Hi Stas, On Sat, Aug 10, 2013 at 1:53 AM, Stas Malyshev <smalys...@sugarcrm.com>wrote:
> > As I wrote, there is no real BC issue as it's just a matter of ini > setting. > > There is a BC issue if you need an ini setting. You keep dismissing it > but if it affected the app your business relates on it'd be a major > problem if on upgrade your app breaks and you need to scour release > notes to figure out all settings you need to change for each upgrade. So > we try to minimize such cases. > In some instances, it's unavoidable - but in this case, the support for > numerics in _SESSION is an exotic feature that will be of little use for > 99% of PHP users. So introducing additional upgrade headaches for this > is IMHO unnecessary. I think we are not talking about newbie users. Users who share session data among web servers are advanced users and they would not have problem reading release notes before upgrading. Most of users don't have care at all. If there is old session data, it's just discarded. > I'm not going to remove old one, though. Search bug db, there are many > > bug reports/feature requests that this patch solves. > > How many bug reports are there requesting numeric index support in session? It's one type of bug report that relates to this patch. There types bug/requests. Most of them are old one I suppose. IIRC, there were - Session fails to save if it contains special chars - Want unserialize session from session data, not from $_SESSION - Need function generates initial session data via dession_decode - Session should use plain serialize These are occasionally pops up and closed as "not a bug"/"wont fix". I remember since I was one of them closed as "not a bug"/"wont fix". > > If users aren't reading release note of minor version up, then it is > users' > > fault, > > not ours. If it is, we cannot release new PHP. > > We can. We can also take some responsibility for making it easier to > upgrade and not just say "we had it all in the fine print, it's your own > fault for not reading everything". Vendors that do that are usually > disliked by their customers. Even if there are users do not reading release notes, it does not break apps as it creates new session data. Users don't have clue, they would not have problem. Users may have affected, they should be able to read release notes. There wouldn't be upgrade headache. We don't want to keep misdesigned component due to "register_globals", don't we? Especially when the solution does not have real BC issue. Regards, -- Yasuo Ohgaki yohg...@ohgaki.net
