Correct usage for ap_scan_http_token (had used _get_ syntax), noted b…

…y Rüdiger git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1754570 13f79535-47bb-0310-9956-ffa450edef68
apache · Jul 29, 2016 · f2d66fd · f2d66fd
1 parent a5d0432
commit f2d66fd
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/server/protocol.c b/server/protocol.c
@@ -945,8 +945,8 @@ AP_DECLARE(void) ap_get_mime_headers_core(request_rec *r, apr_bucket_brigade *bb
                 else /* Using strict RFC7230 parsing */
                 {
                     /* Ensure valid token chars before ':' per RFC 7230 3.2.4 */
-                    if (!(value = (char *)ap_scan_http_token(last_field))
-                            || *value != ':') {
+                    value = (char *)ap_scan_http_token(last_field);
+                    if ((value > last_field) || *value != ':') {
                         r->status = HTTP_BAD_REQUEST;
                         apr_table_setn(r->notes, "error-notes",
                             apr_psprintf(r->pool,