Don't pretend to account for RSA_PSK.
RSA_PSK is really weird in that it takes a Certificate, but you're not
expected to verify it. It's just a funny way to transmit an RSA key.
(They probably should have used the RSA_EXPORT ServerKeyExchange
spelling.) Some code now already doesn't account for it right around
Given ECDHE_PSK exists, hopefully there will never be any need to add
Reviewed-by: Adam Langley <email@example.com>
2 files changed