At least in all modern versions of OpenSSL, it is enough to call SSL_renegotiate() once, and then forget about it. Subsequent SSL_write() and SSL_read() calls will finish the handshake.
The SSL_set_session_id_context() call is unnecessary too. We only have one SSL context, and the SSL session was created with that to begin with.
272923a Simplify the way OpenSSL renegotiation is initiated in server.
src/backend/libpq/be-secure-openssl.c | 23 -----------------------
1 file changed, 23 deletions(-)
Upstream: git.postgresql.org