On Thu, Mar 28, 2019 at 10:30 PM Ruediger Pluem <rpl...@apache.org> wrote: > > > > On 03/28/2019 10:27 PM, Yann Ylavic wrote: > > On Thu, Mar 28, 2019 at 10:24 PM Ruediger Pluem <rpl...@apache.org> wrote: > >> > >> On 03/28/2019 05:39 PM, yla...@apache.org wrote: > >>> > >>> + for (wpos = str; *str; ++str) { > >>> if (!quoted) { > >>> - if (**last == '\"' && !ap_strchr_c(sep, '\"')) { > >>> + if (*str == '"') { > >> > >> Question: Is the token allowed to the quoted? > > > > Hmm no, I asked and was told to RTFM, and then forgot :) > > Will fix, thanks! > > > > All good. It is not allowed to be quoted and then the code behaves correctly > and returns with APR_EINVAL.
Not really, 'Cache-Control: "private"' for instance is not allowed but accepted here. Hopefully fixed in r1856507. Thanks, Yann.