On Sat, Mar 31, 2012 at 2:24 PM, Richard Hipp <d...@sqlite.org> wrote:
> ... > > The code that generates such cookies is in src/login.c, 1239: >> >> zCookie = db_text(0, "SELECT '%d/' || hex(randomblob(25))", uid); >> . > > Without looking, I would guess it is a bug. Neither I nor anybody I know > uses it, it is not checked as part of our pre-release testing checklist, > and so it seems like it would be easy for bugs to creep in unnoticed. > i _think_ the right thing to do there would be to use call login_set_user_cookie() to replace the several lines which deal with the cookie. That said: as Richard says: this isn't a feature any of us touches, so i'm hesitant to tinker with it :/. -- ----- stephan beal http://wanderinghorse.net/home/stephan/ http://gplus.to/sgbeal
_______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
