Request a TLS client certificate even if no peer identity is given
This allows a peer to perform client authentication if it wants, but skip it if not.
This commit is contained in:
parent
257c80cb5b
commit
807f2facd0
|
@ -984,11 +984,7 @@ METHOD(tls_handshake_t, build, status_t,
|
|||
}
|
||||
/* otherwise fall through to next state */
|
||||
case STATE_KEY_EXCHANGE_SENT:
|
||||
if (this->peer)
|
||||
{
|
||||
return send_certificate_request(this, type, writer);
|
||||
}
|
||||
/* otherwise fall through to next state */
|
||||
return send_certificate_request(this, type, writer);
|
||||
case STATE_CERTREQ_SENT:
|
||||
return send_hello_done(this, type, writer);
|
||||
case STATE_CIPHERSPEC_CHANGED_OUT:
|
||||
|
|
Loading…
Reference in New Issue