From afff02435655bc55d63000d7a1e8a67c54922f87 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julian=20J=C3=B8rgensen?= <julian@jtle.dk>
Date: Mon, 27 Apr 2026 22:50:04 +0200
Subject: [PATCH] Ignore empty Domain key-value pairs in cookies

This should match what RFC 6265 section 5.2.4 states.
---
 dpi/cookies.c | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/dpi/cookies.c b/dpi/cookies.c
index aa6fb989..fa31deb3 100644
--- a/dpi/cookies.c
+++ b/dpi/cookies.c
@@ -932,8 +932,12 @@ static CookieData_t *Cookies_parse(char *cookie_str, const char *server_date)
          cookie->path = value;
       } else if (dStrAsciiCasecmp(attr, "Domain") == 0) {
          value = Cookies_parse_value(&str);
-         dFree(cookie->domain);
-         cookie->domain = value;
+         if (value[0] != '\0') {
+            dFree(cookie->domain);
+            cookie->domain = value;
+         } else {
+            dFree(value);
+         }
       } else if (dStrAsciiCasecmp(attr, "Max-Age") == 0) {
          value = Cookies_parse_value(&str);
          if (dIsdigit(*value) || *value == '-') {
-- 
2.54.0