Devcon hh-2012

38
O PHP, Where Art Thou? Pierre Joye 2012/09/08

description

About php's past, present, changes and what's coming in the next release.

Transcript of Devcon hh-2012

Page 1: Devcon hh-2012

O PHP, Where Art Thou?

Pierre Joye2012/09/08

Page 2: Devcon hh-2012

Pierre Joye@[email protected]

PHP Core developerContributors to numerous OSS projects

Works with the ex-Dark ForcePortability fan

Page 3: Devcon hh-2012

Any PHP users around?

Page 4: Devcon hh-2012

Which version?

Page 5: Devcon hh-2012

Contributors already?

Page 6: Devcon hh-2012

The Bad

Page 7: Devcon hh-2012

• Slow release cycles

• Unsecure

• Hard or impossible to contribute

• Dicatorship, egomaniacs, nein sager

• Closed community

Page 8: Devcon hh-2012

The Good

Page 9: Devcon hh-2012

RFC processhttps://wiki.php.net/rfc/voting

• Anyone can submit a RFC

• Votes

– Communities

– php.net members

• If accepted, released in php-next (<= 1 year)

Page 10: Devcon hh-2012

Release Process• Security only releases

• Bugs fixes releases every 1-2 months (~)

• Yearly releases with new features (i.e. 5.4)

https://wiki.php.net/rfc/releaseprocess

Page 11: Devcon hh-2012

On Security

Page 12: Devcon hh-2012

Some Security Team Members

Page 13: Devcon hh-2012

Xinchen Hui

Very Old guy }:->

Gustavo Andre dos Santos Lopes

Not Very Old guy(yet)

Anatoliy Belsky

126

83

79

73

62

1

2

3

4

5

2012/01 to 2012/04

Page 14: Devcon hh-2012

No more excuses!

contribute!

Page 15: Devcon hh-2012
Page 16: Devcon hh-2012
Page 17: Devcon hh-2012
Page 18: Devcon hh-2012

David Soria Parrahttp://pear.php.net/user/dsp/wishlist

@dsp_

Page 19: Devcon hh-2012
Page 20: Devcon hh-2012
Page 21: Devcon hh-2012

5.5

Page 22: Devcon hh-2012

PBKDF2

https://wiki.php.net/rfc/hash_pbkdf2

hash_pbkdf2('sha256', 'passwordP§%P4s$', 'saltSALTsaltSALTsaltSALTsaltSALTsalt', 4096, 40)

See also:http://www.ietf.org/rfc/rfc2898.txthttp://csrc.nist.gov/publications/nistpubs/800-132/nist-sp800-132.pdfhttp://en.wikipedia.org/wiki/PBKDF2

Page 23: Devcon hh-2012

Simple Password API

https://wiki.php.net/rfc/password_hash

Page 25: Devcon hh-2012

Generatorhttps://wiki.php.net/rfc/generators

Page 26: Devcon hh-2012

Generator

Page 27: Devcon hh-2012

Generator

Page 28: Devcon hh-2012

Generator

Page 29: Devcon hh-2012

Generator

Page 30: Devcon hh-2012

foreach and list

Page 31: Devcon hh-2012

YAAR!

(array_column)

Page 32: Devcon hh-2012

Fixing empty()

empty($this->getFriends())

Page 33: Devcon hh-2012

$INTL->awesomeness++;

• IntlCalendar• IntlGregorianCalendar• IntlTimeZone• IntlBreakIterator• IntlRuleBasedBreakIterator• IntlCodePointBreakIterator

Page 34: Devcon hh-2012

Fully qualified classname

Page 35: Devcon hh-2012

Parameter skipping

function create_query($where, $order_by,$join_type='', $execute = false,

$report_errors = true) { ... }

Page 36: Devcon hh-2012

create_query("deleted=0", "name", default, default,

false);

Parameter skipping

Page 37: Devcon hh-2012

Finally!

https://wiki.php.net/rfc/finally

Page 38: Devcon hh-2012

Questions?