Table of Contents

PHP RFC: Fix handling of custom session handler return values

Introduction

The logic in ext/session/mod_user.c is just plain wrong.

http://us2.php.net/session_set_save_handler

Yet in ext/session/mod_user.c: 

 PS_FUNC(user) {
  /* blah blah */
  zval *retval = ps_call_handler(PSF(func), argc, argc);
  if (retval) {
     convert_to_long(retval);
     return Z_LVAL_P(retval);
  }
  return FAILURE;
}

Remembering that SUCCESS == 0, and FAILURE == -1

So what does that mean for return values?

Proposal

Change the FINISH macro in session.c to map true to SUCCESS, false to FAILURE, warn (and fail) for integer -1, and warn (but succeed) for anything else.

Backward Incompatible Changes

Proposed PHP Version(s)

Either 5.next (5.7?) or phpng due to the age of this bug.

Vote

Fix custom session save handler using the patch as written
Real name Yes No
aharvey (aharvey)  
bwoebi (bwoebi)  
kassner (kassner)  
levim (levim)  
mike (mike)  
oaass (oaass)  
pollita (pollita)  
stas (stas)  
treffynnon (treffynnon)  
tyrael (tyrael)  
Final result: 10 0
This poll has been closed.
Which version?
Real name 5.6 or later 5.7 or later 6.0 or later
aharvey (aharvey)   
auroraeosrose (auroraeosrose)   
bwoebi (bwoebi)   
fmk (fmk)   
kassner (kassner)   
levim (levim)   
mike (mike)   
oaass (oaass)   
pollita (pollita)   
stas (stas)   
treffynnon (treffynnon)   
tyrael (tyrael)   
Final result: 0 9 3
This poll has been closed.

Voting Opened Jun 10, 2014 Voting Closes Jun 24, 2014

Implementation