From d855a4785d6378c0cf5ba159394a96342d30d60c Mon Sep 17 00:00:00 2001
From: Matthew Wild <mwild1@gmail.com>
Date: Fri, 29 May 2009 14:30:40 +0100
Subject: net.server: A connection is not secure if we delay the TLS handshake

---
 net/server.lua | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'net')

diff --git a/net/server.lua b/net/server.lua
index 9e42b8ff..d7872f51 100644
--- a/net/server.lua
+++ b/net/server.lua
@@ -540,6 +540,8 @@ wrapconnection = function( server, listeners, socket, ip, serverport, clientport
             handler.sendbuffer = handshake
             handshake( socket )    -- do handshake
         else
+            -- We're not automatically doing SSL, so we're not secure (yet)
+            ssl = false
             handler.starttls = function( now )
                 if not now then
                     --out_put "server.lua: we need to do tls, but delaying until later"
@@ -576,6 +578,9 @@ wrapconnection = function( server, listeners, socket, ip, serverport, clientport
 
                 handler.starttls = nil
                 needtls = nil
+                
+                -- Secure now
+                ssl = true
 
                 handler.readbuffer = handshake
                 handler.sendbuffer = handshake
-- 
cgit v1.2.3