Valid http host header against cert name, as it may be different from the SSL hostname

2026-02-03 06:03:28 +00:00 · 2025-09-23 17:05:32 -07:00
parent 9393162b0e
commit 890a4ffd3f
1 changed files with 2 additions and 1 deletions
--- a/miniserv.pl
+++ b/miniserv.pl
@@ -2505,7 +2505,7 @@ if (&get_type($full) eq "internal/cgi" && $validated != 4) {
 	if ($use_ssl) {
 		$ENV{"SSL_HOST"} = $ssl_host;
 		$ENV{"SSL_HOST_CERT"} =
-			&ssl_hostname_match($ssl_host, $ssl_cert_hosts);
+			&ssl_hostname_match($header{'host'}, $ssl_cert_hosts);
 		}
 	$ENV{"MINISERV_PID"} = $miniserv_main_pid;
 	if ($use_ssl) {
@@ -7134,6 +7134,7 @@ return \%rv;
 sub ssl_hostname_match
 {
 my ($h, $hosts) = @_;
+$h =~ s/:\d+$//;
 foreach my $p (@$hosts) {
 	return 1 if (lc($p) eq lc($h));
 	return 1 if ($p =~ /^\*\.(\S+)$/ &&