- Fixed bug where session ID's length was limited to 40 characters. Since PHP5.3 it's possible

to set session.hash_function to any hash algorithm that would produce strings up to 128 characters long (#1488196)
13 years ago · b8ae0ecb22
parent 15cd3e5c0b
commit b8ae0ecb22
9 changed files with 23 additions and 4 deletions
--- a/1
+++ b/1
@ -1,6 +1,7 @@
 CHANGELOG Roundcube Webmail
 ===========================

+- Fixed bug where session ID's length was limited to 40 characters (#1488196)
 - Added About tab in Settings
 - TinyMCE:
  - updated to 3.4.6
--- a/SQL/mssql.initial.sql
+++ b/SQL/mssql.initial.sql
@ -81,7 +81,7 @@ CREATE TABLE [dbo].[identities] (
 GO

 CREATE TABLE [dbo].[session] (
-	[sess_id] [varchar] (32) COLLATE Latin1_General_CI_AI NOT NULL ,
+	[sess_id] [varchar] (128) COLLATE Latin1_General_CI_AI NOT NULL ,
 	[created] [datetime] NOT NULL ,
 	[changed] [datetime] NULL ,
 	[ip] [varchar] (40) COLLATE Latin1_General_CI_AI NOT NULL ,
--- a/SQL/mssql.upgrade.sql
+++ b/SQL/mssql.upgrade.sql
@ -239,3 +239,6 @@ ALTER TABLE [dbo].[cache_messages] ADD CONSTRAINT [FK_cache_messages_user_id]
    ON DELETE CASCADE ON UPDATE CASCADE
 GO

+ALTER TABLE [dbo].[session] ALTER COLUMN [sess_id] [varchar] (128) COLLATE Latin1_General_CI_AI NOT NULL
+GO
+
--- a/SQL/mysql.initial.sql
+++ b/SQL/mysql.initial.sql
@ -6,7 +6,7 @@
 -- Table structure for table `session`

 CREATE TABLE `session` (
- `sess_id` varchar(40) NOT NULL,
+ `sess_id` varchar(128) NOT NULL,
 `created` datetime NOT NULL DEFAULT '1000-01-01 00:00:00',
 `changed` datetime NOT NULL DEFAULT '1000-01-01 00:00:00',
 `ip` varchar(40) NOT NULL,
--- a/SQL/mysql.update.sql
+++ b/SQL/mysql.update.sql
@ -208,3 +208,5 @@ CREATE TABLE `cache_messages` (
 INDEX `changed_index` (`changed`),
 PRIMARY KEY (`user_id`, `mailbox`, `uid`)
 ) /*!40000 ENGINE=INNODB */ /*!40101 CHARACTER SET utf8 COLLATE utf8_general_ci */;
+
+ALTER TABLE `session` CHANGE `sess_id` `sess_id` varchar(128) NOT NULL;
--- a/SQL/postgres.initial.sql
+++ b/SQL/postgres.initial.sql
@ -37,7 +37,7 @@ CREATE INDEX users_alias_id_idx ON users (alias);
 --

 CREATE TABLE "session" (
-    sess_id varchar(40) DEFAULT '' PRIMARY KEY,
+    sess_id varchar(128) DEFAULT '' PRIMARY KEY,
    created timestamp with time zone DEFAULT now() NOT NULL,
    changed timestamp with time zone DEFAULT now() NOT NULL,
    ip varchar(41) NOT NULL,
--- a/SQL/postgres.update.sql
+++ b/SQL/postgres.update.sql
@ -165,3 +165,5 @@ CREATE TABLE cache_messages (
 );

 CREATE INDEX cache_messages_changed_idx ON cache_messages (changed);
+
+ALTER TABLE "session" ALTER sess_id TYPE varchar(128);
--- a/SQL/sqlite.initial.sql
+++ b/SQL/sqlite.initial.sql
@ -110,7 +110,7 @@ CREATE INDEX ix_users_alias ON users(alias);
 -- 

 CREATE TABLE session (
-  sess_id varchar(40) NOT NULL PRIMARY KEY,
+  sess_id varchar(128) NOT NULL PRIMARY KEY,
  created datetime NOT NULL default '0000-00-00 00:00:00',
  changed datetime NOT NULL default '0000-00-00 00:00:00',
  ip varchar(40) NOT NULL default '',
--- a/SQL/sqlite.update.sql
+++ b/SQL/sqlite.update.sql
@ -282,3 +282,14 @@ CREATE TABLE cache_messages (
 );

 CREATE INDEX ix_cache_messages_changed ON cache_messages (changed);
+
+DROP TABLE session;
+CREATE TABLE session (
+  sess_id varchar(128) NOT NULL PRIMARY KEY,
+  created datetime NOT NULL default '0000-00-00 00:00:00',
+  changed datetime NOT NULL default '0000-00-00 00:00:00',
+  ip varchar(40) NOT NULL default '',
+  vars text NOT NULL
+);
+
+CREATE INDEX ix_session_changed ON session (changed);