Don't pass a TLS session ID of 0 js_CreateCommonObjects() for non-TLS sessions

The proper sentinel value here for "no TLS session" is -1, not 0. This, at minimum, was causing a lot of extraneous calls to destroy_session() (from js_socket.c's do_js_close()) with an invalid (hopefully, not otherwise used) cryptlib session ID of 0. Nothing checks or logs the return value of destroy_session(), but I'd expect it to be failing ... a lot.

Don't pass a TLS session ID of 0 js_CreateCommonObjects() for non-TLS sessions
14f787a9 · Rob Swindell · 65cc409d · 14f787a9
Commit 14f787a9 authored 1 year ago by Rob Swindell
--- a/src/sbbs3/websrvr.c
+++ b/src/sbbs3/websrvr.c
@@ -5923,7 +5923,7 @@ js_initcx(http_session_t *session)
 									,&startup->js				/* js */
 									,&session->client			/* client */
 									,session->socket			/* client */
-									,session->tls_sess			/* client */
+									,session->is_tls ? session->tls_sess : -1	/* client */
 									,&js_server_props			/* server */
 									,&session->js_glob
 									,&mqtt