Edit report at https://bugs.php.net/bug.php?id=35703&edit=1
ID: 35703
Updated by: yohg...@php.net
Reported by: samuelkid at citiz dot net
Summary: when session_name("123") consist only digits, should
warning
-Status: Open
+Status: Analyzed
Type: Feature/Change Request
-Package: Feature/Change Request
+Package: *General Issues
Operating System: redhat 7.3
PHP Version: 5.1.1
Block user comment: N
Private report: N
New Comment:
This is because session name is string, but session id name stored in
$_COOKIE/$_GET/$_POST has long key.
i.e. Cannot find session id with zend_hash_find() since it is numeric(long) key.
session.name can be check in INI update function.
Previous Comments:
------------------------------------------------------------------------
[2005-12-16 10:39:21] samuelkid at citiz dot net
Description:
------------
as php manual says:
Session name can't consist only from digits, at least one letter must be
present. Otherwise new session id is generated every time.
http://php.liukang.com/manual/en/function.session-name.php
so, when session("123"), it should be warning or something,
but it is not
Reproduce code:
---------------
session_name("123")
Expected result:
----------------
warning: or something
Actual result:
--------------
actually "123" works fine
------------------------------------------------------------------------
--
Edit this bug report at https://bugs.php.net/bug.php?id=35703&edit=1
