no need to check s->server as default_nid is never used for TLS 1.2 client authentication (15a70fe5) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

ssl/t1_lib.c

+1 −1

Original line number	Diff line number	Diff line
		@@ -3482,7 +3482,7 @@ int tls1_check_chain(SSL s, X509 x, EVP_PKEY pk, STACK_OF(X509) chain,
		* have set preferred signature algorithms check we support
		* sha1.
		*/
		if (s->server && default_nid > 0 && c->conf_sigalgs)
		if (default_nid > 0 && c->conf_sigalgs)
		{
		size_t j;
		const unsigned char *p = c->conf_sigalgs;