From: Georg Brandl <georg@python.org>
Date: Thu, 29 May 2008 07:38:37 +0000 (+0000)
Subject: #2988: add note about catching CookieError when parsing untrusted cookie data.
X-Git-Tag: v2.6b1~210
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=b77e888f415d72d028361952692006a38c2473c8;p=python

#2988: add note about catching CookieError when parsing untrusted cookie data.
---

diff --git a/Doc/library/cookie.rst b/Doc/library/cookie.rst
index aae7bc2747..346da5a1fd 100644
--- a/Doc/library/cookie.rst
+++ b/Doc/library/cookie.rst
@@ -22,6 +22,12 @@ The module formerly strictly applied the parsing rules described in the
 MSIE 3.0x doesn't follow the character rules outlined in those specs.  As a
 result, the parsing rules used are a bit less strict.
 
+.. note::
+
+   On encountering an invalid cookie, :exc:`CookieError` is raised, so if your
+   cookie data comes from a browser you should always prepare for invalid data
+   and catch :exc:`CookieError` on parsing.
+
 
 .. exception:: CookieError