@Andrew: If there are conversion problems from raw data to $_* variables, the conversion error handler will be invoked. The application may set a custom error handler, if so desired. If you want to receive data with offending characters dropped, you can set the global error mode in your .ini file to U_CONV_ERROR_SKIP. You will be able to get at the raw data directly. We have not considered providing santizing functions like you described, but if we do, they will probably be part of ext/filter.

I think delaying it until usage time is a good thing. I think allowing the application to specify an encoding is a good thing.

But…

What happens when the conversion from raw to $_ variables fails because of an invalid character encoding?

How does the application find out about it?

Will the application (please!) get the converted data with offending characters dropped (rather than substituted for a question mark)?

Are you planning on providing some way to get at the raw data directly? (So we can build what we need if it won’t be part of base-PHP.)

Is there any provision for the PHP application developer to write a mapping function to replace well known problematic characters @ JIT-translation time? For example, we are routinely POSTed latin1 encoded Euro symbols in otherwise UTF-8 encoded POSTs.

If suitable diagnostics are not provided by base-level PHP, the only application recourse I see, if you want to *sure* that you’re doing the right thing, is rip $_ to every encoding your application might expect to deal with (about 4-5 for us) and then do string comparisons to look for missing data. Did I miss something? (I looked @ php-dev list for a bit and didn’t find the answers to these questions.)

Also, I am not entirely sure I understood Rasmus’ concerns. Isn’t the issue of bogus data present regardless of when/how the conversion process happens? Is it a security concern, such that if the errors happened prior to the JIT routine, less harm could be done?