no need to check s->server as default_nid is never used for TLS 1.2 client authentication

author Dr. Stephen Henson <steve@openssl.org>

Wed, 26 Dec 2012 14:45:27 +0000 (14:45 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Wed, 26 Dec 2012 14:45:27 +0000 (14:45 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Wed, 26 Dec 2012 14:45:27 +0000 (14:45 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Wed, 26 Dec 2012 14:45:27 +0000 (14:45 +0000)
diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c

index cb3673759f5e444db4adc63b69d7dd2867c508a0..65bd8c3f44f05b838ec9c188a72636e1959be2b1 100644 (file)
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -3519,7 +3519,7 @@ int tls1_check_chain(SSL *s, X509 *x, EVP_PKEY *pk, STACK_OF(X509) *chain,
                  * have set preferred signature algorithms check we support
                  * sha1.
                  */
-               if (s->server && default_nid > 0 && c->conf_sigalgs)
+               if (default_nid > 0 && c->conf_sigalgs)
                         {
                         size_t j;
                         const unsigned char *p = c->conf_sigalgs;
author	Dr. Stephen Henson <steve@openssl.org>
	Wed, 26 Dec 2012 14:45:27 +0000 (14:45 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Wed, 26 Dec 2012 14:45:27 +0000 (14:45 +0000)