NSS: acknowledge the --no-sessionid/CURLOPT_SSL_SESSIONID_CACHE option

author: Paul Donohue <curl@paulsd.com> 2013-10-15 21:36:32 +0200
committer: Daniel Stenberg <daniel@haxx.se> 2013-10-15 21:50:22 +0200
commit: f63603dec4519857498602f7a00acc0ffed29753 (patch)
tree: 77e1acf068c3f89a21e0d2092d1b6c67ef380751 /lib
parent: 0218a737fe7b8f47d07d815e4b75648078ddc5d2 (diff)
1 files changed, 3 insertions, 2 deletions
diff --git a/lib/nss.c b/lib/nss.c
index 34dfbb1a7..43576e6d5 100644
--- a/lib/nss.c
+++ b/lib/nss.c
@@ -1244,8 +1244,9 @@ CURLcode Curl_nss_connect(struct connectdata *conn, int sockindex)
   if(SSL_OptionSet(model, SSL_HANDSHAKE_AS_CLIENT, PR_TRUE) != SECSuccess)
     goto error;
 
-  /* do not use SSL cache if we are not going to verify peer */
-  ssl_no_cache = (data->set.ssl.verifypeer) ? PR_FALSE : PR_TRUE;
+  /* do not use SSL cache if disabled or we are not going to verify peer */
+  ssl_no_cache = (conn->ssl_config.sessionid && data->set.ssl.verifypeer) ?
+    PR_FALSE : PR_TRUE;
   if(SSL_OptionSet(model, SSL_NO_CACHE, ssl_no_cache) != SECSuccess)
     goto error;
author	Paul Donohue <curl@paulsd.com>	2013-10-15 21:36:32 +0200
committer	Daniel Stenberg <daniel@haxx.se>	2013-10-15 21:50:22 +0200
commit	f63603dec4519857498602f7a00acc0ffed29753 (patch)
tree	77e1acf068c3f89a21e0d2092d1b6c67ef380751 /lib
parent	0218a737fe7b8f47d07d815e4b75648078ddc5d2 (diff)