From: Eric Wong <normalperson@...>
Date: 2018-04-05T21:14:24+00:00
Subject: [ruby-core:86459] Re: [Ruby trunk Bug#14664][Rejected] After upgrade to 2.4.4: header field value cannot include CR/LF

naruse@airemix.jp wrote:
> It's from r61359 because HTTP doesn't allow CRLF in their header value.
> I think your application was silently broken from before.

CRLF followed by leading-whitespace (LWS) should be allowed

"Host:\r\n\texample.com\r\n"
"Host:\r\n example.com\r\n"

I think it's necessary for some base64-encoded proxy
certificates embedded in headers

> https://bugs.ruby-lang.org/issues/14664#change-71384

Unsubscribe: <mailto:ruby-core-request@ruby-lang.org?subject=unsubscribe>
<http://lists.ruby-lang.org/cgi-bin/mailman/options/ruby-core>