From d29ce4b047e49800bf75b4cbc1097188805affde Mon Sep 17 00:00:00 2001
From: Yann Ylavic <ylavic@apache.org>
Date: Fri, 28 Feb 2014 14:46:50 +0000
Subject: [PATCH] mod_proxy: follows up r1572630. Don't reuse a SSL backend
 connection with no SNI for a request requiring SNI.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1572967 13f79535-47bb-0310-9956-ffa450edef68
---
 modules/proxy/proxy_util.c | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/modules/proxy/proxy_util.c b/modules/proxy/proxy_util.c
index 27cd0f456f..7fafbfdcf3 100644
--- a/modules/proxy/proxy_util.c
+++ b/modules/proxy/proxy_util.c
@@ -2367,9 +2367,10 @@ ap_proxy_determine_connection(apr_pool_t *p, request_rec *r,
         else {
             ssl_hostname = conn->hostname;
         }
-        if (conn->ssl_hostname != NULL &&
-                (!ssl_hostname || strcasecmp(conn->ssl_hostname,
-                                             ssl_hostname) != 0)) {
+        if (conn->ssl_hostname != NULL
+                ? (ssl_hostname == NULL || strcasecmp(conn->ssl_hostname,
+                                                      ssl_hostname) != 0)
+                : (ssl_hostname != NULL && conn->sock)) {
             socket_cleanup(conn);
         }
         if (conn->ssl_hostname == NULL) {
-- 
2.50.1