ID: 27487 User updated by: xuefer at 21cn dot com Reported By: xuefer at 21cn dot com -Status: Feedback +Status: Open Bug Type: Session related Operating System: winxp/linux PHP Version: 4.3.5RC3 New Comment:
can you reproduce the crash? i used sql as session save handler corrupted data may not bug of sedssion_encode(), it's bug of GBK mysql( http://bugs.mysql.com/bug.php?id=369 ), as when i use file, no crash but it IS bug of session_decode(), it shouldn't crash on corrupted data. e.g.: saving session data but crashed by other thread, data is corrupted. when page load again, session_decode crash. and anyone who use vhost, can write a simple script to make php crash the server admin can hardly track who and what make the crash. and if possible, pls make session_encode() do base64_encode, because may ppl use his own sql-save-handler e.g.: session_use_text_encode(true); Previous Comments: ------------------------------------------------------------------------ [2004-03-04 03:36:36] [EMAIL PROTECTED] I fail to see how I can reproduce it. Can you tell me how you did get this corrupted data? As it looks to me that there is a bug in serializing here, not deserializing. I think it has to do with the binary stuff inside the _cached_html part though and Windows ;-) Can you provide the variable before serialization (use var_export($_SESSION) to obtain it). ------------------------------------------------------------------------ [2004-03-04 01:58:50] xuefer at 21cn dot com Description: ------------ tested on php4.3.4 and 4.3.5RC3 the data is produced by session_decode() but corrupted the corrupted-data is base64 encoded in script, just for easy download Reproduce code: --------------- http://www.our-sky.com/misc/session.phps (will be removed when bug closed) ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=27487&edit=1