From: brett at realestate-school dot com
Operating system: Linux - Red Hat
PHP version: 4.3.1
PHP Bug Type: Session related
Bug description: Session data loss when accessing session from multiple windows.

Description:
------------
Problem: You have a main window that manipulates and diplays data from a
$_SESSION array. You cannot open a popup window, then manipulate your
sessions in the main window, then reload your popup window without
corrupting your session.

At first glance, it seems to work right, but once you start testing, you
realize that it just doesn't work. Sometimes you get the correct data,
usually you don't. I'm using version 4.2.3 (yes i know...upgrade), but I
originally saw this reported as a bug in an earlier PHP version and the
PHP team said it wasn't a bug, not because they tested it, but because
they said it was impossible for it to happen due to the way PHP is written
because PHP serializes all session requests, locks the sessions..blah,
blah, blah. I can therefore, only assume that the bug still exists in
later versions as it is present in version 4.2.3 and I've found no reports
of it being fixed or even acknowledged as a bug. I found at least one
other person on phpbuilder.com who had the same problem and finally solved
it by giving up on sessions and passing his data in a query string.

Config Info:

Env: i386-redhat-linux-gnu

'./configure' '--prefix=/usr/local/'
'--with-apache=../../new_apache/apache_1.3.27'
'--with-openssl=/usr/local/ssl' '--enable-shared' '--enable-versioning'
'--enable-pic' '--disable-posix-threads' '--with-openssl=/usr/local/ssl'
'--disable-debug' '--enable-magic-quotes' '--disable-rpath' '--with-zlib'
'--enable-bcmath' '--enable-calendar' '--enable-ftp' '--enable-exif'
'--with-curl=/usr'
'--with-cybercash=/usr/local/cybercash/mck-3.2.0.6-i586-pc-linux-gnulibc2.1'
'--with-gdbm=/usr' '--enable-dbase' '--with-gd=/usr/local'
'--enable-gd-native-ttf' '--with-jpeg-dir=/usr' '--with-png-dir=/usr'
'--with-freetype-dir=/usr' '--with-gmp' '--with-imap=/usr/local'
'--with-imap-ssl=/usr/local/ssl' '--enable-mbstring'
'--enable-mbstr-enc-trans' '--enable-mbregex' '--with-mcrypt=/usr'
'--with-mhash=/usr' '--with-mysql=/usr/local/mysql' '--enable-sockets'
'--with-regex=system' '--enable-wddx' '--with-expat-dir=/usr'
'--enable-xslt' '--with-xslt-sablot=/usr' '--enable-inline-optimization'

Reproduce code:
---------------
My code is way too big to post here. If anyone wants to take this bug
seriously, please e-mail me at brett at realestate-school.com (address
obfuscated..just format it like a normal e-mail address) and I will
provide code samples.


--
Edit bug report at [url]http://bugs.php.net/?id=25551&edit=1[/url]
--
Try a CVS snapshot (php4): [url]http://bugs.php.net/fix.php?id=25551&r=trysnapshot4[/url]
Try a CVS snapshot (php5): [url]http://bugs.php.net/fix.php?id=25551&r=trysnapshot5[/url]
Fixed in CVS: [url]http://bugs.php.net/fix.php?id=25551&r=fixedcvs[/url]
Fixed in release: [url]http://bugs.php.net/fix.php?id=25551&r=alreadyfixed[/url]
Need backtrace: [url]http://bugs.php.net/fix.php?id=25551&r=needtrace[/url]
Try newer version: [url]http://bugs.php.net/fix.php?id=25551&r=oldversion[/url]
Not developer issue: [url]http://bugs.php.net/fix.php?id=25551&r=support[/url]
Expected behavior: [url]http://bugs.php.net/fix.php?id=25551&r=notwrong[/url]
Not enough info: [url]http://bugs.php.net/fix.php?id=25551&r=notenoughinfo[/url]
Submitted twice: [url]http://bugs.php.net/fix.php?id=25551&r=submittedtwice[/url]
register_globals: [url]http://bugs.php.net/fix.php?id=25551&r=globals[/url]
PHP 3 support discontinued: [url]http://bugs.php.net/fix.php?id=25551&r=php3[/url]
Daylight Savings: [url]http://bugs.php.net/fix.php?id=25551&r=dst[/url]
IIS Stability: [url]http://bugs.php.net/fix.php?id=25551&r=isapi[/url]
Install GNU Sed: [url]http://bugs.php.net/fix.php?id=25551&r=gnused[/url]