зеркало из https://github.com/mozilla/gecko-dev.git
bug 155114, back out all patches for fixing cookie-stealing bug, a=asa
This commit is contained in:
morse%netscape.com
Родитель
551ed026a1
Коммит
adbda444cb
|
|
@ -666,23 +666,6 @@ cookie_IsInDomain(char* domain, char* host, int hostLength) {
|
|||
return PR_FALSE;
|
||||
}
|
||||
|
||||
static PRBool
|
||||
cookie_pathOK(const char* cookiePath, const char* currentPath) {
|
||||
if (!cookiePath || !currentPath) {
|
||||
return PR_FALSE;
|
||||
}
|
||||
|
||||
// determine length of each, excluding anything past last slash
|
||||
char * pos = PL_strrchr(cookiePath, '/');
|
||||
int cookiePathLen = pos ? pos+1-cookiePath : 0;
|
||||
pos = PL_strrchr(currentPath, '/');
|
||||
int currentPathLen = pos ? pos+1-currentPath : 0;
|
||||
|
||||
// test for subpath
|
||||
return (currentPathLen >= cookiePathLen &&
|
||||
!PL_strncmp(currentPath, cookiePath, cookiePathLen));
|
||||
}
|
||||
|
||||
/* returns PR_TRUE if authorization is required
|
||||
**
|
||||
**
|
||||
|
|
@ -752,8 +735,8 @@ COOKIE_GetCookie(nsIURI * address) {
|
|||
continue;
|
||||
}
|
||||
|
||||
/* shorter path strings always come last so there can be no ambiquity */
|
||||
if(cookie_pathOK(cookie_s->path, path.get())) {
|
||||
/* shorter strings always come last so there can be no ambiquity */
|
||||
if(cookie_s->path && !PL_strncmp(path.get(), cookie_s->path, PL_strlen(cookie_s->path))) {
|
||||
|
||||
/* if the cookie is secure and the path isn't, dont send it */
|
||||
if (cookie_s->isSecure & !isSecure) {
|
||||
|
|
@ -1282,23 +1265,19 @@ cookie_SetCookieString(nsIURI * curURL, nsIPrompt *aPrompter, const char * setCo
|
|||
PR_Free(domain_from_header);
|
||||
}
|
||||
}
|
||||
|
||||
/* ignore slashes in the query string part because that will upset the pathok test */
|
||||
char * iter = PL_strchr(cur_path.get(), '?');
|
||||
if(iter) {
|
||||
*iter = '\0';
|
||||
}
|
||||
|
||||
/* set path if none found in header, else verify that host has authority for indicated path */
|
||||
if(!path_from_header) {
|
||||
path_from_header = nsCRT::strdup(cur_path.get());
|
||||
} else {
|
||||
if(!cookie_pathOK(path_from_header, cur_path.get())) {
|
||||
PR_FREEIF(path_from_header);
|
||||
PR_FREEIF(host_from_header);
|
||||
nsCRT::free(setCookieHeaderInternal);
|
||||
return;
|
||||
/* Strip down everything after the last slash to get the path,
|
||||
* ignoring slashes in the query string part.
|
||||
*/
|
||||
char * iter = PL_strchr(cur_path.get(), '?');
|
||||
if(iter) {
|
||||
*iter = '\0';
|
||||
}
|
||||
iter = PL_strrchr(cur_path.get(), '/');
|
||||
if(iter) {
|
||||
*iter = '\0';
|
||||
}
|
||||
path_from_header = nsCRT::strdup(cur_path.get());
|
||||
}
|
||||
if(!host_from_header) {
|
||||
host_from_header = nsCRT::strdup(cur_host.get());
|
||||
|
|
|
|||
Загрузка…
Ссылка в новой задаче