| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2011-05-18 | don't save huge cookies | corvid | |
| Huge cookies confuse the code that reads them back in. I suppose there's always the possibility of getting a cookies.txt from something else, or a manually-edited one, but... Incidentally, the RFC thinks user agents should allow 4096 bytes for name+value+attributes, which we must be within, say, 50 bytes of. | |||
| 2011-05-17 | cookies comments | corvid | |
| I was going to say something in the comments about simplicity and not implementing every little bit of the rfc when we don't know of cookies that make it necessary, but then I suppose that's all implied with dillo. | |||
| 2011-05-16 | cookies comment | corvid | |
| 2010-08-19 | turn off some cookie MSGs | corvid | |
| 2010-05-16 | disallow nameless cookies | corvid | |
| 2010-03-22 | use the most specific cookiesrc rule | corvid | |
| 2010-03-22 | cookies use host-only as in draft spec | corvid | |
| Behaviour should be quite similar to before, but it'll be easier for someone else to understand if it matches the spec's way of doing things more closely. | |||
| 2010-03-22 | fix reading maximum expiration date from cookies.txt | corvid | |
| I did check that tm.tm_sec was 0 before adding the max time to it, so that wasn't the problem. (max - 1000) was fine... Surely safer in general to do like this anyway, so I didn't spend time really digging into details this time. | |||
| 2010-03-22 | my testcases aren't smart enough for remove_fast on a domain's cookies | corvid | |
| Nothing wrong with it in principle, but... | |||
| 2010-03-22 | Cookies_load_cookies() | corvid | |
| 2010-03-22 | limit total number of cookies | corvid | |
| 2010-03-22 | cookies some remove_fast | corvid | |
| 2010-03-22 | better handling when too many cookies | corvid | |
| 2010-03-21 | Cookies_delete_node | corvid | |
| 2010-03-21 | cookies some data structure renaming | corvid | |
| 2010-03-10 | invalid value on invalid month | corvid | |
| 2010-03-10 | make a point of using -1 for invalid time_t | corvid | |
| 2010-03-10 | if ignoring Expires attr, eat value | corvid | |
| 2010-03-10 | use tm for max-age | corvid | |
| 2010-03-10 | get rid of the overflow | corvid | |
| 2010-03-10 | separate out server time offset | corvid | |
| 2010-03-10 | separate out unquoting | corvid | |
| 2010-03-10 | use tm when parsing date string | corvid | |
| 2010-03-10 | cookies: start using struct tm for time calculations | corvid | |
| Apparently, that's how you're supposed to do things. It's clumsy, but oh well. | |||
| 2010-03-09 | another difftime | corvid | |
| 2010-03-09 | cookies: use difftime() for time_t comparisons | corvid | |
| ...as Johannes pointed out. (This patch in itself is not meant to fix the time_t overflow problem.) | |||
| 2010-03-08 | fix cookie attr leak | corvid | |
| 2010-03-04 | fix dpip cmd leak | corvid | |
| 2010-02-02 | decrease cookies chattiness | corvid | |
| 2010-01-24 | dpi send response when setting cookies | Jorge Arellano Cid | |
| 2010-01-20 | cookies improve clock skew handling | corvid | |
| 2010-01-18 | cookies allow Expires attr's value to be quoted. | corvid | |
| sourceforge sends cookies this way. It seems that quotes around values are generally to be ignored, i.e., not stripped or anything, but I asked the draft spec author about this case, and he reports that he has fixed his algorithm to allow leading and trailing delimiters around cookie-date. If I/someone eventually does make the timestamp code follow the algorithm more closely, the stripping would no longer need to be done here. As for whether we'd want to continue to use that code for the stricter server_date that we get from the HTTP Date header, I'm not sure at the moment. I've already added one case to it that wouldn't be legal for the header, though... | |||
| 2010-01-14 | Be careful not to delete domain_cookies while still using it. | corvid | |
| And don't leak nodes. I never saw any crashing -- and the problem was already in the code before I got to it -- but I was alerted to the matter when puzzling over why there was another round of searching for domain_cookies near the bottom of Cookies_add_cookie. | |||
| 2010-01-14 | handle nameless/valueless cookies in cookies.txt | corvid | |
| 2010-01-13 | cookies: be more robust in rejecting IP addr partial matches | corvid | |
| The code was already such that, even if we accepted 123.45 as a domain for host 1.2.123.45, it wouldn't be sent back to anyone. But it would be easy to make some small change later that would break that, so... | |||
| 2010-01-13 | cookies fix ipv6 check | corvid | |
| 2010-01-12 | don't bother to save expired cookies | corvid | |
| 2010-01-10 | cookies update TLDs | corvid | |
| 2010-01-10 | cookie handle time overflow | corvid | |
| Jeremy pointed out http://lists.auriga.wearlab.de/pipermail/dillo-dev/2010-January/007144.html that time_t could in principle be a floating type. The cookies dpi assumes that it is an integer type. | |||
| 2010-01-10 | make cookies very chatty for now | corvid | |
| 2010-01-09 | unnecessary test | corvid | |
| 2010-01-09 | when too many cookies for domain, rm least recently used | corvid | |
| 2010-01-09 | cookies: a little cleaning | corvid | |
| 2010-01-09 | cookies use server date to interpret Expires attr | corvid | |
| 2010-01-09 | timestamps a little less strict | corvid | |
| 2010-01-09 | cookies follow draft spec's simple parsing | corvid | |
| 2010-01-09 | cookies follow draft spec for domains | corvid | |
| 2010-01-09 | cookies follow draft spec for paths | corvid | |
| 2010-01-09 | cookies: rm version, comment, comment url, port, Cookie2 | corvid | |
| 2010-01-09 | rm support for ancient ~/.dillo/cookies file | corvid | |
 |
index : dillo | |
| Dillo, a multi-platform graphical web browser |
| summaryrefslogtreecommitdiff |