From 56cbf3823331a56474248541987c9b9d13c452d4 Mon Sep 17 00:00:00 2001
From: Johan Bevemyr <jb@bevemyr.com>
Date: Fri, 12 Mar 2021 18:20:09 +0100
Subject: Don't add default SNI if already set

---
 src/gun.erl | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

(limited to 'src')

diff --git a/src/gun.erl b/src/gun.erl
index 3ca65b7..42bd409 100644
--- a/src/gun.erl
+++ b/src/gun.erl
@@ -1104,10 +1104,15 @@ ensure_alpn_sni(Protocols0, TransOpts0, OriginHost) ->
 	%%
 	%% Normally only DNS hostnames are supported for SNI. However, the ssl
 	%% application itself allows any string through so we do the same.
-	if
-		is_list(OriginHost) -> [{server_name_indication, OriginHost}|TransOpts];
-		is_atom(OriginHost) -> [{server_name_indication, atom_to_list(OriginHost)}|TransOpts];
-		true -> TransOpts
+	%%
+	%% Only add SNI if not already present and OriginHost isn't an IP address.
+	case lists:keymember(server_name_indication, 1, TransOpts) of
+		false when is_list(OriginHost) ->
+			[{server_name_indication, OriginHost}|TransOpts];
+		false when is_atom(OriginHost) ->
+			[{server_name_indication, atom_to_list(OriginHost)}|TransOpts];
+		_ ->
+			TransOpts
 	end.
 
 %% Normal TLS handshake.
-- 
cgit v1.2.3