Make url-cookie.el be more resistant against bogus data

* lisp/url/url-cookie.el (url-cookie-handle-set-cookie): Don't bug out on large max-age values (bug#37974).
author: Lars Ingebrigtsen 2019-10-29 22:53:00 +0100
committer: Lars Ingebrigtsen 2019-10-29 22:53:00 +0100
commit: d3517de4b472ede7abaf3a552c5064be979e6eff (patch)
tree: 85981730af642a40e7bb9213eedbf1d53e8bd1f9
parent: 6f7e99fb1896b1414187d98b4b1459d04ac94823 (diff)
download: emacs-d3517de4b472ede7abaf3a552c5064be979e6eff.tar.gz
emacs-d3517de4b472ede7abaf3a552c5064be979e6eff.zip
1 files changed, 4 insertions, 3 deletions
diff --git a/lisp/url/url-cookie.el b/lisp/url/url-cookie.el
index 31fc3e72664..740a43fa16f 100644
--- a/lisp/url/url-cookie.el
+++ b/lisp/url/url-cookie.el
@@ -304,9 +304,10 @@ i.e. 1970-1-1) are loaded as expiring one year from now instead."
                         (url-filename url-current-object))))
         (expires nil))
    (if (and max-age (string-match "\\`-?[0-9]+\\'" max-age))
-        (setq expires (format-time-string "%a %b %d %H:%M:%S %Y GMT"
+        (setq expires (ignore-errors
-                                          (time-add nil (read max-age))
+                        (format-time-string "%a %b %d %H:%M:%S %Y GMT"
-                                          t))
+                                            (time-add nil (read max-age))
+                                            t)))
      (setq expires (cdr-safe (assoc-string "expires" args t))))
    (while (consp trusted)
      (if (string-match (car trusted) current-url)
author	Lars Ingebrigtsen	2019-10-29 22:53:00 +0100
committer	Lars Ingebrigtsen	2019-10-29 22:53:00 +0100
commit	d3517de4b472ede7abaf3a552c5064be979e6eff (patch)
tree	85981730af642a40e7bb9213eedbf1d53e8bd1f9
parent	6f7e99fb1896b1414187d98b4b1459d04ac94823 (diff)
download	emacs-d3517de4b472ede7abaf3a552c5064be979e6eff.tar.gz emacs-d3517de4b472ede7abaf3a552c5064be979e6eff.zip