romenskiy2012/curl
1
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2026-06-18 15:46:16 +03:00
Code Issues Projects Releases Packages Wiki Activity

cf-https-connect: do not engage on proxy origin

Browse source 
When talking to a forwarding proxy, do not start HTTPS Eyeballing.
We might support this in the future, but for now, the --httpx.x
arguments to do not apply to such a setup.

Add a test case for forward proxying without use of ALPN.

Closes #22033
This commit is contained in:
Stefan Eissing 2026-06-15 17:13:00 +02:00 committed by Daniel Stenberg
parent b9702f8c48
commit bb72413b03
No known key found for this signature in database
GPG key ID: 5CC908FDB71E12C2
2 changed files with 13 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

5
lib/cf-https-connect.c
View file

@ -810,7 +810,12 @@ CURLcode Curl_cf_https_setup(struct Curl_easy *data,
DEBUGASSERT(conn->scheme->protocol == CURLPROTO_HTTPS);
/* This filter is intended for HTTPS using ALPN and does
* not support HTTPS Eyeballing to a proxy. */
if((conn->scheme->protocol != CURLPROTO_HTTPS) ||
#ifndef CURL_DISABLE_PROXY
conn->bits.origin_is_proxy ||
#endif
!conn->bits.tls_enable_alpn)
goto out;