From 3d030a96b7291454fb196b0842dbf0b3cf03e96c Mon Sep 17 00:00:00 2001
From: deepend <deepend@tilde.club>
Date: Wed, 4 Feb 2026 12:42:04 -0700
Subject: [PATCH] =?UTF-8?q?Updated=20sts=5Fhandle=5Fcapability=20to=20retu?=
 =?UTF-8?q?rn=20FALSE=20after=20logging=20the=20no=E2=80=91TLS=20warning,?=
 =?UTF-8?q?=20so=20the=20insecure=20upgrade=20path=20doesn=E2=80=99t=20sto?=
 =?UTF-8?q?p=20capability=20negotiation;=20it=20still=20returns=20TRUE=20o?=
 =?UTF-8?q?nly=20when=20an=20STS=20upgrade/reconnect=20is=20initiated=20or?=
 =?UTF-8?q?=20already=20in=20progress.=20Confirmed=20inbound=5Fcap=5Fls=20?=
 =?UTF-8?q?only=20returns=20early=20when=20sts=5Fupgrade=5Ftriggered=20is?=
 =?UTF-8?q?=20set=20by=20sts=5Fhandle=5Fcapability,=20which=20now=20only?=
 =?UTF-8?q?=20happens=20for=20real=20upgrade/reconnect=20initiation=20or?=
 =?UTF-8?q?=20in=E2=80=91progress=20upgrades.?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/common/sts.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/common/sts.c b/src/common/sts.c
index 82c57ed2..eef2a71b 100644
--- a/src/common/sts.c
+++ b/src/common/sts.c
@@ -588,12 +588,13 @@ sts_handle_capability (struct server *serv, const char *value)
 			serv->disconnect (serv->server_session, FALSE, -1);
 			serv->connect (serv, host_copy, (int) port, serv->no_login);
 		}
+		return TRUE;
 #else
 		PrintTextf (serv->server_session,
 					_("STS upgrade requested for %s, but TLS is not available.\n"),
 					hostname);
+		return FALSE;
 #endif
-		return TRUE;
 	}
 
 	if (!has_duration)