ID: 23681 Comment by: s dot stadtlich at studenten-wg dot de Reported By: php at lapage dot com Status: Assigned Bug Type: Feature/Change Request Operating System: Linux PHP Version: 4.3.1 Assigned To: sas New Comment:
this problem ist still not fixed in 5.0.3 it gets even worse if session uses cookies and user accepts them. this results in the wrong value beeing set as a cookie and EVERY request in this session will lead to the warning.(eventually displayed on your website if warnings are displayed....) GET /?PHPSESSID= HTTP/1.1 Host: www.yourhost.de HTTP/1.1 200 OK Date: Wed, 26 Jan 2005 14:36:31 GMT Server: Apache/1.3.33 (Unix) PHP/5.0.3 mod_ssl/2.8.22 OpenSSL/0.9.7e X-Powered-By: PHP/5.0.3 Vary: Accept-Encoding,User-Agent Last-Modified: Wed, 26 Jan 2005 14:36:31 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Set-Cookie: PHPSESSID=; path=/ Previous Comments: ------------------------------------------------------------------------ [2004-08-24 13:32:11] ross dot cornell at molins dot com This is causing me problems with php 4.3.1 and 5.0.1 It happens after the first session_start(); on every frame. My application is worldwide, someone in the far east was having this problem, i thought PHPSESSID was pulling illegal charactgers out of their character set. Then it happened to me on this laptop, running winXP. As far as i can tell it is client side, as it is only effecting the same 2 machines, so far anyway. Both with ie6. If anyone finds why this is, workaround etc, please mail me. Thanks Ross ------------------------------------------------------------------------ [2003-05-20 03:16:52] [EMAIL PROTECTED] I'm all for making this a notice instead, assigning to Sascha as he's the maintainer of ext/session. Derick ------------------------------------------------------------------------ [2003-05-18 10:41:04] php at lapage dot com Request for a better error msg. If the user disables cookies and changes the URL to http://domain.tld/form.php?PHPSESSID= Then the resulting Apache 1.3 error log reads: PHP Warning: session_start(): The session id contains illegal characters, valid characters are only a-z, A-Z and 0-9 in /zz/zzdomain/www/form.php on line 3 PHP Warning: Unknown(): The session id contains illegal characters, valid characters are only a-z, A-Z and 0-9 in Unknown on line 0 PHP Warning: Unknown(): Failed to write session data (files). Please verify that the current setting of session.save_path is correct (/tmp_php/zzdomainzz) in Unknown on line 0 <?php session_start(); @$ct= ++$_SESSION['count']; echo<<<EOF [$ct]<br><form method="get"> See hidden input<input type="submit" name="submit" value="Test"></form> <a href="$PHP_SELF?foo=bar">See new href</a> EOF; ?> ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=23681&edit=1
