Hi Jani,
'value' can NOT contain any of these chars: ,; \t\r\n\013\014Wrong. value is to the RFC either a token or a quoted_string and a quoted_string can contain , and ;
If you want such chars in them, you have to encode them.
Yes in your implementation that is not RFC conform
Forgive me my ignorance, but I do not see any handling of " chars.And there wasn't such before I added the , as acceptable separator.
Yes because PHP spoke cookie version 0 before your patch. Now it speaks neither version 0 nor version 1 but your own version.
Stefan
-- -------------------------------------------------------------------------- Stefan Esser [EMAIL PROTECTED] Hardened-PHP Project http://www.hardened-php.net/
GPG-Key gpg --keyserver pgp.mit.edu --recv-key 0x15ABDA78 Key fingerprint 7806 58C8 CFA8 CE4A 1C2C 57DD 4AE1 795E 15AB DA78 --------------------------------------------------------------------------
-- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
