php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #16677 SID constant does not get set
Submitted: 2002-04-18 04:32 UTC Modified: 2002-05-02 06:55 UTC
Votes:3
Avg. Score:4.7 ± 0.5
Reproduced:3 of 3 (100.0%)
Same Version:1 (33.3%)
Same OS:1 (33.3%)
From: dnorrell at gmx dot net Assigned:
Status: Closed Package: Session related
PHP Version: 4.2.0 OS: Redhat 7.2
Private report: No CVE-ID: None
View Developer Edit
Welcome! If you don't have a Git account, you can't do anything here.
If you reported this bug, you can edit this bug over here.
(description)
Block user comment
Status: Assign to:
Package:
Bug Type:
Summary:
From: dnorrell at gmx dot net
New email:
PHP Version: OS:

 

 [2002-04-18 04:32 UTC] dnorrell at gmx dot net 
I'm using PHP 4.2.0-RC4 with Apache 2.0.35. The following   
script does not return the session_name=session_id, using 
the SID constant, as expected:   
   
<?   
   session_start();   
   echo "session id is ".SID;   
?>   
   
Configure line:   
   
./configure  --with-apxs2=/opt/apache2/bin/apxs --with-xml   
--with-openssl --with-sybase=/opt/sybase --without-mysql   
  
Session configuration is as follows: 
 
; Argument passed to save_handler.  In the case of files,  
this is the path  
; where data files are stored.  
session.save_path = /tmp  
  
; Whether to use cookies.  
session.use_cookies = 0  
  
; Name of the session (used as cookie name).  
session.name = PHPSESSID  
  
; Initialize session on request startup.  
session.auto_start = 0  
  
; Lifetime in seconds of cookie or, if 0, until browser is  
restarted.  
session.cookie_lifetime = 0  
  
; The path for which the cookie is valid.  
session.cookie_path = /  
  
; The domain for which the cookie is valid.  
session.cookie_domain =  
  
; Handler used to serialize data.  php is the standard  
serializer of PHP.  
session.serialize_handler = php  
  
; Percentual probability that the 'garbage collection'  
process is started  
; on every session initialization.  
session.gc_probability = 10  
  
; After this number of seconds, stored data will be seen  
as 'garbage' and  
; cleaned up by the garbage collection process.  
session.gc_maxlifetime = 1800  
  
; Check HTTP Referer to invalidate externally stored URLs  
containing ids.  
session.referer_check =  
  
; How many bytes to read from the file.  
session.entropy_length = 0  
 
;session.entropy_length = 16 
 
;session.entropy_file = /dev/urandom 
 
; Set to {nocache,private,public} to determine HTTP 
caching aspects. 
session.cache_limiter = nocache 
 
; Document expires after n minutes. 
session.cache_expire = 180 
 
; use transient sid support if enabled by compiling with 
--enable-trans-sid. 
session.use_trans_sid = 0

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2002-04-18 06:05 UTC] yohgaki@php.net 
We need to make it clearer how/when SID is defined,
including changed behavior in 4.2.0.

SID is defined when cookie is not sent to 
client from 4.2.0. I forgot old behavior.
 [2002-04-26 10:33 UTC] dnorrell at gmx dot net 
There is definitely something odd here. In the example I 
give in original post, a cookie is not sent to the client, 
yet SID is still not set.
 [2002-04-26 16:44 UTC] siegel at epost dot de 
I'm confirming this, tried many many ways to get the constant SID, but without any luck.
I have disabled register_globals and cookies so there should be a SID defined.

Even a define("SID",session_name()."=".session_id()); as workaround does not work, the SID is always empty :(

I'm using 4.2.0 with Apache 1.3.20
 [2002-04-26 21:59 UTC] yohgaki@php.net 
Ah. I forgot to mention that bug itself is fixed in CVS. We need to update doc. 4.2.1 is scheduled May 3rd.
 [2002-05-02 06:55 UTC] sander@php.net 
Fixed in CVS -> closed
 
PHP Copyright © 2001-2025 The PHP Group
All rights reserved. 		Last updated: Sat Nov 01 16:00:01 2025 UTC