rfc:unified-crypto-source

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
Last revisionBoth sides next revision
rfc:unified-crypto-source [2014/02/13 09:11] – created yohgakirfc:unified-crypto-source [2014/02/13 10:06] yohgaki
Line 13: Line 13:
 ===== Proposal ===== ===== Proposal =====
  
-Introduce 2 new INIs for UNIX like OSes.+Introduce 2 new INIs for all platforms.
  
-Pseudo RNG - non-blocking +Pseudo RNG - non-blocking. INI_PERDIR 
-  random.entropy_strong_source=       (/dev/(u|a)random etc. Default: /dev/urandom)+  random.entropy_strong_source=       (/dev/(u|a)random etc. Default: depends on platform)
  
-RNG - may block +RNG - may block. INI_PERDIR 
-  random.entropy_crypto_source=        (/dev/random etc. Default: /dev/random)+  random.entropy_crypto_source=        (/dev/random etc. Default: depends on platform)
  
-Under windows, Windows provided API wrapper php_win32_get_random_bytes() will be used as both source.+Appropriate default for the platform is detected during build time. 
 + 
 +session.entropy_file uses /dev/*random. It share the random.entropy_strong_source if it is empty. (Like default_charset with Default Char Encoding RFC)
  
 ===== Backward Incompatible Changes ===== ===== Backward Incompatible Changes =====
  
-session.entropy_file is deprecated in favor of randon.entropy_strong_source+None.
  
 ===== Proposed PHP Version(s) ===== ===== Proposed PHP Version(s) =====
  
-Next PHP 5.+PHP 5.6
  
  
Line 44: Line 45:
  
   * hardcoded default values   * hardcoded default values
 +
 +None, but appropriate values will bet set for the platform.
 +
   * php.ini-development values   * php.ini-development values
   * php.ini-production values   * php.ini-production values
  
-  random.entropy_strong_source=/dev/urandom +  ;random.entropy_strong_source="/dev/urandom" (INI_PERDIR)  
-  random.entropy_crypto_source=/dev/random+  ;random.entropy_crypto_source="/dev/random" (INI_PERDIR)
  
-Under Windows, these are ignored.+Note: INI lines are commented out. 
 + 
 +Under Windows, different values may be set.
  
 ===== Open Issues ===== ===== Open Issues =====
  
-Use OpenSSL RNG/PRNG?+None
  
 ===== Unaffected PHP Functionality ===== ===== Unaffected PHP Functionality =====
Line 62: Line 68:
 ===== Future Scope ===== ===== Future Scope =====
  
-TBD+These 2 INIs may be used crypto related new and existing modules.
  
 ===== Proposed Voting Choices ===== ===== Proposed Voting Choices =====
rfc/unified-crypto-source.txt · Last modified: 2017/09/22 13:28 by 127.0.0.1

Page Tools