Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: P2: Important
Fix Version/s: 5.14.0 Alpha
Affects Version/s: 5.12.4, 5.13.1
Component/s: Network: HTTP
Labels:
None

Commits:
6cee284001adf9da42b347a074cbff3cb92621b2 (qt/qtbase/5.14)

Description

Example code:

QNetworkCookieJar jar;
QNetworkCookie cookie("abc", "test");
cookie.setDomain(".ck");
jar.insertCookie(cookie);

qDebug() << jar.cookiesForUrl(QUrl("http://test.ck"));

Expected output is an empty list since test.ck is public suffix domain according to Public Suffix List so we should not have an ability of setting cookie to it.

Real output:

(QNetworkCookie("abc=test; domain=.ck"))

After investigating into this issue I found out that the problem is that qIsEffectiveTLD() from corelib/io/qtldurl.cpp returns false for domains listed as wildcards in public suffix list, such as:

*.ck
*.webhare.dev
*.compute.estate

and others.

For example:

qIsEffectiveTLD("ck") = false

While widely-used libraries for handling TLDs such as libpsl and libsoup treat such domains as public suffix:

soup_tld_domain_is_public_suffix("ck") = true

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

libsoup_suffix_test.c
0.3 kB
06 Sep '19 19:03

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: polter.rnd

Reporter:: polter.rnd

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 06 Sep '19 19:03

Updated:: 16 Sep '19 20:53

Resolved:: 16 Sep '19 20:53

Gerrit Reviews

There is 1 open Gerrit change

Fix qIsEffectiveTLD() behavior for wildcard-listed TLDs

-2 Gerrit Review:

Show There is 1 closed Gerrit change

Hide There is 1 closed Gerrit change

Fix mis-handling of actual TLD in qIsEffectiveTLD(): Gerrit Review: