1--TEST-- 2Bug #72663: Create an Unexpected Object and Don't Invoke __wakeup() in Deserialization 3--EXTENSIONS-- 4session 5--FILE-- 6<?php 7 8ini_set('session.serialize_handler', 'php_serialize'); 9session_start(); 10$sess = 'O:9:"Exception":2:{s:7:"'."\0".'*'."\0".'file";s:0:"";}'; 11session_decode($sess); 12var_dump($_SESSION); 13?> 14DONE 15--EXPECTF-- 16Notice: session_decode(): Unexpected end of serialized data in %sbug72663_2.php on line %d 17 18Warning: session_decode(): Failed to decode session object. Session has been destroyed in %s on line %d 19array(0) { 20} 21DONE 22
