cookie: expire cookies at once when max-age is negative

Update test 329 to verify Reported-by: godmar on github Fixes #9930 Closes #9932
2022-11-17 08:26:17 +01:00 · 2022-11-17 08:26:17 +01:00 · cc3d517e8c
commit cc3d517e8c
parent 7a19dd8a81
2 changed files with 10 additions and 2 deletions
--- a/lib/cookie.c
+++ b/lib/cookie.c
@ -779,10 +779,16 @@ Curl_cookie_add(struct Curl_easy *data,
      offt = curlx_strtoofft((*co->maxage == '\"')?
                             &co->maxage[1]:&co->maxage[0], NULL, 10,
                             &co->expires);
-      if(offt == CURL_OFFT_FLOW)
+      switch(offt) {
+      case CURL_OFFT_FLOW:
        /* overflow, used max value */
        co->expires = CURL_OFF_T_MAX;
-      else if(!offt) {
+        break;
+      case CURL_OFFT_INVAL:
+        /* negative or otherwise bad, expire */
+        co->expires = 1;
+        break;
+      case CURL_OFFT_OK:
        if(!co->expires)
          /* already expired */
          co->expires = 1;
@ -791,6 +797,7 @@ Curl_cookie_add(struct Curl_easy *data,
          co->expires = CURL_OFF_T_MAX;
        else
          co->expires += now;
+        break;
      }
    }
    else if(co->expirestr) {
--- a/tests/data/test329
+++ b/tests/data/test329
@ -14,6 +14,7 @@ Date: Tue, 09 Nov 2010 14:49:00 GMT
 Server: test-server/fake
 Content-Type: text/html
 Funny-head: yesyes
+Set-Cookie: testn1=yes; path=/we/want/; domain=.host.foo.com; Max-Age=-1;
 Set-Cookie: test=yes; path=/we/want/; domain=.host.foo.com; Max-Age=0;
 Content-Length: 4