From 6cc210ce4206ae3a2b302f79b1290fc6257977e7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Henrik=20Grubbstr=C3=B6m=20=28Grubba=29?=
 <grubba@grubba.org>
Date: Tue, 11 Mar 2014 17:31:30 +0100
Subject: [PATCH] SSL.handshake: Support SSLv2 hello again.

The initialization of the session got lost for SSLv2 hellos
when the storage for several extensions was moved to the session.

Fixes support for *old* ssl clients (like check_http from Nagios).
---
 lib/modules/SSL.pmod/handshake.pike | 1 +
 1 file changed, 1 insertion(+)

diff --git a/lib/modules/SSL.pmod/handshake.pike b/lib/modules/SSL.pmod/handshake.pike
index f0e7536ca6..d7490a27e7 100644
--- a/lib/modules/SSL.pmod/handshake.pike
+++ b/lib/modules/SSL.pmod/handshake.pike
@@ -1091,6 +1091,7 @@ int(-1..1) handle_handshake(int type, string(0..255) data, string(0..255) raw)
 	  challenge = "\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0" + challenge;
 	client_random = challenge[sizeof (challenge) - 32..];
 
+	session = context->new_session();
 	{
 	  int(-1..0) err = reply_new_session(cipher_suites,
 					     ({ COMPRESSION_null }) );
-- 
GitLab