> 1. Proposed a title of this feature request.

Add yescrypt support to PHP password_hash() and password_verify()

> 2. Why do you need this feature? (List the business requirements here)

As of writing, PHP password_hash() and password_verify() implement the same hashing mechanisms like UNIX /etc/shadow file with the exception of yescrypt as it currently seems. However for our future PHP-based web applications we would like to use the resistance benefits of yescrypt also there. So it's basically https://fedoraproject.org/wiki/Changes/yescrypt_as_default_hashing_method_for_shadow but for the PHP password functions.

> 3. How does the presence/absence of this feature benefits/impacts your Business/project operation? If so, Kindly provide a justification regarding the benefits/impact which is important for filing.

If we can't use yescrypt in PHP password_hash() and password_verify() we would have to stay with bcrypt further on (and it's known disadvantages as mentioned at https://fedoraproject.org/wiki/Changes/yescrypt_as_default_hashing_method_for_shadow). Given we also develop security-sensitive applications for the public sector and/or governmental organizations, we would like to have the maximum resistance.

> 4. How would you like to achieve this? (List the functional requirements)

Extension of existing hashing mechanisms in PHP password_hash() and password_verify() with yescrypt in PHP upstream by Red Hat (not sure if Remi Collet can maybe implement this, but he is at least a very experienced PHP maintainer).

> 5. How quickly does this need to be resolved for you?

RHEL 9.0 GA

> 6. Are you able to assist in testing this functionality if implemented?

Yes, of course!