|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
[2004-08-27 13:37 UTC] aidan@php.net
Description:
------------
Using serialize() with a class produces invalid output.
Reproduce code:
---------------
I haven't had a chance to properly investigate why this particular code causes a problem, but Derick seemed ontop of it already.
<?php
class cr {
private $priv_member;
function cr($val)
{
$this->priv_member = $val;
}
function comp_func_cr($a, $b)
{
if ($a->priv_member === $b->priv_member) return 0;
return ($a->priv_member > $b->priv_member)? 1:-1;
}
function comp_func_key($a, $b)
{
if ($a === $b) return 0;
return ($a > $b)? 1:-1;
}
}
$a = array("0.1" => new cr(9), "0.5" => new cr(12), 0 => new cr(23), 1=> new cr(4), 2 => new cr(-15),);
$b = array("0.2" => new cr(9), "0.5" => new cr(22), 0 => new cr(3), 1=> new cr(4), 2 => new cr(-15),);
$result = array_udiff_uassoc($a, $b, array("cr", "comp_func_cr"), array("cr", "comp_func_key"));
$foo = serialize($result);
echo $foo;
?>
Actual result:
--------------
0000 61 3a 33 3a 7b 73 3a 33 3a 22 30 2e 31 22 3b 4f a:3:{s:3 :"0.1";O
0010 3a 32 3a 22 63 72 22 3a 31 3a 7b 73 3a 31 35 3a :2:"cr": 1:{s:15:
0020 22 00 63 72 00 70 72 69 76 5f 6d 65 6d 62 65 72 ".cr.pri v_member
0030 22 3b 69 3a 39 3b 7d 73 3a 33 3a 22 30 2e 35 22 ";i:9;}s :3:"0.5"
0040 3b 4f 3a 32 3a 22 63 72 22 3a 31 3a 7b 73 3a 31 ;O:2:"cr ":1:{s:1
0050 35 3a 22 00 63 72 00 70 72 69 76 5f 6d 65 6d 62 5:".cr.p riv_memb
0060 65 72 22 3b 69 3a 31 32 3b 7d 69 3a 30 3b 4f 3a er";i:12 ;}i:0;O:
0070 32 3a 22 63 72 22 3a 31 3a 7b 73 3a 31 35 3a 22 2:"cr":1 :{s:15:"
0080 00 63 72 00 70 72 69 76 5f 6d 65 6d 62 65 72 22 .cr.priv _member"
0090 3b 69 3a 32 33 3b 7d 7d ;i:23;}}
As you can see from this hexdump, there are 0 bytes being produced. This should not happen.
PatchesPull RequestsHistoryAllCommentsChangesGit/SVN commits
|
|||||||||||||||||||||||||||||||||||||
Copyright © 2001-2025 The PHP GroupAll rights reserved. |
Last updated: Wed Oct 29 00:00:01 2025 UTC |
I have noticed similar. <?php class User { protected $username = "name"; public function getU(){ return $this->username; } } $ob_User = New User(); $wUser = serialize($ob_User); echo $wUser; $wUser2 = unserialize($wUser); echo $wUser2->getU() . "<br>\n"; ?> Protected/private members appear to have the 0x00 bytes around the notation. For the time, I base64 the serialized string so I can store it in the DB without having to deal with it as a binary. Also, this may be related to why when using WDDX as the serialization handler it only picks up the last member var when you need implement __sleep.This is still a problem in the latest head, simple test case: $ ./php5_1 -r 'class Foo { protected $bar = 1; } $v = new Foo; echo serialize($v);' | hexdump 0000000 3a4f 3a33 4622 6f6f 3a22 3a31 737b 363a 0000010 223a 2a00 6200 7261 3b22 3a69 3b31 007d 000001fBug can still be reproduced in PHP 5.2 and 5.3 Example of running a simple test (orignally submitted by aidan@php.net): $ php -v PHP 5.2.14 (cli) (built: Aug 12 2010 16:03:48) $ php -r 'class Foo { protected $bar = 1; } $v = new Foo; echo serialize($v);' | hexdump 0000000 3a4f 3a33 4622 6f6f 3a22 3a31 737b 363a 0000010 223a 2a00 6200 7261 3b22 3a69 3b31 007d 000001f