Slightly simplify ServerKeyExchange handling.
The current logic requires each key exchange extract the key. It also
leaves handling X509_get_pubkey failure to the anonymous cipher suite
case which has an escape hatch where it goes back to check
Instead, get the key iff we know we have a signature to check.
Reviewed-by: Adam Langley <email@example.com>
1 file changed