2012/7/13 Ángel González keis...@gmail.com:
The codebase does no global exception handling (because it doesn't throw
exceptions itself),
and also nobody configured the server not to show errors/exceptions
(some say it was
purposely setup to show them).
password_verify() errors if the
2012/7/14 Andrew Faulds ajf...@googlemail.com:
Well... if people have poorly configured servers spitting out debug
info in production mode, I don't think it is our problem. It is
theirs.
Do you want to make it secure or do you want to discuss?
--
Greetings Alex Aulbach
--
PHP Internals
-handling which can be overridden (like the error-handlers).
Could be an interesting concept. :) And of course its something which
needs time.
--
Sevus
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
like renewing all doors of a
house with newest technique, but forgetting the windows. :) Security
is a concept. My suggestions aren't perfect. Just want to talk about
it; I think those concepts need time.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit
.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
, it's extending to a new level. Which is in
the beginning always uncomfortable. :)
And I think it depends on what architecture-features PHP should
follow. E. g. simpleness or security (security means often simpleness)
or ... or ...?
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development
a new function
str_from_character_class(), or if you use pcre like above
pcre_str_from_character_class()?
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
:]]/'));
// remove invisible chars: when doing this with very big strings it
could be much faster than with regex.
str_replace(str_split(str_charset('/[^[:print:]]/')), \rblaa\n);
There are many other more or less useful things you can do with a
charset-string. :)
--
Alex Aulbach
--
PHP Internals - PHP
.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
Hi Ivan,
try
throw new Exception('foobar');
catch(Exception $e)
var_dump($e-getMessage());
If you use try/catch that much, that you begin to think about the
syntax, you have an architecture- or design-problem.
PS: And if without brackets should be forbidden.
--
Alex Aulbach
--
PHP
to use
this in a good manner (to avoid the problems mentioned above) should
be part of the docs.
--
Regards, Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
on? Anyone
interested in championing the change?
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
2012/7/20 Ivan Enderlin @ Hoa ivan.ender...@hoa-project.net:
On 20/07/12 15:32, Alex Aulbach wrote:
If you use try/catch that much, that you begin to think about the
syntax, you have an architecture- or design-problem.
Not sure about that. First, it was an example. Second, it happens more
, $d)
where
function _greater($a, $b, $c, $d)
{
if ($a $b) {
return $c;
}
return $d;
}
My suggestion just is: At any point everybody needs one more operator
for his stuff. But that's why functions exists.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing
(the operator-name). Any
goof idea?
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
development for a very special problem,
which is making very repeating but complex things very short, nothing
else. :)
Or in other words: In detail it's great, but in general it's a very
bad idea. :) That's just wanted and if you think you must use it, then
you should have a good reason.
--
Alex Aulbach
to have it as _function_?
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
don't like mathematics, but that is one of the definition of a
function:
http://en.wikipedia.org/wiki/Function_%28mathematics%29
each input is related to exactly one output
Couldn't be so complicated to introduce a new name for that, or?
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development
in general. My suggestion was only for a
very special context and should be easier to implement.
I currently think, this discussion needs more time, because I begin to
forget, for what this is really needed. :)
I suggest to (re)think about the real usage-cases...
--
Alex Aulbach
--
PHP Internals - PHP
languages do so, my argument will be the same.
rising finger with epic mimic, fistulous voice We need not to make
the same mistake again! :)
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
more for that.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
easy and the afford is worth the results.
You can argue: Those mistakes will always happen. I say Yes, of
course, but if we have the chance to reduce those mistakes we should
do it.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net
, there are no mistakes, there are just happy little accidents. :)
[means: I will not complain any more]
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
-developers?
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
not in the C#-way.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
really needs and that,
what is written in this internals list.
I with you introducing new features like this, but it must be done in
a way that is more self-explaining, has a low learning-curve. Yield
implemented like this dosn't match this criteria.
--
Alex Aulbach
--
PHP Internals - PHP Runtime
a good programmer make, nor
an expert in other programmers.
It's not sufficient but neccessary.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
. I like to
listen to my belly in those questions, because he is in most cases
right. With the change I suggested he stops grumbling.
Please correct me if I use arguments I thought they have been
generally agreed/some of them are new.
-
Alex Aulbach
--
PHP Internals - PHP Runtime Development
languages.
(Can't be proven, but I would bet for it.)
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
functions work, I
barely understand functions.
So this is systematically wrong. Right would be, that yield is an own
chapter. Will be easier if a generator is not a function.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net
that the generators need a unique word and I suggest
using functions, but I didn't read al the mails chain, so I assume that I'll
find there the answer.
Of course you will!
making gesturesThese are not the droids your looking for. Ups. wrong line. :)
--
Alex Aulbach
--
PHP Internals - PHP
this - think at
first try this isn't implemented with all consequences, so they may
not be helpful to see the difference.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
the others. There is just no need to.
They didn't even use PHP. :)
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
for the future and is in my eyes good design.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
, that have been introduced, because before it, a very small
write error had big impacts.
I see - as you - the need to make simple things more short, but
removing warnings from existing code constructs is definitly the wrong
way.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing
it before verify!).
Every change (new algorithms etc) will increment the version. This can
help to detect the case when in version 79 bcrypt is removed because
too insecure/too old.
As said, currently not needed, but if someone likes to, here it is. :)
--
Alex Aulbach
--
PHP Internals - PHP
(or not ||)...
Which brings us back to the subject...
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
on later (think of it as a stop light where
you let the other code run for a while until you go to the next one).
I think for people, which are - like me - more used with databases,
the cursor-concept is a good comparison.
Perhaps this could help a little bit to explain it...
--
Alex Aulbach
: the file-read-example
doesn't lock. To implement locking new functions or a new class is
needed - hiding complexity.
Generators are (in my opinion) really nice for things which are
already in the memory. Not more or less.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
.
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
--
Freundliche Grüße
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
, and I think a
little bit too complicated, but this is a brainstorming.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
it any more (destroys itself). Could be
all done in the construction of the exception.
--
Alex Aulbach
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
2012/9/4 Rasmus Lerdorf ras...@lerdorf.com:
On 09/03/2012 04:31 PM, Alex Aulbach wrote:
2012/9/4 Gustavo Lopes glo...@nebm.ist.utl.pt:
Following this logic, we'd have to convert all E_NOTICE and E_STRICT to
fatal errors or exceptions - they are usually produced by programming
errors
.
Ok, ok, as Rasmus correctly mentioned, uncaught exceptions are by
definition fatal.
But isn't catching an exception not like I know how to handle it?
And when I know how to handle it, couldn't I handle it in the
exception directly?
More questions than answers so far.
--
Alex Aulbach
--
PHP
2012/7/12 Anthony Ferrara ircmax...@gmail.com:
Hello all,
Since the discussion has died down around the concept, I have updated the
RFC and moved it into Proposed (under discussion) status.
I have updated the RFC to include a section on discussion points containing
points that I know were
2012/7/12 Nikita Popov nikita@gmail.com:
On Thu, Jul 12, 2012 at 7:24 PM, Alex Aulbach alex.aulb...@gmail.com wrote:
1. The resulting string should have a version information. For example
the first char. the example hash will look like
1$2y$07$usesomesillystringfore2uDLvp1Ii2e
2012/7/12 Anthony Ferrara ircmax...@gmail.com:
That's what $2y$ is for. It's a standard crypt() prefix algorithm
identifier. For example you can use $1$ for md5, $5$ for sha256 and $6$ for
sha512 algorithms. In the future, if new algorithms are added, it would be
added as a new prefix for
47 matches
Mail list logo