| #
9919149a |
| 06-Nov-2024 |
Daniel Stenberg |
cookie: treat cookie name case sensitively
Extend test 31 to verify
Reported-by: delogicsreal on github
Fixes #15492
Closes #15493
|
| #
7aa2b4e0 |
| 25-Sep-2024 |
Daniel Stenberg |
tests: make precheck for HTTP on 127.0.0.1 into a feature
It can now be required easily in <features> instead of having perl code
in a <precheck>.
Closes #15039
|
| #
3fd80c7b |
| 04-Oct-2023 |
Daniel Stenberg |
tests: remove leading spaces from some tags
The threee tags `<name>`, `</name>` and `<command>` were frequently used
with a leading space that this removes. The reason this habbit is so
tests: remove leading spaces from some tags
The threee tags `<name>`, `</name>` and `<command>` were frequently used
with a leading space that this removes. The reason this habbit is so
widespread in testcases is probably that they have been copy and pasted.
Hence, fixing them all now might curb this practice from now on.
Closes #12028
show more ...
|
| #
c2212c05 |
| 04-Aug-2023 |
Alexander Kanavin |
tests: update cookie expiry dates to far in the future
This allows testing Y2038 with system time set to after that, so that
actual Y2038 issues can be exposed, and not masked by expiry
tests: update cookie expiry dates to far in the future
This allows testing Y2038 with system time set to after that, so that
actual Y2038 issues can be exposed, and not masked by expiry errors.
Fixes #11576
Closes #11610
show more ...
|
| #
127eb0d8 |
| 21-May-2023 |
Daniel Stenberg |
misc: fix spelling mistakes
Reported-by: musvaage on github
Fixes #11171
Closes #11172
|
| #
e7a021e1 |
| 29-Mar-2023 |
Dan Fandrich |
tests: use %LOGDIR to refer to the log directory
This will allow it be set dynamically.
Ref: #10818
|
| #
29a19369 |
| 09-Mar-2023 |
Marcel Raad |
tests: add `cookies` features
These tests don't work with `--disable-cookies`.
Closes https://github.com/curl/curl/pull/10713
|
| #
4c0ac2aa |
| 18-Jul-2022 |
Daniel Stenberg |
cookie: treat a blank domain in Set-Cookie: as non-existing
This matches what RFC 6265 section 5.2.3 says.
Extended test 31 to verify.
Fixes #9164
Reported-by: Gwen Sha
cookie: treat a blank domain in Set-Cookie: as non-existing
This matches what RFC 6265 section 5.2.3 says.
Extended test 31 to verify.
Fixes #9164
Reported-by: Gwen Shapira
Closes #9177
show more ...
|
| #
c495dcd0 |
| 10-May-2021 |
Daniel Stenberg |
http: consider cookies over localhost to be secure
Updated test31.
Added test 392 to verify secure cookies used for http://localhost
Reviewed-by: Daniel Gustafsson
Fixes #67
http: consider cookies over localhost to be secure
Updated test31.
Added test 392 to verify secure cookies used for http://localhost
Reviewed-by: Daniel Gustafsson
Fixes #6733
Closes #7263
show more ...
|
|
Revision tags: curl-7_76_1, curl-7_76_0 |
|
| #
e2b4df7b |
| 12-Mar-2021 |
Daniel Stenberg |
tests: use %TESTNUMBER instead of fixed number
This makes the tests easier to copy and relocate to other test numbers
without having to update content.
Closes #6738
|
|
Revision tags: curl-7_75_0, curl-7_74_0, curl-7_73_0, tiny-curl-7_72_0, curl-7_72_0, curl-7_71_1, curl-7_71_0, curl-7_70_0, curl-7_69_1, curl-7_69_0 |
|
| #
12419863 |
| 28-Feb-2020 |
Fabian Keil |
tests: fixup several tests
missing CRs and modified %hostip
lib556/test556: use a real HTTP version to make test reuse more convenient
make sure the weekday in Date headers
tests: fixup several tests
missing CRs and modified %hostip
lib556/test556: use a real HTTP version to make test reuse more convenient
make sure the weekday in Date headers matches the date
test61: replace stray "^M" (5e 4d) at the end of a cookie with a '^M' (0d)
Gets the test working with external proxies like Privoxy again.
Closes #6463
show more ...
|
| #
c7dd08ce |
| 14-Dec-2020 |
Daniel Stenberg |
tests: updated tests for Hyper
|
| #
4d2f8006 |
| 04-Nov-2020 |
Daniel Stenberg |
curl.se: new home
Closes #6172
|
| #
e6b21d42 |
| 02-Oct-2020 |
Daniel Stenberg |
runtests: provide curl's version string as %VERSION for tests
... so that we can check HTTP requests for User-Agent: curl/%VERSION
Update 600+ test cases accordingly.
Close
runtests: provide curl's version string as %VERSION for tests
... so that we can check HTTP requests for User-Agent: curl/%VERSION
Update 600+ test cases accordingly.
Closes #6037
show more ...
|
|
Revision tags: curl-7_68_0, curl-7_67_0, curl-7_66_0, curl-7_65_3, curl-7_65_2, curl-7_65_1, curl-7_65_0, curl-7_64_1, curl-7_64_0 |
|
| #
114a02c7 |
| 07-Jan-2019 |
Bernhard M. Wiedemann |
tests: allow tests to pass by 2037-02-12
similar to commit f508d29f3902104018
Closes #3443
|
| #
7a09b52c |
| 13-Dec-2018 |
Daniel Gustafsson |
cookies: leave secure cookies alone
Only allow secure origins to be able to write cookies with the
'secure' flag set. This reduces the risk of non-secure origins
to influence the sta
cookies: leave secure cookies alone
Only allow secure origins to be able to write cookies with the
'secure' flag set. This reduces the risk of non-secure origins
to influence the state of secure origins. This implements IETF
Internet-Draft draft-ietf-httpbis-cookie-alone-01 which updates
RFC6265.
Closes #2956
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
show more ...
|
|
Revision tags: curl-7_63_0, curl-7_62_0, curl-7_61_1 |
|
| #
e2ef8d6f |
| 28-Aug-2018 |
Daniel Gustafsson |
cookies: support creation-time attribute for cookies
According to RFC6265 section 5.4, cookies with equal path lengths
SHOULD be sorted by creation-time (earlier first). This adds a
cookies: support creation-time attribute for cookies
According to RFC6265 section 5.4, cookies with equal path lengths
SHOULD be sorted by creation-time (earlier first). This adds a
creation-time record to the cookie struct in order to make cookie
sorting more deterministic. The creation-time is defined as the
order of the cookies in the jar, the first cookie read fro the
jar being the oldest. The creation-time is thus not serialized
into the jar. Also remove the strcmp() matching in the sorting as
there is no lexicographic ordering in RFC6265. Existing tests are
updated to match.
Closes #2524
show more ...
|
|
Revision tags: curl-7_61_0, curl-7_60_0, curl-7_59_0, curl-7_58_0, curl-7_57_0, curl-7_56_1, curl-7_56_0, curl-7_55_1, curl-7_55_0, curl-7_54_1 |
|
| #
fa0ac3f4 |
| 13-May-2017 |
Dan Fandrich |
tests: made a couple of prechecks consistent with others
Also removed a TODO suggesting caching the precheck results. Tests
showed this would save about 0.1 sec on the total test run tim
tests: made a couple of prechecks consistent with others
Also removed a TODO suggesting caching the precheck results. Tests
showed this would save about 0.1 sec on the total test run time on a
relatively modern system, an unnoticeable gain at the cost of longer and
more complicated code. There would also be a danger that a cached test
result would be inappropriately returned, such as when other test
dependencies (like environment variables) are different or when the
precheck causes side effects (like filesystem changes).
show more ...
|
|
Revision tags: curl-7_54_0, curl-7_53_1, curl-7_53_0, curl-7_52_1, curl-7_52_0, curl-7_51_0, curl-7_50_3, curl-7_50_2, curl-7_50_1, curl-7_50_0, curl-7_49_1, curl-7_49_0, curl-7_48_0, curl-7_47_1 |
|
| #
4af40b36 |
| 02-Feb-2016 |
Daniel Stenberg |
URLs: change all http:// URLs to https://
|
|
Revision tags: curl-7_47_0, curl-7_46_0, curl-7_45_0, curl-7_44_0, curl-7_43_0, curl-7_42_1, curl-7_42_0 |
|
| #
2685041a |
| 01-Apr-2015 |
Daniel Stenberg |
cookie: handle spaces after the name in Set-Cookie
"name =value" is fine and the space should just be skipped.
Updated test 31 to also test for this.
Bug: https://github.co
cookie: handle spaces after the name in Set-Cookie
"name =value" is fine and the space should just be skipped.
Updated test 31 to also test for this.
Bug: https://github.com/bagder/curl/issues/195
Reported-by: cromestant
Help-by: Frank Gevaerts
show more ...
|
|
Revision tags: curl-7_41_0, curl-7_40_0, curl-7_39_0, curl-7_38_0 |
|
| #
8a75dbeb |
| 19-Aug-2014 |
Tim Ruehsen |
cookies: only use full host matches for hosts used as IP address
By not detecting and rejecting domain names for partial literal IP
addresses properly when parsing received HTTP cookies,
cookies: only use full host matches for hosts used as IP address
By not detecting and rejecting domain names for partial literal IP
addresses properly when parsing received HTTP cookies, libcurl can be
fooled to both send cookies to wrong sites and to allow arbitrary sites
to set cookies for others.
CVE-2014-3613
Bug: http://curl.haxx.se/docs/adv_20140910A.html
show more ...
|
|
Revision tags: curl-7_37_1, curl-7_37_0, curl-7_36_0, curl-7_35_0, curl-7_34_0, curl-7_33_0, curl-7_32_0, curl-7_31_0 |
|
| #
f24dc09d |
| 12-Jun-2013 |
YAMADA Yasuharu |
cookies: follow-up fix for path checking
The initial fix to only compare full path names were done in commit
04f52e9b4db0 but found out to be incomplete. This takes should make the
c
cookies: follow-up fix for path checking
The initial fix to only compare full path names were done in commit
04f52e9b4db0 but found out to be incomplete. This takes should make the
change more complete and there's now two additional tests to verify
(test 31 and 62).
show more ...
|
|
Revision tags: curl-7_30_0, curl-7_29_0, curl-7_28_1 |
|
| #
276452ca |
| 18-Nov-2012 |
Fabian Keil |
Add a HOSTIP precheck for tests 31 and 1105
They currently only work for 127.0.0.1 which
is hardcoded and can't be easily changed.
|
| #
10296ac6 |
| 16-Nov-2012 |
Fabian Keil |
Use carriage returns in all headers in test 31
Trailing spaces were left unmodifed, assuming they were intentional.
|
|
Revision tags: curl-7_28_0, curl-7_27_0 |
|
| #
c75ece44 |
| 03-Jul-2012 |
Daniel Stenberg |
cookies: change the URL in the cookie jar file header
|
