Message261388
It should be safe to hard split on semicolon. `name="some;value"` is not valid, even though it's quoted. I think raw double quotes, commas, semicolons and backslashes are _always_ invalid characters in cookie values.
From https://tools.ietf.org/html/rfc6265:
{{{
cookie-value = *cookie-octet / ( DQUOTE *cookie-octet DQUOTE )
cookie-octet = %x21 / %x23-2B / %x2D-3A / %x3C-5B / %x5D-7E
; US-ASCII characters excluding CTLs,
; whitespace DQUOTE, comma, semicolon,
; and backslash
}}} |
|
Date |
User |
Action |
Args |
2016-03-08 22:41:20 | collinanderson | set | recipients:
+ collinanderson, pitrou, r.david.murray, martin.panter, Tim.Graham, Pathangi Jatinshravan, harris |
2016-03-08 22:41:20 | collinanderson | set | messageid: <1457476880.73.0.479508139261.issue25228@psf.upfronthosting.co.za> |
2016-03-08 22:41:20 | collinanderson | link | issue25228 messages |
2016-03-08 22:41:19 | collinanderson | create | |
|