X=4CAA3_14VD+fYjAXk-JU=1g@mail.gmail.com>
 <28781db8-1088-6316-52f3-3e2aec2a373e@gmail.com>
Date: Sun, 27 Nov 2016 11:38:25 +0100
X-Gmail-Original-Message-ID: <CANUQDCgLh7+w9kds5JVSn9Hwq6NPJR081cxzaRfa-ksuJH5=5Q@mail.gmail.com>
Message-ID: <CANUQDCgLh7+w9kds5JVSn9Hwq6NPJR081cxzaRfa-ksuJH5=5Q@mail.gmail.com>
To: Stanislav Malyshev <smalyshev@gmail.com>
Cc: PHP Internals <internals@lists.php.net>
Content-Type: multipart/alternative; boundary=001a11467d66807f53054245f4e5
Subject: Re: [PHP-DEV] [RFC] Distrust SHA-1 Certificates
From: me@kelunik.com (Niklas Keller)

--001a11467d66807f53054245f4e5
Content-Type: text/plain; charset=UTF-8

>
> I would propose making a constant for default value. This way if your
> code wants to use that option is a generic way, there is a value to fall
> back on, and you don't need to keep around a long string that can be
> mis-copied, etc.
>

A constant for the default value doesn't make much sense to me, as you
shouldn't set the default value, it's already the default. If we want
constants, we could have one for SHA-1 and another for the SHA-2 group.

We already have http://php.net/manual/en/openssl.signature-algos.php, but
those are integers unfortunately.

Regards, Niklas

--001a11467d66807f53054245f4e5--