qbit/go
1
0
Fork 0
mirror of https://github.com/golang/go synced 2024-10-04 16:11:21 -06:00
Code Releases Activity
4f86a96ac9
go/src/pkg
History
Volker Dobler 4f86a96ac9 net/http: do not send malformed cookie domain attribute 
Malformed domain attributes are not sent in a Set-Cookie header.
Instead the domain attribute is dropped which turns the cookie
into a host-only cookie. This is much safer than dropping characters
from domain attribute.

Domain attributes with a leading dot '.' are still allowed, even
if discouraged by RFC 6265 section 4.1.1.

Fixes #6013

R=golang-dev, bradfitz
CC=golang-dev
https://golang.org/cl/12745043
2013-08-12 15:14:34 -07:00
..
archive archive/zip: allow user-extensible compression methods 2013-08-06 12:03:38 -07:00
bufio bufio: add Writer example 2013-08-12 13:03:50 +10:00
builtin builtin: document print and println 2013-07-09 16:20:19 -07:00
bytes bytes: move IndexByte assembly to pkg runtime 2013-08-01 16:11:19 -07:00
compress compress/bzip2: support concatenated files 2013-08-05 16:08:08 -04:00
container container/list: fix typo in comment 2013-08-08 12:41:19 +10:00
crypto all: change textflags from numbers to symbols. 2013-08-12 10:25:36 -07:00
database/sql database/sql: close statement before connection 2013-07-23 14:09:53 +10:00
debug runtime: convert .s textflags from numbers to symbolic constants. 2013-08-07 12:20:05 -07:00
encoding encoding/binary: better description for intReadSize 2013-08-10 09:11:58 +10:00
errors
expvar all: make tests able to run multiple times. 2013-01-27 00:24:09 +01:00
flag flag: export commandLine, the previously internal default FlagSet 2013-08-08 11:50:58 +10:00
fmt fmt: fix up zero padding 2013-08-07 08:38:46 +10:00
go go/build: add AllTags to Package 2013-08-09 18:34:08 -04:00
hash all: change textflags from numbers to symbols. 2013-08-12 10:25:36 -07:00
html encoding/json: escape & always 2013-08-09 18:33:57 -04:00
image image/draw: fix typos found by "go vet". 2013-08-02 13:29:45 +10:00
index/suffixarray
io io/ioutil: add WriteString to Discard 2013-08-09 11:27:29 -07:00
log log/syslog: restore use of serverConn interface 2013-07-24 10:28:57 -07:00
math all: change textflags from numbers to symbols. 2013-08-12 10:25:36 -07:00
mime mime: escape backslash in attribute values 2013-08-09 13:10:53 -07:00
net net/http: do not send malformed cookie domain attribute 2013-08-12 15:14:34 -07:00
os all: change textflags from numbers to symbols. 2013-08-12 10:25:36 -07:00
path undo CL 12486043 / ab644299d124 2013-08-05 16:27:24 -07:00
reflect all: change textflags from numbers to symbols. 2013-08-12 10:25:36 -07:00
regexp regexp/syntax: make it clearer that \b and \B are ASCII-defined 2013-08-08 13:26:39 +10:00
runtime runtime: change textflags from numbers to symbols 2013-08-12 13:47:18 -07:00
sort all: be more idiomatic when documenting boolean return values. 2013-07-23 11:59:49 +10:00
strconv strconv: fix typo in docs 2013-08-10 11:38:42 +10:00
strings strings: add test for Count 2013-08-09 12:51:21 -07:00
sync sync/atomic: specify argsize for asm routines 2013-08-12 21:46:33 +04:00
syscall syscall: Convert textflags from numbers to symbols. 2013-08-12 10:24:30 -07:00
testing testing: make parsing of -cpu more lenient 2013-08-02 13:51:45 -04:00
text text/template/parse: nicer error when comment ends before final delimiter 2013-08-09 12:57:21 +10:00
time time: match month and day names only when not followed immediately by a lower-case letter 2013-08-05 10:53:46 +10:00
unicode undo CL 12486043 / ab644299d124 2013-08-05 16:27:24 -07:00
unsafe