Diff
Not logged in
HomeFilesLeavesTimelineBranchesTagsTicketsWikiLogin

Differences From:

File src/login.c part of check-in [0be54823ba] - Add defenses against cross-site request forgery attacks. by drh on 2008-10-18 12:55:44. [view]

To:

File src/login.c part of check-in [9e80dc66cf] - Use sqlite3_snprintf() instead of snprintf() since the latter is not available on all platforms. by drh on 2008-10-18 13:03:36. [view] 
@@ -274,9 +274,9 @@
          );
     }else if( zCookie[0]=='a' ){
       uid = db_int(0, "SELECT uid FROM user WHERE login='anonymous'");
     }
-    snprintf(g.zCsrfToken, sizeof(g.zCsrfToken), "%.10s", zCookie);
+    sqlite3_snprintf(sizeof(g.zCsrfToken), g.zCsrfToken, "%.10s", zCookie);
   }
 
   if( uid==0 ){
     uid = db_int(0, "SELECT uid FROM user WHERE login='nobody'");

Fossil version [c0211010a1] 2009-12-13 01:31:36