Google Git
Sign in
boringssl / boringssl / f4958e767817f2ba77cece3031ddcf87916d57cf
commitf4958e767817f2ba77cece3031ddcf87916d57cf[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Sun Jun 07 11:00:53 2015 -0400
committerAdam Langley <agl@google.com>Mon Jun 08 22:14:53 2015 +0000
treeb2ad565dfe0ee45d131ee582075d14c48516941c
parentb31040d0d8bbfa563a39e2321131074816d9d21b [diff]
Slightly simplify ServerKeyExchange handling.

The current logic requires each key exchange extract the key. It also
leaves handling X509_get_pubkey failure to the anonymous cipher suite
case which has an escape hatch where it goes back to check
ssl3_check_cert_and_algorithm.

Instead, get the key iff we know we have a signature to check.

Change-Id: If7154c7156aad3b89489defe4c1d951eeebf0089
Reviewed-on: https://boringssl-review.googlesource.com/5045
Reviewed-by: Adam Langley <agl@google.com>
1 file changed
tree: b2ad565dfe0ee45d131ee582075d14c48516941c
  1. crypto/
  2. decrepit/
  3. doc/
  4. include/
  5. ssl/
  6. tool/
  7. util/
  8. .clang-format
  9. .gitignore
  10. BUILDING
  11. CMakeLists.txt
  12. codereview.settings
  13. LICENSE
  14. STYLE