Slightly simplify ServerKeyExchange handling.
The current logic requires each key exchange extract the key. It also
leaves handling X509_get_pubkey failure to the anonymous cipher suite
case which has an escape hatch where it goes back to check
Instead, get the key iff we know we have a signature to check.
Reviewed-by: Adam Langley <firstname.lastname@example.org>
1 file changed