ID: 43564 User updated by: fxbois at gmail dot com Reported By: fxbois at gmail dot com Status: Open Bug Type: Session related Operating System: rhas 3 PHP Version: 5.2.5 New Comment:
PHP 5.2.6-dev seems to correct the bug. It can be a pretty serious security problem (session files end in a bad directory). I hope you will release a new version soon. Could you explain in a few words what bugs have you resolved which linked to the sessions ? Previous Comments: ------------------------------------------------------------------------ [2007-12-12 09:18:30] fxbois at gmail dot com When I restart apache ... session_save_path() returns /tmp/session which is normal ------------------------------------------------------------------------ [2007-12-11 16:08:20] [EMAIL PROTECTED] Please try using this CVS snapshot: http://snaps.php.net/php5.2-latest.tar.gz For Windows (zip): http://snaps.php.net/win32/php5.2-win32-latest.zip For Windows (installer): http://snaps.php.net/win32/php5.2-win32-installer-latest.msi Works fine here. What is the return value of session_save_path() on the first call? ------------------------------------------------------------------------ [2007-12-11 12:58:27] fxbois at gmail dot com Description: ------------ Hi, I just realised that sometime the function session_save_path() stops working. I set the session_path with session_save_path() and just a few lines after the session_path contains the value setted in php.ini. But one more time, it is not always the case. Menawhile, each time I restart apache, the session_path is good again during some minutes (or hours) ... It seems that the bug appeared with 5.2.5 ... TIA Reproduce code: --------------- $path = '2;0777;var/session'; session_save_path($path); error_log(session_save_path()); Expected result: ---------------- 2;0777;var/session Actual result: -------------- /tmp/session ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=43564&edit=1