====== PHP RFC: Deprecations for PHP 8.5 ======
  * Date: 2024-09-26
  * Authors:
    * Gina Peter Banyard <girgias@php.net>
  * Status: Pending Implementation
  * Implementation: TBD

===== Introduction =====

The RFC proposes to deprecate the listed functionality in PHP 8.5 and remove it in PHP 9 (except where otherwise noted).

The following list provides a short overview of the functionality targeted for deprecation, while more detailed explanation is provided in the Proposal section:

  * Deprecate ''key_length'' parameter of <php>openssl_pkey_derive()</php>

===== Proposal =====

Each feature proposed for deprecation is voted separately and requires a 2/3 majority.
All votes refer to deprecation in PHP 8.5 and removal in PHP 9 (except where otherwise noted).

==== Deprecate key_length parameter of openssl_pkey_derive() ====

This parameter is useless and confusing for users. It just truncates lenght for ECDH but does nothing or fail for increasing lenghts and DH truncation. This was raised during the security audit.

See: https://github.com/php/doc-en/pull/3789



===== Backward Incompatible Changes =====

For PHP 8.5 additional deprecation notices will be emitted.
The actual removal of the affected functionality will happen no earlier than PHP 9.

===== Removed from this proposal =====

The following entries were originally added to this proposal and then dropped.