From: Joe Orton <jorton@apache.org>
Date: Mon, 3 Dec 2007 11:06:35 +0000 (+0000)
Subject: * modules/ssl/ssl_engine_kernel.c (ssl_hook_ReadReq): For performing
X-Git-Tag: 2.3.0~1182
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=17fb5e70f70461f2dbb055af098c3f896710f296;p=thirdparty%2Fapache%2Fhttpd.git

* modules/ssl/ssl_engine_kernel.c (ssl_hook_ReadReq): For performing
  TLS upgrade, require only the presence of a "TLS/1.0" token
  somewhere in the Upgrade request-header, rather than as the exact
  header value.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@600479 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/modules/ssl/ssl_engine_kernel.c b/modules/ssl/ssl_engine_kernel.c
index c0e9be74d0d..cc929fc4fd1 100644
--- a/modules/ssl/ssl_engine_kernel.c
+++ b/modules/ssl/ssl_engine_kernel.c
@@ -102,7 +102,7 @@ int ssl_hook_ReadReq(request_rec *r)
      * has sent a suitable Upgrade header. */
     if (sc->enabled == SSL_ENABLED_OPTIONAL && !myConnConfig(r->connection)
         && (upgrade = apr_table_get(r->headers_in, "Upgrade")) != NULL
-        && strcmp(ap_getword(r->pool, &upgrade, ','), "TLS/1.0") == 0) {
+        && ap_find_token(r->pool, upgrade, "TLS/1.0")) {
         if (upgrade_connection(r)) {
             return HTTP_INTERNAL_SERVER_ERROR;
         }