Added checks for invalid characters in a cookie name or cookie data from setrawcookie

author: Brian France <bfrance@php.net> 2004-02-11 19:00:42 +0000
committer: Brian France <bfrance@php.net> 2004-02-11 19:00:42 +0000
commit: d5b6608da57741462ac13509cb81a7b1af295cff (patch)
tree: 8c1b7d689a3c8ff26162b425b3648a7bbe034905
parent: e6ae5c331894ce19114f8783520b2060d6f96984 (diff)
download: php-git-d5b6608da57741462ac13509cb81a7b1af295cff.tar.gz
1 files changed, 10 insertions, 0 deletions
diff --git a/ext/standard/head.c b/ext/standard/head.c
index 9594276b8c..096abbc6c7 100644
--- a/ext/standard/head.c
+++ b/ext/standard/head.c
@@ -74,6 +74,16 @@ PHPAPI int php_setcookie(char *name, int name_len, char *value, int value_len, t
 	sapi_header_line ctr = {0};
 	int result;
 	
+	if (name && strpbrk(name, "=,; \t\r\n\013\014") != NULL) {   /* man isspace for \013 and \014 */
+		zend_error( E_WARNING, "Cookie names can not contain any of the folllowing '=,; \\t\\r\\n\\013\\014' (%s)", name );
+		return FAILURE;
+	}
+
+	if (!url_encode && value && strpbrk(value, ",; \t\r\n\013\014") != NULL) { /* man isspace for \013 and \014 */
+		zend_error( E_WARNING, "Cookie values can not contain any of the folllowing ',; \\t\\r\\n\\013\\014' (%s)", value );
+		return FAILURE;
+	}
+
 	len += name_len;
 	if (value && url_encode) {
 		int encoded_value_len;
author	Brian France <bfrance@php.net>	2004-02-11 19:00:42 +0000
committer	Brian France <bfrance@php.net>	2004-02-11 19:00:42 +0000
commit	d5b6608da57741462ac13509cb81a7b1af295cff (patch)
tree	8c1b7d689a3c8ff26162b425b3648a7bbe034905
parent	e6ae5c331894ce19114f8783520b2060d6f96984 (diff)
download	php-git-d5b6608da57741462ac13509cb81a7b1af295cff.tar.gz