HTTP::Cookie: parse max-age as Int64, not Int32 #8759

asterite · 2020-02-07T13:19:11Z

I considered parsing it as UInt64 too, but if max-age is Int64::MAX it already overflows when trying to create a time instance, so Int64 is probably fine.

(or put another way, in the rare case it breaks with a much bigger number let's tackle that later)

straight-shoota · 2020-02-07T14:48:05Z

spec/std/http/cookie_spec.cr

+      it "parses large max-age (#8744)" do
+        cookie = parse_set_cookie("a=1; max-age=3153600000")
+        delta = cookie.expires.not_nil! - Time.utc
+        delta.should be > (3153600000 - 1).seconds


Why not use be_close expectation?

I copied the code from the previous spec without too much thought.

I changed it to use be_close

HTTP::Cookie: parse max-age as Int64, not Int32

a907d4f

asterite added kind:bug A bug in the code. Does not apply to documentation, specs, etc. topic:stdlib:networking labels Feb 7, 2020

straight-shoota reviewed Feb 7, 2020

View reviewed changes

Use be_close in a few specs

f093059

straight-shoota approved these changes Feb 8, 2020

View reviewed changes

asterite merged commit 3b14de7 into master Feb 8, 2020

asterite added this to the 0.33.0 milestone Feb 8, 2020

asterite deleted the bug/cookie-max-age-overflow branch February 8, 2020 15:38

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

HTTP::Cookie: parse max-age as Int64, not Int32 #8759

HTTP::Cookie: parse max-age as Int64, not Int32 #8759

asterite commented Feb 7, 2020

straight-shoota Feb 7, 2020

asterite Feb 7, 2020

asterite Feb 8, 2020

HTTP::Cookie: parse max-age as Int64, not Int32 #8759

HTTP::Cookie: parse max-age as Int64, not Int32 #8759

Conversation

asterite commented Feb 7, 2020

straight-shoota Feb 7, 2020

Choose a reason for hiding this comment

asterite Feb 7, 2020

Choose a reason for hiding this comment

asterite Feb 8, 2020

Choose a reason for hiding this comment