aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorlloyd <[email protected]>2012-04-16 21:34:41 +0000
committerlloyd <[email protected]>2012-04-16 21:34:41 +0000
commit64572522281c06ab4a849b90d168e11aa78c8f03 (patch)
tree8481540503f178636f3eaed35df45c68acd5bde0
parentc6fd2a39dfc9f488e25a63698a86a928afae3dc7 (diff)
As best I can tell the client is allowed to send a certificate chain
in response to a certificate request.
-rw-r--r--src/tls/tls_server.cpp5
1 files changed, 0 insertions, 5 deletions
diff --git a/src/tls/tls_server.cpp b/src/tls/tls_server.cpp
index c591a45c5..e3efe9c04 100644
--- a/src/tls/tls_server.cpp
+++ b/src/tls/tls_server.cpp
@@ -475,11 +475,6 @@ void Server::process_handshake_msg(Handshake_Type type,
{
state->client_certs = new Certificate(contents);
- // Is this allowed by the protocol?
- if(state->client_certs->count() > 1)
- throw TLS_Exception(Alert::CERTIFICATE_UNKNOWN,
- "Client sent more than one certificate");
-
state->set_expected_next(CLIENT_KEX);
}
else if(type == CLIENT_KEX)