Merge r1929631 from trunk:

author Joe Orton <jorton@apache.org>

Mon, 24 Nov 2025 09:06:41 +0000 (09:06 +0000)

committer Joe Orton <jorton@apache.org>

Mon, 24 Nov 2025 09:06:41 +0000 (09:06 +0000)
author Joe Orton <jorton@apache.org>
Mon, 24 Nov 2025 09:06:41 +0000 (09:06 +0000)
committer Joe Orton <jorton@apache.org>
Mon, 24 Nov 2025 09:06:41 +0000 (09:06 +0000)
diff --git a/modules/ssl/ssl_engine_kernel.c b/modules/ssl/ssl_engine_kernel.c

index a6af6332f43a1f0e0d726cdab8fedf9ed9d57540..83ae90edebcc5405726289a3604e7bb51544c9d7 100644 (file)
--- a/modules/ssl/ssl_engine_kernel.c
+++ b/modules/ssl/ssl_engine_kernel.c
@@ -115,8 +115,8 @@ static int ssl_check_vhost_sni_policy(SSLSrvConfigRec *sc1,
          return 1;
      
      /* Policy: strict => fail for any vhost transition. */
-    if (policy == MODSSL_SNIVH_STRICT && sc1 != sc2)
-        return 0;
+    if (policy == MODSSL_SNIVH_STRICT)
+        return sc1 == sc2;
  
      /* For authonly/secure policy, compare the hash. */
      AP_DEBUG_ASSERT(sc1->sni_policy_hash);
author	Joe Orton <jorton@apache.org>
	Mon, 24 Nov 2025 09:06:41 +0000 (09:06 +0000)
committer	Joe Orton <jorton@apache.org>
	Mon, 24 Nov 2025 09:06:41 +0000 (09:06 +0000)