CVSROOT: /cvs Module name: src Changes by: [email protected] 2021/12/26 07:59:52
Modified files:
lib/libssl : tls13_server.c
Log message:
Correct SSL_get_peer_cert_chain() when used with the TLSv1.3 stack.
Due to a wonderful API inconsistency, a client includes the peer's leaf
certificate in the stored certificate chain, while a server does not.
Found due to a haproxy test failure reported by Ilya Shipitsin.
ok tb@
