SSLv3 clients call ssl3_get_key_exchange regardless of whether this
message is required for the chosen cipher.
As a result, ssl3_get_message called from ssl3_get_key_exchange ends up
reading the certificate request message (when doing client auth and the
key exchange message is absent):
n=ss
nagendra modadugu <[EMAIL PROTECTED]>:
> SSLv3 clients call ssl3_get_key_exchange regardless of whether this
> message is required for the chosen cipher.
>
> As a result, ssl3_get_message called from ssl3_get_key_exchange ends up
> reading the certificate request message (when doing client auth
