Fix a problem with sticky cookie domain matching.

Just like everything else cookie-related in the standard library, cookielib.domain_match is fucked up.
2025-01-31 23:38:46 +00:00 · 2011-08-26 17:37:12 +12:00 · 2011-08-26 17:37:12 +12:00 · 8fbba59e8d
commit 8fbba59e8d
parent 45f4768a5c
1 changed files with 13 additions and 5 deletions
--- a/libmproxy/flow.py
+++ b/libmproxy/flow.py
@ -759,6 +759,13 @@ class StickyCookieState:
            m["path"] or "/"
        )

+    def domain_match(self, a, b):
+        if cookielib.domain_match(a, b):
+            return True
+        elif cookielib.domain_match(a, b.strip(".")):
+            return True
+        return False
+
    def handle_response(self, f):
        for i in f.response.headers["set-cookie"]:
            # FIXME: We now know that Cookie.py screws up some cookies with
@ -766,21 +773,22 @@ class StickyCookieState:
            c = Cookie.SimpleCookie(str(i))
            m = c.values()[0]
            k = self.ckey(m, f)
-            if cookielib.domain_match(f.request.host, k[0]):
+            if self.domain_match(f.request.host, k[0]):
                self.jar[self.ckey(m, f)] = m

    def handle_request(self, f):
+        l = []
        if f.match(self.flt):
            for i in self.jar.keys():
                match = [
-                    cookielib.domain_match(i[0], f.request.host),
+                    self.domain_match(f.request.host, i[0]),
                    f.request.port == i[1],
                    f.request.path.startswith(i[2])
                ]
                if all(match):
-                    l = f.request.headers["cookie"]
-                    f.request.stickycookie = True
                    l.append(self.jar[i].output(header="").strip())
+        if l:
+            f.request.stickycookie = True
            f.request.headers["cookie"] = l