Fixed and improved Mono's Cookie implementation.

author Martin Baulig <martin.baulig@xamarin.com>

Thu, 13 Sep 2012 00:00:56 +0000 (02:00 +0200)

committer Martin Baulig <martin.baulig@xamarin.com>

Thu, 13 Sep 2012 00:00:56 +0000 (02:00 +0200)
author Martin Baulig <martin.baulig@xamarin.com>
Thu, 13 Sep 2012 00:00:56 +0000 (02:00 +0200)
committer Martin Baulig <martin.baulig@xamarin.com>
Thu, 13 Sep 2012 00:00:56 +0000 (02:00 +0200)
diff --git a/mcs/class/System/System.Net/Cookie.cs b/mcs/class/System/System.Net/Cookie.cs

index 5b24159f5e6acaf6cad549ead61b0dbc661d5d4f..17eeb5f57bbcb842b1dbd10107ec092ae2c5c0ab 100644 (file)
--- a/mcs/class/System/System.Net/Cookie.cs
+++ b/mcs/class/System/System.Net/Cookie.cs
@@ -117,7 +117,11 @@ namespace System.Net {
                                         ExactDomain = true;
                                 } else {
                                         domain = value;
-                                       ExactDomain = (value [0] != '.');
+                                       IPAddress test;
+                                       if (IPAddress.TryParse (value, out test))
+                                               ExactDomain = true;
+                                       else
+                                               ExactDomain = false;
                                 }
                         }
                 }
@@ -290,8 +294,6 @@ namespace System.Net {
  
                         if (!String.IsNullOrEmpty (path))
                                 result.Append ("; $Path=").Append (path);
-                       else if (uri != null)
-                               result.Append ("; $Path=/").Append (path);
  
                         bool append_domain = (uri == null) || (uri.Host != domain);
                         if (append_domain && !String.IsNullOrEmpty (domain))
diff --git a/mcs/class/System/System.Net/CookieContainer.cs b/mcs/class/System/System.Net/CookieContainer.cs

index ccf47b9abf98f7db04f0b4b14bee845201a0a8d9..82b9030f2fe25259e9289839d9a1f858d211e868 100644 (file)
--- a/mcs/class/System/System.Net/CookieContainer.cs
+++ b/mcs/class/System/System.Net/CookieContainer.cs
@@ -131,26 +131,23 @@ namespace System.Net
                         if (cookie == null)
                                 throw new ArgumentNullException ("cookie");
  
+                       AddCookie (cookie);
+               }
+
+               void AddCookie (Cookie cookie)
+               {
                         if (cookie.Domain.Length == 0)
                                 throw new ArgumentException ("Cookie domain not set.", "cookie.Domain");
-
+                                       
                         if (cookie.Value.Length > maxCookieSize)
                                 throw new CookieException ("value is larger than MaxCookieSize.");
+                                       
+                       if ((cookie.Version == 1) && (cookie.Domain[0] != '.'))
+                               throw new CookieException ("Invalid cookie domain: " + cookie.Domain);
  
-                       // .NET's Add (Cookie) is fundamentally broken and does not copy properties
-                       // like Secure, HttpOnly and Expires so we clone the parts that .NET
-                       // does keep before calling AddCookie
-                       Cookie c = new Cookie (cookie.Name, cookie.Value);
-                       c.Path = (cookie.Path.Length == 0) ? "/" : cookie.Path;
-                       c.Domain = cookie.Domain;
-                       c.ExactDomain = cookie.ExactDomain;
-                       c.Version = cookie.Version;
-                       
-                       AddCookie (c);
-               }
+                       if (!CheckPublicRoots (cookie.Domain))
+                               throw new CookieException ("Invalid cookie domain: " + cookie.Domain);
  
-               void AddCookie (Cookie cookie)
-               {
                         if (cookies == null)
                                 cookies = new CookieCollection ();
  
@@ -165,7 +162,7 @@ namespace System.Net
  
                         // clone the important parts of the cookie
                         Cookie c = new Cookie (cookie.Name, cookie.Value);
-                       c.Path = (cookie.Path.Length == 0) ? "/" : cookie.Path;
+                       c.Path = cookie.Path;
                         c.Domain = cookie.Domain;
                         c.ExactDomain = cookie.ExactDomain;
                         c.Version = cookie.Version;
@@ -235,9 +232,13 @@ namespace System.Net
                         if (cookie.Value == null)
                                 throw new CookieException ("Invalid cookie: value");
  
-                       if (uri != null && cookie.Domain.Length == 0)
-                               cookie.Domain = uri.Host;
-
+                       if (uri != null) {
+                               if (cookie.Domain.Length == 0)
+                                       cookie.Domain = uri.Host;
+                               else if (!CheckSameOrigin (uri, cookie.Domain))
+                                       throw new CookieException ("Invalid cookie domain: " + cookie.Domain);
+                       }
+                                               
                         if (cookie.Version == 0 && String.IsNullOrEmpty (cookie.Path)) {
                                 if (uri != null) {
                                         cookie.Path = uri.AbsolutePath;
@@ -279,7 +280,7 @@ namespace System.Net
                                         AddCookie (cookie);
                                 }
                         }
-               }               
+               }
  
                 public string GetCookieHeader (Uri uri)
                 {
@@ -304,26 +305,82 @@ namespace System.Net
                         return result.ToString ();
                 }
  
+               internal static bool CheckPublicRoots (string domain)
+               {
+                       if (string.IsNullOrEmpty (domain))
+                               return true;
+
+                       IPAddress address;
+                       if (IPAddress.TryParse (domain, out address))
+                               return domain[0] != '.';
+
+                       if (domain[0] == '.')
+                               domain = domain.Substring (1);
+
+                       if (string.Equals (domain, "localhost", StringComparison.InvariantCultureIgnoreCase))
+                               return true;
+
+                       var parts = domain.Split ('.');
+                       // Disallow TLDs
+                       if (parts.Length < 2)
+                               return false;
+
+                       // FIXME: Should probably use the public suffix list at
+                       //        http://publicsuffix.org/list/ or something similar.
+                       return true;
+               }
+
+               internal static bool CheckSameOrigin (Uri uri, string domain)
+               {
+                       if (!CheckPublicRoots (domain))
+                               return false;
+
+                       IPAddress address;
+                       if (IPAddress.TryParse (domain, out address)) {
+                               if (domain [0] == '.')
+                                       return false;
+
+                               foreach (var ip in Dns.GetHostAddresses (uri.DnsSafeHost)) {
+                                       if (address.Equals (ip))
+                                               return true;
+                               }
+                               return false;
+                       }
+
+                       return CheckDomain (domain, uri.Host, false);
+               }
+
                 static bool CheckDomain (string domain, string host, bool exact)
                 {
                         if (domain.Length == 0)
                                 return false;
  
+                       var withoutDot = domain[0] == '.' ? domain.Substring (1) : domain;
+
                         if (exact)
-                               return (String.Compare (host, domain, StringComparison.InvariantCultureIgnoreCase) == 0);
+                               return (String.Compare (host, withoutDot, StringComparison.InvariantCultureIgnoreCase) == 0);
  
                         // check for allowed sub-domains - without string allocations
-                       if (!host.EndsWith (domain, StringComparison.InvariantCultureIgnoreCase))
+                       if (!host.EndsWith (withoutDot, StringComparison.InvariantCultureIgnoreCase))
                                 return false;
                         // mono.com -> www.mono.com is OK but supermono.com NOT OK
-                       if (domain [0] == '.')
+                       if (false && domain [0] == '.')
                                 return true;
-                       int p = host.Length - domain.Length - 1;
+                       int p = host.Length - withoutDot.Length - 1;
                         if (p < 0)
-                               return false;
+                               return true;
                         return (host [p] == '.');
                 }
  
+               static bool CheckDomain_RFC2109 (string domain, string host, bool exact)
+               {
+                       if (domain.Length == 0)
+                               return false;
+
+                       var withoutDot = domain[0] == '.' ? domain.Substring (1) : domain;
+                       return (String.Compare (host, withoutDot, StringComparison.InvariantCultureIgnoreCase) == 0);
+               }
+
                 public CookieCollection GetCookies (Uri uri)
                 {
                         if (uri == null)
@@ -336,8 +393,13 @@ namespace System.Net
  
                         foreach (Cookie cookie in cookies) {
                                 string domain = cookie.Domain;
-                               if (!CheckDomain (domain, uri.Host, cookie.ExactDomain))
-                                       continue;
+                               if (cookie.Version == 1) {
+                                       if (!CheckDomain_RFC2109 (domain, uri.Host, true))
+                                               continue;
+                               } else {
+                                       if (!CheckDomain (domain, uri.Host, cookie.ExactDomain))
+                                               continue;
+                               }
  
                                 if (cookie.Port.Length > 0 && cookie.Ports != null && uri.Port != -1) {
                                         if (Array.IndexOf (cookie.Ports, uri.Port) == -1)
@@ -411,7 +473,8 @@ namespace System.Net
                                                 c.Domain = uri.Host;
                                                 // don't consider domain "a.b.com" as ".a.b.com"
                                                 c.ExactDomain = true;
-                                       }
+                                       } else if (!CheckSameOrigin (uri, c.Domain))
+                                               throw new CookieException ("Invalid cookie domain: " + c.Domain);
  
                                         AddCookie (c);
                                 }
diff --git a/mcs/class/System/System.Net/HttpWebResponse.cs b/mcs/class/System/System.Net/HttpWebResponse.cs

index 1e6757d4f7cd8901482b2c838b5c0796031a67a7..c5b59ced55fdd9c3bf131be5d56cddbc2bbdd642 100644 (file)
--- a/mcs/class/System/System.Net/HttpWebResponse.cs
+++ b/mcs/class/System/System.Net/HttpWebResponse.cs
@@ -350,8 +350,13 @@ namespace System.Net
  
                         var parser = new CookieParser (header);
                         foreach (var cookie in parser.Parse ()) {
-                               if (cookie.Domain == "")
+                               if (cookie.Domain == "") {
                                         cookie.Domain = uri.Host;
+                                       cookie.ExactDomain = true;
+                               }
+
+                               if (!CookieContainer.CheckSameOrigin (uri, cookie.Domain))
+                                       continue;
  
                                 cookieCollection.Add (cookie);
                                 if (cookie_container != null)
diff --git a/mcs/class/System/Test/System.Net/CookieContainerTest.cs b/mcs/class/System/Test/System.Net/CookieContainerTest.cs

index 78fd0e506d4b2aac1944e32727e0b6f303a251a2..e844b5932e4f3c21037b89a6db9bb0687f556623 100644 (file)
--- a/mcs/class/System/Test/System.Net/CookieContainerTest.cs
+++ b/mcs/class/System/Test/System.Net/CookieContainerTest.cs
@@ -17,6 +17,28 @@ using System.Reflection;
  
  using NUnit.Framework;
  
+/*
+ * About the RFC 2109 conditional:
+ * 
+ * According to the MSDN docs, settings Cookie.Version = 1 should make the
+ * implementation comply with RFC 2109.  I tested this on Windows and it
+ * looks like .NET 4.5 has a few bugs in this area.
+ * 
+ * The tests in this file also don't comply with RFC 2109 (for instance, the
+ * domain must start with a dot and single suffixes such as .localhost are
+ * not allowed).
+ * 
+ * Since there currently is no reference implementation due to these bugs in
+ * .NET 4.5, I disabled these tests for the moment and made them test the
+ * default behavior (the newer RFC 2965).
+ * 
+ * .NET 4.5 fixes several bugs in its (default, non-2109) cookie implementation
+ * over .NET 2.0 - I modified the tests to reflect this new, improved behavior.
+ * 
+ * 09/13/12 martin
+ * 
+ */
+
  namespace MonoTests.System.Net {
         [TestFixture]
         public class CookieContainerTest {
@@ -434,32 +456,35 @@ namespace MonoTests.System.Net {
                         cookie.HttpOnly = true;
                         cookie.Secure = true;
                         // except version
+#if RFC2109
                         cookie.Version = 1;
+#endif
  
                         cc.Add (cookie);
                         Assert.AreEqual (1, cc.Count, "#A1");
  
-                       CookieCollection cookies = cc.GetCookies (new Uri ("http://localhost/Whatever"));
+                       CookieCollection cookies = cc.GetCookies (new Uri ("https://localhost/Whatever"));
                         Assert.AreEqual (1, cookies.Count, "#A2");
                         Assert.AreNotSame (cookie, cookies [0], "!same");
  
                         cookie = cookies [0];
                         Assert.AreEqual ("Age", cookie.Name, "Clone-Name");
                         Assert.AreEqual ("28", cookie.Value, "Clone-Value");
-                       // Path is not the same, nor default
-                       Assert.AreEqual ("/", cookie.Path, "Clone-Path");
+                       Assert.AreEqual (string.Empty, cookie.Path, "Clone-Path");
                         Assert.AreEqual ("localhost", cookie.Domain, "Clone-Domain");
-                       // other non-core properties have default values
-                       Assert.AreEqual (String.Empty, cookie.Comment, "Clone-Comment");
-                       Assert.IsNull (cookie.CommentUri, "Clone-CommentUri");
-                       Assert.IsFalse (cookie.Discard, "Clone-Discard");
-                       Assert.AreEqual (DateTime.MinValue, cookie.Expires, "Clone-Expires");
-                       Assert.IsFalse (cookie.HttpOnly, "Clone-HttpOnly");
-                       Assert.IsFalse (cookie.Secure, "Clone-Secure");
-                       // except version
+                       Assert.AreEqual ("comment", cookie.Comment, "Clone-Comment");
+                       Assert.AreEqual (new Uri ("http://localhost"), cookie.CommentUri, "Clone-CommentUri");
+                       Assert.IsTrue (cookie.Discard, "Clone-Discard");
+                       Assert.AreEqual (DateTime.MaxValue, cookie.Expires, "Clone-Expires");
+                       Assert.IsTrue (cookie.HttpOnly, "Clone-HttpOnly");
+                       Assert.IsTrue (cookie.Secure, "Clone-Secure");
+#if RFC2109
                         Assert.AreEqual (1, cookie.Version, "Clone-Version");
+#else
+                       Assert.AreEqual (0, cookie.Version, "Clone-Version");
+#endif
  
-                       cookies = cc.GetCookies (new Uri ("http://localhost/Whatever"));
+                       cookies = cc.GetCookies (new Uri ("https://localhost/Whatever"));
                         // the same Cookie instance returned for a second query
                         Assert.AreSame (cookie, cookies [0], "!same-2");
                 }
@@ -481,6 +506,25 @@ namespace MonoTests.System.Net {
                         }
                 }
  
+               [Test]
+               public void Add_Domain_Invalid ()
+               {
+                       var cc = new CookieContainer ();
+                       try {
+                               cc.Add (new Cookie ("Foo", "Bar", string.Empty, ".com"));
+                               Assert.Fail ("#A1");
+                       } catch (CookieException) {
+                               ;
+                       }
+                       
+                       try {
+                               cc.Add (new Uri ("http://mono.com/"), new Cookie ("Foo", "Bar", string.Empty, ".evil.org"));
+                               Assert.Fail ("#A2");
+                       } catch (CookieException) {
+                               ;
+                       }
+               }
+
                 [Test] // Add (CookieCollection)
                 public void Add2_Cookies_Null ()
                 {
@@ -565,6 +609,39 @@ namespace MonoTests.System.Net {
                         }
                 }
  
+               /*
+                * This test demonstrates one of the new, fixed behaviors in .NET 4.5:
+                *
+                * The cookie domain implicitly assumes a leading dot, so "x.y" now matches
+                * "foo.x.y" and "foo.bar.x.y".
+                *
+                */
+               [Test]
+               public void Add5_Subdomain ()
+               {
+                       var cc = new CookieContainer ();
+                       var cookie = new Cookie ("Foo", "Bar", string.Empty, "mono.com");
+                       cc.Add (cookie);
+
+                       var coll = cc.GetCookies (new Uri ("http://www.mono.com/Whatever/"));
+                       Assert.AreEqual (1, coll.Count, "#A1");
+
+                       var coll2 = cc.GetCookies (new Uri ("http://www.us.mono.com/Whatever/"));
+                       Assert.AreEqual (1, coll.Count, "#A2");
+               }
+
+               public void Add6_Insecure ()
+               {
+                       var cc = new CookieContainer ();
+                       var cookie = new Cookie ("Foo", "Bar", string.Empty, ".mono.com");
+                       cookie.Secure = true;
+                       // FIXME: This should throw an exception - but .NET 4.5 does not.
+                       cc.Add (new Uri ("http://mono.com/"), cookie);
+                               
+                       var coll = cc.GetCookies (new Uri ("http://mono.com/"));
+                       Assert.AreEqual (0, coll.Count, "#A1");
+               }
+
                 [Test]
                 public void TestAdd_Cookie ()
                 {
@@ -605,98 +682,45 @@ namespace MonoTests.System.Net {
                         Cookie c1 = new Cookie ("TEST", "MyValue", "/", uri.Host);
                         c1.Expires = expires;
                         cc.Add (c1);
-                       Assert.AreEqual (1, cc.Count, "#A1");
+                       Assert.AreEqual (0, cc.Count, "#A1");
                         CookieCollection coll = cc.GetCookies (uri);
-                       Assert.AreEqual (1, coll.Count, "#A1.1");
-                       Cookie cookie = coll [0];
-                       Assert.AreEqual ("", cookie.Comment, "#A2");
-                       Assert.IsNull (cookie.CommentUri, "#A3");
-                       Assert.AreEqual ("www.contoso.com", cookie.Domain, "#A4");
-                       Assert.IsFalse (cookie.Expired, "#A5");
-                       Assert.AreEqual (DateTime.MinValue, cookie.Expires, "#A6");
-                       Assert.AreEqual ("TEST", cookie.Name, "#A7");
-                       Assert.AreEqual ("MyValue", cookie.Value, "#A8");
-                       Assert.AreEqual ("/", cookie.Path, "#A9");
-                       Assert.AreEqual ("", cookie.Port, "#A10");
-                       Assert.IsFalse (cookie.Secure, "#A11");
+                       Assert.AreEqual (0, coll.Count, "#A1.1");
  
                         //expired cookie
                         Cookie c2 = new Cookie ("TEST2", "MyValue2");
                         c2.Expires = expires;
                         cc.Add (uri, c2);
-                       Assert.AreEqual (1, cc.Count, "#B1");
-                       coll = cc.GetCookies (uri);
-                       Assert.AreEqual (1, coll.Count, "#B1.1");
-                       cookie = coll [0];
-                       Assert.AreEqual ("", cookie.Comment, "#B2");
-                       Assert.IsNull (cookie.CommentUri, "#B3");
-                       Assert.AreEqual ("www.contoso.com", cookie.Domain, "#B4");
-                       Assert.IsFalse (cookie.Expired, "#B5");
-                       Assert.AreEqual (DateTime.MinValue, cookie.Expires, "#B6");
-                       Assert.AreEqual ("TEST", cookie.Name, "#B7");
-                       Assert.AreEqual ("MyValue", cookie.Value, "#B8");
-                       Assert.AreEqual ("/", cookie.Path, "#B9");
-                       Assert.AreEqual ("", cookie.Port, "#B10");
-                       Assert.IsFalse (cookie.Secure, "#B11");
+                       Assert.AreEqual (0, cc.Count, "#B1");
  
                         //not expired cookie
                         Cookie c3 = new Cookie ("TEST3", "MyValue3");
                         cc.Add (uri, c3);
-                       Assert.AreEqual (2, cc.Count, "#C1");
-                       coll = cc.GetCookies (uri);
-                       Assert.AreEqual (2, coll.Count, "#C1.1");
-                       cookie = coll [1];
-                       Assert.AreEqual ("", cookie.Comment, "#C2");
-                       Assert.IsNull (cookie.CommentUri, "#C3");
-                       Assert.AreEqual ("www.contoso.com", cookie.Domain, "#C4");
-                       Assert.IsFalse (cookie.Expired, "#C5");
-                       Assert.AreEqual (DateTime.MinValue, cookie.Expires, "#C6");
-                       Assert.AreEqual ("TEST3", cookie.Name, "#C7");
-                       Assert.AreEqual ("MyValue3", cookie.Value, "#C8");
-                       Assert.AreEqual ("/", cookie.Path, "#C9");
-                       Assert.AreEqual ("", cookie.Port, "#C10");
-                       Assert.IsFalse (cookie.Secure, "#C11");
-
-                       Assert.AreEqual (2, cc.Count, "#D1");
-                       coll = cc.GetCookies (new Uri ("http://contoso.com"));
-                       Assert.AreEqual (0, coll.Count, "#D1.1");
+                       Assert.AreEqual (1, cc.Count, "#C1");
  
                         //not expired cookie
                         Cookie c4 = new Cookie ("TEST4", "MyValue4", "/", ".contoso.com");
                         cc.Add (uri, c4);
-                       Assert.AreEqual (3, cc.Count, "#E1");
+                       Assert.AreEqual (2, cc.Count, "#E1");
                         coll = cc.GetCookies (uri);
-                       Assert.AreEqual (3, coll.Count, "#E1.1");
+                       Assert.AreEqual (2, coll.Count, "#E1.1");
  
                         //expired cookie
                         Cookie c5 = new Cookie ("TEST5", "MyValue5", "/", ".contoso.com");
                         c5.Expires = expires;
                         cc.Add (c5);
-                       Assert.AreEqual (4, cc.Count, "#F1");
+                       Assert.AreEqual (2, cc.Count, "#F1");
                         coll = cc.GetCookies (uri);
-                       Assert.AreEqual (4, coll.Count, "#F1.1");
-                       cookie = coll ["TEST5"];
-                       Assert.AreEqual (".contoso.com", cookie.Domain, "#F2");
-                       Assert.IsFalse (cookie.Expired, "#F3");
-                       Assert.AreEqual (DateTime.MinValue, cookie.Expires, "#F4");
-                       Assert.AreEqual ("TEST5", cookie.Name, "#F5");
-                       Assert.AreEqual ("MyValue5", cookie.Value, "#F6");
-                       Assert.AreEqual ("/", cookie.Path, "#F7");
+                       Assert.AreEqual (2, coll.Count, "#F1.1");
+                       Assert.IsNull (coll ["TEST5"], "#F2");
  
                         //expired cookie
                         Cookie c6 = new Cookie ("TEST6", "MyValue6", "/", ".contoso.com");
-                       c5.Expires = expires;
+                       c6.Expires = expires;
                         cc.Add (uri, c6);
-                       Assert.AreEqual (5, cc.Count, "#G1");
+                       Assert.AreEqual (2, cc.Count, "#G1");
                         coll = cc.GetCookies (uri);
-                       Assert.AreEqual (5, coll.Count, "#G1.1");
-                       cookie = coll ["TEST6"];
-                       Assert.AreEqual (".contoso.com", cookie.Domain, "#G2");
-                       Assert.IsFalse (cookie.Expired, "#G3");
-                       Assert.AreEqual (DateTime.MinValue, cookie.Expires, "#G4");
-                       Assert.AreEqual ("TEST6", cookie.Name, "#G5");
-                       Assert.AreEqual ("MyValue6", cookie.Value, "#G6");
-                       Assert.AreEqual ("/", cookie.Path, "#G7");
+                       Assert.AreEqual (2, coll.Count, "#G1.1");
+                       Assert.IsNull (coll ["TEST6"], "#G2");
                 }
  
                 [Test]
@@ -711,12 +735,14 @@ namespace MonoTests.System.Net {
                         cookie.Expires = DateTime.Now.Add (new TimeSpan (3, 2, 5));
                         cookie.Version = 0;
                         cc.Add (cookie);
+#if RFC2109
                         cookie = new Cookie ("name2", "value2", "/path/sub", "localhost");
                         cookie.Comment = "Description";
                         cookie.Expires = DateTime.Now.Add (new TimeSpan (3, 2, 5));
                         cookie.Version = 1;
                         cc.Add (cookie);
                         Assert.AreEqual ("$Version=1; name2=value2; $Path=/path/sub; name1=value1", cc.GetCookieHeader (new Uri ("http://localhost/path/sub")), "#A1");
+#endif
                         Assert.AreEqual ("name1=value1", cc.GetCookieHeader (new Uri ("http://localhost/path")), "#A2");
                         Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://localhost/whatever")), "#A3");
                 }
@@ -730,10 +756,10 @@ namespace MonoTests.System.Net {
                         cookie = new Cookie ("Age", "26", "/path", "dev.mono.com");
                         cc.Add (cookie);
  
-                       Assert.AreEqual ("Age=26", cc.GetCookieHeader (new Uri ("http://dev.mono.com/path/ok")), "#A1");
+                       Assert.AreEqual ("Age=26; Country=Belgium", cc.GetCookieHeader (new Uri ("http://dev.mono.com/path/ok")), "#A1");
                         Assert.AreEqual ("Country=Belgium", cc.GetCookieHeader (new Uri ("http://mono.com/path")), "#A2");
-                       Assert.AreEqual ("", cc.GetCookieHeader (new Uri ("http://test.mono.com/path")), "#A3");
-                       Assert.AreEqual ("", cc.GetCookieHeader (new Uri ("http://us.dev.mono.com/path")), "#A4");
+                       Assert.AreEqual ("Country=Belgium", cc.GetCookieHeader (new Uri ("http://test.mono.com/path")), "#A3");
+                       Assert.AreEqual ("Age=26; Country=Belgium", cc.GetCookieHeader (new Uri ("http://us.dev.mono.com/path")), "#A4");
                 }
  
                 [Test]
@@ -745,8 +771,8 @@ namespace MonoTests.System.Net {
                         cookie = new Cookie ("Age", "26", "/path", ".dev.mono.com");
                         cc.Add (cookie);
  
-                       Assert.AreEqual ("Country=Belgium", cc.GetCookieHeader (new Uri ("http://dev.mono.com/path/ok")), "#C1");
-                       Assert.AreEqual ("", cc.GetCookieHeader (new Uri ("http://mono.com/path")), "#C2");
+                       Assert.AreEqual ("Age=26; Country=Belgium", cc.GetCookieHeader (new Uri ("http://dev.mono.com/path/ok")), "#C1");
+                       Assert.AreEqual ("Country=Belgium", cc.GetCookieHeader (new Uri ("http://mono.com/path")), "#C2");
                         Assert.AreEqual ("Country=Belgium", cc.GetCookieHeader (new Uri ("http://test.mono.com/path")), "#C3");
                         Assert.AreEqual ("Age=26; Country=Belgium", cc.GetCookieHeader (new Uri ("http://us.dev.mono.com/path")), "#C4");
                 }
@@ -761,14 +787,13 @@ namespace MonoTests.System.Net {
                                 "Weight=87; path=/Whatever/Do; domain=.mono.com");
                         Assert.AreEqual ("Weight=87; Country=Belgium", cc.GetCookieHeader (new Uri ("http://dev.mono.com/Whatever/Do")), "#C1");
                         Assert.AreEqual ("Weight=87; Country=Belgium", cc.GetCookieHeader (new Uri ("http://test.mono.com/Whatever/Do")), "#C2");
-                       Assert.AreEqual ("", cc.GetCookieHeader (new Uri ("http://mono.com/Whatever/Do")), "#C3");
+                       Assert.AreEqual ("Weight=87; Country=Belgium", cc.GetCookieHeader (new Uri ("http://mono.com/Whatever/Do")), "#C3");
                         Assert.AreEqual ("Weight=87; Country=Belgium", cc.GetCookieHeader (new Uri ("http://us.test.mono.com/Whatever/Do")), "#C4");
                 }
  
                 [Test]
                 public void GetCookieHeader4 ()
                 {
-                       Console.WriteLine ("CookieHeader4");
                         CookieContainer cc = new CookieContainer ();
                         Cookie cookie = new Cookie ("Height", "178", "/Whatever", "mono.com");
                         cc.Add (cookie);
@@ -782,11 +807,12 @@ namespace MonoTests.System.Net {
                                 "Country=Belgium," +
                                 "Age=26; path=/Whatever/Do; domain=test.mono.com," +
                                 "Weight=87; path=/");
-                       Assert.AreEqual ("Age=26; Income=34445; Town=Brussels",
+                       Assert.AreEqual ("Age=26; Income=34445; Height=178; Town=Brussels",
                                 cc.GetCookieHeader (new Uri ("http://us.test.mono.com/Whatever/Do/Ok")),
                                 "#D");
                 }
  
+#if RFC2109
                 [Test]
                 public void GetCookieHeader5a ()
                 {
@@ -815,6 +841,7 @@ namespace MonoTests.System.Net {
                         Assert.AreEqual ("$Version=1; name1=value1; $Path=/",
                                 cc.GetCookieHeader (new Uri ("http://localhost/path/sub")), "#E1");
                 }
+#endif
  
                 [Test]
                 public void GetCookieHeader6 ()
@@ -838,16 +865,18 @@ namespace MonoTests.System.Net {
                         cookie.Expires = DateTime.Now.Add (new TimeSpan (3, 2, 5));
                         cookie.Version = 0;
                         cc.Add (cookie);
+#if RFC2109
                         cookie = new Cookie ("name2", "value2", "/path/sub", ".mono.com");
                         cookie.Comment = "Description";
                         cookie.Expires = DateTime.Now.Add (new TimeSpan (3, 2, 5));
                         cookie.Version = 1;
                         cc.Add (cookie);
                         Assert.AreEqual ("$Version=1; name2=value2; $Path=/path/sub; $Domain=.mono.com; name1=value1", cc.GetCookieHeader (new Uri ("http://live.mono.com/path/sub")), "#A1");
+#endif
                         Assert.AreEqual ("name1=value1", cc.GetCookieHeader (new Uri ("http://live.mono.com/path")), "#A2");
                         Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://live.mono.com/whatever")), "#A3");
                         Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://gomono.com/path/sub")), "#A4");
-                       Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://mono.com/path/sub")), "#A5");
+                       Assert.AreEqual ("name1=value1", cc.GetCookieHeader (new Uri ("http://mono.com/path/sub")), "#A5");
                 }
  
                 [Test]
@@ -859,16 +888,18 @@ namespace MonoTests.System.Net {
                         cookie.Expires = DateTime.Now.Add (new TimeSpan (3, 2, 5));
                         cookie.Version = 0;
                         cc.Add (cookie);
+#if RFC2109
                         cookie = new Cookie ("name2", "value2", "/path/sub", "live.mono.com");
                         cookie.Comment = "Description";
                         cookie.Expires = DateTime.Now.Add (new TimeSpan (3, 2, 5));
                         cookie.Version = 1;
                         cc.Add (cookie);
                         Assert.AreEqual ("$Version=1; name2=value2; $Path=/path/sub; name1=value1", cc.GetCookieHeader (new Uri ("http://live.mono.com/path/sub")), "#B1");
+#endif
                         Assert.AreEqual ("name1=value1", cc.GetCookieHeader (new Uri ("http://live.mono.com/path")), "#B2");
                         Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://live.mono.com/whatever")), "#B3");
-                       Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://go.live.mono.com/path/sub")), "#B4");
-                       Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://go.live.mono.com/path")), "#B5");
+                       Assert.AreEqual ("name1=value1", cc.GetCookieHeader (new Uri ("http://go.live.mono.com/path/sub")), "#B4");
+                       Assert.AreEqual ("name1=value1", cc.GetCookieHeader (new Uri ("http://go.live.mono.com/path")), "#B5");
                         Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://go.live.mono.com/whatever")), "#B6");
                         Assert.AreEqual (string.Empty, cc.GetCookieHeader (new Uri ("http://golive.mono.com/whatever")), "#B7");
                 }
@@ -937,7 +968,7 @@ namespace MonoTests.System.Net {
  
                         CookieCollection cookies = container.GetCookies (new Uri ("http://dev.mono.com/path/ok"));
                         Assert.IsNotNull (cookies, "#G1");
-                       Assert.AreEqual (1, cookies.Count, "#G2");
+                       Assert.AreEqual (2, cookies.Count, "#G2");
  
                         Cookie cookie = cookies [0];
                         Assert.AreEqual ("Age", cookie.Name, "#H1");
@@ -957,11 +988,11 @@ namespace MonoTests.System.Net {
  
                         cookies = container.GetCookies (new Uri ("http://test.mono.com/path"));
                         Assert.IsNotNull (cookies, "#K1");
-                       Assert.AreEqual (0, cookies.Count, "#K2");
+                       Assert.AreEqual (1, cookies.Count, "#K2");
  
                         cookies = container.GetCookies (new Uri ("http://us.dev.mono.com/path"));
                         Assert.IsNotNull (cookies, "#L1");
-                       Assert.AreEqual (0, cookies.Count, "#L2");
+                       Assert.AreEqual (2, cookies.Count, "#L2");
                 }
  
                 [Test]
@@ -990,14 +1021,14 @@ namespace MonoTests.System.Net {
  
                         cookies = container.GetCookies (new Uri ("http://test.mono.com/Whatever/Do"));
                         Assert.IsNotNull (cookies, "#O1");
-                       Assert.AreEqual (2, cookies.Count, "#O2");
+                       Assert.AreEqual (3, cookies.Count, "#O2");
  
-                       cookie = cookies [0];
+                       cookie = cookies [1];
                         Assert.AreEqual ("Weight", cookie.Name, "#P1");
                         Assert.AreEqual ("87", cookie.Value, "#P2");
                         Assert.AreEqual ("/Whatever/Do", cookie.Path, "#P3");
                         Assert.AreEqual (".mono.com", cookie.Domain, "#P4");
-                       cookie = cookies [1];
+                       cookie = cookies [2];
                         Assert.AreEqual ("Country", cookie.Name, "#P5");
                         Assert.AreEqual ("Belgium", cookie.Value, "#P6");
                         Assert.AreEqual ("/Whatever", cookie.Path, "#P7");
@@ -1005,7 +1036,7 @@ namespace MonoTests.System.Net {
  
                         cookies = container.GetCookies (new Uri ("http://mono.com/Whatever/Do"));
                         Assert.IsNotNull (cookies, "#Q1");
-                       Assert.AreEqual (0, cookies.Count, "#Q2");
+                       Assert.AreEqual (2, cookies.Count, "#Q2");
  
                         cookies = container.GetCookies (new Uri ("http://us.test.mono.com/Whatever/Do"));
                         Assert.IsNotNull (cookies, "#R1");
@@ -1043,7 +1074,7 @@ namespace MonoTests.System.Net {
  
                         CookieCollection cookies = container.GetCookies (new Uri ("http://us.test.mono.com/Whatever/Do/Ok"));
                         Assert.IsNotNull (cookies, "#T1");
-                       Assert.AreEqual (3, cookies.Count, "#T2");
+                       Assert.AreEqual (4, cookies.Count, "#T2");
  
                         Cookie cookie = cookies [0];
                         Assert.AreEqual ("Age", cookie.Name, "#U1");
@@ -1055,7 +1086,7 @@ namespace MonoTests.System.Net {
                         Assert.AreEqual ("34445", cookie.Value, "#U6");
                         Assert.AreEqual ("/Whatever/", cookie.Path, "#U7");
                         Assert.AreEqual (".test.mono.com", cookie.Domain, "#U8");
-                       cookie = cookies [2];
+                       cookie = cookies [3];
                         Assert.AreEqual ("Town", cookie.Name, "#U9");
                         Assert.AreEqual ("Brussels", cookie.Value, "#U10");
                         Assert.AreEqual ("/Whatever", cookie.Path, "#U11");
@@ -1313,7 +1344,7 @@ namespace MonoTests.System.Net {
                                 Assert.AreEqual (typeof (CookieException), ex.GetType (), "#A2");
                                 Assert.IsNotNull (ex.InnerException, "#A3");
                                 Assert.IsNotNull (ex.Message, "#A4");
-                               Assert.IsTrue (ex.Message.IndexOf ("'http://www.contoso.com/'") != -1, "#A5");
+                               Assert.IsTrue (ex.Message.IndexOf ("http://www.contoso.com/") != -1, "#A5");
  
                                 // Cookie format error
                                 CookieException inner = ex.InnerException as CookieException;
@@ -1339,7 +1370,7 @@ namespace MonoTests.System.Net {
                                 Assert.AreEqual (typeof (CookieException), ex.GetType (), "#B2");
                                 Assert.IsNotNull (ex.InnerException, "#B3");
                                 Assert.IsNotNull (ex.Message, "#B4");
-                               Assert.IsTrue (ex.Message.IndexOf ("'http://dev.test.mono.com/Whatever'") != -1, "#B5");
+                               Assert.IsTrue (ex.Message.IndexOf ("http://dev.test.mono.com/Whatever") != -1, "#B5");
  
                                 // The 'Path'='/Whatever/Do' part of the Cookie
                                 // is invalid
@@ -1347,7 +1378,8 @@ namespace MonoTests.System.Net {
                                 Assert.AreEqual (typeof (CookieException), inner.GetType (), "#B6");
                                 Assert.IsNull (inner.InnerException, "#B7");
                                 Assert.IsNotNull (inner.Message, "#B8");
-                               Assert.IsTrue (inner.Message.IndexOf ("'Path'='/Whatever/Do'") != -1, "#B9");
+                               Assert.IsTrue (inner.Message.IndexOf ("'Path'='/Whatever/Do'") != -1 ||
+                                              inner.Message.IndexOf ("\"Path\"=\"/Whatever/Do\"") != 1, "#B9");
                         }
                 }
  
@@ -1376,12 +1408,13 @@ namespace MonoTests.System.Net {
                                 "Age=26; path=/Whatever; domain=test.mono.com");
                         CookieCollection cookies = cc.GetCookies (new Uri ("http://test.mono.com/Whatever/Do"));
                         Assert.IsNotNull (cookies, "#A1");
-                       Assert.AreEqual (0, cookies.Count, "#A2");
+                       Assert.AreEqual (1, cookies.Count, "#A2");
                         cookies = cc.GetCookies (new Uri ("http://us.test.mono.com/Whatever/Do"));
                         Assert.IsNotNull (cookies, "#A3");
                         Assert.AreEqual (1, cookies.Count, "#A4");
                 }
  
+#if FIXME
                 [Test]
                 public void SetCookies_Domain_Local ()
                 {
@@ -1428,6 +1461,7 @@ namespace MonoTests.System.Net {
                         Assert.IsNotNull (cookies, "#C5");
                         Assert.AreEqual (hostname.EndsWith (".local") ? 1 : 0, cookies.Count, "#C6");
                 }
+#endif
  
                 [Test]
                 public void bug421827 ()
@@ -1519,7 +1553,7 @@ namespace MonoTests.System.Net {
                         Assert.AreEqual (cookie.Expires.ToUniversalTime (), cloned.Expires.ToUniversalTime (), "#A7");
                         Assert.AreEqual (cookie.HttpOnly, cloned.HttpOnly, "#A8");
                         Assert.AreEqual (cookie.Name, cloned.Name, "#A9");
-                       Assert.AreEqual (cookie.Path, cloned.Path, "#A10");
+                       Assert.AreEqual ("/path/file", cloned.Path, "#A10");
                         Assert.AreEqual (cookie.Port, cloned.Port, "#A11");
                         Assert.AreEqual (cookie.Value, cloned.Value, "#A12");
                         Assert.AreEqual (cookie.Version, cloned.Version, "#A13");
author	Martin Baulig <martin.baulig@xamarin.com>
	Thu, 13 Sep 2012 00:00:56 +0000 (02:00 +0200)
committer	Martin Baulig <martin.baulig@xamarin.com>
	Thu, 13 Sep 2012 00:00:56 +0000 (02:00 +0200)
mcs/class/System/System.Net/Cookie.cs		patch \| blob \| history
mcs/class/System/System.Net/CookieContainer.cs		patch \| blob \| history
mcs/class/System/System.Net/HttpWebResponse.cs		patch \| blob \| history
mcs/class/System/Test/System.Net/CookieContainerTest.cs		patch \| blob \| history