use client version when deciding whether to send supported signature algorithms extension
authorDr. Stephen Henson <steve@openssl.org>
Wed, 21 Mar 2012 21:32:57 +0000 (21:32 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Wed, 21 Mar 2012 21:32:57 +0000 (21:32 +0000)
ssl/t1_lib.c

index 57d1107..27c8e34 100644 (file)
@@ -544,7 +544,7 @@ unsigned char *ssl_add_clienthello_tlsext(SSL *s, unsigned char *p, unsigned cha
                }
                skip_ext:
 
-       if (TLS1_get_version(s) >= TLS1_2_VERSION)
+       if (TLS1_get_client_version(s) >= TLS1_2_VERSION)
                {
                if ((size_t)(limit - ret) < sizeof(tls12_sigalgs) + 6)
                        return NULL;