You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by wr...@apache.org on 2016/07/29 20:22:37 UTC

svn commit: r1754570 - /httpd/httpd/trunk/server/protocol.c

Author: wrowe
Date: Fri Jul 29 20:22:37 2016
New Revision: 1754570

URL: http://svn.apache.org/viewvc?rev=1754570&view=rev
Log:
Correct usage for ap_scan_http_token (had used _get_ syntax), noted by R�diger

Modified:
    httpd/httpd/trunk/server/protocol.c

Modified: httpd/httpd/trunk/server/protocol.c
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/server/protocol.c?rev=1754570&r1=1754569&r2=1754570&view=diff
==============================================================================
--- httpd/httpd/trunk/server/protocol.c (original)
+++ httpd/httpd/trunk/server/protocol.c Fri Jul 29 20:22:37 2016
@@ -945,8 +945,8 @@ AP_DECLARE(void) ap_get_mime_headers_cor
                 else /* Using strict RFC7230 parsing */
                 {
                     /* Ensure valid token chars before ':' per RFC 7230 3.2.4 */
-                    if (!(value = (char *)ap_scan_http_token(last_field))
-                            || *value != ':') {
+                    value = (char *)ap_scan_http_token(last_field);
+                    if ((value > last_field) || *value != ':') {
                         r->status = HTTP_BAD_REQUEST;
                         apr_table_setn(r->notes, "error-notes",
                             apr_psprintf(r->pool,