From 9b2b3844e2e8f8ff1f22fc0fcb804615214f9a7a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?P=C5=99emysl=20Janouch?= <p.janouch@gmail.com>
Date: Tue, 5 Aug 2014 21:15:24 +0200
Subject: [PATCH] kike: set the OpenSSL's session ID context

Fixes handshake failure on session reuse attempts.
---
 src/kike.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/kike.c b/src/kike.c
index 01f7716..738e828 100644
--- a/src/kike.c
+++ b/src/kike.c
@@ -2269,6 +2269,11 @@ irc_initialize_ssl (struct server_context *ctx, struct error **e)
 		SSL_VERIFY_PEER | SSL_VERIFY_CLIENT_ONCE, irc_ssl_verify_callback);
 	// XXX: maybe we should call SSL_CTX_set_options() for some workarounds
 
+	const unsigned char session_id_context[SSL_MAX_SSL_SESSION_ID_LENGTH]
+		= PROGRAM_NAME;
+	(void) SSL_CTX_set_session_id_context (ctx->ssl_ctx,
+		session_id_context, sizeof session_id_context);
+
 	// XXX: perhaps we should read the files ourselves for better messages
 	if (!SSL_CTX_use_certificate_chain_file (ctx->ssl_ctx, cert_path))
 	{