[tor-bugs] #5536 [EFF-HTTPS Everywhere]: Incorrect use of setResponseHeader for cookie

Tor Bug Tracker & Wiki torproject-admin at torproject.org
Mon Jun 18 23:59:52 UTC 2012


#5536: Incorrect use of setResponseHeader for cookie
----------------------------------+-----------------------------------------
 Reporter:  mkaply                |          Owner:  pde
     Type:  defect                |         Status:  new
 Priority:  normal                |      Milestone:     
Component:  EFF-HTTPS Everywhere  |        Version:     
 Keywords:                        |         Parent:     
   Points:                        |   Actualpoints:     
----------------------------------+-----------------------------------------

Comment(by mikeperry):

 Started looking at this but need to task switch. The Firefox code that
 does the merging is in nsHttpHeaderArray::MergeHeader() and does appear to
 inject \n's for cookies, with some complaint about the spec not being
 obeyed in a comment there.. Seems like braindamage of some sort. Will
 investigate more, later.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5536#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list