Fixed bug #38993 (Fixed safe_mode/open_basedir checks for
session.save_path, allowing them to account for extra parameters).

change ini handlers to produce E_ERROR if they are called during startup

MFH: change E_ERROR to E_WARNING when invalid argument has been passed
make sure ini_set() doesn't reset PS(mod) and PS(serializer) to invalid values

Fixed proto

Added support for httpOnly flag for session extension and cookie setting
functions.

# Original patch by Scott MacVicar

MFH: fix #38289 (segfault in session_decode() when _SESSION is NULL)

MFH: fix #38278 (session_cache_expire()'s value does not match phpinfo's session.cache_expire)

An improved fix for bug #38224

make C++ compilers happy

removed debug code

Fixed bug #38224 (session extension can't handle broken cookies).

Fixed compiler warnings.

MFH: add note why replace is 0, so that I don't wonder again in 2 months
why session_regenerate_id() sends the session cookie twice

Added automatic module globals management

- MFH Fix bug #37510 session_regenerate_id changes session_id() even on failure

(Missing patch from the PHP 4 tree that got lost in the shuffle)
See: http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.39&r2=1.336.2.40
- fix logic. if the client alre

(Missing patch from the PHP 4 tree that got lost in the shuffle)
See: http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.39&r2=1.336.2.40
- fix logic. if the client already sent us the cookie, we don't
need to send it again. if the id has been changed, we need to
update the client side.

show more ...

Export symbols that will allow building WDDX as shared object

Added a check for special characters in the session name.

bump year and license version

MFH: nuke php3 legacy

MFH: Improved the fix for #21306 a bit

MFH: - Fixed bug #21306 (catch bailouts of write handler during RSHUTDOWN)

fix crash on restarting static PHP having session modules loaded

- Bumber up year

nuke duplicate code