summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorBob Beck <beck@cvs.openbsd.org>2024-07-09 13:43:58 +0000
committerBob Beck <beck@cvs.openbsd.org>2024-07-09 13:43:58 +0000
commitb6d16acaaa4688be95e8075590a3fbb2db3374fd (patch)
treeb715ae4e44578f27b127efcdecb75c7d0229f3a6
parentddacc357b0ba1fca2cec3f764f94188dd22e6201 (diff)
Don't push the error stack in ssl_sigalg_select()
Doing so breaks certificate selection if a TLS 1.3 client does not support EC certs, and needs to fall back to RSA. ok tb@
Diffstat
-rw-r--r--lib/libssl/ssl_sigalgs.c3
1 files changed, 1 insertions, 2 deletions
diff --git a/lib/libssl/ssl_sigalgs.c b/lib/libssl/ssl_sigalgs.c
index 9876e82a6f9..18d71f6b958 100644
--- a/lib/libssl/ssl_sigalgs.c
+++ b/lib/libssl/ssl_sigalgs.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_sigalgs.c,v 1.49 2024/02/03 15:58:34 beck Exp $ */
+/* $OpenBSD: ssl_sigalgs.c,v 1.50 2024/07/09 13:43:57 beck Exp $ */
/*
* Copyright (c) 2018-2020 Bob Beck <beck@openbsd.org>
* Copyright (c) 2021 Joel Sing <jsing@openbsd.org>
@@ -337,7 +337,6 @@ ssl_sigalg_select(SSL *s, EVP_PKEY *pkey)
return sigalg;
}
- SSLerror(s, SSL_R_UNKNOWN_PKEY_TYPE);
return NULL;
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 19:46:29 +0000