Add a defined? check to fix older versions of OpenSSL.

joevennix · joevennix · commit de06480f4fce · 2014-01-23T14:51:47.000-06:00
Older versions of OpenSSL did not export the OP_NO_COMPRESSION constant,
so users running metasploit on systems with old copies of openssl
would throw a NameError since the constant did not exist.
diff --git a/lib/rex/socket/ssl_tcp_server.rb b/lib/rex/socket/ssl_tcp_server.rb
@@ -154,11 +154,15 @@ def makessl(params)
     ctx.cert = cert
     ctx.options = 0
 
-    # enable/disable the SSL/TLS-level compression
-    if params.ssl_compression
-      ctx.options &= ~OpenSSL::SSL::OP_NO_COMPRESSION
-    else
-      ctx.options |= OpenSSL::SSL::OP_NO_COMPRESSION
+
+    # Older versions of OpenSSL do not export the OP_NO_COMPRESSION symbol
+    if defined?(OpenSSL::SSL::OP_NO_COMPRESSION)
+      # enable/disable the SSL/TLS-level compression
+      if params.ssl_compression
+        ctx.options &= ~OpenSSL::SSL::OP_NO_COMPRESSION
+      else
+        ctx.options |= OpenSSL::SSL::OP_NO_COMPRESSION
+      end
     end
 
     ctx.session_id_context = Rex::Text.rand_text(16)
