[PHP-DEV] Re: [RFC][Vote] Additional context in pcntl_signal handler

On Thu, Jul 7, 2016 at 12:00 PM, Bishop Bettini wrote: > Hi! > > The RFC for enhancing pcntl_signal with additional calling context[1] is > now in voting phase. Voting open now through July 14. > > Implementation PR[2] available for review. > > Thanks! > > [1]: https://wiki.php.net/rfc/addition

[PHP-DEV] Re: [RFC][VOTE] Enable session.use_strict_mode by default

Hi, On Tue, Jul 12, 2016 at 10:01 AM, Yasuo Ohgaki wrote: > Vote for "Enable session.use_strict_mode by default" RFC has started. > > https://wiki.php.net/rfc/session-use-strict-mode > > Vote ends 2017/07/19 UTC. Some of us against this RFC. The consequences of disabling use_strice_mode (allowin

Re: [PHP-DEV] Re: Bumping minimal OpenSSL version to 1.0.1 in master for PHP 7.1

Hi! > For that reason I'm thinking about postponing this. I would also love to > hear your thoughts and possibly if someone is able to dig up the OS X > OpenSSL support info, that would be great too! As somebody working almost exclusively on OS X for my php builds for the last couple of years - I

[PHP-DEV] Re: Bumping minimal OpenSSL version to 1.0.1 in master for PHP 7.1

On Thu, Jan 28, 2016 at 1:39 PM, Jakub Zelenka wrote: > Hi, > > I would like to bump a minimal OpenSSL version to 1.0.1 in our master. It > means dropping support for OpenSSL 0.9.8 and 1.0.0 in master. Both of these > versions are EOL as of 2015/12/31 and users should not use them. It will > help

[PHP-DEV] GOOD Benchmark Results for PHP Master 2016-07-14

Results for project PHP master, build date 2016-07-14 06:28:49+03:00 commit: a0e5ffa previous commit:7a125a4 revision date: 2016-07-13 21:58:00+02:00 environment:Haswell-EP cpu:Intel(R) Xeon(R) CPU E5-2699 v3 @ 2.30GHz 2x18 cores, stepping 2, LLC 45 MB

RE: [PHP-DEV] Re: [PHP-CVS] com php-src: Fixed bug #72570 Segmentation fault when binding parameters on a query without placeholders: NEWS ext/pdo_pgsql/pgsql_statement.c ext/pdo_pgsql/tests/bug72570.

Hi Matteo, > -Original Message- > From: Matteo Beccati [mailto:p...@beccati.com] > Sent: Wednesday, July 13, 2016 5:23 PM > To: Anatol Belski > Cc: internals@lists.php.net > Subject: Re: [PHP-DEV] Re: [PHP-CVS] com php-src: Fixed bug #72570 > Segmentation fault when binding parameters on

Re: [PHP-DEV] Dropping SSL2 in 7.1

I was making a reference to the DROWN attack On Jul 14, 2016 4:28 AM, "Matteo Beccati" wrote: > On 13/07/2016 23:42, Scott Arciszewski wrote: > > If we don't drop SSL2 support we might DROWN in technical debt. > > > > This would get a massive +1 from me. (Can we consider dropping SSL3 too > in >

Re: [PHP-DEV] Dropping SSL2 in 7.1

On 13/07/2016 23:42, Scott Arciszewski wrote: > If we don't drop SSL2 support we might DROWN in technical debt. > > This would get a massive +1 from me. (Can we consider dropping SSL3 too in > 7.2?) I'm all for dropping it. Just to be clear though, what's the massive technical debt we'd drown int

RE: [PHP-DEV] Dropping SSL2 in 7.1

Hi Jakub, > -Original Message- > From: jakub@gmail.com [mailto:jakub@gmail.com] On Behalf Of Jakub > Zelenka > Sent: Wednesday, July 13, 2016 9:11 PM > To: PHP internals list > Subject: [PHP-DEV] Dropping SSL2 in 7.1 > > Hi, > > It's been already proposed by Remi using PR [1] so