diff options
author | Brian France <bfrance@php.net> | 2004-02-11 19:00:42 +0000 |
---|---|---|
committer | Brian France <bfrance@php.net> | 2004-02-11 19:00:42 +0000 |
commit | d5b6608da57741462ac13509cb81a7b1af295cff (patch) | |
tree | 8c1b7d689a3c8ff26162b425b3648a7bbe034905 | |
parent | e6ae5c331894ce19114f8783520b2060d6f96984 (diff) | |
download | php-git-d5b6608da57741462ac13509cb81a7b1af295cff.tar.gz |
Added checks for invalid characters in a cookie name or cookie data from setrawcookie
-rw-r--r-- | ext/standard/head.c | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/ext/standard/head.c b/ext/standard/head.c index 9594276b8c..096abbc6c7 100644 --- a/ext/standard/head.c +++ b/ext/standard/head.c @@ -74,6 +74,16 @@ PHPAPI int php_setcookie(char *name, int name_len, char *value, int value_len, t sapi_header_line ctr = {0}; int result; + if (name && strpbrk(name, "=,; \t\r\n\013\014") != NULL) { /* man isspace for \013 and \014 */ + zend_error( E_WARNING, "Cookie names can not contain any of the folllowing '=,; \\t\\r\\n\\013\\014' (%s)", name ); + return FAILURE; + } + + if (!url_encode && value && strpbrk(value, ",; \t\r\n\013\014") != NULL) { /* man isspace for \013 and \014 */ + zend_error( E_WARNING, "Cookie values can not contain any of the folllowing ',; \\t\\r\\n\\013\\014' (%s)", value ); + return FAILURE; + } + len += name_len; if (value && url_encode) { int encoded_value_len; |