misc: Replace sha1() by hash('sha1', ...)
#544
Conversation
The dedicated `sha1()` function is proposed for deprecation with PHP 8.4: https://wiki.php.net/rfc/deprecations_php_8_4#deprecate_md5_sha1_md5_file_and_sha1_file For a future change it might also be considered to move to a cheaper hash function. The xxHash family (available as `xxh*`) is faster and should be sufficiently collision resistant for use within the cache.
|
Hi @TimWolla thank you!
Could we not use it already? What particular function(s) would work here? |
We probably can. For this PR I just proposed the minimally viable change, because I did not have the time to thoroughly investigate what replacement would be appropriate.
As suggested in the commit message, the xxHash family might be appropriate. An alternative might be using preg_replace_callback('/[^a-zA-Z0-9]/', static function ($matches) {
return sprintf('_%02x', ord($matches[0]));
}, $key);This would be guaranteed to be collision resistant, because it's a bijection. It would also make the cache identifiers human-readable. |
|
For future reference: symfony/symfony#47094 |
The dedicated
sha1()function is proposed for deprecation with PHP 8.4: https://wiki.php.net/rfc/deprecations_php_8_4#deprecate_md5_sha1_md5_file_and_sha1_fileFor a future change it might also be considered to move to a cheaper hash function. The xxHash family (available as
xxh*) is faster and should be sufficiently collision resistant for use within the cache.