Re: [RFC] Libsodium

From:	Scott Arciszewski	Date:	Thu, 07 Jan 2016 15:54:51 +0000
Subject:	Re: [RFC] Libsodium
References:	1 2	Groups:	php.internals
Request:	Send a blank email to [email protected] to get a copy of this message

On Thu, Jan 7, 2016 at 10:52 AM, Rouven Weßling <[email protected]> wrote:
> Hi Scott,
>
> questions inline.
>
>> On 07 Jan 2016, at 14:26, Scott Arciszewski <[email protected]> wrote:
>>
>> I've updated the RFC to make libsodium a core PHP extension in 7.1, to
>> include references to the online documentation.
>>
>> https://wiki.php.net/rfc/libsodium
>
> I know this is made difficult by the fact that this is an existing, stable PECL extension,
> which also supports older PHP versions but I don’t think it’s a good idea to introduce more
> functions that duplicate things handled already in core (I don’t mean in ext-openssl as lib sodium
> would be an alternative to that extension). I’d rather see less duplication, not more.
>
> From a quick glance the following functions seems to be already covered:
> \Sodium\memcmp
> \Sodium\bin2hex
> \Sodium\hex2bin
> \Sodium\randombytes_buf
> \Sodium\randombytes_uniform
> \Sodium\randombytes_random16
>
> If their implementation is better than the core implementation, core should be fixed.
>
> Do the hashing functions have any advantage over those provided by ext-hash?
>
> There are also a couple of other functions whose value I’d question, I’ll send an email
> about those later.
>
>> This is part of an overall effort to improve PHP's cryptography; up
>> next will be the pluggable crypto API that supports multiple backends
>> (with a scope limited to openssl and libsodium at the time of release)
>> but always provide conservative defaults.
>
> A more general question: I haven’t looked at your prototype for a higher level API yet, but
> I’m wondering if it’s still necessary to introduce another low level API? When would I choose to
> use the latter?
>
> Best regards
> Rouven

The high-level API ties the user's hands and doesn't give them direct
access to primitives. You can't use it for AES-256-ECB, you can only
use it for AES-256-CTR+HMAC-SHA-384, with an encoded and
version-tagged output, for example.

You still need ext/libsodium if you need to use any of its features
directly, such as \Sodium\memzero().

Scott Arciszewski
Chief Development Officer
Paragon Initiative Enterprises <https://paragonie.com>


   

Thread (25 messages)

• Scott ArciszewskiThu, 07 Jan 2016 13:26:52 +0000
  • Bishop BettiniThu, 07 Jan 2016 15:20:24 +0000
    • Scott ArciszewskiThu, 07 Jan 2016 15:31:59 +0000
  • Pierre JoyeThu, 07 Jan 2016 15:51:43 +0000
    • Scott ArciszewskiThu, 07 Jan 2016 16:11:06 +0000
      • Pierre JoyeThu, 07 Jan 2016 16:24:15 +0000
        • Anthony FerraraThu, 07 Jan 2016 16:30:14 +0000
          • Pierre JoyeThu, 07 Jan 2016 16:33:42 +0000
          • Jan EhrhardtThu, 07 Jan 2016 16:58:51 +0000
            • Scott ArciszewskiThu, 07 Jan 2016 17:05:50 +0000
        • Tom WorsterSun, 10 Jan 2016 20:18:23 +0000
          • Scott ArciszewskiSun, 10 Jan 2016 20:39:17 +0000
            • Tom WorsterSun, 10 Jan 2016 21:01:33 +0000
      • Rowan CollinsSun, 10 Jan 2016 21:31:34 +0000
        • Scott ArciszewskiSun, 10 Jan 2016 21:41:25 +0000
          • Rowan CollinsSun, 10 Jan 2016 21:59:00 +0000
            • Scott ArciszewskiSun, 10 Jan 2016 22:22:00 +0000
              • Rowan CollinsSun, 10 Jan 2016 22:40:16 +0000
              • Pierre JoyeMon, 11 Jan 2016 03:14:35 +0000
  • Rouven WeßlingThu, 07 Jan 2016 15:52:50 +0000
    • Scott ArciszewskiThu, 07 Jan 2016 15:54:51 +0000
      • Scott ArciszewskiThu, 07 Jan 2016 15:57:30 +0000
  • Remi ColletThu, 07 Jan 2016 16:42:26 +0000
  • David ZuelkeSun, 10 Jan 2016 23:56:57 +0000
    • Scott ArciszewskiMon, 11 Jan 2016 00:06:59 +0000