- Merged back bugfixes from trunk (pre 0.99-pre2): * Corrected parsing of UTCTime dates before 1990 and after 1950 * Support more exotic OID's when parsing certificates * Support more exotic name representations when parsing certificates * Replaced the expired test certificates * Do not bail out if no client certificate specified. Try to negotiate anonymous connection (Fixes ticket #12)

commit: 02710261aef8e36a7ab3be6fad202173ae022b7c [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Tue Feb 22 16:26:47 2011 +0000
committer: Paul Bakker <p.j.bakker@polarssl.org> Tue Feb 22 16:26:47 2011 +0000
tree: acf53a0f5ac811222e88b746280259693635fa3f
parent: 82e635255dea27c40ec2dd9d81bc5b5c7b3a232b [diff] [blame]
diff --git a/library/ssl_cli.c b/library/ssl_cli.c
index cebcceb..0b29306 100644
--- a/library/ssl_cli.c
+++ b/library/ssl_cli.c

@@ -626,7 +626,7 @@
 
     SSL_DEBUG_MSG( 2, ( "=> write certificate verify" ) );
 
-    if( ssl->client_auth == 0 )
+    if( ssl->client_auth == 0 || ssl->own_cert == NULL )
     {
         SSL_DEBUG_MSG( 2, ( "<= skip write certificate verify" ) );
         ssl->state++;
commit	02710261aef8e36a7ab3be6fad202173ae022b7c	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Tue Feb 22 16:26:47 2011 +0000
committer	Paul Bakker <p.j.bakker@polarssl.org>	Tue Feb 22 16:26:47 2011 +0000
tree	acf53a0f5ac811222e88b746280259693635fa3f
parent	82e635255dea27c40ec2dd9d81bc5b5c7b3a232b [diff] [blame]